Privacy Notices
This notice was last modified on and has an effective date of July 1, 2024.
We have recently updated our Privacy Notice. Be sure to review it carefully to understand our privacy practices.
This Privacy Notice (“Notice”) provides information about how NeuStar, Inc., Neustar Information Services, Inc., and their wholly owned subsidiaries and affiliates, (collectively, “Neustar,” “we,” “us,” or “our”) handles personal information and describes the rights you may have regarding your personal information. Use of our online and offline services constitutes your agreement to the terms of this Notice. If you do not agree with the terms of this Notice, please do not use our services.
Neustar is now a TransUnion Company. This Notice does not cover practices of other TransUnion businesses or products, nor your interactions with us as a job applicant. Please see those respective privacy notices listed on the left-hand panel of this page for more information on those privacy practices.
Analytics Disclosure: We use Google Analytics 360, including Google Tag Manager and Google Ads. If you would like to learn more about Google Analytics, or opt out of this data collection and sharing activity, please use this link: https://www.google.com/policies/privacy/partners/. Please visit our Cookies and Similar Technologies Notice for information regarding our tracking technologies.
Visit our Privacy Choices Portal page to exercise your privacy rights and choices.
Notice at Collection: We collect personal information as detailed in this Notice. The categories of personal information that we collect and from whom are listed below under “Personal information we collect,” and the purposes for which we collect and use personal information are detailed below under “Purpose for collecting and use of personal information.” To learn more about your privacy rights, including your right to opt out of the sale or sharing of your personal information, please navigate to the “Privacy rights and choices” sections below. Our retention practices are outlined below under “Retaining personal information.”
Neustar may collect information that identifies or relates to a specific individual and other information described below in the course of operating our websites and providing our products and services to business customers. This information may or may not be linked to an identifiable individual, as described in this Notice.
Categories of Data Types. Neustar may collect various types of information, which, depending on the circumstances, may constitute personal information, including:
This information may or may not constitute “personal information” or “personal data” under applicable law, depending on the context in which the data is collected and any other data to which is linked or linkable.
Categories of Data Sources. Neustar collects this information from a wide variety of sources, both on and offline, such as:
The below chart describes the categories of personal information we may have collected in the past 12 months, and from whom we collected the personal information, listed by category of personal information.
Neustar Data Category | Statuory Data Category (California) | Explanation | Categories of Sources |
---|---|---|---|
Personally Identified Information | Identifiers This may include the following categories of sensitive personal information: Social Security numbers |
PII is information that directly identifies or is used to identify a specific individual, including name, address, telephone number, email address, and in specific, limited cases, government identifiers. |
|
Customer Relationship Management | Identifiers Commercial Information Inferences drawn from other personal information |
CRM data is the data and information associated with a company's relationship with customers throughout the customer lifecycle, and may include PII and/or pseudonymous IDs, along with demographic, behavioral, contextual, attribute, and inferential data about their customers and prospects. CRM data may reflect a consumer's online and/or offline interactions with a particular advertiser, publisher, or retailer. This information is usually pseudonymized for use in connection with Neustar's online services, meaning it cannot be used to identify you without additional data, and we use technical and organization measures to segregate the data and prevent unauthorized identification of individuals. |
|
Pseudonymous IDs | Internet or other similar electronic network activity | Pseudonymous IDs includes information linked to DII data such as cookies, MAIDs, statistical/ probabilistic
IDs, IP addresses, and other third-party identifiers, including TV identifiers. Pseudonymous IDs do not, by themselves, identify a specific individual, but can be combined with other information for that purpose. |
|
Attribute Data | Inferences drawn from other personal information Geolocation Data Internet or other similar electronic network activity This may include the following categories of sensitive personal information: Information revealing racial or ethnic origin, or religious or philosophical beliefs |
Our customers may use insights derived from their own CRM data or licensed from reputable third parties on our platforms, including, without limitation, geolocation data collected by mobile application providers.
