Privacy Policy

1. Overview

AdsYield Ltd (“AdsYield”, “we”, “us”, or “our”) is a limited company registered in accordance with the laws of The UNITED KINGDOM, with company number 14944635, having its registered address at: 71-75 Shelton Street, Covent Garden, London, WC2H 9JQ, United Kingdom

AdsYield is a programmatic advertising marketplace that provides ad monetization, ad serving, and demand-side bidding services to publishers, advertisers, ad networks, and other businesses in the digital advertising ecosystem (our “Clients”). We operate across web (desktop and mobile), in-app, and connected TV environments.

This Privacy Policy (the “Policy”) explains how AdsYield collects, uses, shares, and protects information from individuals who interact with our website, our advertising technology, and the digital properties of our Clients. It also describes the rights individuals have with respect to their personal data.

AdsYield is committed to protecting personal data and complies with applicable privacy laws, including the EU General Data Protection Regulation (GDPR), the UK General Data Protection Regulation (UK-GDPR), the California Consumer Privacy Act (CCPA), the Brazilian General Data Protection Law (LGPD), the Personal Information Protection Law of China (PIPL), the Virginia Consumer Data Protection Act (VCDPA), the Colorado Privacy Act (CPA), and other applicable data protection regulations across the regions in which our services are used.

Our services are intended for the general public and not for children. We do not knowingly collect personal information from individuals who are considered children under their respective national laws.

This Privacy Policy is an integral part of our Terms of Use and should be read with equal attention.

2. Information We Collect

2.1 Information Collected from End Users in the Course of Providing Services

In the course of providing programmatic advertising services to our Clients, AdsYield does not intentionally collect information that reveals an end user’s real-world identity, such as legal name, postal address, telephone number, or government-issued identifier. Our Clients may use our technology to process certain information that may originate from their websites, mobile applications, or connected TV environments, and such information may be processed through our infrastructure without our direct knowledge or control.

The information we collect about devices, browsers, and applications is pseudonymous, generalized, and is not considered personal information in the majority of jurisdictions. In some jurisdictions, however, certain elements such as Internet Protocol (IP) addresses, mobile advertising identifiers, and other unique device identifiers (for example, in the European Union, the United Kingdom, and Switzerland) may be considered personal information.

Categories of Information Processed

In the course of providing services, we may process:

• Interaction data: domain information, referring URLs, date and time of visits, page views, navigation patterns, advertisements viewed and interactions with them (impressions, clicks, viewability data, ad request and response data).
• Approximate location data: country, region, and city (derived from IP address). We do not collect or use precise GPS, Wi-Fi, or cell-tower location data.
• Device and browser information: device type, operating system and version, browser type and language preferences, screen resolution, network connection type, and IP address.
• Mobile advertising identifiers: Identifier for Advertising (IDFA) on iOS and Google Advertising ID (GAID) on Android, where the user has not opted out of ad personalization at the device level.
• Pseudonymous identifiers: cookie-based identifiers, hashed identifiers, and other resettable identifiers used for advertising and analytics purposes.
• Bid request and bid response data: data exchanged with our supply and demand partners through OpenRTB and similar real-time bidding protocols.
• Inventory and campaign performance data: impression counts, click-through rates, viewability metrics, completion rates, and revenue metrics, used for reporting and optimization.

2.2 Information Collected from Visitors of Our Website

When you visit https://adsyield.com or our subdomains, we may collect:

• Identifying information that you voluntarily provide (such as when you fill out a contact form, request a demo, register an account, or subscribe to a newsletter), including your name, business email address, company name, job title, country, and any message content you submit.
• Automatically collected technical information: browser type, IP address, operating system, referring URL, pages visited, time spent on each page, and similar usage statistics, collected via cookies and similar technologies.
• Account and billing information from registered users of our platform, including company name, billing address, business email, and bank account details necessary for invoicing. We do not accept or store credit card information directly.

3. Technologies We Use

Cookies

Cookies are small text files placed on a user’s device that contain a string of alphanumeric characters, often including a unique identifier. We and our Clients may use cookies to deliver advertising, measure ad performance, prevent fraud, frequency cap, and analyze advertising preferences. We use both session cookies (which expire when the browser is closed) and persistent cookies (which remain on the device for an extended period until they expire or are deleted). For more information about the cookies we use, please see our Cookie Policy.

