Last Updated 30 November, 2009
1. Our Services
3. Information Provided to Us by You
BY NAVIGATING TO OUR WEBSITE ON OR AFTER THE DATE THAT THIS POLICY WAS LAST UPDATED, YOU CONSENT TO THE COLLECTION, USE AND DISCLOSURE OF YOUR SESSION DATA AS DESCRIBED IN THIS POLICY. BY REGISTERING AS A MEMBER, SIGNING A WRITTEN AGREEMENT WITH US AS A MANAGED ADVERTISER OR SUBMITTING TO US EMAIL COMMUNICATIONS ON OR AFTER THE DATE OF THIS POLICY, YOU CONSENT TO THE COLLECTION, USE AND DISCLOSURE OF YOUR PERSONAL INFORMATION, SESSION DATA AND ACCOUNT DATA AS DESCRIBED IN THIS POLICY. IF YOU DO NOT CONSENT TO HAVE YOUR INFORMATION USED AS DESCRIBED IN THIS POLICY, YOU MUST DISCONTINUE USE OF OUR WEBSITE AND OUR SERVICES IMMEDIATELY.
4. Types of Information
Personal Information is information that can be associated with a particular person or entity. Personal Information does not include IP addresses or information that has been anonymized so that it cannot identify a particular user using reasonable efforts. Examples of Personal Information are:
- telephone number
- email address
- credit card number (Advertisers only)
- Paypal email address or similar payment systems personal information
- Tax ID or Social Security Number (Publishers only)
We collect Personal Information from Members so that we can transact business with Members and report Publisher payments to the local tax authorities. We also collect Personal Information from electronic mail sent to us (“Email Communications”), so that we can substantiate and follow up upon the information contained in the Email Communications. Email Communications can be sent by either Members or Surfers, and include the following types of communications:
- Copyright infringement notifications under the Digital Millennium Copyright Act (DMCA) or other applicable law (“Take-Down Notices”)
- Notices of violations of our Subscriber Agreement or our acceptable use policies (“Violation Notices”)
- Requests for assistance from our support department
We do not collect Personal Information from Viewers. We do not merge Personal Information that we derive from Email Communications with other Personal Information. We do not merge Personal Information that we collect from Members with Non-Personal Information that we collect from Viewers or Surfers. We do merge Personal Information that we collect from Members with Non-Personal Information that we collect from Members.
Non-Personal Information is any information other than Personal Information. We collect three types of Non-Personal Information from users:
Session Data is information we collect from Surfers and Members to assist them with navigation on Our Website and to allow us to make improvements to Our Website.
Account Data is information we collect from Members that is not Personal Information or Session Data. This information is necessary for us to transact business with Members, as well as to prevent and detect fraud. While Account Data is not Personal Information, it is associated with a particular Member account and may therefore be merged with the Personal Information or Session Data of that Member. Examples of Account Data that we collect from Members are:
- Bid, budget, reserve price and targeting information we receive from Advertisers through the Interface
- Ad Zone and Ad approval information we receive from Publishers through the Interface
- The date, time and IP address of a Member’s initial registration and any subsequent login to the Interface
- Certain activities of a Member using the Interface, such as the creation or deletion of a Publisher’s Ad Zone or the adjustment to an Advertiser’s budget or bid
Viewer Data is information we collect about Viewers. We use Viewer Data to optimize the delivery of Ads to Ad Zones so that, for example, we are less likely to deliver an Ad targeted toward men to a Viewer we believe is a woman, and we are less likely to deliver the same Ad repeatedly to the same Viewer. We also use some Viewer Data for fraud prevention and detection and to document transactions for invoicing and commission purposes. Examples of Viewer Data that we collect from Viewers are:
- The type and version of browser and operating system used by the Viewer (“System Info”)
- The approximate geographic location of the Viewer based on their IP address (“Geographic Info”)
- The most recent Publisher Sites to which the Viewer has navigated
- Any past Ads that the Viewer has viewed or on which the Viewer has clicked
- Any past conversions from Ads by the Viewer of which we are aware
- Any other inferences we make regarding a Viewer (e.g., is likely to be a man) or their preferences (e.g., appears to like gardening)
5. Information about Children
We do not intentionally collect Personal information or Non-Personal Information from children under 13 years of age. However, if a child under 13 years of age navigates to Our Website or to one of our Ad Zones or Pixels on a Publisher Site, we may store Session Data and/or Viewer Data on their browser as we would with any other Surfer or Viewer. If you have reason to believe that a child under 13 years of age has provided us with Personal Information, please contact us.
6. Collecting Information
Personal Information. We collect Personal Information from Members through the online registration process, though sometimes this information is given to us offline and entered by us online on the Member’s behalf. We require Members to keep this information updated as they continue to use our services. We also collect Personal Information from Members and Surfers from Email Communications that they send to us.
