Supporting your GDPR needs | General Data Protection Regulation

Navigation

We can help you meet your privacy and data obligations

As a global specialist in identity data intelligence, we can help you make the right decisions about the customers you serve, and the people you employ.

We're built on data, so we can't afford to go wrong.

Our privacy & data compliance plan: GDPR and beyond

We're committed to ensuring we always do the right thing for our customers and individuals. We work closely with our data partners to ensure that the data we source is compliant with applicable legislation, such as GDPR.

Find out more about our approach to privacy & data compliance here.

Maintaining GDPR compliance

Capture personal data at registration

Verify data up front, with an audit trail

Use the right data across all processes

Regularly cleanse your data and stay compliant

We can help you

Process your data fairly, lawfully and transparently

The requirement to process personal data fairly and lawfully is extensive. It includes, for example, an obligation to tell individuals what their personal data will be used for. Our GBG Marketing Services can help you ensure you have the relevant controls in place to demonstrate this, and can help you achieve a single customer view/total customer view.

Process your data for the right purpose

The purpose limitation principle states that personal data collected for one purpose shouldn't be used for a new, incompatible purpose. Our GBG Connexus and GBG ID3global products can flex to accommodate your requirements.

Only process the data you need to

The principle of data minimisation states that organisations should only process the personal data that is needed to achieve its processing purposes. Personal data must be adequate, relevant and limited to what is necessary. This obligation rests with you.

Ensure your data is accurate

The risks to individuals if inaccurate data is processed is obvious. Personal data must be kept accurate, and where necessary, kept up to date. You need to take every reasonable step to ensure that personal data that's inaccurate is erased or rectified immediately.

Our location intelligence solutions, including Loqate, ensure accurate data is captured.

GBG ID3global and GBG KnowYourPeople can help you ensure that a person is who they say they are, and our GBG Datacare solution can help you keep your records up to date.

Store your data appropriately

Personal data shouldn't be kept for longer than necessary. We can help you meet your data retention obligations.

Keep your data secure

You need to ensure that personal data you collect is kept secure against external threats such as hackers, and internal threats such as poorly trained employees. Personal data must be processed in a way that ensures appropriate security, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures. GBG ID3global is PCI-DSS compliant.

Stay responsible

The principle of accountability seeks to guarantee the enforcement of the Data Protection Principles. This principle goes hand in hand with the growing powers of DPAs. You need to be able to demonstrate compliance with the Data Protection Principles.

Worried about GDPR? Don't be.