Quantcast’s Adserver Credential Policy is intended to protect the confidential and other information contained in both our systems and databases and those of our third party partners and vendors when provided such access (collectively, “systems”). This document sets out the procedures followed when granting access to, or terminating the access of, a Quantcast employee or contractor (collectively, “employees”) to any system.
See Systems Access Policy in Spanish, Italian, German, and French.
Password Compliance
Adserver passcodes are unique for each log in and created using a password generator. Each
passcode includes 8 characters, letters, mixed cases, numbers, and no similar characters. Quantcast provides a password reset for all credentials every 42 days.
Grant of Access
Quantcast grants employee access to credentials on a need-to-know basis with the principle of least privilege. This means that user permissions and system functionality are evaluated and access is restricted to resources required for users to perform their duties.
Termination of Access
Upon termination or resignation of an employee, the HR department will send an email to a specified email alias (e.g., “Departures”) notifying the Adserver Password controller to reset the passcodes.
Audit of Access
On an annual basis, the Risk and Compliance Team oversees an audit of the systems to ensure that no departed employees continue to have access to the systems.