Legitimate Interest Claim

EFFECTIVE DATE: 7TH OF NOVEMBER 2024

01. INTRODUCTION

‍BIDEASE is a mobile demand-side platform (DSP) committed to respecting and protecting your privacy. This document outlines our legitimate interests for processing personal data in accordance with the latest IAB norms for TCF 2.2 and the General Data Protection Regulation (GDPR) of the European Union.

As a mobile DSP, we process user personal data to facilitate the efficient and effective delivery of targeted advertising, thereby maximizing ad relevance for users and optimizing ad performance for advertisers. This processing supports the legitimate interests of providing a personalized user experience and enabling the economic sustainability of our digital ecosystem, which benefits users, advertisers, and publishers alike. We ensure that this data processing is proportionate and respects user privacy by implementing strict data protection measures and offering transparency and control options to users.

02. PURPOSES FOR PROCESSING PERSONAL DATA

Consent-based purposes

We rely on consent in processing personal data for the following purposes:

  • Purpose 3 (“Create profiles for personalised advertising”): Consent as sole legal basis
  • Purpose 4 (“Use profiles to select personalised advertising”): Consent as sole legal basis

For these purposes, we rely on your explicit consent as the legal basis for processing your personal data.

Legitimate Interest Purposes

In addition to the above, we also process personal data for the following purposes where we rely on legitimate interest as a legal basis:

  • Purpose 2 (“Use limited data to select advertising”): Consent or legitimate interest as a legal basis
  • Purpose 7 (“Measure advertising performance”): Consent or legitimate interest as a legal basis
  • Purpose 9 (“Understand audiences through statistics or combinations of data from different sources”): Consent or legitimate interest as a legal basis
  • Purpose 10 (“Develop and improve services”): Consent or legitimate interest as a legal basis

03. SPECIAL PURPOSE DECLARATION

We have also declared Special Purposes 1, 2 and 3.

  • Special Purpose 1 concerns the measurement and reporting of ad distribution, frequency capping, and fraud detection.
  • Special Purpose 2 concerns the customization of ads and content based on user preferences and interests.
  • Special Purpose 3 is used in order to enable both the entities that use your Personal Data to respect your privacy choices.

04. FEATURE DECLARATION

We have also declared Feature 1 and Feature 3.

  • Feature 1 concerns the ability to match data from various sources to show you the right ad.
  • Feature 3 concerns the ability to identify devices and patterns from devices for the purposes of fraud detection and targeting.

05. LEGITIMATE INTEREST ASSESSMENT

After conducting a comprehensive legitimate interest assessment (LIA), we have determined that the processing of user personal data for targeted advertising through our mobile DSP is necessary and proportionate to achieve our legitimate business objectives. The benefits of providing relevant advertisements and sustaining the digital ecosystem outweigh any potential risks to user privacy. Safeguards are in place to protect user rights and ensure compliance with data protection regulations. Therefore, we conclude that this processing activity aligns with our legitimate interests without unduly impacting user privacy.

06. DATA CATEGORIES

We collect and process the following categories of your data:

  • IP Address;
  • Advertising ID (e.g. GAID/IDFA/etc.);
  • Post-back data shared with Bidease, e.g., ISP, Country, region, city, metro code, Application, Application version (and a limited number of events in it), Information about device: make, model, OS, OS version, language, device type, Connection information, which is considered User Personal Information, only if this post-back data is processed together with the respective User’s Advertising ID.

07. DATA SECURITY, INTEGRITY, AND CONFIDENTIALITY

We are committed to ensuring the security, integrity, and confidentiality of your data. To do this, we have put in place appropriate technical and organizational measures, such as the use of obfuscation techniques to store data and the use of security protocols to protect data from unauthorized access, unauthorized modification, disclosure, or destruction of the data we hold.

08. GDPR COMPLIANCE

BIDEASE adheres to the General Data Protection Regulation (GDPR) of the European Union. Although it was adopted by the European Union, it imposes obligations on organizations everywhere in the world, as long as they target or collect data relating to people in the EU.We have put in place measures to ensure that we comply with all the requirements of the GDPR, including data protection principles, lawfulness of data processing, rights of data subjects, data security, accountability, and transparency.We have also appointed a Data Protection Officer (DPO) to oversee our GDPR compliance and to serve as a point of contact for supervisory authorities and data subjects in case of questions or concerns about our processing of personal data.

09. PRIVACY POLICY

For more information about our processing of personal data, please visit our privacy policy at the following address: Privacy Policy.

Go back home