Website Privacy Policy
Date of Last Update: September 25, 2024
Data protection and privacy are important to Irdeto. To maintain the trust of our personnel, business partners and customers, Irdeto will comply with applicable law and observe fair information principles through our adoption of policies and accountable processes.
Scope
Irdeto is committed to ensuring that your privacy is protected. This privacy policy (this “Policy”) sets out how Irdeto collects, uses, and transfers personal information (which includes personal data as defined in the General Data Protection Regulation (“GDPR”) and the GDPR as amended and transposed into the laws of the United Kingdom pursuant to the European Union (Withdrawal) Act 2018 and the European Union (Withdrawal Agreement) Act 2020 (“UK GDPR”), i.e. any information relating to an identified or identifiable natural person) that you provide when you use irdeto.com domain websites, websites of our subsidiaries (in both cases, herein referred to as the “Websites”), and where otherwise described below. Otherwise, it does not cover any other data collection or processing, including, without limitation, data collection practices of other web pages to which we link or data that we or our affiliates collect offline or through web sites, products, or services that do not display a direct link to this Policy. Occasionally, we may refer to this Policy in notices and consent requests related to surveys and special-purpose web pages, for example, our Careers web pages; under such circumstances, this statement applies as modified in the particular notice or consent request (e.g., with respect to types of data collected or purposes of collection). “Irdeto,” or “we,” “our,” or “us” refers to Irdeto B.V. and its affiliated entities.
Eu-U.S. Data Privacy Framework (DPF) and Swiss-U.S. DPF and the UK Extension to the DPF
Irdeto USA, Inc. (hereinafter referred to as "Irdeto US") participates in and complies with the EU-U.S. DPF, UK Extension to the EU-U.S. DPF, and Swiss-U.S. DPF as set forth by the U.S. Department of Commerce. Irdeto US has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. DPF Principles with regard to the processing of personal data received from the European Union and the United Kingdom in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF. Irdeto US has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) Program, and to view our certification, please visit https://www.dataprivacyframework.gov/
Irdeto US is responsible for the processing of personal data it receives, under each DPF Framework, and subsequently transfers to a third party acting as an agent on its behalf. Irdeto US complies with the DPF Principles for all onward transfers of personal data from the EU, the UK and Switzerland, including the onward transfer liability provisions.
With respect to personal data received or transferred pursuant to the DPF, Irdeto US is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission. In certain situations, we may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://www.jamsadr.com/dpf-dispute-resolution.
Under certain conditions, more fully described on the DPF website, you may be entitled to invoke binding arbitration when other dispute resolution procedures have been exhausted.
Types of Data Collected and Collection Methods
Information you submit. On the Websites, when you request information, subscribe for a service, register as a user, respond to an online survey or otherwise actively send us data, we usually collect data such as your name, email address(es), mailing address(es), telephone number(s), and certain information related to the business you represent. In each such instance, you will know what data we collect through this Website, because you actively submit it. This includes, for example, when you fill out the contact form or request a technical document (such as a White Paper) by filling out your contact details. In these instances, as well as in the others listed below, Irdeto serves as a Controller of the data.
When you provide us with personal information about your contacts we will only use this information for the specific reason for which it is provided.
If you believe that one of your contacts has provided us with your personal information and you would like to request that it be removed from our database, please contact us at dataprivacy@irdeto.com.
Information we automatically collect. As part of the standard operation of the Websites, we may collect information automatically and store it in log files from your computer or mobile device, including but not limited to your browser type, operating system, IP address and the domain name from which you accessed the Website, and if you are accessing our Website with your mobile device, type of mobile device. In addition, we may collect information about how you use our Website, such as the date and time of your visit, the areas or pages viewed, the amount of time you spend viewing this Website, the number of times you return and other click-stream data.
