Privacy Policy

Digital Castle and its affiliates (collectively, “Digital Castle”, “we”, or “us”) are engaged in the business of providing digital advertising, ad-monetization services, and technical solutions to publishers, platforms, and media partners (“Clients”).

At Digital Castle, we are committed to protecting personal data and respecting privacy. This Privacy Policy (“Policy”) outlines our practices regarding the collection, storage, usage, and processing of personal data when you interact with our website or when we provide services to our clients.

1. Background and Key Information

(a) Role of Digital Castle

Digital Castle primarily operates as a Data Processor or Sub-Processor. We process personal data strictly based on the documented instructions of our clients (the “Data Controllers”), who are responsible for obtaining the necessary consents from end-users.

(b) How this Policy Applies

This Policy applies to all individuals who access our website, use our services, or whose data is processed through our ad-monetization technology. By interacting with us, you confirm that you have read and understood this Policy.

(c) Third-Party Services

Our services may involve interactions with third-party ad exchanges or platforms. We do not control these third parties and encourage you to review their respective privacy policies.

2. Personal Data That We Process

We collect and process different types of data depending on your interaction with us:

• Identity & Contact Data: Name, email address, and professional details provided during business inquiries.
• Technical Data: IP addresses, browser type, device identifiers (IDFA/GAID), and operating system details.
• Usage & Performance Data: Information related to ad delivery, clicks, impressions, and interactions with advertisements.
• Aggregated Data: Statistical and analytical data that does not directly identify an individual.

3. How We Collect Data

• Direct Interaction: When you submit forms on our website or communicate with us via email.
• Automated Technologies: Through cookies, pixels, and server logs as users interact with our Clients’ platforms.
• Third-Party Partners: Data received from Clients and advertising partners to facilitate ad-monetization services.

4. Purpose and Lawful Basis for Processing

We process personal data only when permitted by law, including:

• Service Delivery: To provide ad-monetization and advertising services.
• Contractual Necessity: To fulfill obligations under agreements with Clients.
• Legitimate Interests: To prevent ad fraud, ensure brand safety, and improve platform functionality.
• Compliance: To meet legal and regulatory requirements.

5. Cookies and Tracking Technologies

(a) Purpose

We and our partners use cookies, web beacons, and pixels to identify browser sessions, limit ad frequency, and provide performance reporting to advertisers.

(b) Management

Most web browsers allow users to manage cookie preferences. Disabling cookies may impact certain ad-monetization features on partner platforms.

(c) Opt-Out

Users may opt out of interest-based advertising through industry-standard opt-out mechanisms.

6. Ad-Fraud and Security Measures

Digital Castle processes Technical Data to:

• Detect and prevent invalid traffic (IVT), including bot activity and click farms.
• Ensure brand safety by controlling advertisement placement.
• Monitor suspicious activity that may indicate system misuse or breaches.

7. Data Sharing and Disclosures

We may share data with:

• Ad-Tech Partners: Platforms and exchanges required for ad delivery and measurement.
• Service Providers: Cloud hosting and analytics providers (e.g., AWS, Google Cloud).
• Legal Authorities: When required by law or legal process.
• Internal Affiliates: Digital Castle group companies for administrative purposes.

8. International Transfers

As an India-based company, personal data may be transferred to and stored on servers outside your country. We implement appropriate safeguards, including Standard Contractual Clauses (SCCs), to protect such transfers.

9. Data Security and Retention

• Security: We use industry-standard measures such as encryption, firewalls, and access controls.
• Retention: Personal data is retained only as long as necessary for the purposes described or required by contract.

10. Your Rights and Grievances

As Digital Castle typically processes data on behalf of Clients, end-users should contact the relevant Data Controller to exercise their rights (access, correction, deletion).

For questions related to Digital Castle’s practices, you may contact our Grievance Officer:

Name: [Insert Name]
Designation: [Insert Title, e.g., Head of Legal]
Email: [Insert Email]

11. Updates to This Policy

We may update this Policy periodically to reflect changes in law or business practices. The “Last Updated” date will indicate the most recent revision.