In addition, Neustar collects and aggregates consumer survey data, household/neighborhood level demographic data, purchasing data, and third-party licensed purchasing and lifestyle data to make predictions about the preferences and interests of large groups of similar consumers. Generally, attribute data takes the form of a numeric or alpha-numeric code that corresponds to a market category or segment. Attribute data also includes inferences drawn from other data categories to create a profile about an individual. |
|
Geolocation Data | Geolocation Data This may include the following categories of sensitive information: precise geolocation data |
Geolocation Data is information about the location of an individual or device derived through IP address and/or location-based services such as GPS level latitude-longitude coordinates or Wi-Fi triangulation. |
|
Log Data | Internet or other similar electronic network activity | Log Data is information that is collected and logged in the ordinary course of operating our business, and may include standard Internet Log Data, Event Data, and/or Service Data:
Internet Log Data. Standard Internet Log Data includes the Internet page request that is automatically collected when you visit a website, the URL of the page requested, IP Address, browser type, browser language, configuration settings, operating system information, mobile service provider, search terms, date and time stamps, and Pseudonymous IDs such as Cookies and service specific information such as Event Data and Service Data. Event Data. We collect information about ads you see (advertiser ID, campaign ID), where and when you see the ad (date/time stamp, URL), and how you react to the ads you see (click, hover, convert, etc.). This information may be associated with Pseudonymous IDs such as DII and other pseudonymous data such as Log Data and Attribute Data. |
|
We describe the purpose for collecting personal information, listed by categories of personal information, in the chart below. Please note that a specific piece of personal information may fall into one or more categories of personal information.
We may also use your personal information for other purposes disclosed at the time you provide your personal information or otherwise with your consent.
Neustar Data Category | Statuory Data Category (California) | Categories of Purposes |
---|---|---|
PII | Identifiers This may include the following categories of sensitive personal information: Social Security numbers |
|
Customer Relationship Management | Identifiers Commercial Information Inferences drawn from other personal information |
|
Pseudonymous IDs | Internet or other similar electronic network activity |
|
Attribute Data | Inferences drawn from other personal information Commercial Information Internet or other similar electronic network activity This may include the following categories of sensitive personal information: Information revealing racial or ethnic origin, or religious or philosophical beliefs |
|
Geolocation Data | Geolocation Data This may include the following categories of sensitive personal information: Precise geolocation data |
|
Log Data | Internet or other similar electronic network activity |
|
In the prior 12 months, we may have disclosed (business purpose) or sold/shared (commercial purpose) your personal information to different third parties, as detailed in the chart below. Please note that Neustar may share your personal information for a targeted advertising purpose.
In accordance with applicable laws and their defined terms – NOTICE: We and this website may sell your sensitive personal data. The entity maintaining this website and notice is a data broker under Texas law. To conduct business in Texas, a data broker must register with the Texas Secretary of State (Texas SOS). Information about data broker registrants is available on the Texas SOS website.
The below chart summarizes the categories of third parties with whom Personal Information may be sold/shared or disclosed.
Neustar Data Category | Statuory Data Category (California) | Disclosed for a Business Purpose | Sold or Shared for a Commercial Purpose |
---|---|---|---|
Personally Identified Information | Identifiers This may include the following categories of sensitive personal information:Social Security numbers |
Neustar may disclose PII to our service providers under contracts that limit their use of data to that which is necessary to provide contracted services. Neustar may disclose PII collected in connection with our online properties to our formerly affiliated company, Neustar Security Services (“NSS”) for a limited period of time under contracts that limit use of that data to those consistent with the manner NSS used such data while affiliated with Neustar. |
|
Customer Relationship Management | Identifiers Commercial Information Inferences drawn from other personal information |
|
|
Pseudonymous IDs | Internet or other similar electronic network activity |
|
|
Attribute Data | Inferences drawn from other personal information Commercial Information Internet or other similar electronic network activity This may include the following categories of sensitive personal information: Information revealing racial or ethnic origin, or religious or philosophical beliefs. |
|
|
Geolocation Data | Geolocation Data This may include the following categories of sensitive personal information: Precise geolocation data. |
|
|
Log Data | Internet or other similar electronic network activity |
|
Neustar does not use or disclose personal information other than as described in the above chart, except for the following circumstances:
Neustar provides a variety of marketing, risk, communications, security, and registry solutions to help businesses and others make better decisions, better serve their customers, enable communications, and detect and respond to fraud, cybersecurity threats, and other malicious behavior. Customers may combine some or all features of our products and services described below.
