Data Protection & Processing Overview

At B2BSalesLeads Ltd, we take data protection seriously. We are committed to full compliance with UK GDPR and other relevant data protection laws. This page outlines how we handle data on behalf of our clients, the security measures in place, and our approach to responsible data processing.

1. Our Role as a Data Processor

B2B SalesLeads Ltd acts as a Data Processor, processing business contact data solely under the instructions of our clients (Data Controllers). We do not determine the purposes or means of processing.

Our services typically involve handling B2B contact data to support lead generation, appointment setting, and email/LinkedIn outreach campaigns.

2. Data Collection & Usage

• We process publicly available business contact data and client-provided data only.
• All data is limited to professional use (B2B) and processed under a lawful basis such as legitimate interest.
• Data is never resold or repurposed for any other campaign or third party.

3. Security Measures

• All data is stored on secure, encrypted systems with strict access controls in place.
• Our infrastructure is hosted in the UK or EU and regularly reviewed for compliance.
• Access to client data is limited to authorized personnel on a need-to-know basis.
• We use a small number of carefully selected cloud-based platforms (e.g., CRM and email delivery tools) that are fully UK GDPR compliant. Details of specific sub-processors are available on request.

4. Sub-Processors

Any third-party platforms used in our delivery (e.g., CRM tools, campaign platforms) undergo due diligence checks to ensure compliance with data protection laws. We enter into appropriate data processing agreements with all sub-processors and monitor their data practices.

5. Data Retention & Deletion

We retain contact and campaign data only for the duration of the contract or as instructed by our clients. Data is securely deleted upon project completion or upon request. Where needed, we provide confirmation of deletion for audit purposes.

6. Data Subject Rights & Support

As a Data Processor, we assist our clients in fulfilling their legal obligations, including:

• Responding to Subject Access Requests (SARs)
• Correcting or deleting personal data
• Investigating potential data breaches
• Supporting regulatory audits

For any data-related concerns, contact our Data Compliance Lead at: aileen.cornwell-lee@b2bsalesleads.co.uk

7. Optional: Standard Data Processing Agreement (DPA)

We offer a standard Data Processing Agreement (DPA) upon request or are happy to review a client's version during onboarding. Please get in touch to request a copy.