Last updated: September 2025
We collect device identifiers (including mobile advertising IDs, cookie IDs, and hashed email addresses), behavioral data (website visits, app usage, content engagement), demographic information, and geolocation data to create precise audience segments for programmatic advertising. We also collect first-party data from CreatorCAST partners including content performance metrics and audience engagement patterns.
We process personal data based on legitimate interests for advertising optimization, consent where required by law, contractual necessity for service delivery, and legal compliance obligations. For EU residents, we rely on Article 6(1)(f) GDPR for legitimate interests in digital advertising and audience intelligence services.
Data is processed through our proprietary identity resolution algorithms for cross-platform audience mapping, behavioral clustering across 68+ segments, real-time bidding optimization, and advertising attribution across YouTube, Podcasts, Simulcast, and other digital channels. We employ machine learning models to analyze 40B+ monthly data points for predictive audience insights.
We share aggregated, pseudonymized audience segments with advertising partners, demand-side platforms (DSPs), supply-side platforms (SSPs), and verified clients for campaign optimization. We do not sell personally identifiable information. Data sharing agreements include strict confidentiality and data protection clauses.
We may transfer data internationally to our service providers and partners. For EU data subjects, transfers are protected by Standard Contractual Clauses, adequacy decisions, or other approved transfer mechanisms under GDPR Article 46.
We retain personal data for up to 24 months for active audience segments, 36 months for attribution analysis, and 7 years for financial records as required by law. Data is automatically purged upon expiration unless legal obligations require longer retention.
You have the right to opt-out of data collection via industry opt-out tools (NAI, DAA), request data deletion (subject to legal retention requirements), access information about your data profile, correct inaccurate data, and port your data where technically feasible. California residents have additional rights under CCPA including the right to know, delete, and opt-out of sale.
We implement industry-standard security measures including encryption at rest and in transit, access controls, regular security audits, and employee training. However, no system is completely secure, and we cannot guarantee absolute security of your information.
Our services are not directed to children under 13 (or 16 in the EU). We do not knowingly collect personal information from children. If we become aware of such collection, we will delete the information immediately.
For privacy inquiries or to exercise your rights, please visit our contact page.