Privacy Policy for Equate Media
At Equate Media, we understand that privacy is of utmost importance to our clients and their customers. This Privacy Policy outlines how we collect, use, disclose, and protect personal information in compliance with India’s Information Technology Act, 2000, global standards (such as GDPR), and Google’s privacy guidelines. This policy applies to our global clients and their customers, collectively referred to as “You” or “Your” and “Your Customers.”
We reserve the right to update this Privacy Policy periodically. Changes will be communicated via the primary email address provided in Your account and/or through a prominent notice on our website. Your continued use of our services after these changes will signify Your acceptance of the updated policy. If You disagree with any modifications, please discontinue the use of our services.
Through this privacy statement we intend to provide a synopsis of our privacy practices regarding Personal Information that we collect and process about you through various sources. Although the primary focus of this statement is on the data collected and processed through our websites, that link to this Privacy Statement, which include www.equatedigitalmedia.com and our tracking domain taptrak.live, our adherence to the below mentioned principles remain across the organization towards personal data processing.
If You or Your Customers have questions regarding this policy, You can contact us at:
[email protected] .
1. Types of Information We Collect
We collect two main types of information: Personally Identifiable Information (PII) and Aggregate Information.
- Personally Identifiable Information (PII): This includes details such as first and last names, company names, email addresses, postal addresses, phone numbers, and other personal details. PII is collected when You or Your Customers interact with our services, such as visiting our website, filling out forms, or clicking on advertisements.
- Aggregate Information: This refers to information that does not identify an individual, such as browser types, IP addresses, demographic data, and usage patterns. This data helps us improve our services without specifically identifying You or Your Customers.
2. How We Collect and Use Information
We collect information about You or Your Customers when You visit our site, interact with ads, or engage with our services. For example, PII may be collected during phone calls initiated by Your Customers through phone numbers listed on websites or advertisements created with our services. These calls may be monitored or recorded, but only if You have opted for our call tracking services.
Usage of Information:
- We use PII to enhance Your marketing campaigns, analyze usage, and improve Your experience with our services.
- Aggregate Information is used to track overall usage, monitor server performance, and gather demographic data for better service delivery.
Opt-Out and Data Deletion:
You or Your Customers have the right to request deletion of PII at any time. We will ensure such data is deleted within a reasonable period following receipt of the request. To opt out of data collection or request deletion, please contact us at [email protected]
3. Cookies
We use cookies to collect information about You or Your Customers. Cookies are small text files that store information such as IP addresses, browser types, and location data. These files help us personalize services and track site usage to enhance Your experience.
How We Use Cookies:
- Monitor website traffic and usage patterns.
- Store advertising preferences for better ad targeting.
- Personalize content and services.
You can adjust Your browser settings to reject cookies, but this may affect the performance of certain features on our website.
4. Sharing and Release of Information
We do not sell, trade, or rent PII to third parties. However, we may share information with our service providers, affiliates, and partners to deliver products and services. This sharing is done under strict contractual agreements ensuring the privacy and security of the data.
In compliance with applicable laws, we may be required to share PII with government authorities or in response to legal processes such as subpoenas or court orders.
Additionally, we may share Aggregate Information (such as traffic patterns) with third parties for marketing and analysis purposes. However, this information does not contain any personally identifiable details.
5. Security of Your Information
We take data security seriously and have implemented a variety of industry-standard measures to protect PII. These include encryption, firewalls, and access controls to secure our servers and databases.
- Encryption: All sensitive data is encrypted during transmission to prevent unauthorized access.
- Access Control: Only authorized personnel have access to PII.
- Physical and Electronic Security: Our servers are located in secure facilities, protected by industry-standard firewalls and security systems.
Despite our best efforts, no method of data transmission over the internet can be 100% secure. By using our services, You acknowledge and accept this inherent risk.
6. Children’s Privacy
Our services are not intended for use by individuals under the age of 18. We do not knowingly collect or process PII from minors. If You believe that a minor has provided us with personal information, please contact us immediately at [email protected] , and we will take steps to remove such data.
7. Compliance with Global Standards
As a global company, we adhere to data protection regulations across multiple regions, including the General Data Protection Regulation (GDPR) and the Information Technology Act of India. This policy ensures that we follow international best practices for privacy and data protection, even when dealing with clients and customers located outside India.
8. Contact Information
If You have any questions about this Privacy Policy or need more information on how Your personal data is handled, please contact us at:
Equate Media
1273 Sector A,
Pocket B, Vasant Kunj, Delhi – 110070
Attn: Privacy Compliance Officer
Email: [email protected]
Provisions Specific to European Individuals
The following provisions apply exclusively to individuals residing in the European Economic Area (EEA).
Who is the Data Controller?
In accordance with the General Data Protection Regulation (GDPR) and any legislation that implements the provisions of Directive 95/46/EC of the European Parliament (the “EU Directive”), the data controller of Personal Data belonging to Your EEA-based Customers (as defined below) is typically You, the client. However, in cases where the EU Directive identifies Equate Media as the data controller of Your EEA-based Customers’ Personal Data, the remaining provisions of this Privacy Policy will apply.
