Privacy Policy for Sticky UTMs

Last Updated: August 8, 2024

1. Introduction

Sticky UTMs ("we," "us," or "our") is committed to protecting the privacy and security of personal data. This Privacy Policy outlines how we process data on behalf of our clients when acting as a data processor. We do not store any personal data on our systems; instead, we facilitate the processing of data such as ad click IDs and UTM parameters and transmit this information directly to our clients' platforms.

2. Scope

This Privacy Policy applies to all data processed by Sticky UTMs in the course of providing our services as a data processor. We operate strictly in accordance with our clients' instructions and applicable data protection laws.

3. Data Collection and Processing

3.1. Types of Data Processed

As a data processor, we handle the following types of data as instructed by our clients:

- UTM parameters (e.g., source, medium, campaign)

- Ad click IDs (e.g., GCLID for Google Ads, FBCLID for Facebook Ads)

3.2. Purpose of Processing

We process this data solely to provide the services requested by our clients, such as analyzing advertising campaign effectiveness and transmitting the data to client platforms for further analysis.

4. Data Storage

We do not store any data on our systems. All data processing occurs in real-time, with the data transmitted directly to our clients' designated platforms without being retained by us.

5. Data Security

We implement appropriate technical and organizational measures to ensure data security during processing and transmission, including:

- Secure transmission methods (e.g., HTTPS)

- Real-time processing without data retention

- Access controls to ensure that only authorized personnel can initiate or oversee data processing

6. Data Sharing

We do not share any data with third parties except as necessary to fulfill the services provided to our clients, in accordance with their instructions and in compliance with applicable data protection laws.

7. Data Subject Rights

We assist our clients in responding to data subject rights requests under GDPR. Data subjects should direct any such requests to the relevant data controller (our client).

8. Compliance with GDPR

We are committed to adhering to GDPR and other relevant data protection regulations. Our practices are continuously reviewed to ensure full compliance.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify our clients of any significant changes.

10. Contact Information

If you have any questions or concerns about this Privacy Policy or our data processing practices, please contact us at:

RioStack

Email: brandon@riostack.com