Privacy Policy for Extreme Reach Ad Serving and Analytics

Extreme Reach, Inc.; Extreme Reach Talent, Inc; Extreme Reach Services Group, LLC; CMC Crew Services, Inc; and Extreme Reach Payroll Solutions, Inc.; Slate and Extreme Reach UK Limited (collectively “Extreme Reach”) are committed to respecting and protecting your privacy.

This Privacy Policy describes how we collect, use, disclose, store and otherwise process information collected through Extreme Reach AdBridge from ads served or tracked on other websites. For information related to other Services, please see the relevant privacy policy link above.

Terms

Beacons and Tags: Beacons and tags enable online advertising companies to collect data and serve advertising on websites by allowing communication between a web browser and an ad server. A beacon (or web beacon) is a small transparent image that is placed on a web page. A tag is a small piece of computer code that is run by a web browser.

Cookie: A cookie is a small text file that is stored in a web browser by a website or ad server. By saving information in a cookie, websites and servers can remember preferences or recognize browsers from one visit to another or from one website to another.

Personally Identifiable Information (PII): Information that can be used on its own or with other information to identify, contact, or locate an individual, or to identify an individual in context.

Information We Collect

Beacons and cookies collect IP addresses, user agent strings, device IDs, and non-PII activity data and ad viewership information.

Extreme Reach does not serve ads in the EU and takes steps to ensure it does not collect data from residents in those countries.

How Collected Data Is Used

Extreme Reach tracks and logs conversion, click and viewing data from the websites on which we serve advertisements. This data is used to track general advertising impression and response activities, so our clients can understand which ad experiences are most relevant and resonant with audiences.

We generate advertising campaign analysis reports for our customers (advertisers and their agencies) using anonymized aggregated non-personally identifiable information.

Our customers (advertisers and their agencies) may request custom, log-level reports, with details at the impression level which may include metrics such as IP address and timestamp.

Information Disclosed to Outside Parties

Extreme Reach may disclose personal information to our third-party vendors and service providers that work with us. We will only share personal information to these vendors and service providers to help us provide a product or service to you or our customers.

We do not otherwise sell, trade, or transfer collected information to outside parties, except as discussed above for the limited purposes of Extreme Reach’s client services. We may also release collected information when we believe release is appropriate to comply with the law, enforce our site policies, or protect ours or others’ rights, property, or safety.

How We Protect Your Information

Security of all information is of the utmost importance for Extreme Reach. We use technical and physical safeguards to protect the security of your personal information from unauthorized disclosure. We also make all attempts to ensure that only necessary people and third parties have access to personal and confidential information.

We require that our third party service providers (1) use confidential information only to perform their obligations, and (2) otherwise maintain the confidentiality of such information. These third party service providers and channel partners are expected to maintain privacy and security protections that are consistent with Extreme Reach’s privacy and information security policies.

Transparency and Choice

Some web browsers (including some mobile web browsers) provide settings that allow you to control or reject cookies or to alert you when a cookie is placed on your computer, tablet or mobile device. Although you are not required to accept cookies, if you block or reject them, you may not have access to all features available through our services. For more information, visit the help page for your web browser.

GDPR

Extreme Reach does not serve ads in the EU and takes steps to ensure it does not collect data from residents in those countries subject to GDPR via our ad serving services.

International Transfers

We receive data from customers wherever they sign in to our application globally. We store and process data in the United States, Canada and the UK, depending on customer location. Data accessed by customers internationally may be transferred by such customers.

Privacy Shield Compliance

Extreme Reach complies with the EU-U.S. Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use, and retention of personal information transferred from the European Union to the United States. Extreme Reach has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification, please visit https://www.privacyshield.gov/.

In compliance with the Privacy Shield Principles, Extreme Reach commits to resolve complaints about our collection or use of your personal information. EU individuals with inquiries or complaints regarding our Privacy Shield policy should first contact Extreme Reach at privacy@extremereach.com.

Extreme Reach has further committed to cooperate with the panel established by the EU data protection authorities (DPAs) with regard to unresolved Privacy Shield complaints concerning human resources data transferred from the EU in the context of the employment relationship.

Extreme Reach is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC) with respect to its use of your data. Under certain conditions, you may have the right to invoke binding arbitration regarding your privacy rights. If Extreme Reach wrongly transfers your private data to third parties, it may be liable to you for damages.

For more information on how we comply with Privacy Shield, see our Privacy Shield Supplemental Policy.

