Updated May 24, 2018
The website may collect personally identifiable information you provide to us when you submit on our website or when you contact us. Information you may provide to us includes your email address, full name, the company you work for and your phone number.
The website may also collect information automatically with the use of analytics packages which gather information such as IP addresses, browser type, basic IP information, referring pages, operating system used and date/time stamps, and store this anonymous information in server log files. This information does not identify individual users; it is used only for site administration, as well as for analysis of website usage and trends.
The website uses both session ID cookies and persistent cookies. A session cookie expires when your browser is closed, and a persistent cookie may stay on your hard drive for an extended period. Session cookies make it easier for you to navigate our site; persistent cookies can perform such activities as tracking and targeting the interests of our users so as to enhance the overall experience of using our site.
We may partner with third-party providers, such as Google, to display ads to you on other websites you visit as you browse the internet. You can learn about ways to manage or opt-out of third-party tracking of this nature by visiting http://www.networkadvertising.org/choices.
The website uses the information we collect to market our services, including to send you emails in response to your request to learn more about our services, to schedule a trial with you or to provide you with any other information you requested. We may share the personal information we collect as required by law or court order or other government or law enforcement authority or regulatory agency, in connection with the consolidation, sale of or other transaction related to our business or whenever we believe that disclosing such information is necessary or advisable, for example, to protect the rights of property, or safety of us or others.
If you no longer wish to receive emails from us, you may opt out of receiving future emails by emailing us at firstname.lastname@example.org or by clicking "Unsubscribe" URL in email.
If your personally identifiable information changes, or if you no longer wish us to possess your information, you may request to update, correct or delete your information by emailing us at email@example.com.
We do not collect personally identifiable information (defined as name, email address, postal address or phone number) via our services. We do collect and store various signals from tracked and measured impressions. We collect information about the page where an ad was displayed, the dimensions and location of the ad, measurements pertaining to ad viewability, user interaction with the ad, IP address, browser type, user agent, referring URL and other information. We use this information in order to provide our services to our clients. We may share this information with our clients to help them eliminate fraud in their online advertising campaigns and for analytics, ad delivery and reporting and targeting purposes.
We do not use any data collected for behavioral, re-targeting or other interest-based advertising.
In addition to the above mentioned use of information collected by our services, we may also share the information with our clients to help them ensure compliance and verification in their online advertising campaigns and for analytics, ad delivery and reporting and targeting purposes.
We may also use or share the information we collect as described below.
We take commercially reasonable security measures to protect the information in our care from loss, misuse, alteration or destruction. However, no method of electronic storage or transmission over the internet can ever be 100% secure. Therefore, we are not in a position to guarantee the absolute security of your information.
We intend our services to only be used by adults. We do not collect any personally identifiable information via our services. If we discover that a child under the age of 13 has supplied personally identifiable information to us via our services without his/her parent’s consent, we will use reasonable attempts to ensure that this information is deleted from our system.
We do not send emails to prospects unless they have completed an “opt in” form indicating an interest in ImpScore.io services, or otherwise requested them from a ImpScore.io representative. ImpScore.io is promoted via word-of-mouth, advertisement, joint ventures, and trade shows, hence, we only build relationships with users who want to learn about our services and have chosen to subscribe to emails.
When ImpScore acts as a fraud detection system it collects various data to analyze and detect invalid traffic. In this case ImpScore operates as a Data Processor which means an entity that processes Personal Data on behalf of a Data Controller.
We are required from time to time to disclose personal information in response to lawful requests by public authorities, including for the purpose of meeting national security or law enforcement requirements. We may also be required to disclose personal information in the course of defending ourselves in litigation, and to third parties when compelled to do so by governmental authorities or as otherwise required by law or regulation (including, but not limited to, in response to court and administrative orders and subpoenas). In all such circumstances, we will make reasonable efforts to maintain confidentiality of such personal information.
You may request to review, correct, modify or delete any of the personal information that you have previously provided to us. To update your billing information, or request return or deletion of your data associated with your account, please contact your account representative or our customer success team. For other requests to access, correct, modify or delete your personal information, please email firstname.lastname@example.org. Requests to access, change, or delete your personal information will be addressed within a reasonable timeframe. If we are merely a processor of your personal information, we encourage you to contact the third-party controller of your personal information directly for assistance in accessing, correcting, updating or deleting such information.
GDPR effective date and applicability. The GDPR comes into force across the EU on 25 May 2018. The GDPR applies to the collection, use, and disclosure of data relating to identified or identifiable human end users in the EU (“Data Subjects”). The GDPR describes system- and device-related identifiers like IP addresses, unique device IDs, and cookie IDs as “pseudonymous” forms of Data Subjects’ personal information.
Pseudonymous information.Information in pseudonymous form is commonly collected and processed in connection with digital advertising. Even though operation of our Website and Services do not require processing or storage of names, phone numbers, house numbers, street addresses, or similarly-identifying data elements of Data Subjects—nor does operation of our Website and Services require processing or storage of sensitive personal information of Data Subjects, such as governmental ID numbers or personal health information—the GDPR still applies to our business
Fraud prevention is a legal basis under Article 6 and Recital 47 of the GDPR. Article 6 of the GDPR requires a legal basis for the processing of a Data Subject’s personal data. The GDPR provides a right to process the personal data of Data Subjects to further a company’s own “legitimate interests,” or the legitimate interests of a third party, provided that doing so will not infringe adversely upon the fundamental rights and freedoms of the applicable Data Subjects. Recital 47 of the GDPR states expressly that the “processing of personal data strictly necessary for the purposes of preventing fraud” constitutes a legitimate interest, and such provision serves as our legal basis for the processing of Data Subjects’ personal data in connection with operation of our Website and Services.
Express consent is a legal basis under GDPR Article 6. Another permissible legal basis to process a Data Subject’s personal data is express consent from the Data Subject. We may utilize such basis from time to time in connection with our direct marketing efforts to Data Subjects. With respect to the processing of client and client-prospect data relating to ImpScore’s business, we will take reasonable steps to ensure that our consent mechanisms for obtaining personal data of Data Subjects enable them to understand what consent(s) they are providing, and why and how we use such consent(s); and we give clear, defined ways to consent to us controlling and/or processing such Data Subject personal data. Where we use any third party to process Data Subjects’ personal data on our behalf (e.g., employee payroll, recruitment, and benefits), we will enter into reasonable data-processor agreements and establish (and update from time to time) due diligence procedures for ensuring that they (as well as we), meet and understand their/our GDPR obligations. These measures will include initial and ongoing reviews of the service provided, the necessity of the processing activity, the technical and organizational measures in place to ensure reasonable data protection and compliance with the GDPR.
Hosting on third-party platforms. ImpScore’s Services run on LeaseWeb. The EU data protection authorities, acting collectively as the Article 29 Working Party, approved.