GDPR
(General Data Protection Regulation)

The GDPR is a current European Union privacy regulation. GDPR came into effect on May 25, 2018. Its goal is to preserve the privacy and personal data rights of EU citizens, often known as data subjects. Personal data, often known as personally identifying information, is a crucial element under GDPR. It refers to any information about an individual that may be used to directly or indirectly identify them. Personal data comprises, for example, the following:

• names
• email addresses
• information on a person’s location,
• ethnicity
• gender
• web cookies
• political viewpoints, etc.

Personal data is defined as any information that may be used to identify a specific individual under the GDPR. Pseudonymized data can also be considered personal data if it makes it relatively easy to identify an individual. Every firm registered in the EU, as well as any company that handles the personal data of EU citizens, is subject to GDPR.

Every firm registered in the EU, as well as any company that handles the personal data of EU citizens, is subject to GDPR.

Is Prospectss compliant with GDPR?
We follow the GDPR’s regulations and standards when delivering services to clients and processing personal data. We are taking all reasonable steps to maintain GDPR compliance on our end.

What steps does Prospectss take to comply with the GDPR?
We process all personal data in accordance with the GDPR’s specific lawful basis for processing. We rely on the following legal bases for processing personal data:

• consent of the data subject
• performance of a contract
• legal obligation
• legitimate interest

More information is available here or by visiting our Privacy Policy.

We also take suitable organizational and technical steps to ensure that personal data is protected effectively. For example, we limit access to
personal data for our employees based on their degree of expertise and provide frequent privacy training to our workers.

We encrypt and pseudonymize the personal data we process, use firewalls, anti-virus and anti-malware software, as well as fraud prevention algorithms, and do frequent security audits.

Every request and message from our clients and third-party data subjects are carefully considered. We make every effort to organize and
fulfill all requests and communications as quickly as possible. Any data user may use our live support chat to contact us.

We function as a data processor who processes personal data given by the client or obtained on the client’s demand when our users activate
any of the tools or extensions we provide, therefore ordering us to collect and process third-party personal data. During the processing of personal data, we follow the instructions of the customer.

The storage of collected personal data is the sole exception to this rule: in this processing activity, our clients and Prospectss act as joint data
controllers.

The legitimate interests of Prospectss, our clients, and third parties whose personal data is processed justify the processing of personal data
via our tools or extensions.

Prospectss takes the appropriate organizational and technological means to protect the processing of the personal data stated above during such personal data processing.

As a result, the lead generating tools we provide are GDPR compliant since they treat personal data on a legitimate basis as defined by the GDPR. Furthermore, Prospectss takes adequate security steps to protect such processing.

Legal basis for processing personal data
A company can only process personal data within the legal basis for processing under the GDPR.  

Article 6 of the GDPR outlines the legal grounds for processing personal data. If a business does not utilize any of them, it must not collect, keep,
or use any personal information in any way. 

The following are the legal basis for processing personal data under the GDPR:
Data subject consent: A corporation may handle personal data provided the data subject has given his or her consent. The data subject’s
consent must be freely provided, explicit, informed, and unequivocal.

Contractual obligations: A corporation may treat personal data if it is required to carry out a contract with the data subject or to take procedures requested by the data subject before entering into a contract. 

Legal obligation: A company may treat personal data if it is compelled to do so by relevant legislation, court order, or authority’s direction, among other things.

Vital interest: A corporation may treat personal data if it is essential to protect the data subject’s or another person’s vital interests. Various
apps that track and publish COVID-19 morbidity and recovery statistics, for example, handle personal data on this basis.

Public interest: Personal data may be processed if a corporation performs a task in the public interest or exercising its official authority.
For example, personal data may be processed on this basis by law enforcement authorities.

Legitimate interest: A firm may process personal data if it is required for the company’s legitimate interests. Such a legitimate interest should not take precedence over the data subject’s interests or fundamental privacy rights and freedoms.

Contact Us
If you have any questions regarding our GDPR compliance, you may contact us via [email protected]

Last Updated: June 27, 2022