Privacy Policy
1. Introduction
AdFlux Network Ltd ("we," "us," or "Company") respects the privacy of our users and is committed to being transparent about how we collect, use, and protect your information. This Privacy Policy explains our practices concerning personal data collection and processing across our advertising platform and related services.
2. Data Collection
We collect various types of information to operate our ad network platform and deliver targeted advertising to end users. This information is collected through our SDK, web platform, and server-to-server integrations.
Device Identifiers: We collect advertising identifiers (such as IDFA on iOS and Google Advertising ID on Android), device model, operating system version, and hardware specifications to enable user targeting and campaign measurement.
IP Address and Location Data: We collect IP addresses and derive approximate geographic location (country, region, city level) to support geo-targeted campaigns and fraud detection. Precise GPS location data is never collected without explicit user consent.
App Usage Data: We track which applications users interact with, app session duration, and engagement metrics to understand user behavior and segment audiences for targeted advertising.
Network and Device Information: We collect information about network type (WiFi, cellular), connection speed, device type, and carrier information to optimize ad delivery and user experience.
3. Purpose of Data Processing
Ad Serving and Targeting: Personal data enables us to match advertisers' campaigns with relevant audiences, deliver personalized ads, and optimize ad placement across our publisher network.
Fraud Detection and Prevention: We process personal data to identify invalid traffic, detect fraudulent clicks and impressions, prevent bot activity, and maintain the integrity of our platform for all parties.
Analytics and Reporting: We aggregate and analyze data to provide advertisers and publishers with performance metrics, conversion attribution, return on ad spend (ROAS) calculations, and other business intelligence.
Platform Operations: We use data to maintain account security, troubleshoot technical issues, improve our services, conduct research, and comply with legal obligations.
4. Cookies and Tracking Technologies
We use cookies, web beacons, pixels, and similar tracking technologies to collect data about user behavior, manage user sessions, and measure campaign performance. These technologies allow us to track conversions, identify returning users, and prevent fraud across our network.
First-party cookies are placed on publisher websites to manage advertising interactions. Third-party cookies and pixels may be used for cross-domain tracking and attribution purposes where legally permitted.
Users can manage cookie preferences through their browser settings, though certain functionality may be limited if cookies are disabled.
5. Third-Party Data Sharing
We share aggregated and de-identified data with third parties as necessary for platform operations. This may include:
- Mobile Measurement Partners (MMPs) and attribution platforms to provide conversion tracking and campaign measurement
- Demand partners and ad exchanges to facilitate programmatic advertising transactions
- Fraud prevention and verification services to detect and prevent invalid traffic
- Analytics providers to measure platform performance and user engagement
- Cloud infrastructure providers for secure data storage and processing
All third-party recipients are contractually obligated to maintain the confidentiality and security of personal data and use it only for the specified purposes outlined in their agreements with AdFlux.
6. GDPR Rights and Compliance
For individuals in the European Economic Area (EEA), UK, and other jurisdictions with similar regulations, we provide the following rights in accordance with the General Data Protection Regulation (GDPR):
- Right of Access: You may request a copy of personal data we hold about you
- Right to Rectification: You may request correction of inaccurate personal data
- Right to Erasure ("Right to be Forgotten"): You may request deletion of your personal data, subject to legal obligations and platform functionality requirements
- Right to Data Portability: You may request your data in a structured, machine-readable format
- Right to Object: You may object to certain types of processing, particularly direct marketing and profiling
- Right to Restrict Processing: You may request limitations on how we process your data
To exercise these rights, contact our Data Protection Officer at [email protected]. We will respond to valid requests within 30 days.
Our legal basis for processing personal data includes: user consent, legitimate business interests in operating our ad network, contractual necessity, and compliance with legal obligations.
7. COPPA Compliance
The Children's Online Privacy Protection Act (COPPA) restricts how we collect and use data from children under 13 in the United States. AdFlux implements age-gating and screening mechanisms to prevent the collection of personal data from children without verifiable parental consent.
Our SDK detects when users are below the age threshold and disables personalized advertising and tracking identifiers for such users. We do not share children's personal data with third parties for behavioral targeting purposes.
Parents or guardians may contact us at [email protected] to request information about or deletion of data collected from their children.
8. Data Retention
We retain personal data for as long as necessary to provide our services and fulfill the purposes outlined in this Privacy Policy. Typically, we retain personal identifiers and behavioral data for up to 36 months to enable conversion attribution, fraud detection, and user re-engagement. Longer retention periods apply only where required by law or for legitimate business purposes.
Users may request data deletion at any time, subject to legal obligations and contractual requirements with our customers.
9. Data Security
We implement industry-standard security measures to protect personal data against unauthorized access, alteration, disclosure, or destruction. These measures include encryption in transit and at rest, secure authentication, regular security audits, and access controls limiting data exposure to authorized personnel only.
While we maintain robust security practices, no system is completely immune to breaches. Users should be aware of the inherent risks of transmitting information over the internet.
10. International Data Transfers
AdFlux operates globally with offices in London, Singapore, and San Francisco. We may transfer personal data across borders to process information and provide services. Transfers from the EEA and UK are governed by Standard Contractual Clauses and supplementary safeguards to ensure adequate protection of personal data.
11. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify users of material changes by updating the "Last updated" date and posting the revised policy on our website. Continued use of our platform following notice of changes constitutes acceptance of the updated Privacy Policy.
12. Contact Information
If you have questions about this Privacy Policy, our privacy practices, or wish to exercise your rights, please contact:
Privacy Officer
AdFlux Network Ltd
71 Queen Victoria Street
London, EC4V 4BE
United Kingdom
[email protected]