Session Data. We collect Session Data from Surfers when they navigate to BuxUp.com by setting Cookies on their browser. We collect Session Data from Members when they log into our Interface by setting Cookies on their browser and by recording Session Data in our action logs.
Account Data. We collect Account Data from Members through the Interface as they register, log in or out, or make decisions on the Interface with respect to their Ads or Ad Zones. Some of this Account Data is collected when a Member enters information into the Interface in response to a query, while other Account Data is recorded by us in our action logs.
Viewer Data. We collect System Info from Viewers using information transmitted by their browser and Geographic Info from Viewers from information associated with the Viewer’s IP address. We collect other Viewer Data from Cookies and Pixels. If you are a Viewer, whenever you view an Ad Zone that is part of the Publisher Network, we will set or update one or more Cookies on your browser. Each time you view an Ad Zone, click on an Ad or take any action with a vendor that resulted from an Ad (such as completing a lead form or purchasing a product or service) we may update those Cookies and we may update a Log File associated with that Ad Zone display to record your interests or preferences. We also contract with third party data providers to purchase Viewer Data from them. This data is referred to below as Third Party Viewer Data. In order to match Third Party Viewer Data with you, we may allow third parties to drop our Pixel on Web pages to which you navigate so that we can update the Cookie we put on your browser.
7. Cookies, Pixels and Log Files
- You may set your browser to disable or delete all third-party Cookies. The mechanics to do this vary by browser and you should check your browser’s help file to learn how to take either action. If you disable or delete Cookies at the browser level, the features and functionality of many websites may be affected and you may see the same content and Ads repeatedly on some websites. For example, if you were a Member and you elected to disable Cookies, you would not be able to use any of the authenticated services we provide on Our Website.
- You may set your browser to prompt you each time a website wants to set a Cookie and ask for your permission. By refusing permission to any given Cookie, you will prevent only a single Cookie from being created. Note, however, that because of the number of Cookies set by some websites, choosing to review Cookies on an individual basis may prove to be burdensome and may interfere with the features and functionality of some websites, including Our Website.
- You may
elect to use our Opt-Out tool. If you elect to use this tool, we will delete
most Viewer Data (such as your estimated age, gender, interests and preferences)
from your browser and we will set a new “Opt-Out
Cookie” on your browser that will instruct our system not to
store any of this data in the future and not to use any remaining Viewer Data we
have (such as information regarding Ads you have previously seen) to target Ads
to you in the future. Contact us to set an Opt-Out Cookie on your
browser. Please note:
- Because the Opt-Out Cookie is a Cookie-based solution, it will not function if you disable all Cookies at the browser level. Likewise, if you set an Opt-Out Cookie and then later delete all Cookies from your browser, you will also delete the Opt-Out Cookie and we will begin to collect Viewer Data from you again until you set a new Opt-Out Cookie.
- Setting an Opt-Out Cookie will not block us from setting Cookies on your browser that collect Session Data and Viewer Data that is not used to target Ads to you.
- An Opt-Out Cookie is specific to one browser. If you set an Opt-Out Cookie on one browser and then use another browser from the same computer, the Opt-Out Cookie will not stop the second browser from accepting Cookies from us that collect Viewer Data.
A Pixel (also known as a web beacon) is an image on a website page that may not be visible to the naked eye. We use Pixels to convey Viewer Data to your browser or to our Log Files. Viewing a screen with a Pixel may instruct your browser to update a Cookie associated with that Pixel. For example, if we wanted to record whether a product was purchased using your browser, we would place a Pixel on the Advertiser’s site so that when the purchase was completed, the Cookie on your browser would be updated to reflect the purchase. At the same time, we would record the purchase in a Log File. Most browsers are set up initially to accept Pixels. There are two ways to prevent Pixels from recording information about your web activities:
- You may set your browser controls to reject all third party image tags. The mechanics to do this vary by browser and you should check your browser’s help file to learn how to take this action. Please note, however, that rejecting all third party image tags may interfere with the features and functionality of many websites, including Our Website.
- Because Pixels are used to update Cookies on your browser, you may also instruct your browser to disable or delete Cookies or to ask permission before a Cookie is accepted, or you may set an Opt-Out Cookie on your browser. These actions would render ineffective Pixels that record Viewer Data in your Cookies and would delete the Visitor ID from your browser, rendering anonymous Log File information recorded from other Pixels.
A Log File is a temporary file we create and store on our system to store everything we know about the display of an Ad Zone. A Viewer’s Visitor ID is noted in the Log File. You cannot elect to disable Log Files, though if you delete Cookies or set an Opt-Out Cookie, you will delete the Visitor ID from your browser and there would be no way to tie a particular Log File back to your browser. Please note that disabling Cookies or Pixels on your browser or setting an Opt-Out Cookie does not mean you will no longer receive online Ads from us. It means that we will no longer be able to deliver Ads to you that are tailored to your preferences or to limit the number of times you see the same Ad.
