Data Privacy

In this video we show you, how we handle data privacy and what you can do on your side to make sure you fulfill the regulations

RapidStream complies with the most common regulations to protect users’ privacy

  • GDPR - General Data Protection Regulation
  • CCPA - California Consumer Privacy Act
  • COPPA - Children’s Online Privacy Protection Act


Aside from the IP address of users, we do not store any personal information. The transfer to Ad Servers only occurs when a valid IAB TCF string is provided to us. All further GDPR-relevant aspects, such as privacy policy or right of withdrawal, can be found on our product page


The California Privacy Act adds User Agent and Device ID as personally identifiable information (PII) in addition to GDPR. We extract the input parameter ‘usPrivacy’ - syntax according to IAB specifications. If the flag is set, as a first step, we replace all information (IP, user agent, device ID) with the string ‘CCPA’.


There are two ways to handle COPPA-compliant content:

In principle, a parameter ‘coppa=1’ can be delivered with the request and forwarded as such to the AdServer In this case, the calling service already determines whether the content falls under youth protection guidelines

The broadcasted content is made known to our service through EPG Catalog Ingest In the process, the EPG titles are equipped with the meta-information ‘genres’ - a comma-separated list of genres such as kids or children A conditional setting needs to be set for the AdServer