Product Privacy Policy
This policy explains how Adscod collects, processes, and protects personal data specifically within its product and platform services.
Effective Date: March 28, 2026
This Product Privacy Policy supplements the Privacy Policy and applies specifically to the data processed through Adscod's platform products and services.
1. Scope
This policy applies to all personal data processed when you use Adscod's platform services, including:
- Campaign management and analytics tools
- The Eye's fraud detection, matching, and recommendation features
- Campaign targeting and creative management
- Click and conversion tracking and attribution tools
- Communication and messaging services
- Payment, wallet, and commission processing
- Reporting, dashboard, and performance scoring
- Publisher API access and integrations
2. Data We Collect
2.1 Account Data
Name, email, company name, billing address, phone number, and user role.
2.2 Usage Data
Feature usage, session duration, clicks, page views, API calls, and interaction patterns.
2.3 Campaign Data
Campaign configuration data (targeting, bid, creative), click and conversion events, engagement metrics, performance analytics, and Eye-generated match/fraud signals.
2.4 Creator Data
Bio page content and card configuration, social media profile links, click and sale performance by card, commission and earnings records, fraud detection alerts generated by The Eye, wallet withdrawal history, and identity verification data (government ID, where provided for KYC).
2.5 Payment Data
Transaction records, invoice details, wallet balances, ledger entries, and payment method information (processed by Flutterwave, our third-party payment provider). Adscod does not directly store full card numbers.
2.6 Communication Data
In-platform messages between Brands and Creators, notification preferences, and email correspondence.
2.7 Technical Data
Device information, IP addresses, browser type, operating system, and log data.
3. How We Use Your Data
- Service Delivery: Operating the Platform, processing campaigns, and facilitating Brand–Creator relationships.
- Personalization: Customizing your experience, recommendations, and search results.
- Analytics: Generating campaign reports, performance insights, and platform usage statistics.
- Communication: Sending transactional, account, and marketing communications (with your consent).
- Security: Detecting and preventing fraud, unauthorized access, and abuse.
- Improvement: Enhancing platform features, fixing bugs, and developing new services.
- Compliance: Meeting legal obligations and responding to lawful requests from authorities.
4. Legal Basis for Processing
- Contractual Necessity: Processing required to perform our obligations under the Customer Terms of Service.
- Legitimate Interests: Improving the Platform, preventing fraud, and managing business operations.
- Consent: Where you have provided explicit consent (e.g., marketing communications, optional analytics).
- Legal Obligation: Compliance with applicable laws, regulations, and court orders.
6. Third-Party Integrations
When you connect third-party services (e.g., social media accounts, analytics tools), data may be shared with those platforms.
- Social Media APIs: Audience data, engagement metrics, and content performance are retrieved with your authorization.
- Payment Providers: Transaction data is shared with Flutterwave for processing deposits, withdrawals, mobile money transfers, and card payments. Flutterwave's processing is subject to their own privacy policy.
- Analytics Platforms: Anonymized usage data may be shared for platform performance analysis.
Third-party integrations are governed by the respective provider's terms and privacy policies. Adscod is not responsible for their data practices.
7. Data Retention
- Account Data: Retained for the duration of your active account plus any applicable data retrieval period.
- Campaign Data: Retained for the life of the account plus twelve (12) months for reporting and compliance.
- Payment Data: Retained as required by financial regulation (typically seven years).
- Usage Data: Retained in identifiable form for up to twenty-four (24) months; anonymized data may be retained indefinitely.
- Communication Data: Retained for the life of the account plus six (6) months for dispute resolution.
8. Your Rights
Subject to applicable law, you have the right to:
- Access the personal data we hold about you
- Rectify inaccurate or incomplete data
- Request erasure of your data (“right to be forgotten”)
- Restrict or object to certain processing
- Request data portability in a structured, machine-readable format
- Withdraw consent at any time (without affecting prior lawful processing)
- Lodge a complaint with a supervisory authority
To exercise these rights, contact us at dpo@adscod.com.
9. Security
We implement appropriate technical and organizational measures to protect personal data, including:
- Encryption at rest and in transit
- Access controls and authentication mechanisms
- Regular security assessments and audits
- Incident response and breach notification procedures
For full details, see our Product Disclosures.
10. Contact
Data Protection Officer: dpo@adscod.com
General Privacy: privacy@adscod.com
Address: Adscod Limited, Kampala, Uganda