AM Ad Network Header GDPR Compliance - AdsMonetization
GDPR COMPLIANCE

GDPR Compliance

Our commitment to protecting your data rights under the General Data Protection Regulation.

Last Updated: October 15, 2023

GDPR Compliance Status

AdsMonetization is fully compliant with the General Data Protection Regulation (GDPR) requirements. We have implemented comprehensive data protection measures to safeguard your personal information.

FULLY COMPLIANT

1. Introduction to GDPR

Understanding the regulation and our commitment

The General Data Protection Regulation (GDPR) is a comprehensive data protection law that came into effect in the European Union on May 25, 2018. GDPR strengthens data protection for individuals within the EU and EEA and addresses the export of personal data outside these areas.

At AdsMonetization, we are fully committed to complying with GDPR requirements. We have implemented robust processes and technical measures to ensure that our data handling practices meet the highest standards of data protection and privacy.

Our Commitment

We view GDPR not just as a legal requirement but as an opportunity to strengthen our commitment to data protection and build greater trust with our users, publishers, and advertisers.

2. Data Protection Principles

How we adhere to GDPR's core principles

We follow the seven key principles of GDPR in all our data processing activities:

Lawfulness, Fairness & Transparency

We process personal data lawfully, fairly, and in a transparent manner. Our privacy policies clearly explain how we use data.

Purpose Limitation

We collect personal data for specified, explicit, and legitimate purposes and do not process it in ways incompatible with those purposes.

Data Minimization

We only collect and process personal data that is adequate, relevant, and limited to what is necessary for our purposes.

Accuracy

We take reasonable steps to ensure personal data remains accurate and up-to-date, and we correct or delete inaccurate data.

Storage Limitation

We keep personal data in a form that permits identification of data subjects for no longer than necessary for the purposes.

Integrity & Confidentiality

We process personal data securely using appropriate technical and organizational measures to protect against unauthorized access.

Accountability

We take responsibility for complying with GDPR principles and can demonstrate our compliance through documentation.

3. Your GDPR Rights

The rights you have under GDPR and how to exercise them

Under GDPR, you have several important rights regarding your personal data. We respect these rights and have established processes to help you exercise them:

Right Description
Right to Access You can request confirmation of whether we process your personal data and access to that data.
Right to Rectification You can request correction of inaccurate or incomplete personal data.
Right to Erasure You can request deletion of your personal data in certain circumstances.
Right to Restriction You can request limitation of processing of your personal data.
Right to Data Portability You can receive your personal data in a structured, commonly used format.
Right to Object You can object to processing of your personal data in certain situations.
Rights Related to Automated Decision Making You have rights regarding automated decision making, including profiling.

Exercising Your Rights

To exercise any of your GDPR rights, please contact us using the live chat option below. Our support team will guide you through the process and ensure your request is handled promptly within the 30-day GDPR requirement.

4. Lawful Basis for Processing

Our legal grounds for processing personal data

Under GDPR, we must have a lawful basis for processing personal data. We rely on the following lawful bases for our data processing activities:

  • Consent: For certain processing activities, we obtain your explicit consent. You can withdraw consent at any time.
  • Contractual Necessity: We process data when necessary to perform our contracts with publishers and advertisers.
  • Legal Obligation: We process data when required to comply with legal obligations.
  • Legitimate Interests: We process data for our legitimate interests, such as improving our services and preventing fraud, while ensuring these interests don't override your rights.

Our Data Processing Flow

1
Data Collection
2
Legal Basis Assessment
3
Purpose-Specific Processing
4
Data Protection
5
Retention & Deletion

5. Data Security Measures

How we protect your personal data

We have implemented comprehensive technical and organizational measures to ensure the security of personal data in accordance with GDPR requirements:

  • Encryption: All sensitive data is encrypted both in transit (using TLS) and at rest.
  • Access Controls: Strict access controls ensure that only authorized personnel can access personal data.
  • Data Minimization: We collect and process only the data necessary for specific purposes.
  • Regular Audits: We conduct regular security assessments and vulnerability testing.
  • Employee Training: All employees receive regular data protection and security training.
  • Incident Response Plan: We have a documented process for responding to data breaches.
  • Data Protection by Design: We integrate data protection into all our systems and processes from the outset.

Data Breach Notification

In the event of a personal data breach, we will notify the relevant supervisory authority within 72 hours, where feasible. If the breach poses a high risk to individuals' rights and freedoms, we will also inform affected individuals without undue delay.

6. International Data Transfers

How we handle data transfers outside the EEA

As a global advertising platform, AdsMonetization may transfer personal data to countries outside the European Economic Area (EEA). We ensure that all such transfers comply with GDPR requirements:

  • Adequacy Decisions: We prefer to transfer data to countries with adequacy decisions from the European Commission.
  • Standard Contractual Clauses: For transfers to countries without adequacy decisions, we use EU-approved Standard Contractual Clauses.
  • Binding Corporate Rules: We implement binding corporate rules for intra-organizational transfers.
  • Additional Safeguards: We implement additional technical and organizational measures to ensure data protection.

Privacy Shield

Following the invalidation of the EU-U.S. Privacy Shield framework, we no longer rely on Privacy Shield for data transfers. We have implemented alternative transfer mechanisms that comply with GDPR requirements.

7. Data Protection Officer

Our dedicated GDPR compliance resource

In accordance with GDPR Article 37, AdsMonetization has appointed a Data Protection Officer (DPO) to oversee our data protection strategy and ensure compliance with GDPR requirements.

Our DPO is responsible for:

  • Informing and advising us about our GDPR obligations
  • Monitoring our compliance with GDPR and internal policies
  • Providing advice on Data Protection Impact Assessments
  • Cooperating with supervisory authorities
  • Acting as a point of contact for data subjects and authorities

Contact Our DPO

You can contact our Data Protection Officer directly with any questions about our data protection practices or to exercise your GDPR rights: dpo@adsmonetization.com

Contact Us

If you have any questions about our GDPR compliance or wish to exercise your data protection rights, please contact us:

AM Ad Network Footer