Effective Date: May 25, 2018
Table of Contents:
- About Us.
- Information We Collect.
- How We Use the Information We Collect.
- Maximum Information Retention Period.
- How We Share Your Information.
- How to Control Your Information.
- International Transfers.
- Contact Us.
- About Us
ironSource Mobile Ltd. (“ironSource Mobile”) operates 3 main services:
- Ad Network – We have a network that connects app developers with advertisers, and helps app developers to serve ads on their apps. App developers means the company or individual that developed and operates the mobile app that is integrated with or otherwise sends information to ironSource Mobile. Advertiser is a company or an individual that advertises its products or services within the app.
- Mediation Platform – A platform that helps app developers to manage all the ad providers with which they have a direct relationship (e.g. ironSource Mobile ad network, third party ad networks, additional online advertising companies, etc.) that serve ads on their apps.
- Marketing Platform – We help advertisers to create and optimize advertising campaigns.
We collect information in either of 2 ways:
- Directly – from your device through our SDK integrated by app developers in their apps. SDK, or a Software Development Kit, is a software component that allows us to serve ads in a mobile app, and to collect information directly from the end users of such app.
- Indirectly – through other ad networks with which we engage in order to serve you with ads, or by receiving information from our advertisers.
- Information We Collect
- Information collected directly from you through our SDK, and information provided to us by a third party ad network (“Ad Network Information”) –
Identifiers: Your Advertising ID, an additional unique identifier of available solely from within the app of the app developer which cannot be used to identify you on other apps, IP address, information about your browser settings. The term Advertising ID refers to the Google Advertising ID on Android devices, and ID For Advertising (“IDFA”) or ID For Vendor (“IDFV”) on iOS devices. The Advertising ID is a resettable persistent identifier generated by Android or iOS that allows online advertising companies to recognize your device across non-affiliated apps, for purposes such as frequency capping, attribution, fraud detection, personalized advertising, and whitelisting. You can find additional information about how to limit our use of your Advertising ID under “How to Control Your Information”.
General technical information about your device: The ironSource Mobile SDK version, your time zone, the amount of free memory on your device, the name and version of the app to which the ad is served, battery status, limit ad tracking status, operating system name and version, timestamp, the name of the manufacturer of the device, the language of the operating system, the name of the mobile carrier, internet connection type (e.g. WiFi).
Interaction with our ads: An indication if you viewed or clicked on an ad.
- Information received (through our SDK) from app developers that are integrated with our mediation platform (“Mediation Information”) – your age, gender, in-app purchases, advance in the game, and such other information provided by the app developer.
- Information received from advertisers (through the advertiser itself or through a third party in behalf of such advertiser) (“Advertiser Information”) –
Identifiers: Your advertising ID, IP address, a unique identifier of your device available solely with respect to the advertiser, information about your browser settings.
Campaign information: an indication that you installed the advertiser’s app following a click on or a view of an ad served by us or otherwise; information about actions you performed within an advertiser’s app following such an install, such as in-app purchases, level in the game, and the number of times you opened the app; and other information that the advertiser decides to share with us.
- How We Use the Information We Collect:
As stated above, we perform 3 main services. For each such service, we use the information we collect in different ways. Below is a general description of how we use your information across our services:
- Serving Ads on App Developers’ Apps – We use the Ad Network Information collected from your device to serve ads on app developers’ apps. More specifically, we use such information for the following purposes:
- Ad delivery: we use your Ad Network Information to technically enable the delivering of ads to your device.
- Reporting, billing and attribution: We use your Ad Network Information to generate reports for our publishers and bill advertisers and publishers, including for ensuring that if you interacted with our ads, we will receive payment for our service.
- Internal Operations: We use your Ad Network Information for internal operations, such as debugging, support, security, and improving our services.
- Fraud detection and prevention: We use your Ad Network Information for detecting and preventing fraud, and for ensuring viewability of our ads.
- Optimization and frequency capping: We use your Ad Network Information for optimizing advertising campaigns, including for limiting the number of times you view a specific campaign across our network, or the number of ads you view in a specific app.
- Personalized advertising: Our corporate affiliates and advertisers may use your Ad Network Information for personalized advertising (i.e. ads that are based on your interest or profile).
- Operating our Mediation Platform – We use your Advertising ID, IP address, and Mediation Information collected from your device to operate our mediation platform. More specifically, we use such information for the following purposes:
- Reporting: We generate reports for the app developers using our mediation platform in order to allow them to better understand their audience in terms of interaction with ads.
