Privacy Policy

General Data Protection Regulation (GDPR) Privacy Policy

General Data Protection Regulation (GDPR) Privacy Policy

Last updated on: December 7, 2021

1. INTRODUCTION

1.1 Acast, along with its direct and indirect subsidiaries, is committed to protecting your privacy and we always aim to achieve a high level of protection for your personal information. Through this Privacy Policy ("Policy") we aim to explain what type of personal data Acast collects and processes, how we collect your personal data and crucially, why we collect it. The information is directed to listeners, podcasters, customers and newsletter subscribers of Acast ("you" or "your").

1.2 By using Acast as the host of your podcast (and any Acast tool associated with this), by purchasing advertising and/or sponsorship products and services from Acast and/or by using the Acast application ("Acast App"), website or by listening to Acast hosted podcasts through any third party platform (together the "Acast Services"), you do so with the knowledge that your data will be collected and processed as described in this Policy.

1.3 Acast AB (publ), company reg. no. 556946-8498 or another Acast group company, if specifically indicated in this Policy, (“Acast”, “us”, “we” or “our”) is the data controller responsible for the processing of your personal data according to this Policy. If you are listening from outside of the EEA, Switzerland or the UK, please read our Rest of World Privacy Policy.

1.4 It is important for you to understand that by using the Acast Services, you accept the practices described in this Policy. Consequently, if you do not agree to the terms of this Policy, we ask you to not use the Acast Services.

We reserve the right to modify or amend the terms of this Policy at any time. When we make material changes to this Policy, we’ll notify you via a message on our website or Acast App. Any changes to this Policy will become effective as of the date that appears at the very beginning of this document in the section “Last updated on”. Your continued use of the Acast Services following the posting of changes will be deemed an acceptance of those changes.

2. YOUR PERSONAL DATA RIGHTS

As an individual subject to privacy laws applicable in the EEA, Switzerland or the UK, including the General Data Protection Regulation 2016/69 (“GDPR”), you have the following rights:

2.1 Right of Access - You have the right, upon request, to be informed of the personal data we collect about you, a copy of which will be provided free of charge. However, we may charge a reasonable fee to comply with requests for further copies of the same information or when a request is manifestly unfounded or excessive, particularly if it is repetitive.

  • If you are a listener accessing podcasts through the Acast App, you can submit an Access Request by going to 'Settings' – 'User Privacy' – 'Request my user profile'.
  • Alternatively, please contact us at privacy@acast.com

2.2 Right to rectification - You have the right to request that we amend or update your personal data where you have identified that it is inaccurate or incomplete.

  • To do this please contact us at privacy@acast.com

2.3 Right to erasure - In certain circumstances, you have the right to request that we delete your personal data.

  • If you are a signed-in user in the Acast App, you can request that we delete your personal data by going to 'Settings' – 'User Privacy' – 'Withdraw consent'. Please note that this will result in your account being deleted.
  • Alternatively, please contact us at privacy@acast.com

2.4 Right to restrict processing - In certain circumstances, you have the right to request that we temporarily or permanently restrict the processing of some or all of your personal data.

  • To do this please contact us at privacy@acast.com

2.5 Right to data portability - In certain circumstances, you have the right to request a copy of your personal data in an electronically retrievable form and the right to use that data in other services.

  • To do this please contact us at privacy@acast.com

2.6 Right to object to processing - You have a right to object to the processing of your personal data on grounds relating to your particular situation, and an absolute right to object to the processing of your personal data for direct marketing purposes.

  • To do this please contact us at privacy@acast.com

2.7 Right to withdraw consent - When we process your personal data based on your consent, you have the right to withdraw your consent at any time. The withdrawal of consent shall however not affect the lawfulness of processing based on your consent before its withdrawal.

  • If you are a signed-in user in the Acast App, you can withdraw your consent by going to 'Settings' – 'User Privacy' – 'Withdraw consent' or by contacting us at privacy@acast.com. Please note that a withdrawal of consent will result in your account being deleted.

2.8 Right to lodge a complaint with the Data Supervisory Authority - If you believe your personal data is not being processed in accordance with applicable privacy laws, please contact us directly at privacy@acast.com. You also have the right to lodge a complaint with the relevant data supervisory authority in your jurisdiction.

3. PERSONAL DATA WE PROCESS AND WHY

3.1 LISTENERS

To understand how our listeners interact with Acast and to provide you the Acast Services, we collect some data that is personal to you. Below we outline the categories of personal data we collect and use depending on what sort of user you are.

