The Belgian DPA has found that the Interactive Advertising Bureau Europe (IAB Europe) did not meet its transparency obligations under the GDPR (Articles 12, 13, and 14 of the GDPR). The DPA found that the IAB Europe's Transparency and Consent Framework (TCF) provided to users was too generic and did not enable them to give specific and informed consent, which is required for consent to be considered valid. Additionally, the large number of adtech vendors that could potentially receive users' personal data further complicated the matter, making it difficult for users to be fully informed and for the IAB Europe to comply with its transparency and information obligations under the GDPR. To address these issues, the DPA has required TCF-registered Consent Management Platforms (CMPs) to take a harmonised and GDPR-compliant approach to providing information to users through their interface. This includes ensuring that any information provided about data processing is precise, concise, and understandable to prevent users from being surprised by subsequent processing of their personal data by parties other than publishers or IAB Europe.