GDPR Compliance: Protecting Your Data Rights
Learn how Ignitedata complies with the EU General Data Protection Regulation to ensure the highest standards of data protection for our European users.
Our Commitment to GDPR Compliance
Ignitedata is fully committed to complying with the General Data Protection Regulation (GDPR) to protect the privacy and data rights of our EU customers.
What is GDPR?
The General Data Protection Regulation (GDPR) is a comprehensive data protection law that came into effect in the European Union on May 25, 2018. It strengthens the data protection rights of EU residents and imposes strict rules on organizations that handle their personal data.
GDPR applies to all companies processing the personal data of individuals residing in the European Union, regardless of the company's location. As a global provider of B2B data solutions, Ignitedata recognizes the importance of GDPR compliance for our European customers.
Important Note
Our GDPR compliance extends to all data processing activities involving EU data subjects, regardless of whether the processing occurs within the EU or in other regions where we operate.
GDPR Data Protection Principles
Our data processing activities are guided by the seven core principles of GDPR
Lawfulness, Fairness & Transparency
We process personal data lawfully, fairly, and in a transparent manner in relation to the data subject.
Purpose Limitation
We collect personal data for specified, explicit, and legitimate purposes and do not process it further in a manner incompatible with those purposes.
Data Minimization
We only collect personal data that is adequate, relevant, and limited to what is necessary for the purposes for which it is processed.
Accuracy
We take reasonable steps to ensure personal data is accurate and, where necessary, kept up to date.
Storage Limitation
We keep personal data in a form which permits identification of data subjects for no longer than necessary.
Integrity & Confidentiality
We process personal data in a manner that ensures appropriate security, including protection against unauthorized or unlawful processing.
Accountability
We are responsible for, and able to demonstrate compliance with, all GDPR principles.
Your Rights Under GDPR
As an EU data subject, you have specific rights regarding your personal data
Right to Access
You have the right to obtain confirmation as to whether or not personal data concerning you is being processed, and access to that personal data.
Right to Rectification
You have the right to have inaccurate personal data rectified, or completed if it is incomplete.
Right to Erasure
You have the right to have personal data erased in certain circumstances (the "right to be forgotten").
Right to Restriction
You have the right to request the restriction or suppression of your personal data in specific situations.
Right to Data Portability
You have the right to receive your personal data in a structured, commonly used and machine-readable format.
Right to Object
You have the right to object to the processing of your personal data in certain circumstances.
Automated Decision Making
You have the right not to be subject to a decision based solely on automated processing, including profiling.
Withdraw Consent
Where processing is based on consent, you have the right to withdraw that consent at any time.
Our GDPR Compliance Framework
We have implemented comprehensive measures to ensure full GDPR compliance
Data Protection Officer
We have appointed a Data Protection Officer (DPO) to oversee our GDPR compliance program.
Data Processing Records
We maintain detailed records of all data processing activities as required by Article 30 of GDPR.
Data Processing Agreements
We have GDPR-compliant data processing agreements with all our vendors and partners.
Security Measures
We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk.
Data Breach Procedures
We have established procedures to detect, report, and investigate personal data breaches.
International Transfers
We use appropriate safeguards for international data transfers outside the EU/EEA.
Data Protection Impact Assessments
We conduct Data Protection Impact Assessments (DPIAs) for high-risk processing activities to identify and minimize data protection risks.
Our DPIAs evaluate the necessity and proportionality of processing operations, assess risks to individuals, and identify measures to address those risks.
Our DPIA Process Includes:
Detailed description of the envisaged processing operations and purposes
Assessment of the necessity and proportionality of the processing
Evaluation of risks to the rights and freedoms of data subjects
Measures envisaged to address the risks and demonstrate compliance
Lawful Basis for Processing
We ensure that all our data processing activities have a valid lawful basis under GDPR. The primary lawful bases we rely on include:
- •Consent: For specific marketing communications where we have obtained explicit consent
- •Contract: For processing necessary to fulfill our contractual obligations
- •Legitimate Interests: For business-to-business marketing and relationship management
- •Legal Obligation: For processing required to comply with legal requirements
Important Notice
For B2B marketing communications to corporate subscribers, we rely on the legitimate interests basis as permitted by GDPR Recital 47, which recognizes direct marketing as a legitimate interest.
Contact Our Data Protection Officer
If you have questions about our GDPR compliance or wish to exercise your data protection rights, please contact our Data Protection Officer.
Related Legal Documents
Review our complete privacy and data protection documentation
Privacy Policy
Our comprehensive privacy policy detailing how we collect, use, and protect your personal data.
View PolicyCookie Policy
Information about how we use cookies and similar technologies on our website.
View PolicyData Processing Addendum
Our standard Data Processing Addendum for customers who require it for GDPR compliance.
View DPA