Technologies such as cookies, beacons, tags and scripts or similar technologies are used by Irdeto and our partners, affiliates, website analytics or service providers such as hosting providers and email service providers. These technologies are used in analyzing trends, administering the site, tracking users’ movements around the Website and to gather demographic information about our user base as a whole. We may receive reports based on the use of these technologies by these companies on an individual as well as aggregated basis. Please see the section below called Cookies and Similar Technologies below for more information. To read more about cookies and tracking technologies generally, see http://www.allaboutcookies.org/. To read Irdeto’s Cookie Policy, please click here.
To the extent required by applicable law, we will obtain your consent before placing cookies or similar technologies on your computer. Users can control the use of cookies at the individual browser level. If you reject cookies, you may still use our site, but your ability to use some features or areas of our site may be limited.
To exercise your choice in regards to cookies, please use the cookie consent manager.
Third parties whom we partner with use Local Storage Objects (LSOs) such as HTML5 to store content information and preferences. Third parties with whom we partner to provide certain features on our site or to display advertising based upon your web browsing activity use LSOs such as HTML 5 to collect and store information. Various browsers may offer their own management tools for removing HTML5. To manage Flash cookies, please click here.
We partner with a third party to display advertising on our website or to manage our advertising on other sites. Our third party partner may use cookies or similar technologies in order to provide you advertising based upon your browsing activities and interests. If you wish to opt out of interest-based advertising, click here (or if located in the European Union click here). Please note you will continue to receive generic ads.
Legal Basis for Processing
We only process your personal information where we have legal basis to do so. Pursuant to the processing described herein, our legal bases are:
Performance of a contract: When we process your personal information as necessary to enter into a contract with you or to perform our obligations under a contract with you.
Legitimate interest: When we process your personal information as necessary for our legitimate interests and does not override your rights.
Compliance with law or regulation: When we process your personal information as necessary to comply with applicable laws.
Consent: When we have your consent to process your personal information. This legal basis does not apply where another legal basis is present. You can withdraw your consent by contacting us (see the section ‘Contact Us’ below).
We may process your personal information for more than one legal ground depending on the specific purpose for which we are using your personal information.
For an overview of the relevant legal bases per processing purpose please see the section ‘Collection Purposes and Use of Data on Websites’ below.
Collection Purposes and Use of Data on Websites
We may use the data we collect on the Websites for the following general purposes:
- To respond to the request that you sent us such as your request for information or your request to subscribe to a service we offer;
- To occasionally send you emails about upcoming events, White Papers (or other technical documents), company news and the like;
- To administer, protect and improve our Website and our systems;
- To better understand the preferences of our visitors;
- To identify server problems;
- To compile aggregated statistics about Website usage;
- To help personalize your experience of our Website;
- To improve our products and services and other internal business purposes;
- To provide you with information about our technologies, product or service releases, news, and other communications;
- To comply with legal requirements or protecting or exercising our or others’ legal rights.
Disclosures of Personally Identifiable Information
When collected pursuant to the Websites, we are not in the business of selling or renting your information to telemarketers and do not share your personally identifiable information with others, except that we may freely share your information within the Irdeto group of companies. Portions of our Websites may offer services or information specific to identified partners or customers (such as training services for customers) and in such cases, we may share your personal information and activities on our Website with the identified partners or customers for their business use. We may also share your information as required by law or in the interest of protecting or exercising our or others’ legal rights, e.g., without limitation, in connection with requests from law enforcement officials and in connection with court proceedings. We may share or transfer your information in connection with a prospective or actual sale, merger, transfer or other reorganization of all or parts of our business. You will be notified via email and/or a prominent notice on our Websites of any change in ownership or uses of your personally identifiable information, as well as any choices you may have regarding your personally identifiable information. Also, we reserve the right to fully use and disclose any information collected via the Websites that is not in personally identifiable form.
Cookies and Similar Technology
We and our partners use various tools to collect data when you visit our sites and apps, including cookies, pixels, localStorage, and other similar technologies. Some of these technologies store data in the browser or on your device. Other technologies may use network-related or other information to recognize your device (e.g., IP address). Our Services use these technologies, for example, when you first request a web page and data is then stored on your computer or other device so the website or mobile application can access personal information when you make subsequent requests for pages from that Service. These technologies may also be used to collect and store information about your usage of the Services, such as pages you have visited, other content you viewed, and search history.