8. Change to Collected Information
Personal Information. Members can see the Personal Information we collect from them by logging into the Interface BuxUp.com personal account, except for certain credit card information that is not stored or that is masked for security reasons and Personal Information derived from Email Communications. Members can change the Personal Information we collect from them through the Interface (except for Personal information derived from Email Communications), though for auditing and fraud detection purposes, we continue to store Personal Information previously entered by a Member even after it is modified or deleted by the Member. Members and Surfers cannot see or change the Personal information we derive from Email Communications.
Account Data. Members can see and change Account Data that was entered by the Members into the Interface, such as bid and budget information we collect from Advertisers and Ad Zone and Ad approval information we collect from Publishers, by logging into the Interface at BuxUp.com personal account. Members cannot see or change Account Data we record in our action logs on behalf of Members, such as the date and time they last logged into the Interface or their most recent activities using the Interface.
Session Data. Surfers can see Session Data we collect from them using the tools available in their browser to view Cookies and can delete this Session Data by deleting the associated Cookies from their browser. Similarly, Members can see Session Data we collect from them that is stored on their browser using the tools available in their browser to view Cookies and can delete this Session Data by deleting the associated Cookies from their browser. Members cannot see, modify or delete Session Data we collect from them that is stored on our system. Surfers cannot see or change the Session Data we send to third parties to assist us in designing and improving Our Website.
Viewer Data. Viewers can see the Viewer Data we store in Cookies by using the tools available in their browser to view Cookies. Viewers cannot change this Viewer Data, but a Viewer can elect to delete Cookies, to disable cookies, to limit Cookies to those that are pre-approved or to block Cookies that record Viewer Data by setting an Opt-Out Cookie. Viewers cannot see or change the Viewer Data we store in Log Files, though if you delete Cookies or set an Opt-Out Cookie, you will delete the Visitor ID from your browser and there would be no way to tie a particular Log File back to your browser.
9. Storing Information
Personal Information and Account Data. We store all Personal Information and Account Data in our data centers, except for Personal information derived from Email Communications. We keep all Personal Information and Account Data we collect from Members indefinitely, though we reserve the right to delete such information at any time at our convenience. Personal Information derived from Email Communications is stored by a third party service provider on their network for up to three years after it is sent to us, except for Take-Down Notices and Violation Notices which we may retain indefinitely.
Session Data. We store Session Data in Cookies on a Surfer’s or Member’s browser and/or in our data centers. Session Data stored in Cookies is retained until it is overwritten at a later time with new Session Data or until a Surfer or Member deletes the Cookies from his or her browser. Session Data stored in our data centers is retained indefinitely, though we reserve the right to delete such information at any time at our convenience. The third party we use to assist us with website design may keep Session Data it collects indefinitely, but our only access to this data is on an aggregate basis (e.g., 200 users clicked on a specific link on Our Website in January).
Viewer Data. We store Viewer Data about Viewers on Cookies in a Viewer’s browser. Currently, we retain this Viewer Data until we record more recent or relevant information over that data. We also store Viewer Data in our Log Files which are maintained in our data centers. Log Files are currently retained for two weeks, except for one day of Log Files each year that is retained for auditing purposes for seven years. At the request of a Third Party, we will delete any Third Party Viewer Data from a Viewer’s Cookies when the Viewer next encounters one of our Ad Zones one year after the Third Party Data was recorded on the Cookies.
10. Protection of Information
We maintain commercially reasonable security protections to protect information we collect from loss, misuse and unauthorized access, disclosure, alteration or destruction. For example:
- Information we collect is not publicly accessible from Our Website.
- We use a multi-level, password protected security system to control access to information stored about users. In particular, we use Secure Socket Layer (SSL) encryption to protect Personal Information we collect from Members through the Interface, though a Member can opt out of using SSL if they choose.
- We maintain strict physical security of our properties and facilities and only provide access to authorized personnel.
- We are certified as compliant with the Payment Card Industry (PCI) data security standard pertaining to the security of credit card information.
- We restrict access to personal information to employees, contractors and agents who need to know that information in order to operate, develop or improve our services. BuxUp.com employees are bound by confidentiality obligations to the company and may be subject to discipline, including termination, if they fail to meet these obligations.
While we try our best to safeguard and protect all information we collect, please be advised that no data transmission over the Internet can be guaranteed to be completely secure. Furthermore, Session Data and Viewer Data (other than in Log Files) are stored on a user’s browser, not in our network, and security measures for such information are the responsibility of the user operating the browser.
11. Sharing the Information
Personal Information and Account Data.