Tags, Pixels, and Web Beacons

Tags and pixels are small blocks of code or transparent graphic images (typically 1×1 pixel) that we and our Clients may embed in web pages or advertising creatives to track impressions, clicks, conversions, and other interactions. These technologies are often used in combination with cookies to synchronize data and improve the relevance and performance of advertising.

Mobile Advertising Identifiers

Mobile advertising identifiers, such as Identifier for Advertising (IDFA) on iOS and Google Advertising ID (GAID) on Android, are user-resettable identifiers provided by the device operating system. We use these identifiers to deliver and measure advertising in mobile applications, to apply frequency capping, and to determine attribution. End users can reset or limit the use of these identifiers through their device settings at any time.

Software Development Kits (SDKs)

We provide mobile mediation SDKs (the AdsYield Mediation Adapter for Android and iOS) that integrate with publisher applications via Google AdMob and Google Ad Manager mediation. These SDKs collect technical and operational data necessary to deliver advertising, including device type, operating system version, advertising identifier (subject to user permissions), and ad performance metrics.

Server-to-Server Integrations

In addition to client-side technologies, we operate server-to-server integrations through Real-Time Bidding (RTB) protocols, including OpenRTB. Through these integrations, we receive bid requests from supply partners and respond with bid responses to participate in programmatic advertising auctions.

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

4. How We Use the Information We Collect

We use the information described above for the following purposes:

• To deliver advertising on web, in-app, and connected TV environments, including interest-based and contextual advertising.
• To participate in real-time programmatic auctions, evaluate bid opportunities, and submit bid responses on behalf of our advertiser Clients.
• To measure advertising performance and provide reports to our Clients and their advertisers.
• To frequency-cap advertising, in order to avoid showing the same ad to a user too many times.
• To build and refine pseudonymous audience segments for targeting purposes, where permitted by applicable law and user consent.
• To detect, prevent, and investigate fraudulent activity, invalid traffic, and other security threats.
• To improve our services, develop new products and features, and assist our Clients in improving the performance of their campaigns.
• To comply with legal obligations, respond to lawful requests from authorities, and enforce our agreements.

5. Legal Basis for Processing (EEA, UK, and Switzerland)

For end users located in the European Economic Area (EEA), the United Kingdom, and Switzerland, we process personal data on the following legal bases under Article 6 of the GDPR and UK-GDPR:

• Consent (Article 6(1)(a)): where the user has provided valid, informed consent through a Consent Management Platform (CMP) compliant with the IAB Europe Transparency and Consent Framework (TCF) v2.2 or a successor framework, or through other lawful consent mechanisms operated by the publisher or our Clients.
• Legitimate Interests (Article 6(1)(f)): for purposes such as fraud detection, security, analytics, audit logging, and protecting our infrastructure, where such processing does not override the rights and freedoms of the data subject.
• Contractual necessity (Article 6(1)(b)): where processing is necessary to perform a contract with a Client or registered user (for example, providing platform access, delivering reports, or processing invoices).
• Legal obligation (Article 6(1)(c)): where processing is required to comply with applicable law, including tax law, anti-fraud regulations, and lawful requests from authorities.

AdsYield participates in the IAB Europe Transparency and Consent Framework (TCF) v2.2 and respects the consent signals communicated through the TC string and consented_providers field. We restrict the sharing of personal data to vendors for whom there is a valid legal basis as reflected in the TCF signals.

6. How We Share Information

We may share information with the following categories of recipients:

Supply Partners (Publishers)

We share aggregated and pseudonymous performance data with publishers and supply-side platforms to help them understand how users interact with their inventory and the advertisements served on their properties.

Demand Partners (Advertisers and Agencies)

We share aggregated and pseudonymous performance data with advertisers, agencies, demand-side platforms, and trading desks to help them understand the performance of their campaigns, optimize their bidding strategies, and improve targeting.

