Privacy Policy
Introduction
Adsinflow is a Connected TV (CTV) ad network. We process limited device and service data to deliver, measure, and improve advertising while respecting users’ privacy choices under the IAB Transparency & Consent Framework (TCF) 2.2.
Who we are
Adsinflow (“we”, “our”) operates an advertising network focused on CTV. We mainly act as a processor on behalf of publishers and advertisers, but in some cases we act as a controller (e.g. fraud prevention, service improvement).
Contact: [email protected]
Personal Data We Process
Depending on the integration and publisher, we may process:
- Device identifiers: IDFA (iOS), GAID/AAID (Android), CTV device IDs (e.g. tvOS, Android TV, Samsung Tizen, LG webOS, Roku, Fire TV).
- Browser and device information: IP address, user agent, device type, model, OS version, language, time zone.
- Ad delivery and measurement data: request context, campaign IDs, impression and viewability events, error logs.
- Digital identifiers from third parties: IDs shared via SSPs, DSPs or identity vendors to enable campaign delivery.
- Location information: coarse location (country, region, city, ZIP) inferred from IP; we do not use precise GPS location.
- Privacy signals: TCF strings, CMP consent/opt-out flags.
- Other data from publishers: demographic or interest segments, if provided.
We do not intentionally collect directly identifiable information such as your name or email.
Purposes and Legal Bases
We process data under GDPR using either Consent or Legitimate Interest, in line with TCF 2.2. We honor choices set via the publisher’s CMP.
- P1 – Store/access info: Consent
- P2 – Use limited data to select ads: Consent or Legitimate Interest (primary: Consent)
- P3 & P4 – Personalised ads: Consent
- P7 – Measure ad performance: Consent or Legitimate Interest (primary: LI)
- P9 – Audience statistics: Consent or Legitimate Interest (primary: LI)
- P10 – Develop and improve services: Legitimate Interest
- Purposes 5, 6, 8, 11: not used
We maintain Legitimate Interest Assessments (LIAs) for all purposes where LI is used.
Special Purposes
- SP1 – Ensure security, prevent fraud, fix errors: Legitimate Interest
- SP2 – Deliver and present advertising/content: Legitimate Interest
- SP3 – Save and communicate privacy choices: Legitimate Interest
Data Retention
Purpose Max retention P2 – Limited data for ads 365 days P7 – Measure advertising performance 180 days P9 – Audience statistics 180 days P10 – Develop and improve services 180 days SP1 & SP2 – Security, delivery 90 days SP3 – Privacy choices 365 days
Cookies and Device Storage
We do not use our own cookies today. Instead, we rely on app/CTV device identifiers (IDFA, GAID, CTV IDs). Our Device Storage Disclosure describes identifiers and retention. If cookies are introduced in the future, this policy and disclosure will be updated accordingly.
Sharing of Data
We may share data with:
- Buyers and DSPs: to deliver relevant ads and measure performance.
- Identity partners: at the instruction of publishers, digital identifiers may be passed for segmentation.
- Vendors and service providers: fraud detection, measurement, hosting, CDN, security.
- Legal obligations: we may disclose data where required by law or to honor opt-out choices.
International Transfers
Adsinflow operates globally with data centers and partners in Europe, US, Asia, and Canada. Transfers outside the EEA/UK are protected using Standard Contractual Clauses or adequacy decisions where applicable.
Security
We implement technical, organizational and physical safeguards to protect data, including encryption in transit, strict access controls, monitoring, and employee training. No system is entirely infallible, but we review and improve our practices regularly.
Your Rights
You have rights under GDPR to access, rectify, erase, restrict, port or object to processing (including processing under legitimate interest). You may also withdraw consent at any time via the publisher’s CMP.
Opt-Out and Choices
- Use the publisher’s CMP to manage consent/objection to our vendor entry.
- Reset or limit your device advertising ID (IDFA/GAID/CTV IDs).
- Contact us with your device ID at [email protected].
Children
Our services are not directed to children and we do not knowingly process data from users below the legal age of consent.
Changes
We may update this policy due to technology, service or regulatory changes. The “last updated” date indicates the latest version.
European Representative under Article 27 of GDPR
We have appointed Bizlegal Ltd t/a EU Rep as our Representative under Article 27 of the EU General Data Protection Regulation (“GDPR”).
All GDPR queries from EU Data Subjects or Data Protection Authorities should be submitted via EU Rep’s dedicated form at
www.eurep.ie.
Bizlegal Ltd t/a EU Rep, Company number 635921, Ireland.