Marketing Solutions. We provide a variety of services to online and offline advertisers and their agents through our marketing services offerings, including our Ad Advisor, Customer Analytics, Customer Experience and Customer Intelligence services.
Risk Solutions. We provide a variety of services to our customers through our risk solutions offerings, including our intelligence and reputation offerings.
Communications Solutions. Neustar provides a variety of services to communications services providers to ensure that calls are properly routed across telecommunications service provider networks. These services include Caller ID/Caller Name (CNAM) services and optimization, branded contact management, robocall detection and mitigation services, domestic and international number resolutions services, directory listings management, business listings, numbering and order management services, and other services provided to communications services providers and other businesses. Our use and disclosure of this information may be limited by contract.
General Health Related Audiences. Neustar creates certain audience segments based on our predictions about the likelihood that households assigned to a particular Segment Code or audience are more or less likely to use certain kinds of over-the-counter medications (e.g., cold or flu medications) or more or less likely to consume certain alcoholic beverages. These segments do not include or reflect individual or even household level behavior; rather, they are predictions based on survey responses from volunteer participants, which is then modeled to apply to broader groups of people who we think are more or less likely to have similar preferences. Advertisers who use these segments must comply with government regulation as well as industry best practices that apply to the delivery of such advertising.
Health Related Advertising. Neustar creates certain audience segments based on our predictions about the likelihood that households assigned to a particular Segment Code or audience are more or less likely to use certain kinds of over-the-counter medications (e.g., cold or flu medications) or more or less likely to consume certain alcoholic beverages. These segments do not include or reflect individual or even household level behavior.
Policy on Alcohol Advertising. You may not use ElementOne and/or AdAdvisor audience insights in connection with alcohol advertising unless you:
Political Audiences. Neustar creates certain audience segments based on our predictions about the likelihood that households assigned to a particular Segment Code or audience are more or less likely to be registered to vote, vote or have a certain particular political outlook. These segments do not include or reflect individual or even household level behavior and they are not derived from voter registration lists; rather, they are predictions based on information received from opt-in survey respondents from volunteer participants, which is then modeled to apply to broader groups of people who we think are more or less likely to have similar preferences. Advertisers who use these segments must comply with government regulation as well as industry best practices that apply to the delivery of such advertising.
Policy on Political Advertising. Neustar has, in the past, created ElementOne and/or AdAdvisor audience insights (including for use in AdAdvisor) derived from voter registration records. Neustar permitted use of these audiences exclusively for non-commercial political purposes, such as educational communications concerning an election, candidate for election, elected official, political or policy issue, or governmental proceeding, policy or process. Please note, Neustar has discontinued creation of these audiences effective April 1, 2020.
Credit Card Information. Neustar may collect credit card information when provided by our customers in payment for some of our services. This information is securely collected and transmitted by our vendor in accordance with Payment Card Industry standards and used and disclosed only for the purposes of receiving payment for our services.
As applicable under privacy laws, when Neustar is acting as a data controller you may take advantage of certain privacy rights, such as to request access, correction, or deletion of your personal information. You may also have the right to appeal a denial of your privacy rights.
To exercise your privacy rights – access, deletion, correction, opt-out, limitation – (subject to limitations and exceptions under applicable law), visit our Privacy Choices Portal page to submit a verifiable request, and find additional detail below.
To make an opt-out request or to limit our use of your sensitive personal information (subject to limitations and exceptions under applicable law), visit Your Privacy Choices.
In some instances, Neustar offers its services to customers as a service provider/data processor or subject to other exceptions under the applicable state privacy laws. Where Neustar is acting as a service provider/data processor, we are processing data on behalf of others who will provide you with applicable privacy rights.
Explanation of Privacy Rights and Choices
We do not discriminate against you based on your exercise of your privacy rights, although some of the functionality and features available on our websites may change or no longer be available to you.
In calendar year 2023, we received and responded to privacy requests as set forth in the table below. This data reflects requests received in 2023 from all individuals. This data is inclusive of NeuStar, Inc. as a registered data broker, pursuant to the California Data Broker Registration law.