General
  • Explanation - We process your data when you access podcasts on the Acast App and website (including play.acast.com) without signing-in, or when you listen to Acast-hosted podcasts via (i) an Acast Embed Player placed on a third-party website/app or (ii) a third-party distribution channel.

  • Legal basis - The processing of your personal data is based on our legitimate interest. We have performed a balancing test and have concluded that the processing of your data will have minimal impact to your privacy and that it is necessary to continue to provide you with the Acast Services.

  • Categories - We may process the following categories of personal data when you listen to Acast’s podcasts through any of the mediums mentioned above:
    - IP address.
    - User Agent.
    - X-Session-ID.
    - User ID.

  • Why? - We process this data in order to:
    - Make the Acast Services available to you.
    - Validate you as a listener.
    - Identify the device you are using and to deliver content to your podcast player.
    - Deliver advertisements based on your general (non-precise) location.
    - Customize frequency and language of marketing and advertising messages.
    - Provide aggregated listening reports to our podcasters and/or customers.
    - Create and publish aggregated podcast audience reports by sharing your data with audience measurement vendors.
    - Analyze and attribute the effectiveness of podcast advertising by working with advertising measurement vendors.
    - Combine personal data collected from you with data received from other third parties, including data received from data providers, to create audience segments and deliver audience-targeted advertisements.   
    - Compile statistics or aggregated data reports for analytics, marketing, promotion and advertising purposes for Acast and/or third parties.
    - Evaluate, test and develop new Acast features, technologies, products and/or services.
    - Understand, diagnose, troubleshoot and fix issues with the Acast Services. 
    - Prevent, detect or block fraudulent behaviour.
    - Comply with any legal obligation Acast may have.

  • Retention period - Your personal data is retained for 30 days after collection. Thereafter, we may retain anonymized data for analysis and information purposes.
Acast App Listeners – Using the app with an signed-in user account (in addition to General)
  • Explanation - In addition to the information provided under General, if you access podcasts via a signed-in user account in the Acast App, we collect and process additional data to create your unique user profile and provide you with a customized user experience that is relevant to you and your interests.

  • Legal basis - The processing of your personal data is based on your consent.

  • Categories - In addition to the information processed under General, we may process the following categories of personal data when you sign-in to the Acast App to listen to podcasts:
    - E-mail address.
    - Profile name.
    - Gender.
    - Date of birth.
    - Password.
    - Facebook ID/Google Plus ID/Apple ID (only for users that sign-in through their Facebook, Google or Apple account).
    - Profile picture (only for users that sign-in through their Facebook, Google or Apple account).
    - Account settings.
    - Device ID.
    - Payment details and history (if applicable).
    - Listening history.
    - Search history.
    - Podcasts shows you subscribe to.
    - Podcast categories you have marked as being of interest to you.

  • Why? - In addition to the processing purposes listed under General, we process the data listed above in order to:
    - Confirm your identity and age.
    - Give you access to your account and enable you to update your user profile.
    - Provide targeted advertising and general direct marketing based on the demographics data provided by you.
    - Ascertain that you have made required payments before accessing Acast+ content, i.e. Acast’s premium tier content.
    - Manage your Acast+ membership (if any), including by sharing your e-mail address with podcaster hosting the Acast+ content.
    - Obtain an overview of your listening history and make suggestions on podcast shows you may be interested in based on this.

  • Retention period - Your personal data is retained for as long as you don’t delete your user account in the Acast App. Thereafter, we may retain anonymized data for analysis and information purposes.   

3.2 PODCASTERS

  • Explanation - Regardless whether you are a natural person or a representative of a podcaster who is a legal person, we process your data in order to provide you/the podcaster access to our services in connection with podcasts owned or controlled by you.

  • Legal basis - Generally, the processing of your personal data is necessary for the performance of our contract with you. In some cases, the processing of your personal data is based on our legitimate interest, for example if you are a representative of a podcaster who is a legal person, or where we a pursuing a legitimate business purpose. We have performed a balancing test and have concluded that the processing of your data will have minimal impact to your privacy and that it is necessary to fulfil the contract with the podcaster you represent or continue to carry out our business operations, including providing you/the podcaster with the Acast Services.

  • Categories - We may process the following categories of personal data when you (or in your capacity as a representative of the podcaster) enter into an agreement with Acast:
    - Name.
    - Email address.
    - Telephone number.
    - Username and password.
    - Invoicing and payment details.
    - Purchase order information.
    - IP address.

