Privacy policy

Updated May 24, 2018

Information We Collect on our Website

The website may collect personally identifiable information you provide to us when you submit on our website or when you contact us. Information you may provide to us includes your email address, full name, the company you work for and your phone number.

The website may also collect information automatically with the use of analytics packages which gather information such as IP addresses, browser type, basic IP information, referring pages, operating system used and date/time stamps, and store this anonymous information in server log files. This information does not identify individual users; it is used only for site administration, as well as for analysis of website usage and trends.

Cookies

Cookies are very small text files that are stored on personal computers for reference purposes. The website uses cookies to provide easier and faster access to website features such as logins and to track repeat visits. The website does not link the information we store in cookies to any personally identifiable information you have submitted while on our site.

The website uses both session ID cookies and persistent cookies. A session cookie expires when your browser is closed, and a persistent cookie may stay on your hard drive for an extended period. Session cookies make it easier for you to navigate our site; persistent cookies can perform such activities as tracking and targeting the interests of our users so as to enhance the overall experience of using our site.

Cookie Opt-Out

We may partner with third-party providers, such as Google, to display ads to you on other websites you visit as you browse the internet. You can learn about ways to manage or opt-out of third-party tracking of this nature by visiting http://www.networkadvertising.org/choices.

How we use the information we collect.

The website uses the information we collect to market our services, including to send you emails in response to your request to learn more about our services, to schedule a trial with you or to provide you with any other information you requested. We may share the personal information we collect as required by law or court order or other government or law enforcement authority or regulatory agency, in connection with the consolidation, sale of or other transaction related to our business or whenever we believe that disclosing such information is necessary or advisable, for example, to protect the rights of property, or safety of us or others.

If you no longer wish to receive emails from us, you may opt out of receiving future emails by emailing us at [email protected] or by clicking "Unsubscribe" URL in email.

Access to Personally Identifiable Information and Opt-Out

If your personally identifiable information changes, or if you no longer wish us to possess your information, you may request to update, correct or delete your information by emailing us at [email protected].

Collection and Use of Information by our Services

We do not collect personally identifiable information (defined as name, email address, postal address or phone number) via our services. We do collect and store various signals from tracked and measured impressions. We collect information about the page where an ad was displayed, the dimensions and location of the ad, measurements pertaining to ad viewability, user interaction with the ad, IP address, browser type, user agent, referring URL and other information. We use this information in order to provide our services to our clients. We may share this information with our clients to help them eliminate fraud in their online advertising campaigns and for analytics, ad delivery and reporting and targeting purposes.

Use of Cookies by our Services

Our services use cookies to enable our campaign performance analytics services which use statistical population-level data derived from measured impression and conversion data. Cookies are small pieces of information transferred to your computer’s hard drive through your web browser so that your computer will “remember” information about your visit. Our cookie domain is securepaths.com.

We do not use any data collected for behavioral, re-targeting or other interest-based advertising.

Additional Disclosure of Information Collected by our Services

In addition to the above mentioned use of information collected by our services, we may also share the information with our clients to help them ensure compliance and verification in their online advertising campaigns and for analytics, ad delivery and reporting and targeting purposes.

We may also use or share the information we collect as described below.

  • We may employ other companies and individuals to perform functions on our behalf. Examples may include providing technical assistance and hosting services. These other companies will have access to the information we collect information only as necessary to perform their functions and to the extent permitted by law.
  • We may analyze the information we collect in the aggregate form in order to operate, maintain, manage, and improve our products and services. We may share this aggregate data with our affiliates and agents and disclose aggregated user statistics in order to describe our products and services to current and prospective clients and to other third parties for other lawful purposes.
  • We may share some or all of the information we collect with our parent companies, subsidiaries, joint ventures or other companies under common control with us.
  • In the event of a corporate sale, merger, reorganization, sale of assets, dissolution, or similar event the information we collect information may be part of the transferred assets.
  • We may also disclose the information we collect when required by law, court order or other government or law enforcement authority or regulatory agency, or whenever we believe that disclosing such information is necessary or advisable, for example, to protect the rights of property, or safety of us or others.

Security

We take commercially reasonable security measures to protect the information in our care from loss, misuse, alteration or destruction. However, no method of electronic storage or transmission over the internet can ever be 100% secure. Therefore, we are not in a position to guarantee the absolute security of your information.

Children’s Privacy

We intend our services to only be used by adults. We do not collect any personally identifiable information via our services. If we discover that a child under the age of 13 has supplied personally identifiable information to us via our services without his/her parent’s consent, we will use reasonable attempts to ensure that this information is deleted from our system.

We also have a zero tolerance anti-spam policy

We do not send emails to prospects unless they have completed an “opt in” form indicating an interest in ImpScore.io services, or otherwise requested them from a ImpScore.io representative. ImpScore.io is promoted via word-of-mouth, advertisement, joint ventures, and trade shows, hence, we only build relationships with users who want to learn about our services and have chosen to subscribe to emails.

Changes to This Privacy Policy

We reserve the right to change this Privacy Policy at any time by posting an updated Privacy Policy on our site. Your continued use of our website or services after any changes have been made constitutes your acceptance of such changes.

Information We Collect as a fraud detection tool

When ImpScore acts as a fraud detection system it collects various data to analyze and detect invalid traffic. In this case ImpScore operates as a Data Processor which means an entity that processes Personal Data on behalf of a Data Controller.