Request Type | Requests Received | Requests Complied | Requests Denied* | Mean Days to Resolution | Median Days to Resolution |
---|---|---|---|---|---|
Deletion | 235 | 183 | 52 | 8 | 7 |
Correction | 34 | 21 | 13 | 8 | 7 |
Opt Out/Do Not Sell | 168 | 93 | 75 | 8 | 7 |
Limit Use of Sensitive Data | 157 | 89 | 68 | 8 | 7 |
Access Request/Right to Know | 235 | 183 | 52 | 1 | 1 |
* Requests may have been denied if (i) the individual’s information was not in our systems, (ii) we could not match the individual’s information to a unique identity in our systems, (iii) we were unable to verify the individual’s identity, or (iv) if an exception to compliance was applicable.
Using an authorized agent (with or without power of attorney) to submit an opt-out request or a request to limit the use of a consumer’s sensitive personal information: In order to submit an opt-out request or a request to limit on behalf of another consumer, please provide written permission, signed by the applicable consumer, authorizing the agent to submit the opt-out request. The name of the agent submitting the request must match the name on the authorization.
In order for us to locate the consumer’s record, please also include the consumer’s first and last name (middle name optional) and their address (including unit number, city, state, and zip code). You may also provide the consumer’s Social Security number and data of birth. While those fields are optional, this information makes it easier for Neustar to locate the consumer’s information and complete the request.
Using an authorized agent without power of attorney to submit a verifiable privacy request for access, correction, or deletion of a consumer’s personal information: In order to submit a verifiable request for access, correction, or deletion on behalf of another consumer, an authorized agent without power of attorney must provide one item from each of the two sections below.
a. Social Security number or a copy of a Social Security card issued by the Social Security Administration,
b. a certified or official copy of a birth certificate issued by an entity authorized to issue the birth certificate, or
c. a copy of a driver's license or an identification card issued by the motor vehicle administration or any other government issued identification.
This secondary identification must include or reference the same name as stated in the signed permission form. The submission must also include sufficient information for Neustar to locate the consumer’s file.
Using an authorized agent with power of attorney to submit a verifiable privacy request for access, correction, or deletion of a consumer’s personal information: In order to submit a request on behalf of another consumer, an authorized agent with power of attorney must provide the valid power of attorney executed under applicable law. The submission must also include sufficient information for us to locate the consumer’s file.
Documentation may be sent via the contact methods in the “Contact information” section below.
To protect the confidentiality of your data, you may choose to submit your data using confidentiality features offered by your email provider.
All personal information provided as part of this process will be deleted after verification has been completed.
Information for EEA, UK, and Switzerland Residents. Neustar honors confirmation, access, correction, objection, and erasure rights of data subjects under the EU's General Data Protection Regulation (GDPR). If you are resident in the European Economic Area (EEA), please visit our Privacy Choices Portal on our website using an IP address in the EEA to access our portal options. If you are an EEA resident but unable to access the portal from an IP address in Europe, please contact us at neustarpriv@transunion.com to initiate a manual process.
You can visit our Privacy Choices Portal if you wish to opt-out Neustar’s use of Personal Information about you using cookies, MAIDs, hashed emails, and other pseudonymous IDs or to learn more about and exercise any other rights you may have as a data subject under applicable law, including the EU’s General Data Protection Regulation (GDPR), Brazil’s Lei Geral de Proteção de Dados Pessoais (LGPD), and US State Privacy Laws.
Identity Data Management Platform (IDMP) & Multi-Touch Attribution (MTA). We collect the following data elements in connection with our IDMP and MTA service.
Based on the processes described above, with the exception of the transitory storage of full IP addresses, we pseudonymize all potential personal data, and associate this information with alphanumeric cookie IDs. This information is then aggregated to provide information about the number of unique impressions, engagements and conversions per campaign, advertiser, site, audience, or location. The aggregation process removes any cookie-level information, i.e., all potential personal data. We retain pseudonymous cookie-level data (events, hashed/truncated IP addresses, URLs) for up to 19 months, and aggregated events data for up to 18 months.
Marketing Mix Modeling (MMM). Personal data is not required for our MMM service. The following aggregated data may be provided by the data exporter. Please note that these are only examples of types of data collected and is subject to change after closer analysis and review of the customer's business needs.
Fraud, Risk & Compliance Products. At this time, Neustar does not offer its FRC products outside of the United States.
