プライバシーポリシー

AdFraud Shield ("the Service") is operated by FID Ltd. ("we", "us"), a company registered in Japan, headquartered at Tachibana Shinjuku Building 6F, 3-2-26 Nishi-Shinjuku, Shinjuku-ku, Tokyo 160-0023, Japan. This Privacy Policy explains how we collect, use, share, and protect personal information in connection with the Service.

(a) Information you provide to us: account details such as name, company name, email address, phone number, and billing information. Payment card details are handled directly by Stripe and are never stored on our servers.

(b) Information collected automatically when you use the dashboard: IP address, user-agent, browser fingerprint, TLS/TCP signatures, usage logs, and cookies.

(c) Information collected from visitors to websites where the Service is installed: IP address, user-agent, browser fingerprint, behavioral signals, cookie identifiers, referrer, and coarse geolocation. This data is collected on behalf of the website operator (our customer), who is the data controller for their own end-users.

We use collected information to:

(a) provide, operate, maintain, and improve the Service and develop new features;

(b) detect bot and fraudulent traffic and synchronize exclusion lists with connected ad platforms such as Google Ads, Meta Ads, TikTok Ads, and Yahoo! JAPAN Ads;

(c) authenticate users, process payments, issue invoices, manage contracts, and provide customer support;

(d) send operational notices, security alerts, product updates, and — with your consent where required — marketing communications;

(e) compile aggregated, anonymized statistics and prevent abuse and security incidents;

(f) comply with applicable legal obligations.

Where the GDPR or UK GDPR applies, we rely on the following lawful bases: (i) performance of a contract with you; (ii) our legitimate interests in operating and securing the Service; (iii) compliance with legal obligations; and (iv) your consent, where specifically obtained (e.g., for marketing emails).

We do not sell personal information. We share personal information only with the following categories of recipients:

(a) Infrastructure and platform providers: Google Cloud Platform (hosting, database), Firebase Authentication (user login), all operated by Google LLC (US).

(b) Payment processing: Stripe, Inc. (US).

(c) Email delivery: Resend, Inc. (US).

(d) Ad platform APIs: Google Ads API, Meta Marketing API, TikTok Business API, Yahoo! JAPAN Ads API — used solely to synchronize exclusion information on behalf of the customer.

(e) Regulators, law-enforcement agencies, or other third parties when required by law or to protect our rights, property, or safety.

As noted above, some of our sub-processors are located in the United States. When personal information is transferred outside your country of residence, we implement appropriate safeguards (such as contractual protections and vendor security assessments) and rely on lawful transfer mechanisms permitted by Japanese law, the GDPR, and other applicable data-protection laws.

Raw visit, verdict, and fingerprint records collected from our customers' websites are automatically purged after 7 days across all subscription plans. This data-minimization policy is identical for Free, Starter, Pro, and Enterprise customers and is enforced by an automated daily purge process.

Aggregated statistics (daily visit counts, country distribution, signal-level metrics) are computed from the raw data before purging and retained for the duration of the customer's contract to power long-range dashboards and reports. These aggregates do not contain individual visitor records.

Customer account and billing records are retained for the duration of the contract and for up to five (5) years after termination, or longer if required by law (e.g., tax and accounting obligations).

The dashboard uses cookies and localStorage to maintain authentication state and to power bot-detection signals. You may disable cookies in your browser, but certain features of the Service will not function without them.

Depending on your jurisdiction, you may have the right to access, correct, update, delete, restrict, port, or object to the processing of your personal information, and to withdraw consent at any time. To exercise these rights, email support@adfraud-shield.io. We will respond within the timeframes required by applicable law.

If you are an end-user of a website that uses AdFraud Shield (rather than a direct customer), please contact the operator of that website first, as they are the data controller for their own users.

We implement organizational, physical, and technical safeguards designed to protect personal information, including encryption in transit, access controls, logging, and regular security reviews. FID Ltd. holds a Privacy Mark (JIS Q 15001) certification, awarded in October 2015.

No system is 100% secure; in the event of a data incident that poses a risk to your rights and freedoms, we will notify affected individuals and regulators as required by law.

The Service is not directed to children under the age of 16, and we do not knowingly collect personal information from them. If you believe we have done so, please contact us and we will delete the information.

We may update this Privacy Policy from time to time. Material changes will be communicated via the dashboard or email at least 14 days before taking effect.

Privacy inquiries: support@adfraud-shield.io

Postal: FID Ltd., Privacy Office, Tachibana Shinjuku Building 6F, 3-2-26 Nishi-Shinjuku, Shinjuku-ku, Tokyo 160-0023, Japan