  • Why? - We process this data in order to:
    - Give you/the podcaster access to Acast’s services for uploading, managing, distributing and monetising podcasts.
    - Give you/the podcaster access to Acast’s tool for sale and management of advertisements and sponsorships (if applicable).
    - Make payments to you/the podcaster in relation to advertisements and sponsorships sold (if applicable) and provide information related to such payments.
    - Give you/the podcaster access to anonymized statistics related to the podcasts, such as number of listens and demographic data.
    - Give you/the podcaster access to statistics related to the sale of advertisements inserted into the podcasts.
    - Create custom audiences to exclude you/the podcaster from our target audience across multiple platforms, such as Facebook and Google.
    - Communicate with you/the podcaster and provide support in the event of technical, financial or other issues.
    - Compile statistics for analytical, marketing, promotional and advertising purposes.
    - Evaluate, test and develop new Acast features, technologies, products and/or services.
    - Understand, diagnose, troubleshoot and fix issues with the Acast Services.
    - Prevent, detect and block fraudulent behaviour.
    - Comply with any legal obligation Acast may have.

  • Retention period - Your personal data is retained for the duration of the agreement and will be kept for a reasonable period of time thereafter in order to comply with any legal, accounting or reporting obligation Acast may have.

3.3 CUSTOMERS

Existing customer
  • Explanation - Regardless of whether you are a natural person or a representative of a customer who is a legal person, we process your data in order to offer you/the customer to purchase ads/campaigns and administer the contractual relationship with you/the customer to the extent an ad/campaign has been purchased. The Acast group company that enters into the agreement with you/the customer is the data controller for the processing of personal data related to you/the customer.

  • Legal basis - Generally, the processing of your personal data is necessary for the performance of our contract with you/the customer. In some cases, the processing of your personal data is based on our legitimate interest, for example if you are a representative of a customer who is a legal person, or where we are pursuing a legitimate business purpose. We have performed a balancing test and have concluded that the processing of your data will have minimal impact to your privacy and the processing is necessary to fulfil the contract with the customer you represent or continue to carry out our business operations, including providing you/the customer with the Acast Services.

  • Categories - We may process the following categories of personal data when you (or in your capacity as a representative of the customer) enter into an agreement with Acast:
    - Name.
    - Email address.
    - Telephone number.
    - Invoicing and payment details.
    - Purchase order information.

  • Why? - We process this data in order to:
    - Provide you/the customer with offers, information and marketing (e.g. provide offers on future campaigns).
    - Manage/administer current/ongoing customer relationship (to the extent an ad/campaign has been purchased).
    - Provide assistance and support in connection with follow-up questions/matters related to an ongoing or completed campaign.
    - Receive and administer invoicing and payments in relation to advertisements sold (if applicable) and provide information related to such payments.
    - Give you/the customer access to anonymized statistics related to the ads/campaigns.
    - Communicate with you/the customer and provide support in the event of technical, financial or other issues.
    - Compile statistics for analytical, marketing, promotional and advertising purposes.
    - Evaluate, test and develop new Acast features, technologies, products and/or services.
    - Understand, diagnose, troubleshoot and fix issues with the Acast service.
    - Prevent, detect and block fraudulent behaviour.
    - Comply with any legal obligation Acast may have.

  • Retention period - Your personal data is retained for the duration of the agreement and will be kept for a reasonable period of time thereafter in order to provide new offers/information and/or comply with any legal, accounting or reporting obligation Acast may have.
Potential customer
  • Explanation - Regardless of whether you are a natural person or a representative of a potential customer who is a legal person, we process your data in order to evaluate business opportunities with you/the potential customer to purchase ads/campaigns and enter into a contractual relationship with Acast.

  • Legal basis - The processing of your personal data is based on our legitimate interest. We have performed a balancing test and have concluded that the processing of your data will have minimal impact to your privacy and the processing is necessary to evaluate possible business opportunities between you/the potential customer and Acast.

  • Categories - We may process the following categories of personal data when you (or in your capacity as a representative of the customer) engage in business discussions with Acast:
    - Name.
    - Email address.
    - Telephone number.

  • Why? - We process this data in order to:
    - Evaluate possible business opportunities with you/the potential customer to purchase ads/campaigns and enter into a contractual relationship with Acast.
    - Communicate with you/the potential customer and provide assistance in connection with a future/potential campaign.
    - Evaluate, test and develop new Acast features, technologies, products and/or services.
    - Comply with any legal obligation Acast may have.

  • Retention period - Your personal data is retained for as long as we are evaluating possible business opportunities with you/the potential customer and will be kept for a reasonable period of time thereafter in order to provide new Acast offers/information that may be relevant to you/the potential customer.

