Privacy

Vistar MEDIA SERVICES PRIVACY POLICY
Last updated April 5, 2019

This Services Privacy Policy (“Policy”) describes how Vistar Media (“Vistar Media”, “we,” “our,” or “us”) collects, uses, shares, and protects information when providing services to our clients, including marketers and owners of digital media displays (“Services”). Our services help our clients deliver advertisements to mobile and digital out-of-home (“DOOH”) media.

What do our Services do?

Our Services help our clients identify where, and when, to place advertisements on mobile and DOOH media to reach their desired audiences. Also, we help our clients measure the effectiveness of their campaigns to inform business decisions and future campaigns.

What information do we collect?

In providing Services to our clients, we respect consumer privacy. While some of the information we collect may be considered “personal data” or “personal information under certain legal frameworks, we do not aim to collect information that directly reveals consumers’ identities (“personally identifiable information” or “PII”), such as names or email addresses.

We collect, either directly from our clients or from third-party data suppliers, the following types of information:

• IP addresses
• Device identifiers;
• Device types;
• Device location histories;
• Point-of-interest locations (e.g., arenas, shopping centers, specific retailer locations);
• Survey responses tied to device or other unique identifiers;
• Household locations;
• Demographic information (e.g., income range, age range, loyalty program affiliations, and buying
preferences) associated with collections of device identifiers; and
• Reports of ads displayed on specific mobile or DOOH devices.

To collect the information described above, our clients and data suppliers may use cookies or similar technologies that online services use to access and store certain information in association with browsers or mobile applications. Clients and data suppliers may use these technologies to learn about when and how you use online services and whether you interact with or respond to advertisements.

Clients and data suppliers may collect information about consumers’ device locations via GPS, WiFi, or other location-based features. You may be able to modify or disable the sharing of device location in your device settings.

We may also collect and use publicly available information.

How do we use the information we collect?

We use the information we collect to provide services to our clients. That includes:

• Learning where to place DOOH ads to best reach defined audiences;
• Delivering ads to DOOH or mobile devices;
• Learning how individuals respond to ads;
• Analyzing device movement patterns;
• Learning whether devices that are exposed to ads are more likely to visit certain locations; and
• Providing clients with reports illustrating how ad exposure may influence consumer outcomes.

How do we share the information we collect?

We share with our clients or their agents:

• Information about devices that were exposed to mobile or DOOH ads;
• Geospatial polygons that appear well-suited for placing ads; and
• Reports about the impact of ads on consumer preferences and activities.

We do not share device location histories with clients.

To provide services for our clients, we share with mobile advertising networks device identifiers and geospatial areas for delivering ads. To help our clients learn about the impacts of ads, we share with market research companies lists of device identifiers that were exposed to certain ads. We do not share device location histories with these parties.

We share the information we collect with data storage providers that provide services on our behalf.

We may share information as reasonably necessary to comply with law, such as in response to a subpoena or other legal process; to protect the rights of us, you or others; or to maintain the security and integrity of our services.

We may share information to the extent reasonably necessary to proceed with the negotiation or completion of a merger, acquisition, sale of all or part of our business, bankruptcy, or other corporate transaction.

Additional information for European Union (EU) residents

When providing EU-focused services to our clients, we operate as a “data processor”, as that term is defined in the EU General Data Protection Regulation (“GDPR”). That means we collect personal data related to EU consumers (i.e., information that could be used to identify a person directly or indirectly) only on behalf of and pursuant to the instructions of our clients, who operate as data controllers.

Practically, this means we do not collect, use, or retain any personal data subject to the GDPR for our own purposes. So, for EU personal data, at the end of an engagement, we follow our client’s directions regarding the use and retention of personal data collected for that campaign. We do not use or retain EU personal data obtained for one client to be used for another.

Security

We strive to maintain reasonable administrative, technical, and physical safeguards designed to safeguard the information we collect. However, no information system can be 100% secure. So, we cannot guarantee the absolute security of the information we collect.

Modifications to this policy
We may update this Policy from time to time by posting an updated Policy on this page, and/or by providing any other notice or mechanism as may be appropriate.

Contact Us

If you have any questions about this policy, please contact us at privacy@vistarmedia.com.