Worried about GDPR? Don't be.

Get your FREE GDPR infographic

We can help you meet your GDPR compliance obligations

As a global specialist in identity data intelligence, we can help you make the right decisions about the customers you serve, and the people you employ. With the General Data Protection Regulation (GDPR) due to take effect on 25th May 2018, we're very active in our GDPR readiness preparations.

We're built on data, so we can't afford to go wrong.

Our GDPR compliance plan

We're committed to ensuring we always do the right thing for our customers and individuals. We're working closely with our data partners to ensure that the data we source will be GDPR compliant. Consent has traditionally been relied upon for data sharing, but together with our data partners, we have explored, and are in the process of, implementing other lawful bases for processing.

After years of monitoring and understanding the changes that we'll see from GDPR, we've developed a compliance plan. Our team of qualified Data Protection Practitioners are focused on ensuring all tasks are in play, and that they continue to progress.

Find out more about our GDPR compliance plan here.

Becoming GDPR compliant

Capture personal data at registration
Verify data up front, with an audit trail
Use the right data across all processes
Regularly cleanse your data and stay compliant

We can help you

Process your data fairly, lawfully and transparently

The requirement to process personal data fairly and lawfully is extensive. It includes, for example, an obligation to tell individuals what their personal data will be used for. Our GBG Marketing Services can help you ensure you have the relevant controls in place to demonstrate this, and can help you achieve a single customer view/total customer view.

Process your data for the right purpose

The purpose limitation principle states that personal data collected for one purpose shouldn't be used for a new, incompatible purpose. Our GBG Connexus and GBG ID3global products can flex to accommodate your requirements.

Only process the data you need to

The principle of data minimisation states that organisations should only process the personal data that is needed to achieve its processing purposes. Personal data must be adequate, relevant and limited to what is necessary. This obligation rests with you. GBG KnowYourPeople can help your organisation ensure that you're not processing unnecessary checks. 

Ensure your data is accurate

The risks to individuals if inaccurate data is processed is obvious. Personal data must be kept accurate, and where necessary, kept up to date. You need to take every reasonable step to ensure that personal data that's inaccurate is erased or rectified immediately.

Our location intelligence solutions, including Loqate, ensure accurate data is captured.

GBG ID3global and GBG KnowYourPeople can help you ensure that a person is who they say they are, and our GBG Datacare solution can help you keep your records up to date.

Store your data appropriately

Personal data shouldn't be kept for longer than necessary. We can help you meet your data retention obligations with our product enhancements, that are planned to support the 'right to be forgotten' - under which individuals have the right to erase their personal data, in some cases sooner than the end of the maximum retention period.

Keep your data secure

You need to ensure that personal data you collect is kept secure against external threats such as hackers, and internal threats such as poorly trained employees. Personal data must be processed in a way that ensures appropriate security, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures. GBG ID3global and CitizenSafe are PCI-DSS compliant.

Stay responsible

The principle of accountability seeks to guarantee the enforcement of the Data Protection Principles. This principle goes hand in hand with the growing powers of DPAs. You need to be able to demonstrate compliance with the Data Protection Principles. We're undergoing a review across all of our products to ensure we can help you meet your accountability principles.

Meet our GDPR experts

Head of Privacy and Data Compliance (Data Protection Officer)

Kate Lewis

Head of Data Strategy

Gus Tomlinson
GDPR Infographic

Follow our 7 simple steps for getting data privacy right.

Discover more

GBG products to help...

GBG ID3global

GBG ID3global can verify the identity of almost anyone, anywhere in the world, at any time.

Discover more

Formerly GBG Matchcode360. Get your customers on board reliably and with precision, drawing on quality data from over 245 countries and territories through the ultimate in type-ahead UX – taking basic information we can enhance it with business information, utilities supplier – and more.

Discover more
GBG Datacare

To maintain relationships with your customers, having accurate data is crucial. GBG Datacare helps you to better understand and communicate with your customers.

Discover more
GBG Marketing Services

The more complete and up-to-date your customer information is, the more engaging your customer and prospect interactions will be across all channels. GBG Marketing Services bring everything together in one place so you can understand, decide and act in real time – as quickly as it suits both you and your customer.

Discover more
GBG Connexus

Trace, investigate and confirm the identities of individuals quickly and easily using the UK's widest range of data sources

Discover more
GBG KnowYourPeople

Leading UK employee identity checking service giving you the intelligence to confirm recruits and comply.

Discover more

Want to know more?

Contact us using the form below and we'll be in touch.

What is our legitimate interest? click here
To view our privacy policy, click here