ATSC 3.0 Security Authority LLC (“A3SA”) operates, via a contractor, a proxy server to process requests from ATSC 3.0 receivers (such as televisions or set-top boxes) for cryptographic credentials to decrypt ATSC 3.0 television broadcast signals encrypted by Google’s Widevine technology pursuant to the A3SA content protection specifications.
Because such receivers use the Internet to make requests for decryption credentials, the proxy server is necessarily provided with the Internet protocol (“IP”) address of each receiver based on the Internet service used at its location (e.g., a household). As part of the decryption credentials request, the receiver also provides a unique device identifier to the proxy server. A3SA does not collect or authorize the collection on its behalf of any other personally identifiable information as part of the transaction to process a request for decryption credentials. Viewer data may be collected by third parties in the delivery of ATSC 3.0 broadcasts apart from A3SA’s decryption credentials transactions. Please refer to the applicable policies of these third parties for their privacy practices.
A3SA uses the IP address and device identifier to 1) process and fulfill requests for decryption credentials (i.e., to deliver to the requesting receiver decryption credentials that are enabled for that specific receiver), 2) to streamline subsequent requests from the same receiver, and 3) to monitor the performance and efficiency of the proxy server and to troubleshoot and fix problems which might arise. A3SA does not use or authorize the use of the IP address or device identifier for any other purpose (e.g., marketing to you) and does not provide either one to third parties, nor does it acquire marketing data from third parties to match up to the IP address and device identifier. A3SA may be legally required to preserve or disclose such information in response to a lawful order of a court or agency of government or law enforcement.
The logs of the A3SA proxy server which include the IP addresses and device identifiers are preserved only for as long as reasonably necessary to fulfill the purposes described above (generally anticipated to be up to sixty (60) days), and are then deleted.