The short version
- We only collect the personal data you enter. We don't use third-party services to collect data in the background.
- We don't collect any personal data when tracking clicks and conversions from affiliates to advertisers.
- We never store IP addresses.
- To increase security we use SSL to encrypt website traffic and we store passwords encrypted. We avoid third-party libraries when possible.
- We store the data on servers located in Sweden.
- We store a minimum amount of necessary cookies, such as session ID and login token.
- We use Google Analytics for anonymous website analytics, which in turn stores some third-party cookies with sessions ID's.
- Send an email to email@example.com if you have any questions or want to delete your account.
When visiting addrevenue.io as a non-logged in user, we don't collect any personal information. It is first if you create an account that we collect personal information. The very first data we will ask for and store is your email and name (company name for advertisers and full name for affiliates). Your email address will then be used to send you a magic link to login to the Addrevenue portal.
After logging in, in addition to name and email that has already been entered, what we will ask for and store differs a bit depending on your business type. For individuals we will ask for and store personal number/social security number, address, phone. For companies we will ask for and store organization number, name of contact person, address and phone. This informationen is necessary for the payout and payment process.
For Swedish affiliates acting as individuals we partner with Gigapay for payouts. When signing up with Gigapay, you agree to share your name, email address and phone with them. No information entered in Gigapay portal, such as bank account numbers or such as shared back to Addrevenue.
For company affiliates we ask for a payout method, such as bankgiro, plusgiro, bank transfer or for companies outside of Sweden IBAN and BIC. This information is store and is necessary for the payout process.
As an advertiser you can pay by credit card or invoice. We partner with Stripe and by entering your credit card information we also share your email address and company name with Stripe. The credit card number is not stored, nor shared with Addrevenue. We only see the last 4 digits, that we display in the portal.
When tracking clicks and conversions, we do not store any personal information at all. We do not store IP addresses. If any our advertisers accidently send personal information in their request to us (such as an order ID containing an email address) we will immediately require this advertiser to fix their tracking code, and we will also delete the personal information from our database. We do not store any personal information when tracking clicks or conversions.
We only collect data entered by yourself. We do not use any geolocation services or any other third-party services, for any purpose. Our vision is that no personal data should be collected and stored without your knowledge.
As mentioned above, most data we collect is necessary for the payout (affiliates) and payment (advertisers) process. But some data also can and will be used for other purposes, such as names and profile images of affiliates being displayed to advertisers, when applying to their advertiser programs. We always strive to disclose an absolute minimum of personal data to third-parties.
We take IT security seriously. We use SSL to encrypt all traffic on our website. Passwords are store encrypted in our database. Credit card numbers is not stored in our databases at all, only in Stripe. We use as few third-party libraries as possible, to avoid security leaks. We create a lot of custom solutions, always with security on top of mind. While we use our best efforts to safeguard our users’ data, we cannot guarantee that our website will not be subject to malware or unauthorized access ever.
Storage & Sharing
Our servers are located in Sweden. Data is not transferred outside of Sweden, other then served via the browser to users visiting our website. We are using Google Analytics for analytics purposes, but we do not share any personal information such as IP addresses, email, names etc with them.
We are using cookies, but try to make minimize it. When visiting our website some necessary cookies are set and those are:
Holds the information that the uses has closed the cookie information bar. Expiration 1 year.
Holds the information about selected language, to be able to present the website in the desired language at recurring page visits. Expiration 30 days.
Internal session ID, used by the programming language to keep track of session cookies etc. Expiration 1 year.
A randomly generated ID used for authentication of logged in users. Expiration 30 days.
As mentioned we are using Google Analytics, and even though they don't store any personal information, they do set cookies, and those are:
Used by Google Analytics to distinguish users. Expiration 2 years.
Used by Google Analytics to persist session state. Expiration 2 years.
Used by Google Analytics to distinguish users. Expiration 24 hours.
For our tracking code on our advertisers' websites – meaning that user visits and advertiser's website by clicking a link in an affiliate's channel – we set third-party cookies to be able to atrribute conversions to that channel up to 45 days. These are the third-party cookies we set:
The ID of the advertiser. Expiration 45 days.
The ID of the channel that the click came from. Expiration 45 days.
A randomly generated ID for the click. It is used to be able to connect any later conversion to the original click. Expiration 45 days.
The ISO 3166 two-letter country/market that the affiliate stated in their link. If the affiliate link does not contain a market, then the main market chosen by the affiliate in its settings is set here. Expiration 45 days.
This is optional, but if the affiliate sets a specific reference ID to the link (for example to track clicks from a certain section on its website), it will be set in this cookie. Expiration 45 days.
Opting out & Data subject rights
By creating an account at addrevenue.io you give consent to store the personal data you enter. If you want to revoke this consent you can, but that also means that we will delete your account. Hence partnering as an affiliate or advertiser without giving consent for us to store personal data is not possible. If you want us to delete your account, just send us an email to firstname.lastname@example.org. Please note that if we have had prior business together, such as payouts or payments, we are required by law to preserve personal data up to five years.