- Segmentation: We allow app developers to create segments based on parameters they configure in our mediation platform. Such segmentation allows them to use different ad networks and different ad units for different segments of users. However, this feature does not allow them to serve you with personalized advertising, as app developers cannot control the content of the ads served by different networks.
- Sending ad requests on behalf of the app developer: In addition to the other information used to operate the mediation platform, we use the Ad Network Information in order to send ad requests on behalf of the app developer to ad networks with which the app developer has direct contractual relationship, but due to technical reasons, we are in the best position to populate the ad request with the Ad Network Information.
- Operating our Marketing Platform – We use the Advertiser Information received from our advertisers to operate our marketing platform. More specifically, we use such information for the following purposes:
- Optimizing advertising campaigns: We optimize campaigns for our advertisers based, for example, on events that happen in their app or indications of installs received from other apps.
- Suppression: We use device IDs of users of an advertiser’s app in order not to serve advertising campaigns of such advertiser to such users, as they already have the advertiser’s app.
- Whitelisting/blacklisting: We allow advertisers to upload lists of device IDs to include/exclude in their advertising campaigns.
- Compliance with legal obligations – We may use your Ad Network Information, Mediation Information, and Advertiser Information to comply with applicable legal obligations.
The GDPR Angle:
- We act as a processor – When we process Ad Network Information, Mediation Information and Advertiser Information on behalf of app developers, we act as their processors. For any request to exercise your individual rights related to such processing (including the rights of access, rectification, erasure, portability, and the right to restriction and/or object to processing), you should contact the relevant app developer.
- We also act as controllers and process personal data on the basis of legitimate interest – When we process Ad Network Information for the purposes of optimization and frequency capping (to ensure you are not seeing the same ad too many times), fraud detection and prevention (to ensure that our ads are not viewed by bots, and/or any other fraudulent means), and internal operations, as detailed above (to ensure you receive smooth and secured experience), on the basis of our legitimate interest or the legitimate interests of our app developers, in order to ensure a specific campaign is .
- Personalized Advertising in the European Economic Area, United Kingdom, and Switzerland – At the moment, we do not serve personalized ads to users who are located in the European Economic Area, United Kingdom, and Switzerland. However, as a result of technical considerations, on certain occasions, we may be included in consent pop-ups operated by app developers and ad networks that are engaged with us. If we start serving personalized advertising to users who are located in the European Economic Area, United Kingdom, and Switzerland, we, will ask you for your consent (typically through consent pop-us managed by app developers and ad networks with which we work).
- Further processing of Advertiser Information – When we process Advertiser Information, we may further process Advertiser Information for optimization of our network based on our legitimate interest.
- Legal necessity – We may process your Ad Network Information, your Mediation Information, and your Advertiser Information for compliance with applicable legal obligations.
- Maximum Information Retention Period:
We will retain your Ad Network Information, Mediation Information, and Advertiser Information for the longer of: (i) a period of up to 2 years from the date such information is first stored in our systems; or (ii) a period of 3 months from the last appearance of your Advertising ID in our systems.
- How We Share Your Information:
- We share your Ad Network Information with:
- Other ad networks – for the purpose of receiving advertising campaigns from such ad networks.
- Our corporate affiliates – from which we receive services, such as IT, security, storage, delivery of advertising campaigns, personalized advertising, and other internal operations.
- Advertisers – for the purposes of attribution and whitelisting/blacklisting, as stated above.
- Service providers – We share your Ad Network Information, Mediation Information, and Advertiser Information with our service providers for the purpose of receiving services such as fraud detection and prevention, viewability measurement, reporting, and storage.
- How to Control Your Information:
- Opt out from personalized ads – If you do not want us to transfer your information to corporate affiliates and third parties for personalized ads, please follow the below instructions:
- iOS devices: go to Settings > Privacy > Advertising > enable Limit Ad Tracking. Please note that if you use more than one device, you need to opt-out separately in each device.
- Android devices: Please follow the instructions set forth at: https://support.google.com/ads/answer/2662922?hl=en. Please note that if you use more than one device, you need to opt-out separately in each device.
- Scope of the opt-out – Note that if you reset your advertising ID through your device’s platform settings, you should follow the steps above to reset your opt-out choice. In addition, opting out may not stop data from being collected from your device or transferred for other, non-personalized advertising purposes such as optimization, reporting, frequency capping, internal operations, and fraud prevention. If you become aware of any third party that received your Ad Network Information from us, and that does not respect your choices, please let us know by contacting us at: firstname.lastname@example.org.