Contact
For questions or to exercise your rights, contact: [email protected]
Introduction
Adsinflow is a Connected TV (CTV) ad network. We process limited device and service data to deliver, measure, and improve advertising while respecting users’ privacy choices under the IAB Transparency & Consent Framework (TCF) 2.2.
Who we are
Adsinflow (“we”, “our”) operates an advertising network focused on CTV. We mainly act as a processor on behalf of publishers and advertisers, but in some cases we act as a controller (e.g. fraud prevention, service improvement).
Contact: [email protected]
Personal Data We Process
Depending on the integration and publisher, we may process:
- Device identifiers: IDFA (iOS), GAID/AAID (Android), CTV device IDs (e.g. tvOS, Android TV, Samsung Tizen, LG webOS, Roku, Fire TV).
- Browser and device information: IP address, user agent, device type, model, OS version, language, time zone.
- Ad delivery and measurement data: request context, campaign IDs, impression and viewability events, error logs.
- Digital identifiers from third parties: IDs shared via SSPs, DSPs or identity vendors to enable campaign delivery.
- Location information: coarse location (country, region, city, ZIP) inferred from IP; we do not use precise GPS location.
- Privacy signals: TCF strings, CMP consent/opt-out flags.
- Other data from publishers: demographic or interest segments, if provided.
We do not intentionally collect directly identifiable information such as your name or email.
Purposes and Legal Bases
We process data under GDPR using either Consent or Legitimate Interest, in line with TCF 2.2. We honor choices set via the publisher’s CMP.
- P1 – Store/access info: Consent
- P2 – Use limited data to select ads: Consent or Legitimate Interest (primary: Consent)
- P3 & P4 – Personalised ads: Consent
- P7 – Measure ad performance: Consent or Legitimate Interest (primary: LI)
- P9 – Audience statistics: Consent or Legitimate Interest (primary: LI)
- P10 – Develop and improve services: Legitimate Interest
- Purposes 5, 6, 8, 11: not used
We maintain Legitimate Interest Assessments (LIAs) for all purposes where LI is used.
Special Purposes
- SP1 – Ensure security, prevent fraud, fix errors: Legitimate Interest
- SP2 – Deliver and present advertising/content: Legitimate Interest
- SP3 – Save and communicate privacy choices: Legitimate Interest
Data Retention
| Purpose | Max retention |
|---|---|
| P2 – Limited data for ads | 365 days |
| P7 – Measure advertising performance | 180 days |
| P9 – Audience statistics | 180 days |
| P10 – Develop and improve services | 180 days |
| SP1 & SP2 – Security, delivery | 90 days |
| SP3 – Privacy choices | 365 days |
Cookies and Device Storage
We do not use our own cookies today. Instead, we rely on app/CTV device identifiers (IDFA, GAID, CTV IDs). Our Device Storage Disclosure describes identifiers and retention. If cookies are introduced in the future, this policy and disclosure will be updated accordingly.
Sharing of Data
We may share data with:
- Buyers and DSPs: to deliver relevant ads and measure performance.
- Identity partners: at the instruction of publishers, digital identifiers may be passed for segmentation.
- Vendors and service providers: fraud detection, measurement, hosting, CDN, security.
- Legal obligations: we may disclose data where required by law or to honor opt-out choices.
International Transfers
Adsinflow operates globally with data centers and partners in Europe, US, Asia, and Canada. Transfers outside the EEA/UK are protected using Standard Contractual Clauses or adequacy decisions where applicable.
Security
We implement technical, organizational and physical safeguards to protect data, including encryption in transit, strict access controls, monitoring, and employee training. No system is entirely infallible, but we review and improve our practices regularly.
Your Rights
You have rights under GDPR to access, rectify, erase, restrict, port or object to processing (including processing under legitimate interest). You may also withdraw consent at any time via the publisher’s CMP.
Opt-Out and Choices
- Use the publisher’s CMP to manage consent/objection to our vendor entry.
- Reset or limit your device advertising ID (IDFA/GAID/CTV IDs).
- Contact us with your device ID at [email protected].
Children
Our services are not directed to children and we do not knowingly process data from users below the legal age of consent.
Changes
We may update this policy due to technology, service or regulatory changes. The “last updated” date indicates the latest version.
European Representative under Article 27 of GDPR
We have appointed Bizlegal Ltd t/a EU Rep as our Representative under Article 27 of the EU General Data Protection Regulation (“GDPR”). All GDPR queries from EU Data Subjects or Data Protection Authorities should be submitted via EU Rep’s dedicated form at www.eurep.ie. Bizlegal Ltd t/a EU Rep, Company number 635921, Ireland.
Contact
For questions or to exercise your rights, contact: [email protected]