GDPR Compliance
AB180 Inc., which provides Airbridge, complies with the EU GDPR (European Union General Data Protection Regulation). Airbridge believes that data subjects should be able to directly control their personal information as a fundamental philosophy.
Airbridge collects and processes only the personal information items that are absolutely necessary for attribution analysis, and performs GDPR-compliant personal information protection through strong information security and governance control.
Types of Information
Data Controller and Processor Information
- Data Controller:
- It may differ depending on clients.
- Data Processor:
- AB180 Inc.
- DPO Contact:
- compliance@ab180.co
Processing Purpose
To analyze the effects of mobile application advertisements
Legitimate Benefits
When advertising a mobile application, the data controller can clearly analyze the effects of advertisements as the collected data are analyzed through the processor. The data processor analyzes the effects of advertising and get payment for the services accordingly.
Recipients of Personal Data
- Recipient:
- AB180 Inc.
- Types of Recipient:
- Data Processor
Third Country Transfers
- Transfer Item:
- Collected personal data
- Transfer Countries:
- Republic of Korea, Japan
- Protection Method:
- Online transfer via a security protocol (encryption)
Retention Period
The data processor, AB180 Inc., based in the Republic of Korea, can retain data for up to one year without a reason to retain the data, under the Personal Information Protection Act of Republic of Korea.
Data Subject Rights
The data subject owns the following rights and can exercise each right directly or make a request to the data processor using Web UI:
- Right to be informed
- Right to be forgotten
- Right of access by the data subject
- Right to rectification
- Right to data portability
- Right to restriction of processing
Right to Withdraw Consent
The right is exercised in a way that, after the data subject withdraws consent through the data controller, the data controller informs the data processor of the withdrawal by electronic means (after using an Opt-Out function of SDK, send request for data deletion using email or Web UI).
Right to Lodge a Complaint
Every data subject has the right to lodge a complaint with a supervisory authority without prejudice to any other administrative or judicial remedy. In this case, the data subject can lodge a complaint with a supervisory authority in the member state of habitual residence, place of work or place of the alleged infringement.
Data Provision Requirements
Provision of personal data is not a statutory or contractual requirement or obligation. Without the data subject's consent on provision of data, the data controller should stop providing data using an Opt-Out function which the data processor offers. Even if the data subject has already consented or the data have already been provided, the data subject can withdraw the consent. The data processor should not discriminate against the data subjects with respect to providing services even if the data subject does not provide personal data.
Automated Decision Making
The data provided by the data subject undergo electronic data profiling to analyze the effects of advertisements. However, the data subject is not the target of automated decision-making herein. In particular, any legal or similarly significant effects are not produced.
Representative Contact
GDPR-Rep.eu
Maetzler Rechtsanwalts GmbH & Co KG
Attorneys at Law
c/o AB180 Inc.
Schellinggasse 3/10, 1010 Vienna, Austria
Please add the following subject to all correspondence:
GDPR-REP ID: 12799064
Questions about GDPR compliance?
Contact our team to learn more about how Airbridge ensures data protection and privacy compliance.