Klever provides trading desk services to support our customers in buying, managing, and optimizing data-driven digital advertising campaigns across multiple platforms, devices and formats. In providing these services we may process your data if you are a user or potential user of our customers’ products, services, websites or media, or if you are or work for one of our customers or other business contacts.
This Privacy Notice explains how Klever uses and protects personal data and information. Klever is committed to respecting all applicable privacy laws and ensuring your data is secure. This Notice does not apply to our processing of data of Klever employees or employment candidates, which will be communicated separately.
Klever may change this Notice from time to time by updating this page. You should check back to ensure that you are up to date with any changes.
2. WHO WE ARE
The entity that takes decisions regarding why and how your personal information is processed (also referred to as a “Data Controller”) is:
Klever Programmatic, Inc. (“Klever”) (incorporated in Canada)
6000 Boulevard Rome, Suite 410
Brossard, Québec J4Y 0B6
We have appointed our Chief Operating Officer as our Privacy Officer to oversee our data processing compliance and to be a point of contact for inquiries, who may be reached at the above addresses.
3. CATEGORIES OF DATA THAT WE PROCESS
A. Internet and media users: In providing our advertising-related services we may have access to data generated by publishers or advertisers from viewers of their websites, apps, connected televisions, or other media. We ourselves do not collect this data, but this data may be disclosed to us by customers or advertising technology partners who work with us on advertising campaigns.
In general, this information relates to online behavior and does not contain real life names or addresses or any other information that could allow anyone directly to identify or contact a particular person. Information we receive may include the following:
B. Business contacts: If you or your employer is a Klever customer (or potential customer), or one of our suppliers (or potential suppliers), an investor or potential investor, or other business contact, then we will need to collect certain personal contact information in connection with our relationship with you. This information may also come from our third party marketing partners. This may include:
4. PURPOSES FOR WHICH WE PROCESS DATA
We collect and use personal data for the following purposes:
A. Internet and media users
In Canada, the EU/EEA and UK our legal basis for this data use is your consent, which the relevant publisher or brand needs to have obtained from you in accordance with local laws. You can manage your consents as set out in Section 9.
B. Business contacts
In the EU/EEA and UK our legal basis for this data use is compliance with our legal obligations, performance of our contracts, or our legitimate interests which are compatible with your interests and rights. In Canada our legal basis for this data use is where possible your consent, which may be express or implied in accordance with local laws.
5. MEANS OF DATA COLLECTION AND DATA SOURCES
A. Internet and media users: This data may be disclosed to us by our customers in connection with their ad campaigns, or by or through demand-side platforms (DSPs) or ad exchanges through whom we buy online advertising or receive information in relation to pricing and performance of advertising.
B. Business contacts: We obtain this information directly from you or your employer, for example through exchanging emails or business cards, industry events, online or offline networking, business directories, publicly available information such as your organisation’s website and online channels, requests for proposals, or in-person meetings. In addition, if you visit our website, we may collect data using cookies and similar technologies.
6. RECIPIENTS AND INTERNATIONAL TRANSFERS
Our corporate headquarters is located in Brossard, Québec, Canada. Your personal information may be stored and processed in any country where we have facilities or service providers that we work with, e.g. for audience measurement, secure hosting, data storage, ad exchanges and DSPs.
We also provide data to our customers in relation to their campaigns and contracts with us in order to ensure proper billing and improve future campaigns.
Where we send data originating from the EU/EEA, the UK, or Switzerland internationally (other than to Canada or other places that are officially regarded as having adequate data protection laws), we put in place safeguards designed to ensure that data is processed in a way equivalent to the rules applicable under the EU and UK General Data Protection Regulations. These may include standard contract clauses for data transfers as approved by the European Commission or other supervisory authorities. A copy of these safeguards may be made available if we receive a valid request. When transferring data outside Québec or Canada, we will do so where we have assessed any privacy impact and concluded that the data will receive adequate protection.
Occasionally we may receive a request from a government, law enforcement agency or regulator requesting data from us, and we would normally comply with such request without having to notify you.
7. DATA RETENTION PERIODS
We only retain data for as long as necessary for the purpose for which the data was collected. So we will retain your account data for at least the time that you or your organization has an account or contract with us. If you have subscribed to a newsletter or other communications, we will keep your contact details until you unsubscribe.
We retain device IDs and related data for up to eighteen months for billing and service management purposes. Aggregated and anonymized or statistical data may be retained for a longer period for reporting, testing, tax or legal reasons.
Once the retention periods are reached and data is no longer required, such data is anonymized so that it does not relate to any identifiable person and is not used for our services.
We implement and require our third party suppliers to implement security measures, including physical, logical, contractual, and organizational safeguards, to prevent unauthorized access to, loss, misuse, or alteration of the information that we process in connection with our services. We consider these measures to be appropriate given the low levels of sensitivity of the data that we access, and in line with all applicable laws and good industry standards.
9. PRIVACY TRAINING AND GOVERNANCE
We ensure that our personnel in roles that have a need to access personal information have appropriate and recent training regarding provincial, national and international personal information protection laws and practices. We also have in place internal policies which set out our framework for the keeping and destruction of personal information, limiting its collection, use, disclosure and retention, the roles and responsibilities of staff throughout all stages of its processing, including dealing with requests and complaints from individuals, data incident response plans, and all other aspects addressed by this Privacy Notice.
A cookie is a small piece of data sent from a website and stored in a user’s web browser or device. Every time the user loads the website, the browser sends cookie information back to the server to notify the website that it recognizes the user. You can find more information about different types of cookies here.
You can remove cookies from your web browser by following the directions provided in your browser’s “help” or “settings” sections. Some cookies may be essential for using different features of certain websites, so if you clear all cookies then those features may not work as expected, or you may need to accept some cookies on your next visit. For mobile devices please review the privacy controls within your mobile operating system.
11. YOUR RIGHTS
In relation to online advertising data, there are various methods that enable you to manage consents and data use directly, without contacting publishers or media owners:
Some of these methods may place a cookie on your device to identify you as not wanting to receive targeted ads so, if you change devices or delete cookies, you may need to repeat this process.
In addition, under international data protection laws, including the GDPR in the EU/EEA or the UK and PIPEDA in Canada, you may have various additional rights such as the following:
Consumers who are resident in US states such as California, Colorado, Virginia, Connecticut, or Utah (and others in the future) may have additional rights under state privacy legislation. Depending on the particular provisions of such local laws, you may have some or all of the following rights:
Where our use or communication of your data is based on your consent, then you can always withdraw that consent (but any processing that took place before withdrawal will still be legal).
If you wish to exercise any of your legal rights, or have another issue or inquiry, it may be easiest to contact the publisher or media provider to whom you originally gave your consent. In other cases, please contact us using the details in this Notice and we will help as far as possible. Please note that we may ask you to verify your identity before acting on your request. If you believe that we have not respected your rights then you may also have a right to challenge our compliance before the supervisory authority in your country.
Last updated: 26 January