Data Protection

Transparent data practices & Google Ads compliance

This page explains exactly what we collect, how we use and store it, and the safeguards in place to meet Google Ads policies and regulations such as GDPR. We received confirmation that “Your application for an API token has been approved”, which means Google granted official Google Ads API access.

Google Partner Badge

Click logs

Truncated IP, user-agent, timestamp, landing URL, gclid or UTM markers.

Anti-fraud events

Frequency checks, device behavior, suspicious referrers and automation signals.

Account metadata

Business name, email, API scopes granted by each customer.

Data sources & consent

We rely on three primary inputs: (1) the landing-page tracking script, (2) read-only Google Ads API scopes, and (3) support logs submitted by your team. The script records technical events only and honors your site’s consent/cookie banner. API scopes activate after the DPA is signed and can be revoked anytime inside the dashboard.

  • IP addresses are truncated (e.g., 203.113.xxx.0) before storage to avoid personal identification.
  • Campaign data retrieved via API is limited to IDs, names, budgets, and performance metrics.
  • Support data (tickets, email) lives outside the analytics pipeline and is used only to fulfill the request.

How we use data

  • Data is used solely to detect abnormal clicks, optimize spend, and report back to the account owner.
  • No selling, renting, or reusing data for retargeting or third-party marketing.
  • API permissions can be revoked at any time via the dashboard or by emailing support.
  • End users are informed through your privacy policy and on-site consent banner.

Retention & deletion timeline

Days 0 - 30

Full-fidelity records available for real-time investigations.

Days 31 - 180

Anonymized records kept for trend analysis only.

Days 181 - 540

Aggregated statistics (non-identifiable) before automatic purge from active systems.

Need an earlier purge? Email privacy@affiliatedisplaynetwork.com and we will erase the records; encrypted backups overwrite within 30 days.

Security & certifications

The platform runs on AWS with private VPC networking, AES-256 encrypted Firehose/S3 pipelines, and role-based access enforced through SSO + MFA. Audit logs persist for 400 days. We are finalizing SOC 2 Type II and maintain ISO/IEC 27001 controls for our information security management system.

Advertisers can request security reports (pentest summaries, architecture docs) via security@affiliatedisplaynetwork.com.

User rights

  • Request a copy of click data associated with your website.
  • Ask us to correct or delete inaccurate information.
  • Object to processing that falls outside the scope of the service.
  • File complaints with your local data protection authority.

Integration guide for Google Ads

  1. Embed the measurement script: Install the `<script>` snippet directly or via Google Tag Manager. The script only logs events and never alters the DOM, aligning with Google Ads Malware policy.
  2. Connect Google Ads API: Use OAuth plus the Google Ads API to read campaign and click performance. We comply with https://developers.google.com/google-ads/api/docs/policy.
  3. Sync exclusion lists: Leverage Google Ads scripts to block suspicious IPs following https://support.google.com/google-ads/answer/2375417. Only advertiser-approved IPs are pushed.

Every step follows the Google Ads rules for data and scripts: Data collection policy.

Data request workflow & supervisory contacts

  1. Download the request template inside the dashboard or email us with the subject “Data Subject Request”.
  2. Include the website/campaign details plus proof of ownership.
  3. Send to dpo@affiliatedisplaynetwork.com. We respond within five business days.
  4. If you disagree with the outcome, escalate to the supervisory authority listed below.

Primary authority: Montana Department of Justice – Office of Consumer Protection, 2225 11th Ave, Helena, MT 59601, USA. EU/EEA representative under GDPR Article 27: EU Privacy Counsel GmbH, Europaplatz 2/1, 4020 Linz, Austria.

Questions & contact

Data protection office: dpo@affiliatedisplaynetwork.com

Need quick support? Log in to open a ticket or email support@affiliatedisplaynetwork.com.