GDPR Compliance

This article tries to answer most frequently asked questions by Oxyleads customers regarding GDPR compliance. It is intended for general information purposes only and does not constitute legal advice. We recommend seeking specific legal advice by own legal counsel regarding any legal issues related to GDPR application or requirements.

What is the GDPR?

The General Data Protection Regulation (“GDPR”) is a new European privacy regulation that came into force on 25th of May 2018 and replaced the EU Data Protection Directive 95/46/EC. The GDPR aims to strengthen the security and protection of personal data in the EU and harmonize EU data protection law.

To whom does the GDPR apply?

GDPR applies to all entities established in the EU.

GDPR also applies to all entities that are not established in EU whose data processing activities are related to:

Does Oxyleads comply with the GDPR?

Yes, we do. We are based outside of EU and we do not monitor the behavior of data subjects in EU, however, we have business customers in EU and we offer our services there. This means that GDPR applies to our activities related to processing data of our EU customers. Our privacy team is reviewing our current service features and practices to ensure we are compliant with GDPR requirements.

Is Oxyleads a data controller?

In all cases where we provide services to our customers or process customer data Oxyleads acts as a data controller. Usually, the processing of customer data is necessary for providing our services or to be compliant with legal obligations. In other cases, we ask for our customers’ consent or base processing activities on our legitimate interests.

Moreover, Oxyleads is a data controller in terms of data of our B2B leads.

If you are based in EU and use Oxyleads services for commercial purposes, you are also a data controller and are subject to GDPR requirements.

What about the data of our B2B leads?

The data of our B2B leads comes from publicly available sources. We collect this data under the legal basis of our legitimate interests to provide easily accessible and manageable information about companies, decision makers and other important people in B2B relationships.

Please note that we have no direct relationship with EU based data subjects that can be found while using Oxyleads services. We do not offer any services to them and we do not monitor their behavior (as it is described in GDPR recitals 23 and 24), therefore GDPR does not apply to us when we process B2B leads data.

However, the GDPR might apply to you, if you are using our database to offer goods and services to data subjects based in EU or if you are based in EU.

As we want to help our clients be compliant with all applicable data protection laws, we provide additional information about the data that we process in our databases:

How can Oxyleads customers become GDPR compliant?

If GDPR applies to your activities, we suggest taking into consideration the following requirements:

As a data controller, you might be subject to other GDPR requirements, but the ones provided above in our opinion are the most important.

How Oxyleads helps customers to be compliant with GDPR?

We are transparent about how we process all personal data. We have publicly accessible privacy policy that explains our data processing activities. We also ensure that data subjects by contacting us could exercise their rights related to data protection. We implemented procedures for exercising following rights of EU data subjects:

What if I need more information?

If you have any privacy-related questions, please contact us at [email protected].

Cookie Policy

This website uses cookies to improve the user experience. To learn more about our cookie policy, please check our Cookie Policy.

Accept