RapidStream complies with the most common regulations to protect users’ privacy

• GDPR - General Data Protection Regulation
• CCPA - California Consumer Privacy Act
• COPPA - Children’s Online Privacy Protection Act

GDPR

Aside from the IP address of users, we do not store any personal information. The transfer to Ad Servers only occurs when a valid IAB TCF string is provided to us. All further GDPR-relevant aspects, such as privacy policy or right of withdrawal, can be found on our product page

CCPA

The California Privacy Act adds User Agent and Device ID as personally identifiable information (PII) in addition to GDPR. We extract the input parameter ‘usPrivacy’ - syntax according to IAB specifications. If the flag is set, as a first step, we replace all information (IP, user agent, device ID) with the string ‘CCPA’.

COPPA

There are two ways to handle COPPA-compliant content:

In principle, a parameter ‘coppa=1’ can be delivered with the request and forwarded as such to the AdServer In this case, the calling service already determines whether the content falls under youth protection guidelines

The broadcasted content is made known to our service through EPG Catalog Ingest In the process, the EPG titles are equipped with the meta-information ‘genres’ - a comma-separated list of genres such as kids or children A conditional setting needs to be set for the AdServer