Privacy Policy

We collect the following categories of data:

Data you provide directly: name, email address, company name, messages sent through the contact form.

Technical data collected automatically: IP address, browser type, operating system, device data, pages visited, timestamps.

Data collected through our service: IP addresses of visitors to protected websites, device fingerprints, click patterns, session data.

Important: ClickDefend is a cybersecurity service for detecting and preventing click fraud. For this reason, data processing is done for legitimate security purposes, not for marketing or behavioural tracking.

Unlike traditional analytics services, we do not use Google Consent Mode v2 or similar marketing cookie consent mechanisms, as our purpose is exclusively detecting fraudulent activity, not profiling users for advertising.

The legal basis for data processing is legitimate interest (Art. 6(1)(f) GDPR) - protecting our clients against financial losses caused by click fraud.

ClickDefend offers an optional heatmaps functionality for analysing visitor behaviour on your website.

Integration responsibility: If you use the heatmaps functionality, it is your responsibility as a platform user to ensure that:

• You correctly integrate our script using the ClickDefend API
• You inform your website visitors about this data collection
• You update your website's privacy policy to include this functionality
• You obtain necessary consent according to applicable legislation

ClickDefend provides technical documentation and compliant integration guides through our API.

Data is stored on secure servers in the European Union. We implement appropriate technical and organisational measures for data protection:

• Encryption in transit (TLS/SSL) and at rest
• Role-based access control
• Continuous monitoring and audit logging
• Regular backups and recovery plan

Retention period: Active client data is kept for the duration of the contract. Data about fraudulent IPs may be kept indefinitely to protect the global user network.

IP addresses identified as being involved in fraudulent activities may be shared within the ClickDefend global protection network. This allows all users to benefit from improved protection.

We do not sell or transfer personal data to third parties for marketing purposes. We may share data only in the following situations:

• With service providers who help us operate the platform (hosting, payment processing)
• When required by law (competent authorities, court orders)
• To protect our legal rights

Under GDPR, you have the following rights:

• Right of access - you can request a copy of your personal data
• Right to rectification - you can correct inaccurate data
• Right to erasure - you can request deletion of data (with certain exceptions)
• Right to restriction - you can limit data processing
• Right to portability - you can receive data in a structured format
• Right to object - you can object to processing based on legitimate interest

To exercise these rights, contact us at dpo@clickdefend.ro.

For any questions related to data protection, you can contact us at:

DPO Email: dpo@clickdefend.ro

General Email: contact@clickdefend.ro

If you believe your rights have been violated, you have the right to file a complaint with the National Supervisory Authority for Personal Data Processing (ANSPDCP) - www.dataprotection.ro