Information for Brazil Residents. Neustar honors access; confirmation; correction; anonymization, blocking or deletion; portability; information; and revocation rights of data subjects under Brazil’s Lei Geral de Proteção de Dados Pessoais (LGPD). If you are a resident in Brazil, please visit our Privacy Choices Portal using an IP address in Brazil to access our portal options. If you are a Brazil in resident but unable to access the portal from an IP address in Brazil, please contact us at neustarpriv@transunion.com to initiate a manual process.
LGPD is Brazil’s Lei Geral de Proteção de Dados Pessoais (LGPD), which went into effect in September 2020. Like the European Union’s General Data Protection Regulation (GDPR) and newly enacted US State laws, LGPD is a principle-based regulation, requiring personal data to be processed fairly, lawfully, and transparently for defined purposes only. Here is some additional information to explain how Neustar meets the LGPD’s requirements:
Explanation of Our Privacy Practices – Brazil Residents
1. What personal data does Neustar collect and how is LGPD compliance achieved?
The data Neustar processes varies from product to product (and sometimes from customer to customer) and is detailed in this Notice. To ensure compliance with LGPD and other privacy norms, Neustar treats any information that is or reasonably can be linked to an identifiable natural person (a "data subject") as "personal data." This includes obvious personal information such as name, address, telephone number, email address, etc., as well as persistent identifiers such as government issued IDs, IP addresses, cookie IDs, advertising IDs, precise location data, etc. when linked or linkable to identifiable individuals or households. We have implemented administrative, technical, and physical safeguards to maintain consumer privacy by segregating information that directly identifies an individual from machine or pseudonymous identifiers and deploying data access, governance, privacy, and confidentiality policies to maintain appropriate limits.
2. What is the legal basis for Neustar’s processing of personal data about Brazilian data subjects?
As permitted by Article 7 of LGPD, Neustar generally processes data as a controller to fulfill our legitimate interests or those of a third-party consistent with the data subject’s fundamental rights and liberties. In some cases, we may process data with the data subject’s consent or where the information has been made public by the data subject. Neustar also processes personal data as a service provider (processor) according to instructions provided by our controller/customers.
3. What mechanisms does Neustar use to support the transfer of personal data subject to LGPD to the United States and elsewhere?
Chapter V of the LGPD sets forth principles governing the international transfer of personal data. Among other things, the data controller may offer guarantees of compliance with the principles and data subject rights set forth in the LGPD by providing a) specific contractual clauses for a given transfer; b) standard contractual clauses; c) binding corporate rules; or d) regularly issued stamps, certificates and codes of conduct. Until such time as the Brazilian data protection authority issues approved standard contractual clauses, data transferred by Neustar from Brazil is governed by contracts previously approved for similar purposes by the European Commission.
4. How does Neustar comply with the LGPD principles?
Neustar adopted Privacy by Design principles in 2012 and has always complied with Fair Information Practice Principles (FIPPs). Neustar’s Privacy Principles are available at the beginning of this Notice and are consistent with the principles set out in LGPD. To ensure compliance with LGPD and other data protection requirements, we routinely review and update our Privacy Impact Assessments (PIAs), which serve as Data Protection Impact Assessments (DPIAs) when required by applicable law.
5. How will Neustar comply with other controller/processor obligations?
As previously indicated, Neustar adopted "Privacy by Design" principles in 2012, and since that time has implemented appropriate technical and organizational measure designed to implement data protection principles by default. As a matter of standard practice, we prepare privacy impact assessments for products/services involving personal data processing. Consistent with the requirements of the LGPD, Neustar’s PIA templates serve as DPIAs where the nature, scope, context, and purposes of personal data process is likely to result in a high risk to compliance with the to the LGPD’s general principles.
Processors in the United States have long been subject to data breach notification obligations, both to data subjects and to regulators, so we are familiar with these processes. Neustar continuously reviews and updates our privacy and security policies to reflect the highest standards. We are accountable for processing undertaken as a data controller, and as a processor we limit our activities via contract to processing undertaken at the direction and on behalf of the data processor. Neustar’s data governance architecture is designed to streamline and automate compliance with applicable law, including LGPD.
6. How will Neustar ensure compliance with a data subject rights under LGPD such as transparency/access/confirmation; deletion/erasure/anonymization; portability; revocation of consent; etc.?