- We may share Personal Information with service providers who send out targeted emails on our behalf to allow us to update you about improvements to Our Website (“Targeted Emails”). These service providers are not authorized to use Personal information to market their own products or services or to market the products or services of any third party that is not controlled by, controlling or under common control with BuxUp.com (“Affiliate”).
- We may share Personal Information and Account Data with service providers who assist us with our business operations, such as credit card verification and processing, tax id number verification, collections and fraud prevention.
- If you are a Publisher, we may share your Ad Zone information with Advertisers to allow us to serve Ads.
- If you are an Advertiser, we may share your creative with Publishers to facilitate Ad approval and delivery of the Ad to the appropriate Ad Zones.
- We may share Personal Information from Take-Down Notices and Violation Notices with any third party alleged in the notices to be violating applicable law, our policies or our Subscriber agreement.
- We may share Viewer Data with real-time bidders, to assist them in optimizing their bid for a specific Ad Zone.
- We may share Viewer Data (on an aggregate basis) with third-party operators of decision engines, to assist them in building better models for Ad optimization.
We may share Session Data with third parties who are hired to help us improve the design of Our Website.
In addition to the foregoing, we may share any information we collect from you with:
- Any Affiliate of BuxUp.com.
- Law enforcement,
government officials or other third parties,
- To respond to a subpoena, court order or other legal procedure
- To comply with the law
- To prevent physical harm or financial loss, report suspected illegal activity or investigate violations of our Subscriber Agreement
- Other third parties, with your consent or at your direction.
11. Prevention of Information Sharing with Third Parties
If you wish to opt out of receiving Targeted Emails, you may click the link provided at the bottom of any Targeted Email to unsubscribe. You may also request that we edit out your name and contact information from forwarded Violation Notices and we will honour your request. For legal compliance reasons, however, we will forward any Take-Down Notice we receive to the third party whose conduct is the subject of the Take-Down Notice without any deletions. Except as described in this section, you may not restrict us from sharing information that we collect from you with the third parties described above.
12. Third Parties Obligations
13. Disclosure of Information in other Jurisdictions
WE PROCESS INFORMATION ON SERVERS LOCATED
BOTH IN THE UNITED STATES AND IN EUROPE . DEPENDING ON THE LOCATION OF A MEMBER,
WE MAY TRANSFER AND/OR PROCESS PERSONAL INFORMATION AND ACCOUNT DATA OUTSIDE THE
COUNTRY OF THAT MEMBER. SIMILARLY, DEPENDING ON THE LOCATION OF A VIEWER AND THE
NATURE OF THE PUBLISHER SITE TO WHICH THE VIEWER NAVIGATES, WE MAY TRANSFER AND/OR
PROCESS TARGETING DATA OUTSIDE THE COUNTRY OF THAT VIEWER. BY PROVIDING INFORMATION
TO US, YOU ACKNOWLEDGE THAT WE OPERATE IN THE UNITED STATES AND YOU AGREE TO PERMIT
US TO COLLECT, TRANSMIT AND USE YOUR PERSONAL INFORMATION AND NON-PERSONAL INFORMATION
ANYWHERE THAT WE DEEM NECESSARY FOR THE PERFORMANCE OF OUR SERVICES - INCLUDING
ACROSS INTERNATIONAL BOUNDARIES AND IN THE UNITED STATES - AND THAT SUCH USE SHALL
BE SUBJECT TO THE TERMS AND CONDITIONS STATED IN THIS POLICY AND OUR SUBSCRIBER
AGREEMENT. AS A RESULT, IN THE CASE OF THE UNITED STATES, WE MAY BE REQUIRED TO
DISCLOSE YOUR PERSONAL INFORMATION TO GOVERNMENT AUTHORITIES, REGULATORS, OR LAW
ENFORCEMENT IN ACCORDANCE WITH APPLICABLE LAWS, WHICH MAY INCLUDE THE
14. Effectiveness of the Policy
If you are a Surfer or a Viewer, this Policy is effective immediately. If you do not consent to the collection, use and disclosure of your Session Data and Email Communications as described in this Policy, you must discontinue use of Our Website and refrain from sending us Email Communications. If you do not consent to have your Viewer Data collected, used or disclosed as described in this Policy, you may disable Cookies or Pixels on your browser, refuse our Cookies or set an Opt-Out Cookie, as described above. You may delete the Session Data and the Targeting we have previously collected by deleting your existing Cookies, as described above.
If you become a Member on or after November 20, 2009, this Policy is effective immediately. Acceptance of this Policy is required by our Subscriber Agreement. If we or you terminate your relationship with us after November 20, 2009, we will continue to follow this Policy with respect to information collected prior to your termination.
15. Policy Changes
16. Further information
Please feel free to contact us if you have questions, comments or concerns about this Policy.