Introduction
AdFixus Pty Ltd (“AdFixus”, “we”, “us”, or “our”) is committed to adhering to the principles and requirements set forth by the Transparency and Consent Framework (TCF) of the Interactive Advertising Bureau (IAB) Europe. This statement outlines our compliance measures and provides transparency regarding our data processing practices within the AdFixus Platform, as detailed in our Platform Privacy Policy.
Public Attestation of Compliance
AdFixus declares its compliance with the TCF Policies, including adherence to data processing purposes, legal bases, consent management practices, and transparency obligations. Our implementation of the TCF includes the following key practices:
Transparency and Consent: We implement the TCF Policies to ensure that end-users are provided with clear and accessible information regarding data processing purposes, categories of data collected, and data recipients. Clients are responsible for obtaining and communicating consent information to AdFixus as required under applicable laws and TCF guidelines.
Legal Basis for Processing: AdFixus processes data only under legitimate legal bases, including consent and legitimate interest, as defined under applicable privacy laws and the TCF. Clients are responsible for obtaining valid consent for data processing purposes as defined by the TCF.
Consent Management: We maintain a robust consent management system that records and manages end-user consent status, ensuring that data processing activities are aligned with consent preferences and the TCF Policies. If consent is not obtained, Clients must implement the DNT Feature, which prevents identifier creation, by setting the DNT flag ('Consent: dnt = true') within related cookies.
Data Minimisation and Security: AdFixus implements stringent data minimisation measures and adopts ISO27001:2022 certified security protocols to safeguard personal data throughout its lifecycle. Data is encrypted in transit and at rest using industry-standard cryptographic protocols.
Data Subject Rights: AdFixus upholds data subject rights as provided under the GDPR, CCPA, and other applicable regulations, including access, rectification, deletion, and objection to processing. Clients are responsible for facilitating consumer rights requests, and AdFixus will cooperate as necessary.
Data Profiling and Retention: AdFixus does not create, maintain, or monetise Visitor profiles. Data, including AdFixus Identifiers and Visitor Data, is processed in memory and not stored, except for fraud prevention and security purposes, which are retained for a maximum of 90 days before secure deletion.
Data Transfers and International Compliance: Where personal data may be transferred internationally, AdFixus ensures appropriate safeguards, such as Standard Contractual Clauses (SCCs), are in place to comply with applicable laws.
Public Access to Compliance Information
Our public attestation of TCF compliance can be accessed at the following URL:https://www.adfixus.com/tcf-complianceFor further information regarding our data processing practices, data subject rights, or to report any concerns regarding compliance with the TCF, please contact us at privacy@adfixus.com.
Updates to this Statement
AdFixus reserves the right to update this TCF Compliance Statement as necessary to reflect changes in TCF requirements, applicable privacy laws, or our data processing practices. The last update date is provided below.
Last updated on 9 May 2025