Our Commitment to GDPR
TOKANO Native Ad Network is fully committed to compliance with the General Data Protection Regulation (GDPR). This page outlines how we collect, process, store, and protect personal data of individuals within the European Union (EU) and European Economic Area (EEA). We respect your privacy rights and provide you with full control over your personal data.
This GDPR compliance statement applies to all users, publishers, and advertisers from the EU/EEA.
Data Controller Information
Under GDPR, TOKANO acts as the data controller for personal data collected through our platform. Our registered business information and contact details are available upon request for data protection inquiries.
- Data Controller: TOKANO Native Ad Network
- Contact: privacy@tokanosystem.info
- DPO: We have appointed a Data Protection Officer responsible for overseeing GDPR compliance.
Your GDPR Rights
Under GDPR, individuals have the following rights regarding their personal data:
- Right to Access: You can request a copy of all personal data we hold about you.
- Right to Rectification: You can request correction of inaccurate or incomplete data.
- Right to Erasure (Right to be Forgotten): You can request deletion of your personal data.
- Right to Restrict Processing: You can request limitation on how we use your data.
- Right to Data Portability: You can receive your data in a structured, machine-readable format.
- Right to Object: You can object to processing based on legitimate interests or direct marketing.
- Right to Withdraw Consent: You can withdraw consent at any time for data processing activities.
- Right to Lodge a Complaint: You can file a complaint with your local data protection authority.
Lawful Basis for Processing
We process personal data under the following lawful bases as defined by GDPR:
- Consent: When you explicitly agree to data processing (e.g., newsletter subscription, cookie consent).
- Contract: Processing necessary to fulfill our contractual obligations (e.g., publisher/advertiser agreements).
- Legal Obligation: Processing required to comply with applicable laws (e.g., tax reporting, fraud prevention).
- Legitimate Interests: Processing necessary for our legitimate business interests, provided it does not override your rights.
Data We Collect & Process
We collect and process the following categories of personal data:
- Identity Data: Name, username, email address, company name.
- Contact Data: Billing address, payment details (PayPal, bank, Wise, USDT wallet).
- Technical Data: IP address, browser type, device information, operating system.
- Usage Data: Pages visited, time spent, referral URLs, ad interactions.
- Financial Data: Revenue shares, payout history, tax information.
Data Retention Periods
We retain personal data only for as long as necessary for the purposes outlined in this policy:
- Active Accounts: Data retained for the duration of your account activity plus 2 years.
- Closed Accounts: Minimal data retained for 7 years for tax and legal compliance, then securely deleted.
- Payment Records: Retained for 7 years as required by financial regulations.
- Log Files: Retained for 12 months for security and fraud prevention purposes.
Cookies & Tracking Technologies
We use cookies and similar technologies to enhance user experience and provide our services. You have the right to control cookie usage through your browser settings. We provide a cookie consent banner for EU/EEA users to manage preferences.
- Essential Cookies: Required for platform functionality (cannot be disabled).
- Analytics Cookies: Help us understand user behavior and improve our platform.
- Marketing Cookies: Used to deliver relevant advertisements (requires consent).
- Third-Party Cookies: Set by advertisers and partners (subject to their own policies).
Data Security Measures
We implement comprehensive security measures to protect your personal data:
- SSL/TLS encryption for all data transmission
- AES-256 encryption for stored sensitive data
- Regular security audits and penetration testing
- Role-based access control for internal systems
- AI-powered fraud detection and anomaly monitoring
- Automated backup systems with encrypted storage
Data Breach Notification
In the unlikely event of a personal data breach, we will notify affected users and the relevant supervisory authority within 72 hours of becoming aware of the breach, as required by GDPR Article 33. We maintain an incident response plan to minimize impact and restore security promptly.
International Data Transfers
As a global platform, we may transfer personal data outside the EU/EEA. When we do, we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission, to protect your data regardless of where it is processed.
Contact Our DPO
For any GDPR-related inquiries, requests, or complaints, please contact our Data Protection Officer:
privacy@tokanosystem.info
We aim to respond to all GDPR requests within 30 days of receipt.