Subject to the limitations contained in applicable data protection laws, including LGPD, Neustar honors all relevant data subject rights. Neustar does not use or permit the use of its services for automated individual decision-making that produces legal effects or otherwise significantly affects a data subject.
Our existing online request portal is designed to handle all data subject requests to exercise LGPD-established rights. Neustar will also honor requests submitted via email to neustarpriv@transunion.com.
7. How will Neustar ensure that it discloses information to the right person?
While certain opt-outs and subject access requests can be automated, it is extremely important to avoid release of personal data about one person to another. Accordingly, Neustar requires sufficient information about the individual's identity in order to ensure that the person making the request is the individual to whom the data relates (or someone authorized by the data subject to make that request). The amount of information needed depends on the nature of the data requested and the means through which it is submitted. For example, if the requestor provides a Cookie ID or places the request electronically, it may be possible to confirm that the Cookies match without requesting additional information. In other cases, we may require reasonable evidence of identity and/or presence in Brazil.
8. Who is Neustar’s Data Protection Officer?
Data Protection Officer:
Chaitanya Katikala
Transunion
555 West Adams Street, Chicago, IL 60661
EU Representative:
Neustar GmbH (Germany)
Große Bleichen 1-3
Hamburg
20354
Germany
9. Other questions:
If you have unanswered questions, feel free to contact us via email sent to: neustarpriv@transunion.com.
If you are visiting our website or using our services from outside the United States (US), including in the European Economic Area (EEA) or United Kingdom (UK), please be aware that your personal information may be transferred to the US and potentially other countries whose data protection laws may not be as protective as those in your country of residence. However, our collection, storage and use of your personal information will at all times be in accordance with this Notice wherever it is processed.
For transfers of personal information from the European Union (EU), UK, and Switzerland to the US: Neustar and its subsidiaries, (i.e., Administrative Services, LLC, Aggregate Knowledge, LLC., Data Solutions Services, LLC, MarketShare Holdings, Inc., Neustar Information Services, Inc., and NeuStar, Inc. collectively "Neustar") comply with the EU-US Data Privacy Framework (“EU-US DPF”), the UK Extension to the EU-US DPF, and the Swiss-US Data Privacy Framework (“Swiss-US DPF”) as set forth by the US Department of Commerce.
Neustar has certified to the US Department of Commerce that it adheres to the EU-US Data Privacy Framework Principles (“EU-US DPF Principles”) with regard to the processing of personal information received from the EU in reliance on the EU-US DPF and from the UK (and Gibraltar) in reliance on the UK Extension to the EU-US DPF. Neustar has certified to the US Department of Commerce that it adheres to the Swiss-US Data Privacy Framework Principles (“Swiss-US DPF Principles”) with regard to the processing of personal information received from Switzerland in reliance on the Swiss-US DPF. If there is any conflict between the terms in this Notice and the EU-US DPF Principles and/or the Swiss-US DPF Principles (collectively, the “DPF Principles”), the DPF Principles shall govern. To learn more about the Data Privacy Framework (“DPF”) program, and to view our certification, please visit. The Federal Trade Commission has jurisdiction over Neustar’s compliance with the DPF program.
In compliance with the EU-US DPF Principles, including the UK Extension of the EU-US DPF Principles and the Swiss-US DPF Principles, Neustar commits to resolve complaints about your privacy and Neustar’s collection or use of personal information transferred to the US pursuant to this Notice. EU, Swiss, and UK individuals with DPF inquiries or complaints should first contact Neustar via the methods outlined in the “Contact information” section below.
Neustar has further committed to refer unresolved privacy complaints under the DPF Principles to an independent recourse mechanism, Data Privacy Framework Services, operated by JAMS. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit EU-US Data Privacy Framework | JAMS Mediation, Arbitration, ADR Services (jamsadr.com) for more information and to file a complaint. This service is provided free of charge to you.
If your DPF compliant cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not otherwise resolved by other redress mechanisms. For more information about binding arbitration, visit here.
European residents may also opt-out of our use of cookies for online advertising at: www.youronlinechoices.com/uk.