Children

Extreme Reach recognizes the importance of protecting the privacy and safety of children. Our website and services are primarily directed towards the advertising industry and are not directed towards children.

We have taken steps to avoid collection of any information from individuals under 13 years of age. During the onboarding process, web publishers notify Extreme Reach of any COPPA (Children’s Online Privacy Protection Act Compliance) compliant sites or properties, and we flag those so as not to track or store any cookie-level data

Consumers may also take the extra precaution of following the opt-out procedures listed below.

Data Retention

We retain data we collect from our ad serving and measurement services. We may be obligated to retain data for contractual or regulatory reasons.

Changes to This Policy

Extreme Reach reserves the right to change, modify, add or remove portions of this Privacy Policy at any time without notice (except when legally obligated to provide notice). Any changes to this Privacy Policy will become effective when we post the revised version on our website.

Opt-out

Consumers can opt-out to suspend data collection for the browser in question. The consumer’s Extreme Reach tracking cookie will be deleted from the consumer’s browser. An Extreme Reach opt-out cookie will be installed on the browser for the sole purpose of remembering and respecting the consumer’s opt-out status.

Please note that Extreme Reach will continue to record consumer activity around a campaign, such as impressions and clicks, even after opting out. Opting out suspends the storage of an Extreme Reach online browser-associated consumer profile.

Click here to opt-out or see Contact Information section below.

CCPA

If you are a California resident, California law may provide you with additional rights regarding our use of your personal information. To learn more about your California privacy rights, visit https://oag.ca.gov/privacy/privacy-laws. To further define how the California Consumer Privacy Act of 2018 (“CCPA”) impacts CPLLC, we have the following Supplemental Privacy Statement for California Consumers under CCPA.

INTRODUCTION

The California Consumer Privacy Act (“CCPA”) of 2018, as amended, imposes new privacy obligations on certain businesses that collect and use California residents’ personal information. This Supplemental Privacy Policy for California explains rights that California consumers may have under the California Consumer Privacy Act of 2018 (“CCPA”).

When we use the term “personal information” in this supplement, we are using that term as CCPA defines it, which CCPA generally defines “personal information” to mean information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household. However, personal information does not include publicly available, deidentified, or aggregate consumer information (which are all defined in CCPA). Notably, the definition of “personal information” also does not apply to the collection of personal information from job applicants, employees – whether you are our employee or any employee of the entity arranging access to our Services for you, business owners, directors, officers, medical staff, or contractors.

Where we act as a “business” under CCPA (meaning we determine the manner and reasons for why we process your personal information), we may be required to disclose the categories of personal information we collect, the sources where we obtain that information, the purposes for why we collect that information, and who we share that information – all of which depends on the specific Service.

For advertisement viewers, we obtain the following categories of personal information from you or your browser: identifiers, internet or other similar network activity, geolocation data. Information is collected for the purposes described in the How Collected Data Is Used section above. We use and share personal information as described in the Information Disclosed to Outside Parties section above. When we disclose personal information for a business purpose, we enter a contract that describes the purpose and requires the recipient to both keep that personal information confidential and not use it for any purpose except performing the contract.

YOUR CCPA PRIVACY RIGHTS

The CCPA provides California residents (consumers) with specific rights regarding their personal information. If you are a resident of California and are not a job applicant, employee, or employee of another company interacting with us in your job role, you have the right to request what the specific pieces and categories of personal information we collect, use, and disclose. You may also request that we delete your personal information. You may also request the sources of personal information collected about you and the purpose for collecting the personal information.

The CCPA also gives California residents the right to stop the “sale” of their personal information through a mechanism called “Do Not Sell My Personal Information.” To exercise any rights under CCPA, click here.

Only you or a person registered with the California Secretary of State that you authorize to act on your behalf, may make a verifiable consumer request related to your personal information. You may also make a verifiable consumer request on behalf of your minor child. You may only make a verifiable consumer request for access or data portability twice within a 12-month period.

We will not discriminate against you for exercising any of your CCPA rights. Unless permitted by the CCPA, we will not:

  • Deny you goods or services;
  • Charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties;
  • Provide you a different level or quality of goods or services;
  • Suggest that you may receive a different price or rate for goods or services or a different level or quality of goods or services.
Contact Information

You can contact privacy@extremereach.com or 1-800-324-5672 if you have questions about this privacy policy, or for requests related to your privacy rights.

Last updated: July 2020 to include Privacy Shield Compliance information