Service Providers and Infrastructure Partners

We share information with the following service providers as necessary to operate our services:

• Project Limelight Limited (https://limelightdigital.com): provides our advertising platform infrastructure and Real-Time Bidding (RTB) endpoint. All bid request, bid response, and ad performance metrics (impressions, clicks, CPM, ad revenue, ad request and response counts, bundle IDs, application names) are processed and stored on the Limelight platform.
• HOSTINGER UAB (https://www.hostinger.com): provides hosting services for our corporate website (https://adsyield.com) and associated databases. Servers are located in the European Union.
• Netinternet Bilisim Teknolojileri Anonim Sirketi (ilkbyte) (https://www.ilkbyte.com): provides hosting for certain web services and reporting URLs.
• Google LLC and Google Ireland Limited (https://policies.google.com/privacy): we integrate with Google Ad Manager, Google AdMob, and the Google Authorized Buyers program for ad serving, mediation, and demand. Information shared with Google is governed by Google’s terms and privacy policy.

Authorities and Legal Process

We may disclose information to governmental, regulatory, or law enforcement authorities when required by applicable law, regulation, court order, subpoena, or other valid legal process, or where we believe in good faith that disclosure is necessary to protect our rights, property, or safety, or those of our Clients or third parties.

Corporate Transactions

If AdsYield is involved in a merger, acquisition, asset sale, financing, reorganization, bankruptcy, or similar corporate transaction, personal data may be transferred as part of such transaction. We will notify affected users where required by applicable law.

7. Third-Party Ad Technology Vendors and TCF Participation

AdsYield participates in the IAB Europe Transparency and Consent Framework (TCF) v2.2 and adheres to its principles. The TCF provides standardized signals that allow publishers, vendors, and Consent Management Platforms (CMPs) to communicate user consent and other lawful bases for processing personal data.

We are registered in the TCF Global Vendor List (GVL) under Vendor ID 1199. Our entry can be found at https://iabeurope.eu/vendor-list-tcf/.

For end users located in the EEA, the UK, and Switzerland, AdsYield and our partners only share personal data with third-party vendors for whom a valid legal basis is reflected in the TCF TC string or in the consented_providers field. We restrict data sharing to the legal bases and purposes signaled through these mechanisms.

8. Interest-Based Advertising and User Choices

AdsYield engages in interest-based advertising (IBA), which involves delivering advertisements that may be relevant to a user’s interests based on their interaction with websites, mobile applications, and connected TV environments. We provide several mechanisms for users to control or opt out of interest-based advertising:

Industry Self-Regulatory Programs

AdsYield supports industry self-regulatory frameworks for online behavioral advertising. End users may opt out of interest-based advertising by participating ad technology vendors through:

Network Advertising Initiative (NAI) (United States and Canada): https://www.networkadvertising.org/choices. AdsYield is currently in the process of evaluating NAI membership; in the interim, users may exercise opt-out rights through the mechanisms described in this Policy and through the industry tools listed below.

European Interactive Digital Advertising Alliance (EDAA) – Your Online Choices (European Economic Area, United Kingdom, and Switzerland): https://www.youronlinechoices.com.

Digital Advertising Alliance (DAA) WebChoices and AppChoices (United States): https://www.aboutads.info/choices.

Mobile Device Settings

On mobile devices, users may opt out of interest-based advertising or reset their advertising identifier through their device settings:

• On iOS: Settings > Privacy & Security > Tracking > toggle off Allow Apps to Request to Track. Or, Settings > Privacy & Security > Apple Advertising > toggle off Personalized Ads.
• On Android: Settings > Google > Ads > Delete advertising ID or Opt out of Ads Personalization.

Direct Opt-Out Request to AdsYield

End users may also submit a direct opt-out request to AdsYield by completing the form available at https://adsyield.com/ccpa-resource/ or by emailing dpo@adsyield.com

9. Data Retention

AdsYield retains information for the period necessary to fulfill the purposes described in this Privacy Policy, subject to the following retention principles:

• Pseudonymous advertising data (such as bid request and response data, impression and click events, and pseudonymous identifiers): retained for no longer than eighteen (18) months from the date of collection, in accordance with the data retention requirements of the Google Authorized Buyers Program and other industry standards.
• Aggregated and de-identified data: may be retained for a longer period for analytics, reporting, fraud prevention, and service improvement purposes, provided that such data does not enable the identification of any individual.
• Account and contractual data (such as Client account information, billing records, and contracts): retained for the duration of the contractual relationship and for the period required by applicable tax, accounting, and statutory laws (typically up to seven years in the UK and EU).
• Website visitor data: retained for up to twelve (12) months for analytics purposes, unless a longer retention period is required by law or to enforce our agreements.

