Terms and Conditions
Dsocial Solutions and its affiliates (“we” or “us”) are committed to respect the right to privacy, and to comply with the applicable data protection laws, such as the GDPR (EU’s General Data Protection Regulation) and CCPA (California Consumer Privacy Act).
Please note that we do not control any personal data processing conducted by online social platforms, third party services possibly linked to our services, or by our customers. We’ve added a few helpful links below, but you should always contact those third parties directly for accurate information on their processing.
Facebook & Instagram Data Policy
Our application helps to automate and optimize ad campaigns in online social platforms such as Facebook, Instagram, Snapchat and Pinterest. We also provide social advertising related professional services and creative services. If you use or otherwise are involved in the delivery of our services (e.g. provide creative briefs), we collect the following personal data directly from you or the customer you represent:
Basic information (such as name, title, work location and contact information)
Communications (regardless if via email, telephone, chat, video-calls or by other means), traffic data and other related data
Service data (such as support requests, project plans, service history and service related metrics)
If you are a user of our platform services, we also process:
Login details and general user information, including user name, email address, password (hashed with bcrypt), IP address and browser user agent (when using the dsocial application)
User’s id in customer’s identity provider (when using SSO/SCIM)
Log data and other data derived from your actions in our services
This personal data is used to authenticate users to allow access the dsocial application, identify users when providing customer support, and store events and log information regarding a customer’s use of the dsoial application for purposes of audit in case of a security or other incident to have a trail of actions performed by us and our users, to maintain support records, and for purposes of services improvement and service level analysis. The data is removed upon request, except for data (such as user name) stored in application logs and audit trails, which are deleted according to our standard data management cycle.
After a user has connected or otherwise authorized our platform to access their ad account or assets on certain online social advertising platform(s), we process (where granted with access):
The user identification information, such as user ID, user name, user email and profile picture URL
Access tokens (more information is available about access rights in the applicable online platform’s community sites, for example regarding Facebook access tokens here)
User identification information, such as User account ID and Advertiser ID
Events and log information on interaction between the ad account and dsocial application
Such personal data is used to identify each user and verify their access rights, permit users to access and use the service (i.e. to identify and connect the assets and campaigns and manage these assets and campaigns on online social advertising platform via dsocial platform, to synchronize campaign entities and metrics between our services and online social advertising platform ), and to provide support service. We will process such ad account and campaign related personal data until our access to such data is revoked (including invalidated by using an online social advertising platform’s tools), except for the following exceptions:
Facebook ad account related information is removed 30 days after the respective customer terminates the dsocial contract or 60 days after the ad account is disconnected by the user
Snapchat record is removed within 1 day after it’s no longer used to access ad accounts, or after 14 days of inactivity to access the catalogs
Event logs / application data stored in dsocial (which deletion is described above)
Data stored in back-ups are deleted in accordance with our standard data management cycle, for example the backup records are deleted from the application database after 90 days
The user data and other service related personal data described above are also used to resolve technical issues and for troubleshooting (e.g. to verify taken actions (logs) in order to determine suspected misuse or to investigate and remedy errors in the services or billing), for quality control, product development and to improve usability, to analyze trends/feature use by pulling aggregated metrics, for market research and analysis, as well as to investigate, and confirm potential misuse of our services and/or breaches of laws, contracts, terms or policies.
All processing under this section is based on our legitimate interests in maintaining, evaluating and improving our services, including to provide customers with agreed services, ensuring security and availability of the services, to help us understand how our services are used and how campaigns perform, for resource management, and to gain insights which help us dedicate our resources and efforts better.