Onward transfer of data to third parties

Like many businesses, we hire third-party vendors to perform certain business-related services. We may disclose personal information to certain types of third-party vendors but only to the extent reasonably required to enable them to provide such services. The types of companies that may receive personal information, and their functions include: direct marketing assistance, billing, client service, data storage, Website and Services hosting, and disaster-recovery services. All such third-party vendors function as our agents, performing services at our instruction and on our behalf pursuant to contracts that require that they provide at least the same level of privacy protection as is required by this Privacy Policy and applicable law, and as implemented by ImpScore. You may opt out of having your personal information transferred to any or all of our categories of agents by contacting us at [email protected]. Please allow us a reasonable time to process your request.

Business-transaction-related transfers

In the event of a merger, dissolution, reorganization or similar corporate event, or the sale of all or substantially all of our assets, we expect that the information that we have collected, including personal information, would be transferred to the surviving entity in such a merger or the acquiring entity. All such transfers shall be subject to our commitments with respect to the privacy and confidentiality of such personal information as set forth in this Privacy Policy. This Privacy Policy is binding upon ImpScore and its legal successors in interest.

Disclosure of personal information in connection with legal and administrative proceedings

We are required from time to time to disclose personal information in response to lawful requests by public authorities, including for the purpose of meeting national security or law enforcement requirements. We may also be required to disclose personal information in the course of defending ourselves in litigation, and to third parties when compelled to do so by governmental authorities or as otherwise required by law or regulation (including, but not limited to, in response to court and administrative orders and subpoenas). In all such circumstances, we will make reasonable efforts to maintain confidentiality of such personal information.

May you review, correct, modify or delete any of your personal information that we possess?

You may request to review, correct, modify or delete any of the personal information that you have previously provided to us. To update your billing information, or request return or deletion of your data associated with your account, please contact your account representative or our customer success team. For other requests to access, correct, modify or delete your personal information, please email [email protected]. Requests to access, change, or delete your personal information will be addressed within a reasonable timeframe. If we are merely a processor of your personal information, we encourage you to contact the third-party controller of your personal information directly for assistance in accessing, correcting, updating or deleting such information.

How long is personal information retained, and what steps are taken to safeguard personal information?

Retention of personal information.We will retain your personal information in a form that identifies you only for as long as it reasonably serves the purpose(s) for which it was initially collected, or for a purpose that you authorized subsequently, and, in both circumstances, in accordance with this Privacy Policy. In the event that we continue processing your personal information for longer periods, it will only be for the time and to the extent reasonably required for a lawful and permissible purpose (e.g., archival, compelling public interest, journalism, literature, scientific or historical research, and statistical analysis), and subject to the protections afforded by this Privacy Policy and applicable law. After such time periods have expired, we may either delete your personal information or retain it in an anonymous form that does not identify you personally.

How we protect personal information.ImpScore takes protection of the security and privacy of personal information that we collect pursuant to this Privacy Policy very seriously. Accordingly, we have implemented and will maintain reasonable and appropriate technical, administrative and physical measures designed to protect personal information from loss, misuse and unauthorized access, disclosure, alteration and destruction. We will take into account the risks involved in processing, and the nature of such personal information, and will comply with all applicable laws and regulations.

Does the European Union (“EU”)’s General Data Protection Regulation (“GDPR”) apply to you?

GDPR effective date and applicability. The GDPR comes into force across the EU on 25 May 2018. The GDPR applies to the collection, use, and disclosure of data relating to identified or identifiable human end users in the EU (“Data Subjects”). The GDPR describes system- and device-related identifiers like IP addresses, unique device IDs, and cookie IDs as “pseudonymous” forms of Data Subjects’ personal information.

Pseudonymous information.Information in pseudonymous form is commonly collected and processed in connection with digital advertising. Even though operation of our Website and Services do not require processing or storage of names, phone numbers, house numbers, street addresses, or similarly-identifying data elements of Data Subjects—nor does operation of our Website and Services require processing or storage of sensitive personal information of Data Subjects, such as governmental ID numbers or personal health information—the GDPR still applies to our business

Fraud prevention is a legal basis under Article 6 and Recital 47 of the GDPR. Article 6 of the GDPR requires a legal basis for the processing of a Data Subject’s personal data. The GDPR provides a right to process the personal data of Data Subjects to further a company’s own “legitimate interests,” or the legitimate interests of a third party, provided that doing so will not infringe adversely upon the fundamental rights and freedoms of the applicable Data Subjects. Recital 47 of the GDPR states expressly that the “processing of personal data strictly necessary for the purposes of preventing fraud” constitutes a legitimate interest, and such provision serves as our legal basis for the processing of Data Subjects’ personal data in connection with operation of our Website and Services.

Express consent is a legal basis under GDPR Article 6. Another permissible legal basis to process a Data Subject’s personal data is express consent from the Data Subject. We may utilize such basis from time to time in connection with our direct marketing efforts to Data Subjects. With respect to the processing of client and client-prospect data relating to ImpScore’s business, we will take reasonable steps to ensure that our consent mechanisms for obtaining personal data of Data Subjects enable them to understand what consent(s) they are providing, and why and how we use such consent(s); and we give clear, defined ways to consent to us controlling and/or processing such Data Subject personal data. Where we use any third party to process Data Subjects’ personal data on our behalf (e.g., employee payroll, recruitment, and benefits), we will enter into reasonable data-processor agreements and establish (and update from time to time) due diligence procedures for ensuring that they (as well as we), meet and understand their/our GDPR obligations. These measures will include initial and ongoing reviews of the service provided, the necessity of the processing activity, the technical and organizational measures in place to ensure reasonable data protection and compliance with the GDPR.

Hosting on third-party platforms. ImpScore’s Services run on LeaseWeb. The EU data protection authorities, acting collectively as the Article 29 Working Party, approved.