At fraudLog ("fraudLog, LLC") we believe that our customers ("end-users") should be treated the same as we would want to be treated. Therefore we would like you to know how we collect and use the data we may have that can be related to your identity. To achieve a full understanding and awareness of our operations and ethics, you should read this policy in its entirety.
- Collection and Use of Personally Identifiable Information
fraudLog only collects personally identifiable data such as the name, address, phone number and/or email address when it's voluntarily provided by end-users while using the services. This type of information is collected via online forms but not limited to other communication methods such as electronic, written and verbal. This information is not shared with any third-parties other than those that are absolutely dependents to have this information collected for functional usage, such as payment processors.
- End-user to server connection information
fraudLog requires IP address, device information, user agent (web browser) and location information to associate with account signup for the following purposes:
a. Maintenance of an account
b. User account security provisions
c. Prevent and counteract events of abuse monitoring and TOS violations
- Website visitor statistics data collection
As a vital function of a website operator, and during your visit to our website and all of its subdomains and other forms of connection to fraudLog service, we collect non-personally-identifying information (unless used with personally identifiable keys obtained through a visitor's ISP provider with a legal warrant) and only that web browsers and servers generally make available. Among the data collected are the IP address (anonymized IP address for all EU visitors), visitor uniqueness (with a help of non-personable identifying browser cookie), browser type and version, browser language, referring URL (excluding personally identifiable variables), visitor ISP provider, hostname, timezone, operating system, screen resolution, and the geo location of midpoint Internet connection that provides us with the country/state and city of the ISPs network distribution line instead of an exact visitor location.
Website visitor data is utilized to
a. Monitor security of the operations
b. Maintain end-user and company account security
c. Prevent and counteract events of abuse monitoring and TOS violations
d. Study an overall fraudLog visitor statistics as an aggregated (combined) data This information is not shared with any third-party and not archived beyond its usability cycle. fraudLog provides an option to everyone to opt out from being a collective in website visitor statistics at the following URL: https://www.fraudlog.com/opt-out.htm
Nevertheless, beyond opting out from website statistics data collection, the security operations will continue to rely on and monitor each device connection programmatically to aid in preventing and terminating any service abuse or compromise in security of data.
- End-user service communications and marketing messaging
Although we do not actively pursue marketing for fraudLog services, at any point of time of operations, we may decide to send occasional end-user service related notifications. Should such approach arise, each end-user will be provided with a full control of communication settings to limit and control such communications.
- User account and billing information
There is no need to create a service account to use some of the service features, such as determining your current connection information or using the freely available public software tools as provided. However, advanced services such as Website Visitor Statistics services require end-users to create an account, which necessitates providing of personal information that is used to associate each user with a specific account or/and to pay for premium service features.
fraudLog provides the following type of accounts:
a. Free service accounts (limited availability). This type of accounts do not require any personal information to be provided beyond a name (real or fictions), an email address (including anonymous) and basic account settings that may request providing a regional geographical information to determine end-user's timezone or other locality or personal computer devices associated settings.
b. Premium service accounts. This type of accounts require providing partial or full billing information that contains personal data such as billing address, name, payment type account number, expiration date, and CVV (card verification value). These are required approve and maintain recurring payments and to prevent financial and other types of fraud.
fraudLog uses user provided account and payment information to authenticate each account, provide users with service notifications as instructed by each end-user, process payments and to keep services secure by preventing spam, fraud and abuse.
fraudLog does not share any of the shared user information with any third-party except for the payment processor(s) and associated processing mid-points that serve as a bridge between the payment processor and fraudLog user interface.
Although fraudLog does not share each user's account's tracking data as collected by each end-user, fraudLog accounts have facilities to enable each end-user with options to assign authorized account users and to publicly share limited statistics that they collect about the websites for which end-users collect the visitor statistics. End-users bear the full responsibility for using these options and are advised to carefully execute any information sharing with either authorized users or by making their website statistics public.
- Account sign up and conversion tracking
We store an aggregated data about our visitors' actions on our website to understand better how they use it. We use this data to improve their experience with our services.
- Links (URL pointers)
fraudLog provides website visitor statistics services that allow its end-users to analyze and interact with the data provided. It utilizes URL format to point to the external referrers such as those that originate from the referring search engines and other websites. As a fraudLog user, you have an option to follow the URLs that are displayed among other statistics associated with the websites that you collect statistical information about. When you click on these links, the referring website that use visitor statistics services can analyze your clicks and thus detect your visits to their websites, collecting your IP information and the origin from which you had obtained their website's URL. This may enable third parties to detect that your visits originate form the website statistical service as provided by fraudLog.
Cookie is a small segment of data that is stored on your computer or a mobile device. Cookies used by fraudLog are used to implement technologies to allow usage of fraudLog services, enable and personalize its services, store opt-in and opt-out visitor preferences and to collect visitor statistics that is used for essential website security, operations. Advertisers also place their cookies to enable AD services and optimize their ADs.
- Advertisers and associated Ad Partners
To sustain and improve its operations, fraudLog generates its revenue through premium subscriber services and through third-party enabled advertising.
As an end-user, you have an option to opt-out from advertisements being displayed under your fraudLog account by purchasing a premium fraudLog subscription that disables any ads being displayed under your fraudLog account, therefore disabling any advertising third-party from collecting information about you.
- Non-Personal Data
We may share and/or disclose non-personal data, such as aggregated information of number of fraudLog users who engaged in certain activities and historical data of user interaction with fraudLog services, including any polls or user forum statistics.
- Law, Public Interest and Harm
- Informational Security
fraudLog sets the informational security a top priority. It uses a combination of administrative and technical interactions to maintain the security of data that belongs to both fraudLog and its customers. This includes service side data encryption for critical data and using Transport Layer Security ("TLS") to encrypt transmission of data between fraudLog and its customers.
- fraudLog's role as data processor
As data processor, fraudLog collects and processes data as instructed and captured by a Customer. It does not share data with any third-party other than the Customer and its appointed entities that Customer grants the direct or indirect access to processed data. fraudLog follows specific instruction as provided by a customer to collect, store and retain the data. The data is securely stored and hosted within the same data center in its appointed hosting service provider.
Once a service agreement between the Customer and fraudLog expires, the Customer's personal data and all account statistics data is archived and kept for a grace period to allow for resuming and renewal the services and as long as necessary for the legitimate business interests, for legal reasons, and to prevent cause and harm. The subscription payment account information (such as an account number and payment expiration date) is deleted immediately upon service subscription expiration.
- Data Erasure and Access
Per compliance requirements of GDPR, EU data subjects have the right to request access to complete deletion of personal data by data controllers and processors. If your personal data pertains your fraudLog account, login to your account submit a technical support ticket to initiate erasure of your fraudLog account and associated data. If you would like to request an erasure of your visit information to fraudLog website, please contact us via email with the proof from your ISP that verifies you as an owner of data to be erased from our system.
- Third Parties Privacy Policies
fraudLog utilizes the following third-party billing services that provide the following privacy policies
PayPal - https://www.paypal.com/us/webapps/mpp/ua/privacy-full
Authorize.Net - https://www.authorize.net/company/privacy/
- General Data Protection Regulation (GDPR) (EU) Compliance