After the applicable retention period, AdsYield will delete, anonymize, or aggregate the relevant data, subject to legal obligations and the resolution of any disputes or enforcement actions.

10. Data Security

AdsYield implements appropriate technical and organizational measures to protect the information we process against loss, misuse, unauthorized access, disclosure, alteration, or destruction. These measures include encryption in transit and at rest where appropriate, access controls and authentication mechanisms, audit logging, regular security reviews, and contractual safeguards with our service providers and partners.

Despite our efforts, no system can be guaranteed to be one hundred percent secure. To the fullest extent permitted by applicable law, AdsYield does not accept liability for unauthorized disclosure caused by events beyond our reasonable control. In the event of a personal data breach affecting end users in the EEA, UK, or other jurisdictions with notification requirements, we will notify the relevant supervisory authority and, where required, the affected individuals within the applicable legal time frames.

11. International Data Transfers

AdsYield operates globally. Personal data we process may be transferred to, and stored in, countries outside the user’s country of residence, including the United Kingdom, the European Economic Area, the United States, and other jurisdictions where our Clients, partners, or service providers operate. Some of these jurisdictions may not provide the same level of data protection as the user’s country of residence.

Where personal data is transferred from the EEA, the UK, or Switzerland to a country that has not been deemed to provide an adequate level of data protection, we rely on appropriate safeguards as required by GDPR and UK-GDPR, including but not limited to the European Commission’s Standard Contractual Clauses (SCCs), the UK International Data Transfer Addendum, and supplementary measures where appropriate.

12. Privacy of Children

Our services are not directed to children, and we do not knowingly collect, maintain, or use personal information from children under the age of thirteen (13), or under the age of sixteen (16) where required by applicable law (such as in certain EU member states). If a parent or guardian becomes aware that their child has provided personal information without their consent, they may contact us at dpo@adsyield.com, and we will take prompt steps to delete such information.

13. Data Subject Rights

13.1 Rights of Data Subjects in the European Economic Area (EEA)

If you are located in the EEA, you have the following rights under the GDPR with respect to your personal data:

• Right of access: the right to obtain confirmation of whether we process personal data about you, and access to such data.
• Right to rectification: the right to request that we correct or update inaccurate or incomplete personal data.
• Right to erasure (“right to be forgotten”): the right to request that we delete your personal data, subject to certain conditions.
• Right to restrict processing: the right to request that we temporarily or permanently limit the processing of your personal data.
• Right to data portability: the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit such data to another controller.
• Right to object: the right to object to the processing of your personal data, including for direct marketing purposes.
• Right not to be subject to automated decision-making: the right not to be subject to decisions based solely on automated processing, including profiling, that produce legal or similarly significant effects.
• Right to withdraw consent: where processing is based on consent, you have the right to withdraw your consent at any time.
• Right to lodge a complaint: you have the right to lodge a complaint with your local data protection authority.

To exercise any of these rights, please contact our Data Protection Officer at dpo@adsyield.com. We will respond to your request within thirty (30) days of receipt, and where possible within forty-eight (48) working hours.

13.2 Rights of Residents of the United Kingdom

Following the United Kingdom’s withdrawal from the European Union, the UK is governed by the UK General Data Protection Regulation (UK-GDPR). Residents of the UK have the same rights as residents of the EEA, including: the right to be informed; the right of access; the right to rectification; the right to erasure; the right to restrict processing; the right to data portability; the right to object to processing; and rights related to automated decision-making and profiling. To exercise these rights, please contact dpo@adsyield.com. UK residents may also lodge a complaint with the Information Commissioner’s Office (ICO) at https://ico.org.uk/.