3.4 CUSTOMER SUPPORT

  • Explanation - We process your data when you access our user support system on the Acast website or e-mail our support team in order to provide you with podcast-related assistance.
  • Legal basis -  The processing of your personal data is based on our legitimate interest. We have performed a legitimate interest assessment  and have concluded that the processing of your data will have minimal impact to your privacy and that it is necessary to provide you with the support you may require.
  • Categories - We may process the following categories of personal data when you access or e-mail Acast support:
    - Name.
    - Email address.
    - User ID.
    - Your communication with us, including necessary information regarding your support enquiry.
  • Why? -  We process this data in order to:
    - Confirm your identity as an Acast user.
    - Communicate with you.
    - Answer your questions and find a solution to the issue.
    - Understand, diagnose, troubleshoot and fix issues with the Acast service.
    -  Prevent, detect or block fraudulent behavior.
    -  Comply with any legal obligation Acast may have.
  • Retention period - Your personal data is retained for as long as necessary to fulfil your support request and will be kept for a reasonable period of time thereafter.  However, we may retain the email and other communication between you and Acast for internal monitoring purposes.

3.5 NEWSLETTER SUBSCRIBERS

  • Explanation - We process your data when you subscribe to Acast’s newsletters in order to send you relevant information regarding events, news and offerings that might be of interest to you.
  • Legal basis - The processing of your personal data is based on your consent.
  • Categories - We may process the following categories of personal data when you sign-up to Acast’s newsletters:
    - Name.
    - E-mail address.
  • Why? - We process this data in order to:
    - Send you relevant information regarding events, news and offerings that we think you might be interested in.
    - Compile statistics for analytical, marketing, promotional or advertising purposes.
    - Prevent, detect or block fraudulent behavior.
    - Comply with any legal obligation Acast may have.
  • Retention period – Your personal data is retained until you choose to unsubscribe from our newsletter by using the opt-out feature provided in the newsletter.

4. WHO DOES ACAST SHARE YOUR DATA WITH?

4.1 In order for Acast to provide you with the Acast services, we may share your personal data with certain third-parties. Such third-parties are only allowed to use your personal data in line with our instructions and may not use your personal data for their own purposes. They are also obliged to protect your personal data. For example, we share your personal data with the following companies:

- Amazon who provides hosting services through AWS.

- AdsWizz who provides audio advertising services.

- Podsights who provides ad attribution services.

- Intercom who provides a customer support tool.

- Google who provides a mail server for support.

-  Netsuite who provides a service to process podcasters/customer purchase orders.

-  Salesforce who provides a customer relationship manager system.

- Mailchimp who provides a service for sending newsletters.

- Hubspot who provides a service to empower our blog.

- Certain podcasters and customers.

4.2 We may also share your personal data with other companies in the Acast group (including our subsidiaries) to carry out our daily business operations and continue to provide you with the Acast Services.

4.3 We may be obliged to share your data with public authorities at their request in accordance with applicable legislation or a decision by a competent authority or if we have a legitimate interest in disclosing the data.

5. WHERE WE PROCESS YOUR PERSONAL DATA

5.1 Certain recipients (our service providers and other third parties) who process your personal data may be located in a country outside of the EEA, Switzerland or the UK. Where such data transfer occurs, we will make sure that an appropriate data transfer mechanism is put in place to protect your personal data. This includes entering into a contract with the recipient in which the EU Commission's standard contractual clauses (available at the EU Commission’s website) have been incorporated. Consequently, transfers of personal data to such recipients are based on a decision by the European Commission that an adequate level of protection of the personal data is ensured in accordance with GDPR articles 45.1 and 46.

5.2 For transfers of your personal data to other Acast group companies based outside of the EEA, Switzerland or the UK we will rely on the data transfer agreement entered between all Acast group companies in which the EU Commission’s standard contractual clauses (available at the EU Commission’s website) have been incorporated.  

6. CHILDREN

Our Services are not directed at children under the age of 16 and we therefore do not knowingly collect personal data from children under 16 years. If you become aware that Acast has unknowingly collected personal information from a child under the age of 16, we will make reasonable efforts to delete this information from our database as soon as practically possible.

7. HOW TO CONTACT US

If you want to request information about our Privacy Policy or use your rights as expressed above, you can contact us at:

Acast AB (publ)
Company reg. no. 556946-8498
Kungsgatan 28
Stockholm 111 35
Sweden
Email: privacy@acast.com