We and our partners may also use these technologies to gather personal information about how you view and use our Services and content and to connect your activity with other data we store about you. We and our partners may collect your personally identifiable information about your online activities over time and across different websites when you use the Services. The use of these technologies helps us serve you better by understanding what you are interested in, tracking trends, measuring the effectiveness of ads, saving your preferences, and storing information you may want to retrieve on a regular basis. We also allow specific, approved partners to collect data from your browser or device for advertising and measurement purposes using their own similar tools.
To the extent required by applicable law, we will obtain your consent before placing cookies or similar technologies on your computer. Your web browser can also be set to allow you to control these technologies, such as whether you will accept cookies, reject cookies, or to notify you each time a cookie is sent to your browser. If your browser is set to reject cookies, websites that are cookie-enabled will not recognize you when you return to the website, and some website functionality may be lost. The Help section of your browser may tell you how to prevent your browser from accepting these technologies, such as cookies. To find out more about cookies, visit www.aboutcookies.org. Depending on the make and model of your phone, you may be able to use device settings to opt out of the use of certain device IDs for targeted advertising.
Some browsers permit the user to send a “Do Not Track” (“DNT”) preference to websites that the user visits indicating that the user does not wish to be tracked over time and across websites. Because there is not yet a common understanding of how to interpret DNT, we do not currently respond to the DNT signal on our websites. We do, however, respond to global privacy preferences when required by law.
Irdeto Piracy Control and Cybercrime Management
When applicable, Irdeto’s collection, transfer, and use of Personal Information are for the purpose of delivering or providing the solutions and services listed below to its customers; performing accounting functions related thereto; and conducting any other activities necessary or appropriate in delivering said solutions and services to its customers. When conducting these activities, Irdeto is a “data processor” and only manages Personal Information at the direction of its customers. It is Irdeto’s customers’ who act as the “data controller”. Irdeto does not control any Personal Information and/or access to, or use of such personal Data is incidental to completing its contractual requirements to its customers.
In some aspects of reporting offered by Irdeto as part of Irdeto Piracy and Cybercrime Management, Irdeto processes data made available to the public by the applicable internet or network protocol in order to commercialize our findings based on content piracy trends identified. Irdeto is responsible for determining the purposes and means for processing the data we collect from such protocols, and such data may include computer identifiers for purposes of understanding origination, including those that equate to personal data (namely the IP address). Irdeto maintains a legitimate interest in the processing for the purposes of creating the reports in helping secure copyrighted material as a leading content security company in the marketplace. Any personal data stored for the purpose stated shall only be maintained for as long as necessary to accomplish such purpose. If you wish to request access, rectification, erasure, or portability of your personal data, or otherwise impose a restriction or objection to the processing, please submit your request in the “contact us” section of this policy below.
Interactive Features/Surveys
Our Websites may provide interactive features (such as surveys) that allow you to disclose information directly to us. Your participation in such interactive features is completely voluntary and Irdeto assumes no obligations or responsibility with respect to the information you provide or share through such interactive features. To participate in these interactive features, we may require you to register with us and provide certain information such as your name, company name, email address, location, phone number, and desired display name (which may be viewable by other users of the interactive features). We may use the information you provide during the registration process for analytical and development purposes (such as to make product or service enhancements) and to enable you to use the interactive features and to manage your account. You may also be able to personalize our interactive features by voluntarily providing additional information such as your location, instant message contact information, web site address, occupation, and other information. Our interactive features may also allow you to upload an avatar or other graphical representation of yourself. If you voluntarily provide such additional information, it may be viewable by other users of the interactive features – so you should not provide information you do not want other users to see.
Where We Store and Process Data
Data collected for the Websites is housed in the United States of America and the Netherlands. The Irdeto group of companies also has servers, contractors and employees around the world in various locations, including, without limitation, other parts of the United States of America and the European Economic Area.
