True compliance and transparency
We meet the highest industry standards
GDPR
Compliant
ISO 27001
Certified
ISO 27701
Certified
Hosting and Data
processing in Europe
Built on Public and
Trade Register Data
Full Transparency
on Data Sources
The truth about other vendors
Learn to see through the GDPR haze quickly:
100% of data processed within the EU
We ensure that all data is processed and stored on servers in the European Union. Also, your contract with us is subject to the strong EU legal framework.
Full transparency on data sources
In Dealfront, each record can be traced back to one or more specific sources, often with actual deep links to where the data was collected.
Built on public and trade register data
Dealfront’s data foundation is built upon official trade registers, enriched by public web data, and cross-referenced with directory records.
Your data is only visible to you
If you allow us to access your company’s CRM, website, or email, we will do so as a data processor under a DPA. Thus we won’t share your data with others.
Other vendors
They use international data transfer
Data may be transferred to countries outside of the EU and be accessible by foreign authorities. With other vendors, your contract might be subject to US law.
They hide their data sources
Personal data just “appears” without any information on how it was collected. Often this will include private numbers and datasets.
They resell data from their “community”
Other vendors resell data shared by and collected from their clients (you). If you are using those, you expose data of colleagues, customers, and partners.
They read and scrape your email
It’s a big security risk for your firm to allow access to vendors who can essentially read all of your emails, calendars, and internal contact directories.
Committed to True Compliance
We would like to explain the significance of true compliance to us and what it implies for you as a user of our data.
Our approach
Born in Europe, Dealfront was built with compliance, transparency, and privacy in its DNA. Unlike other platforms and tools, Dealfront understands Europe’s complex regulations and how to remain compliant without it affecting your earning potential. That way, we can offer data solutions that are not only effective but also align with our values.
Our values
Yes, we will have fewer personal phone numbers and mobile direct dials than others—and that is ok! Because we don’t want you to disturb a family dinner or ruin your new relationship with a prospect by not being able to explain how you got their number. Data privacy is a macro trend that will only increase in the coming years. We want to help you uphold strong values while executing modern, future-proof go-to-market strategies.
Not only data quality, but also the GDPR compliance and data storage in the EU was an essential deciding factor for us. Add to that the friendly customer service – it just works.
Unique compliance features
We want our clients to feel safe using our platform, tools, and data. This is why we are constantly developing new techniques and features to minimize processing needs and exposure while maximizing sales and marketing success.
Framed data access
You don’t need all your prospecting data in your CRM. This is just a burden if you have to care about accuracy, deletion requests, and information rights. Instead, you can use Dealfront framed data access: Within any system, your Users will see a frame of contextual, fresh, live data, which you only sync once the prospect is interested.
Public source enrichment
CRM data that is stale or outdated has to be deleted or updated. Often data in CRM systems has been collected over many years. Dealfront can help you to refresh existing data and enrich records with public source URLs. This way, you can keep contacts that are still valid, even if you do not know anymore who once entered them into your system.
Unified Blocklist and DNC
Data subjects might often want to object to their data being used in general and will be annoyed by having to opt out with many parties. Dealfront immediately responds to such requests, maintains a comprehensive blocklist, and continuously checks our records against public do-not-call (DNC) lists in many countries. This way, by becoming a customer, you can instantly clean your CRM and remove risk.
Want to know more?
What is GDPR and why should I care?
The European Data Protection Regulation is a set of rules that govern the processing of personal data of individuals within the European Union.
Failure to comply may result in:
- legal actions
- damage to your public image and brand, and loss of public trust.
- severe financial consequences in the form of fines of up to EUR 20 million or 4% of the global annual revenue of the previous financial year (see penalties of Art. 83 GDPR)
It is critical to comply with the GDPR to protect your reputation and avoid financial penalties.
We help you by:
- protecting your own interest
- respecting the privacy of your customers (and theirs).
- ensuring high data quality
I am not located in the EU. Does the GDPR affect me at all?
The location of the company that is using the data isn’t relevant. Instead, it is important where the subject of the data is located. If you are trying to reach a company or an individual located in the EU or offer services or goods to people based in the EU, you need to comply with the EU data protection requirements, meaning GDPR also applies to you.
How do I know that the data has been obtained in a legal way?
We operate web crawlers which automatically collect and process publically available data related to businesses and links to information sources on the internet. We only display data on our platform or as query results that have been sourced or combined from public sources (i.e. data and information accessible for everyone via public sources like websites, news portals, blog articles, public social media profiles, databases or commercial registers) or acquired from carefully vetted data providers. We do not process any payment details or other sensitive personal data (e.g. medical or religious data).