13.3 Rights of Residents of Brazil (LGPD)

AdsYield complies with the principles and requirements of the Lei Geral de Proteção de Dados Pessoais (LGPD). Residents of Brazil have the following rights:

• Confirmation: of the existence of processing of their personal data.
• Access: to the data we process about them.
• Rectification: of incomplete, inaccurate, or outdated data.
• Anonymization, blocking, or deletion: of unnecessary, excessive, or noncompliant data.
• Data portability: to other service providers.
• Deletion: of personal data processed on the basis of consent.
• Information: about sub-processors and third parties with whom we share personal data.
• Revocation: of consent, where applicable.
• Right to lodge a complaint with the Brazilian Data Protection Authority (ANPD).
• Right to request review of decisions made solely on the basis of automated processing.

To exercise these rights, please contact dpo@adsyield.com.

13.4 Rights of Residents of China (PIPL)

AdsYield complies with the principles of the Personal Information Protection Law (PIPL), including accuracy, accountability, security, purpose limitation, collection limitation, openness and transparency, and lawfulness. Residents of China have the right to know, decide, refuse, and limit the handling of their personal information; to access and copy their personal information; to correct or complete inaccurate information; to request explanations of our processing rules; to request deletion under specified conditions; and to request the transfer of personal information to another personal information handler. To exercise these rights, please contact dpo@adsyield.com.

13.5 Rights of Residents of California (CCPA / CPRA)

Residents of California have the following rights under the California Consumer Privacy Act, as amended by the California Privacy Rights Act:

• Right to know: what personal information we have collected, used, disclosed, or sold about them.
• Right to delete: personal information we have collected from them, subject to certain exceptions.
• Right to correct: inaccurate personal information.
• Right to opt out of the sale or sharing of personal information.
• Right to limit the use of sensitive personal information.
• Right to non-discrimination for exercising any of these rights.

California residents may submit a verifiable request through our dedicated form at https://adsyield.com/ccpa-resource/ or by emailing dpo@adsyield.com. We will respond within forty-five (45) days of receipt.

13.6 Rights of Residents of Virginia (VCDPA)

Residents of Virginia have rights under the Virginia Consumer Data Protection Act, including the right to access their personal data, correct inaccuracies, delete personal data, opt out of the sale of personal data and targeted advertising, port their data, and appeal decisions. To exercise these rights, please contact dpo@adsyield.com.

13.7 Rights of Residents of Colorado (CPA)

Residents of Colorado have rights under the Colorado Privacy Act, including the right to access, correct, delete, port their personal data, and opt out of targeted advertising, the sale of personal data, and certain types of profiling. To exercise these rights, please contact dpo@adsyield.com.

13.8 Other Jurisdictions

If you are a resident of another jurisdiction with applicable data protection laws (including Switzerland, Australia, Singapore, Japan, South Korea, and other regions), you may have similar rights. Please contact dpo@adsyield.com to exercise any rights you may have under your local law.

14. Data Protection Officer and Contact

AdsYield has appointed a Data Protection Officer responsible for overseeing our data protection compliance. You may contact our DPO with any questions or concerns regarding this Privacy Policy or our data protection practices:

Email: dpo@adsyield.com

Postal Address: AdsYield Ltd, Attn: Data Protection Officer, Bugra Nalci, 71-75 shelton street Covent garden, London, WC2H 9JQ

15. Changes to This Privacy Policy

AdsYield may update this Privacy Policy from time to time to reflect changes in our practices, applicable law, or industry standards. We will post the updated Policy on this page with a revised “Last updated” date. If we make material changes, we will provide additional notice as required by applicable law. Continued use of our services after the effective date of the updated Policy constitutes acceptance of the changes. We encourage you to review this Policy periodically.

16. Contact Us

Questions, comments, or complaints regarding this Privacy Policy or our data protection practices may be directed to:

AdsYield Ltd

71-75 shelton street Covent garden, London, WC2H 9JQ

Email: dpo@adsyield.com (Data Protection)

General inquiries: team@adsyield.com

If you are a resident of the EEA or the UK and we are unable to resolve your concern, you have the right to lodge a complaint with your local data protection authority.