International Data Transfers
We are in-part based in the United States. Any information you provide to us through use of the Services may be stored and processed, transferred between, and accessed from the United States and other countries which may not guarantee the same level of protection of personal information as the one in which you reside. We may need to send your personal information overseas as part of our normal business operations.
If you are located in the UK, EEA or Switzerland, we will comply with applicable legal requirements regarding providing appropriate safeguards for the transfer of personal information to recipients in countries for which the European Commission, or the relevant authority in the UK or Switzerland (as the case may be) has not issued an adequacy decision. These safeguards may include data transfer agreements (such as ‘standard contractual clauses’), copies of which may be obtained by contacting us as indicated in the Contact Us section of this Privacy Policy and we may be legally permitted to transfer your personal information outside the UK, the EEA and/or Switzerland using other methods. In all cases any transfer of your personal information will be compliant with applicable data protection law.
Specifically with respect to transfers to the United States, please refer to the section ‘EU-U.S. DATA PRIVACY FRAMEWORK (DPF) AND SWISS-U.S. DPF AND UK EXTENSION TO THE DPF’ above.
Security
The security of your personal information is important to us. We follow generally accepted standards to protect the personal information submitted to us, both during transmission and once we receive it. Transmissions over the Internet are never 100% secure or error-free. However, we take appropriate technical and organizational measures to protect your personal information from loss, misuse, and unauthorized access, disclosure, alteration, and destruction. It is your responsibility to safeguard any password and User ID you use to access the Website and to notify us through website@irdeto.com if you ever suspect that this password or User ID has been compromised. You are solely responsible for any unauthorized use of the Website conducted via your password and User ID.
Irdeto Customer Care Portals
Irdeto customers typically access a Customer Care system, promoted on https://irdeto.com/support/, when requesting technical assistance and other customer activities. These systems are database driven and require a user account to be accessed. The systems use the SSL (Secure Sockets Layer) protocol to ensure secure data transfer.
Irdeto Partner Portal
Irdeto Partners can access applicable information for the Irdeto Partners Program, such as enabling sharing and exchange of information to and from partners on Irdeto’s products, services and potential cooperation opportunities, by accessing the portal promoted on https://partners.irdeto.com. These systems are database driven and require a user account to be accessed. The systems use the SSL (Secure Sockets Layer) protocol to ensure secure data transfer.
Career Section
Our Career Section is managed through a 3rd party vendor application. This application uses the SSL (Secure Sockets Layer) protocol to ensure secure data transfer. Irdeto doesn’t capture data itself other than temporary page request data which is deleted immediately after the session ends. Most of the data captured through 3rd party systems is kept indefinitely (but see below on ‘Opt-out’ section). Temporary cookie data is deleted right after the session ends. Persistent cookies are stored on a user’s hard drive until it expires (approximately 4 months) or until the user deletes the cookie.
Opt-out
In connection with Irdeto, third party systems that utilize user profiles (Career Section, Irdeto Customer Care portals) allow the user to delete their profiles and change their information and passwords whenever they like.
In connection with promotions or other projects, we may ask you specifically whether you have objections against a certain kind of data use or sharing. If you opt-out under such circumstances, we will respect your decision. To opt-out of receiving further commercial email or to unsubscribe from services, please notify us through website@irdeto.com. Please note that our affiliates and other data recipients have their own data privacy policies which may differ from ours, and you would have to contact them separately with respect to opt-out requests.
Your Rights and Data Retention
Depending on your location (including if you are located in the EU, Switzerland, or in the UK) you may have certain rights with respect to your Personal Information, as described below.
In accordance with law, we verify your identity in connection with any request in order to prevent unauthorized access of your data. Failure to verify your identity may result in your request not being processed. Furthermore, these rights are subject to certain exemptions established by law, such as to safeguard the public interest (e.g. the prevention or detection of crime) and our interests (e.g. the maintenance of legal privilege). Where required by applicable law, we will notify you if we deny your request and notify you of the reasons we are unable to honor your request.