The GDPR Angle:
- Data subject rights – Please note that you have the right to request from us access to and rectification or erasure of your personal data we process as controllers, or to restrict or to object to processing of your personal data in accordance with the provisions of the GDPR. To submit a request for exercising your rights, please send an email with your request to the following address: email@example.com. Please note that we will process your request subject to verification of your identity.
- Complaint to supervisory authority – You also have the right to file a complaint with the relevant supervisory authority (e.g. of your country or domicile) where ironSource has not addressed your concerns.
The GDPR Angle:
We do not collect or otherwise process personal data from individuals in the European Economic Area, the United Kingdom, and Switzerland whom we know to be under 16 years of age, except to comply with law or to support our legitimate interests or the legitimate interests of our app developers as described above.
- International Transfers:
We store information that we collect from your device on our Amazon Web Services servers in the United States. Accordingly, please note that if you do not live in the United States, we will transfer your information to and store it in, the United States.
The GDPR Angle:
If you are located in the European Economic Area, the United Kingdom, or Switzerland, we will transfer your information to the United States based on the Standard Contractual Clauses. If you wish to receive a copy of these clauses, please contact us through the below contact details.
- Contact Us
ironSource Mobile Ltd.
121 Menachem Begin Rd., Tel Aviv, Israel
Attn: Data Protection Officer
INFORMATION WE COLLECT AND USE. When you view an ad served by our Services on a website or mobile app or prior to that, when such website or mobile app send a request for an ad to us, we may collect information about your device or the ad that you have viewed. Such information may include device type (including manufacturer and model), operating system, IP address, Android advertising identifier and/or IDFA, as applicable, the time-zone and language set by the device, the mobile carrier, the type of the internet connection used by the device, the free space currently available on the device, and other statistical and technical information. Certain versions of our Services may collect location information based on the geo-location of your device, if location services have been enabled for the mobile app or website that uses our Services; We also collect some or all of the following information about the ad you have viewed: the ad type; the ad content; the location of the ad being served and certain post click information in relation to the ad. On occasion, our publishers or developers may also disclose to us information they have separately collected about you including, but not limited to, your gender, and the date on which you signed up to the publisher’s or developer’s services. This information is provided in accordance with their own specific privacy policies and subject to their own applicable legal requirements. We collect and use this information to operate, measure and improve the Services over time, provide you with the requested services, respond to your inquiries, and protect our rights or property.
CORPORATE AFFILIATES. We may use services and/or features developed by our corporate affiliates, when you use these services and/or features information about you may be collected by them. You hereby consent to our collection and use of such information.
INFORMATION YOU PROVIDE US. When you send us emails, contact our technical support or when we offer advertising solutions that include the collection of your email address as part of an advertisement, you are communicating with us voluntarily. You agree to receive electronic communication from us and that all communications that we provide to you electronically satisfy any legal requirement that such communications be in writing. You also agree that we may keep record of your correspondence with us and that we may use any information you provide to us voluntarily to improve the Services or otherwise at our sole discretion. Your correspondence may include personal information should you chose to provide it to us.
SERVICE PROVIDERS. We may employ third parties to provide us with maintenance, analysis, audit, and development services with respect to the Services and in such instances we may provide your information to such third parties. We currently use Amazon Web Services, Inc. servers to process your information. You can read about the measures taken by Amazon Web Services, Inc. to protect the security of their servers and your information at: http://awsmedia.s3.amazonaws.com/pdf/AWS_Security_Whitepaper.pdf. We also use Forensiq’s and PerimeterX’s services with respect to some of our Services to detect and prevent fraud. You can read their privacy policies at: https://forensiq.com/privacy-policy/#service-privacy and https://www.perimeterx.com/privacy.
DATA TRANSFER. We may transfer your information and process it on servers outside your country of residence. If your country of residence is part of the European Union or the European Economic Area, please note that we will transfer your data outside of the European Union or the European Economic Area.
SECURITY. We have implemented reasonable security safeguards designed to protect your personal information. Nevertheless, as the Internet is not a 100% secure environment, we cannot guarantee the security of any information that you transmit to us. There is no guarantee that information on our servers may not be accessed, disclosed, altered, or destroyed by breach of our safeguards.
DELETING YOUR PERSONAL INFORMATION. You have a right to request that we delete any of your personal information in our possession by sending us an email to: firstname.lastname@example.org.
Last updated: March 4, 2018