Even if Equate Media is not classified as the data controller, we commit to treating Your EEA-based Customers’ Personal Data in compliance with this Privacy Policy and our responsibilities as a data processor under the EU Directive.
Definition of Personal Data
“Personal Data” for EEA-based Customers expands the definition of “Personally Identifiable Information (PII)” to include any information that can identify an individual, either by itself or when combined with other data under our control. This includes all information considered “personal data” as defined by the EU Directive. For Customers located within the EEA, any reference to PII in this Privacy Policy should be interpreted as a reference to Personal Data.
Consent and Opt-Out/Deletion Rights
Your EEA-based Customers must provide their explicit consent before we collect any of their Personal Data or Aggregate Information. Customers can also opt-out at any time by adjusting their browser settings to block cookies.
You or Your EEA-based Customers have the right to request the deletion of their Personal Data at any time. Upon receiving and reviewing such requests, Equate Media will delete the relevant data within a reasonable time.
To opt-out of data collection or to request the deletion of Personal Data, please send a written request to [email protected]. The decision to opt out or request deletion will not impact Your or Your Customers’ right to receive equal service and pricing from the Company.
Our Policy Towards Children
In compliance with European Union regulations, we do not collect or process Personal Data for the purpose of targeting advertisements to children under the age of 13. We do not create or maintain consumer segments specifically directed at children.
Storage and Processing of Personal Data Outside the EEA
Personal Data and Aggregate Information collected from You or Your EEA-based Customers may be transferred to and stored in destinations outside the EEA. Additionally, it may be processed by staff working outside the EEA, either for us or for our service providers.
Please be aware that countries outside the EEA may not have the same level of data protection and privacy regulations as those enforced within the EEA.
Here is a rephrased version of the provisions, designed to be seamlessly incorporated into the Indian privacy policy, while addressing individuals based in the European Union and the United Kingdom:
Provisions for Individuals Based in the European Union and/or the United Kingdom
The following provisions are additional to the terms outlined above and apply only to individuals located within the European Union (EU) and/or the United Kingdom (UK).
Data Protection Legislation
“Data Protection Legislation” refers to the General Data Protection Regulation (GDPR) ((EU) 2016/679), the UK Data Protection Legislation, and any other relevant European Union regulations relating to privacy and data protection.
UK Data Protection Legislation
This refers to any data protection laws currently in force in the UK, including the Data Protection Act of 1998, 2018, or any future legislation that succeeds them.
Applicable Laws
“Applicable Laws” refers to the laws of the European Union, the laws of any member state of the European Union, and UK law, to the extent that they apply to the Company.
Data Protection Compliance
We comply with all applicable requirements of Data Protection Legislation.
Identifying the Data Controller
For the purposes of Data Protection Legislation, You are the Data Controller, and Equate Media, as the service provider, is the Data Processor. These terms are defined in the Data Protection Legislation.
Scope of Processing
Sections 2–4 above outline the scope, nature, and purpose of processing carried out by the Company, including the duration of the processing, types of personal data involved, and categories of Data Subjects.
Definition of Personal Data
Under Data Protection Legislation, “Personal Data” extends the definition of Personally Identifiable Information (PII) to include any information by which an individual can be identified. This includes location data and online identifiers. For individuals in the EU or UK, any reference to PII in this Privacy Policy should be read as a reference to Personal Data as defined under the relevant Data Protection Legislation.
Consent
In order for Equate Media to provide its Services, individuals in the EU or UK must give their consent to the use and processing of their Personal Data. This consent is captured when they acknowledge the cookie notification. Individuals may opt-out or withdraw their consent at any time.
Children
In accordance with EU guidelines, children under the age of 13 cannot provide consent for the use of their Personal Data. Therefore, we do not collect or process identifiers for targeting advertisements at children under 13 years old.
Restrictions on Processing
In relation to any Personal Data processed by Equate Media in connection with the provision of services, we commit to the following:
(a) We will process Personal Data only on Your written instructions, except where required to do so by Applicable Laws.
(b) We will implement appropriate technical and organizational measures to protect Personal Data against unauthorized or unlawful processing, accidental loss, destruction, or damage, considering the harm that may result from unauthorized processing or data loss and the sensitivity of the data.
(c) We ensure that any personnel who have access to and/or process Personal Data are obligated to keep it confidential.
(d) We will promptly notify You if we become aware of a Personal Data breach.
(e) At Your written direction, we will delete Personal Data and any copies upon termination of the service agreement, unless required by Applicable Laws to retain the data.
(f) We will maintain accurate records and information to demonstrate compliance with data protection requirements.
Transfer Outside the EEA
To provide You with our Services, Personal Data and Aggregate Information may be transferred to and stored by us or our suppliers outside the European Economic Area (EEA). When transferring personal data out of the EEA, we ensure that one of the following safeguards is in place:
(a) We only transfer data to countries that the European Commission deems to offer an adequate level of data protection.
(b) Where necessary, we may use specific contracts approved by the European Commission to provide the same level of protection for personal data.
(c) If we use service providers in the United States, we may transfer data to them if they comply with the Privacy Shield framework, ensuring protection of personal data transferred between the EU and the US.