- Access: You have the right to access your personal information in many circumstances.
- Rectification: You can ask us to have inaccurate personal information amended.
- Erasure: You have a right to delete any personal information the we no longer have a lawful ground to use.
- Withdraw consent: Where processing is based on consent, you can withdraw any consents to processing that you have given us and prevent further processing if there is no other legitimate ground upon which Irdeto can process your personal data. This means we stop that particular processing but it will not affect the validity of the processing based on your consent before you withdrew it.;
- Restriction: You can require certain personal data to be marked as restricted for processing in certain circumstances
- Portability: You can ask us to transmit the personal data that you have provided to us and we still hold about you to a third party electronically.
- Object: You have a right to object to any processing based on the legitimate interests legal ground for reasons connected to your individual situation. However, we have the right to continue this processing if we believe we have a legitimate overriding reason to continue. Where we process your personal information for direct marketing purposes, including any profiling related to the direct marketing, you have a right to object at any time in which case we shall no longer process your personal data for such purposes. To exercise this right, you can by following the instructions included in any direct marketing email you receive from us.
- Raise a complaint: You can raise a complaint about our processing with the data protection regulator in your jurisdiction. In the Netherlands, it is the Dutch data protection authority (Autoriteit Persoonsgegevens http://www.autoriteitpersoonsgegevens.nl) (for an overview of data protection regulators, please visit: https://edpb.europa.eu/about-edpb/about-edpb/members_en). In Switzerland, it is the Federal Data Protection and Information Commissioner (https://www.edoeb.admin.ch/edoeb/en/home.html). In the UK, it is the Information Commissioner’s Office (https://ico.org.uk/)
If you wish to make use of one or more of the rights included above, if your personally identifiable information changes, or if you no longer desire our service, you may make changes on our member information page (or by emailing our Privacy Team at dataprivacy@irdeto.com) or by contacting us by telephone or postal mail at the contact information listed below. For such requests, we will respond to your request without undue delay within 30 days (subject to the right to extend this period by an additional two months in certain limited situations).
How long we keep your personal information will depend on our business needs and any legal requirements to keep the personal information in question. We retain personal data for as long as is necessary for the relevant purpose. For the Websites, we will retain your information for as long as your account is active or as needed to provide you services. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
In the case of data collected from information you submitted through our Websites, if you do not wish to continue receiving the occasional marketing emails from Irdeto, you shall be provided an opt-out through such email communications which you may exercise by using the subscription management mechanism available in the bottom of our emails. In the case of opting out of all Irdeto communications, your personal information will be deleted from our database. You may also request an opt-out or deletion from our database by emailing our Customer Support at website@irdeto.com.
Links to Other Websites
Our Websites may contain links to other websites of interest. However, once you have used these links to leave our Websites, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such websites, and such websites are not governed by this Policy. You should exercise caution and look at the Policy applicable to the website in question.
Children´s Privacy
The Websites are intended for adults. We do not intentionally or knowingly collect personally identifiable information from children under the age of 16, and we request that individuals under the age of 16 not submit any personal information on this Website.
Effective Date, Amendments
This Policy is effective as of September 25, 2024. We reserve the right to change this statement from time to time and in our sole discretion. We reserve the right to change, modify, add or remove portions of this statement at any time but will alert you that changes have been made by indicating on the statement the date it was last updated. When you visit the site, you are accepting the current version of this Policy as posted on the Website at that time. If we make any material changes we will notify you by means of a notice on this Website prior to the change becoming effective. We recommend that users revisit this Policy on occasion to learn of any changes.
Contact Us
Please feel free to contact us with any comments, questions, complaints or suggestions you might have regarding the information practices described in this Policy by emailing us at dataprivacy@irdeto.com, or write to us at the following postal address:
Irdeto B.V.
ATTN: Data Protection Officer
Taurus Avenue 105
2132 LS Hoofddorp
the Netherlands