The user interface on our platform lists contact details and other company-related information as a preview. For each information item, users may click on a link in the preview which takes them directly to the original source or indicates the origin of the data. Thus, you always know exactly where the data came from. This is the only way to ensure that you have a legal basis for processing the data (find out more about your legal basis for processing the data below).
Why is it important to have a legal basis for processing personal data?
When a company collects and processes personal data, they need to have a legal basis for doing so according to the GDPR. If you don’t have a legal basis for processing personal data, such processing is unlawful and may result in fines and other negative consequences. This rule can also easily be summarized as: Processing of personal data is always unlawful, unless you have a legal basis for doing so.
What is your legal basis for processing personal data in your system?
Legitimate Interest in the context of the GDPR
Legitimate interest–as one of the legal bases outlined in the GDPR– means a company can collect and process personal data if they have a legitimate reason to do so and the rights and freedoms of the individual concerned do not override this legitimate interest.
Legitimate interest balancing test
A company must conduct a legitimate interest balancing test to weigh their interest against the individual’s rights and freedoms. The company must consider whether their legitimate interest in processing personal data is more important than the individual’s right to privacy.
How does the company do that?
The company must consider whether their legitimate interest in processing personal data is more important than the individual’s right to privacy.
The balancing test involves a few steps:
Identify the legitimate interest
Asses the necessity and proportionality of the processing
Consider any potential impact on the individual’s rights and freedoms
What have we done to ensure our compliance?
In accordance with external legal counsels we carefully performed a balancing of interest test.
The results are as follows:
Dealfront processes personal data in our systems based on legitimate interest (Art. 6 (1) lit. f GDPR) in marketing our products, improving and promoting our services, and growing our business.
Facilitating access by economic operators to data concerning other economic operators also serves public interest:
If businesses can quickly and reliably obtain information on possible individual contacts or contractors, this also promotes the business interests of the person concerned.
These interests in the processing are opposed by at most minor interests of the persons concerned as only publicly available data or data derived from publicly available sources is processed.
Please note: We swiftly delete any personal data of data subjects who object to the processing of their personal data.
What legal basis can our customers rely on when processing our data?
Please note that we do not provide legal advice to our customers and that it is your responsibility to ensure that our technology is implemented in compliance with the relevant laws and regulations.
That being said, businesses that process personal data from our systems may rely on their legitimate interest in optimizing their products, services, and sales and marketing strategies. For example, a company may use customer data to personalize marketing campaigns, or analyze customer behavior to identify new business opportunities. Under the GDPR, this legitimate interest can serve as a legal basis for processing personal data, as long as the company has conducted a balancing test to ensure that their interest in processing the data does not override the individual's right to privacy and protection of their personal data.
Thus, it is important for you to carefully assess your legal obligations and ensure that your use of personal data is compliant with applicable laws and regulations.
Where is the personal data stored, and what security measures do you have in place to protect it?
Our servers and data are hosted and processed on Amazon Web Services in the EU, specifically in Ireland. You can read about Amazon’s security features and compliance on: https://aws.amazon.com/security and https://aws.amazon.com/compliance
Do you have a data protection officer, and what is their contact information?
You can reach our group data protection officer Henri Markkanen at dpo@dealfront.com.
Why is Dealfront’s data more compliant than other service providers?
We are fully transparent about where our data comes from. We focus on public available data which is always related to a business. By collecting this data we collect only as many different data points as it is truly necessary for the purposes of the use. Furthermore, in Dealfront each record can be backtraced to one or more specific sources from where it was collected.
Does Dealfront have a Data Processing Agreement?
Everytime you share personal data with us, for example, by integrating our script in your website (Leadfeeder) or by connecting your CRM system with our platform (CRM Connector) we process such personal data on your behalf. As we act as a data processor and you act as a data controller with regard to such personal data shared with us, we enter into a data processing agreement (DPA) with you. No need for additional actions from your side as this DPA will be automatically concluded in order to comply with the applicable GDPR requirements.
You can access the DPA here.
If you request to interact with our Dealfront entity in the USA, a DPA containing the European Standard Contractual Clauses in order to safeguard the transfer to the USA, applies. You can download this DPA + SCC here.
How do you ensure that Dealfront’s personnel handle personal data with care?
We prioritize GDPR training for all of our employees to ensure they understand how to handle personal data. When new employees join our team, they receive training on data security and data protection as part of their onboarding process. Additionally, we provide annual training to all employees to ensure their knowledge stays current and relevant to the topic.