Onward Transfers. Neustar may disclose personal information to subcontractors and third-party agents who assist Neustar in providing products and services to its customers. Before disclosing personal information to a subcontractor or third-party agent, Neustar will obtain assurances from the recipient that it will: (a) use the personal information only to assist Neustar in providing the services; (b) provide at least the same level of protection for personal information as required by the DPF Principles; and (c) notify Neustar if the recipient is no longer able to provide the required protections. Upon notice, Neustar will act promptly to stop and remediate unauthorized processing of personal information by a recipient. Neustar will remain liable for onward transfers to its subcontractors and third-party agents.
Neustar may also be required to disclose, and may disclose, personal information in response to lawful requests by public authorities, including for the purpose of meeting national security or law enforcement requirements. To the extent permitted, Neustar will inform its relevant customer or prospective customer before making such disclosure and provide it with a reasonable opportunity to object to such disclosure.
Neustar will not otherwise disclose personal information to third parties.
Our services are not intended for use by nor directed to individuals under the age of eighteen (18). We do not knowingly collect information from children under eighteen (18), and we do not knowingly create marketing segments or knowingly enable advertising targeted to children under eighteen (18). If we learn that we have collected or received personal information from individuals under the age of eighteen (18), we will delete the personal information or otherwise comply with applicable law. We do not knowingly sell personal information of children under the age of eighteen (18).
Parent or Guardian Privacy Opt-Out Request (child under 18 years)
If you believe we have collected personal information from individuals under the age of eighteen (18), a parent or guardian may make a data privacy opt-out request or limit our use of sensitive personal information (subject to limitations and exceptions under applicable law) by visiting our Privacy Choices Portal.
Neustar has implemented and maintains a comprehensive Information Security Program with reasonable administrative (policies, standards, and processes), physical, and technical controls designed to protect the confidentiality, integrity, and accessibility of your Personal Information.
We retain your personal information for as long as reasonably necessary to fulfill the purposes for which it was collected or processed, as described in this Notice. When determining retention periods, we consider our relationship with you and your information, the nature and sensitivity of the information, and what is reasonably necessary and proportionate to provide and improve our services. We also adjust retention periods to comply with our legal, reporting, or accounting obligations, to resolve disputes, and to enforce our agreements. We regularly review our retention periods and assess our data minimization practices, retaining the least amount of information for the shortest retention period, while still upholding all our obligations.
Neustar Service-Specific Cookie Retention
Website Cookies. We retain information collected through our websites for as long as your account is active or as needed to provide you services.
Services Cookies. We retain raw, cookie level data associated with our services for up to 18 months. At the time of collection, we also create aggregated data that cannot be re-associated with an individual cookie. We may retain this aggregated data for a longer period as required by law or otherwise necessary to resolve a dispute and enforce our agreements.
Please visit our Cookies and Similar Technologies Notice for additional information regarding TransUnion Companies’ tracking technologies.
In the event that we enter into, or intend to enter into, a transaction that alters the structure of our business, such as a reorganization, merger, acquisition, sale, joint venture, assignment, consolidation, transfer, change of control, or other disposition of all or any portion of our business, we may share your personal information. We may also share your personal information if we undergo bankruptcy or liquidation, in the course of such proceedings.
This Notice does not apply to other third-party sites or services. If you click on a link or browse to a third-party site from our site/service, your activity and interaction is subject to that third-party's rules and policies. We recommend reviewing the privacy statements on those other sites to understand their privacy practices and make an informed decision regarding your use or interaction with their site/service.
If you have questions or concerns regarding this Notice, our privacy practices and the protection of your personal information, or the privacy rights and choices available to you, you may contact us in the following ways:
Phone | |
Postal Mail | Neustar Privacy |
Data Protection Officer | Chaitanya Katikala Transunion 555 West Adams Street Chicago, IL 60661 |
EU Representative | Neustar GmbH (Germany) Große Bleichen 1-3 Hamburg 20354 Germany |
This Notice is subject to change at any time. If we make any changes to this Notice, we will post the revised Notice on this page with its effective date.
The credit scores provided are based on the VantageScore® 3.0 model. Lenders use a variety of credit scores and are likely to use a credit score different from VantageScore® 3.0 to assess your creditworthiness.
Subscription price is $29.95 per month (plus tax where applicable). Cancel anytime.