Access to Personal Data
We will assist You, at Your cost, in responding to any request from a Data Subject to access their Personal Data and in ensuring compliance with obligations under Data Protection Legislation, including security, breach notifications, and impact assessments.
We will take all necessary steps to ensure that Personal Data of Your EEA-based Customers, wherever processed, is handled securely and in compliance with this Privacy Policy and the EU Directive.
Right to Access Information
Under the EU Directive, Your Customers have the right to access certain information we hold about them. If any individual subject to the EU Directive wishes to request access to their information, they may contact us at [email protected].
Provisions for Individuals Based in Brazil
The following provisions are in addition to the terms set out above and apply to individuals located in Brazil or where Brazilian data protection laws are applicable.
Data Protection Legislation
“Data Protection Legislation” refers to the Brazilian General Data Protection Law (Law No. 13,709/2018).
Applicable Laws
“Applicable Laws” refers to the laws of Brazil as they apply to the Company.
Data Protection Compliance
We will comply with all applicable requirements of the Brazilian Data Protection Legislation.
Identifying the Data Controller
For the purposes of the Data Protection Legislation, You are the Data Controller, and the Company, as the service provider, is the Data Processor. The terms Data Controller and Data Processor are defined in the Data Protection Legislation.
Scope of Processing
Sections 2–4 above outline the scope, nature, and purpose of processing carried out by the Company, including the duration of the processing, types of personal data involved, and categories of Data Subjects.
Definition of Personal Data
“Personal Data” expands the definition of Personally Identifiable Information (PII) to include any information by which an individual can be identified, either alone or in combination with other information. In this policy, all references to PII for customers located in Brazil should be interpreted as references to Personal Data under Brazilian Data Protection Legislation.
Consent and Opt-Out Rights
Before collecting any Personal Data or Aggregate Information, You or Your Customers must provide explicit consent by acknowledging the appropriate notification. You or Your Customers may opt-out at any time by blocking cookies through their browser settings.
You or Your Customers also have the right to request the deletion of their Personal Data. Upon receiving such a request, the Company will delete the data within a reasonable timeframe.
If You or Your Customer wish to opt-out or request data deletion, please send a written request to [email protected]. Opting out of data collection or requesting deletion will not affect the ability to receive the same level of service or pricing from the Company.
Policy for Minors
Our services are not intended for children under the age of 18. We do not knowingly collect or process Personal Data from minors without parental or guardian consent. If You believe a minor has provided us with Personal Data without appropriate consent, please contact us at [email protected], and we will take steps to delete the data.
Restrictions on Processing
In relation to any Personal Data processed in connection with providing services, we will:
(a) Process Personal Data only based on Your written instructions or as required by Applicable Laws.
(b) Implement appropriate technical and organizational measures to prevent unauthorized or unlawful processing, accidental loss, destruction, or damage to Personal Data, considering the sensitivity of the data and potential harm from data breaches.
(c) Ensure that personnel who have access to and process Personal Data are bound by confidentiality obligations.
(d) Promptly notify You if we become aware of any breach of Personal Data.
(e) Upon termination of the services agreement, delete all Personal Data and copies thereof as per Your instructions, unless required by law to retain the data.
(f) Maintain accurate records to demonstrate compliance with the above obligations.
Data Transfer Outside Brazil
To provide services, it may be necessary to transfer Personal Data and Aggregate Information outside of Brazil. When doing so, we ensure a similar level of protection by using one of the following safeguards:
(a) We only transfer Personal Data to countries that provide an adequate level of protection as determined by the Brazilian Data Protection Authority.
(b) For certain service providers, we may use contracts approved by the Brazilian Data Protection Authority to ensure Personal Data receives the same protection it does in Brazil.
(c) If we transfer data to US-based service providers, we will ensure they comply with the Privacy Shield framework or equivalent safeguards to protect Personal Data shared between Brazil and the US.
Access to Personal Data
We will assist You in responding to requests from individuals seeking access to their Personal Data, in compliance with the Data Protection Legislation. You may be responsible for costs associated with such requests. We will also ensure compliance with security, breach notifications, and other obligations under the law.
We take all reasonable steps to ensure that Personal Data of You or Your Customers, whether processed in Brazil or elsewhere, is treated securely and in accordance with this policy.
Access, Update, and Deletion of Information
Under the Data Protection Legislation, You or Your Customers have the right to access, update, or request the deletion of Personal Data we hold. A fee of US $10 may apply for such requests, and they should be sent to [email protected]. Please note that certain information may need to be retained for record-keeping or legal purposes.
Other Data Protection Rights
You may also exercise other rights under the Data Protection Legislation, such as data portability or restrictions on processing. To make a request, contact us at [email protected], and we will respond according to the Data Protection Legislation.
You have the right to lodge a complaint with your local data protection authority if you are dissatisfied with our data protection practices.
Conclusion
Your privacy is important to us, and we are committed to protecting your personal information and ensuring its secure use. By using our services, You agree to the terms of this Privacy Policy. Please ensure that Your Customers are aware of how their information is collected and used, as Your adherence to privacy laws and policies is also critical.