1. Our privacy philosophy
Here at Content Ignite we are committed to privacy by design. More than just a buzz phrase, privacy was at the core of our company from the start and remains so to this day. We aim to bring true transparency to the advertising industry empowering both publishers and users. This policy will provide meaningful information without the legal jargon so you know exactly where you stand when you see our logo next to an ad. Your data, your control.
2. The legal bit
Phew! With that out of the way, on with the show!
3. So you saw an ad from us?
We are an ad tech company, so we probably know all about you now, right? We can confidently say this is not the case! We store and pass a grand total of zilch information about you.
You’ll be glad to know, we are not interested in anything about you (as amazing as we’re sure you are). So how do we run effective advertising? Well, there are two approaches we adopt, the first is called contextual.
So you are looking at a page about cars? Well, theres a good chance you are interested in cars! This method of advertising is not new, but was eclipsed by an era of targeted ads that track you around the web. With contextual targeting we don’t need to know anything about you!
The second solution is personalisation by Google. We use Google ad manager which offers direct personalisation (nothing passed from us).
4. The data we collect and how we use it
As mentioned already, we don’t look to store any of your personal information, because ultimately, we have no use for it, and we never will!
However, as with any company, there are situations where we come into contact with certain data, or require certain bits of data to allow our services to function.
As a company, we do not handle or store PII (personally identifiable information), but we do handle DII (Device identifiable information) in a very limited way, as described below. DII is described as any data that is linked to a particular browser or device if that data is not used, or intended to be used, to identify a particular individual. DII may include, but is not limited to, unique identifiers associated with browsers or devices, such as cookie identifiers or advertising identifiers, and IP addresses, where such data is not linked or intended to be linked to PII.
4.1. Web Browser Data
There is a particular situation where we come into contact with device data without actually requesting it, and that is through server requests. Each time a request is made to a service on the web, IP address and User-Agent (which contains information about your browser and device) is shared with that service.
Our servers log these requests automatically where they are stored for 5 days to ensure we can investigate any issues with our services, but importantly; are never used to try and identify you.
We additionally store a hash of various identifiers to give us an idea of how many users are using our services. "But you said you didn’t store my data!" That is still absolutely true; the hash is completely irreversible as we discard over 70% of it before storing, this gives us a very rough indicator of unique users while protecting your privacy. Hashes are stored for only 5 days.
Finally, your IP address will give us a likely geographic location. We use country and state (in the US) to ensure we are correctly handling the legalities of your region. For instance, those in the EU region are protected by GDPR, so we ensure that the website you are using has correctly requested your consent for personalised advertising, if they have not, or if you decline, we ensure that no targeting is performed by any of our technology partners. This happens in real-time, so geographic information is never stored or used for personal targeting.
4.2. Account registration
Our clients will need to provide us with certain information in order to access our services and be paid and/or charged accordingly.
4.3. Newsletter, Contact forms, Feedback & Support
Weather you fill in a contact form, subscribe to a newsletter, submit a support request or even a data access request, you will be passing over certain details such as email and name. These are needed to fulfil your request.
4.4. Third-Party Tracking
As a technology provider, we rely on third parties to perform certain actions, such as using Googles Ad Manager product to serve ads. These companies can make use of tracking techniques (e.g. cookies) to provide advertising about products and services tailored to your interests.
5. Opting Out of personalisation
The primary method of opting out of personalisation is via the CMP (consent management platform) implemented on the website you are visiting. Content Ignite even goes a step further here and acts as gatekeeper, so disallowing personalisation for the “Content Ignite” entity in the CMP, will enforce non-personalised ads for all our demand partners.
Note that you will still be shown ads, but these will not be tailored to you via tracking or user specific personalisation techniques.
You can also opt-out of ad personalisation via our widget. Note that this places a cookie on your device so that we know your preference for non-personalised ads. Find the widget here: Responsibility, Sustainability & Control.
Finally, you can use GPC (Global Privacy Control) to signal to us that do not want to be shown personalised advertising. Find out more about how to do that here: https://globalprivacycontrol.org/.
6. Our legal basis for processing your personal data
The information we collect from you is used for the functioning of our advertising services on behalf of the website you are visiting. As we have mentioned, we do not store this information, but do rely on certain real-time metrics to operate.
Information you pass to us through forms will be used only to communicate with you at your request.
7. Retention periods and cookies
We don’t store your information outside of our server logs as described above. Logs and hashes are stored for 5 days.
We actively mitigate the need to handle or store personal information and ever doing so must meet a high bar for fulfilling a core business purpose, such as permitted by law, and/or in satisfying any legal, accounting, or other regulatory reporting requirements.
8. Security and confidentiality
The great thing about not storing personally identifiable information, is that there is no security risk associated with your data! Nothing to steal, nothing to worry about!
9. Transfer of data
Not only are we not storing your data, but we do not pass it or transfer it to any third parties. Nice and simple.
10. Your legal rights
It is always important to know your legal rights, and in most jurisdictions, that means a right to access, delete or correct your information.
We will always reply to DSARs, but as you might now be aware, we don’t store PII as part of our normal operations as an ad technology provider, so there is unlikely to be anything for us to delete or provide!
11. Contacting us
Any questions about this policy, our company or even improvement suggestions for our services, feel free to get in touch: firstname.lastname@example.org