How does CMPartner follow the new GDPR Regulation?
CMPartner has a database of company information, including company names, addresses, phone numbers, names and emails to executives, financial statements, etc. There are no individual companies in our database.
Managers and e-mail addresses are mainly retrieved from corporate websites and updated continuously. If an executive notifies us that he or she does not want their e-mail address registered in our database, we will delete it.
The purpose of the e-mail addresses is that they can be used for marketing purposes B2B. We find support for this in the GDPR, we claim legitimate interest in accordance with:
Article 6.1.f. Here it is stated that processing of personal data is considered legal when it is necessary for purposes pertaining to the legitimate interests of the data controller or a third party.
Recital 47. It states that processing of personal data for direct marketing can be regarded as a legitimate interest.
Recital 14. It states that GDPR is not applicable to contact details of legal entities, companies. Executives’ e-mail addresses are contact information to companies, which to a large extent are open information and published on the company’s own websites.
CMPartner holds a certificate of release under the Press Freedom Regulation. The release certificate applies to the databases Nordicnet.se and Largestcompanies.se. A proof of release means that the rules on personal data processing do not apply when they violate the constitutional right of freedom of speech. The GDPR Regulation therefore does not affect operations with certificate of release.
Obviously, the Marketing Act will be complied with e-mailmarketing. According to the act, the message should be relevant to the recipient, it should be possible to unsubscribe further mail from the current sender and the address source must be entered.
If you have questions, please feel free to contact us.