BookYourData is compliant with GDPR, CCPA, PECR, and CAN-SPAM. The database sources exclusively publicly available, business-only (B2B) contact data, so no consumer or sensitive personal information ever enters the system.
This B2B-only sourcing model is the foundation of BookYourData's alignment with GDPR, CCPA, PECR, CAN-SPAM, and other major global privacy frameworks.
Our Compliance Approach
BookYourData's compliance approach rests on seven practices that keep every contact record inside legitimate B2B outreach boundaries:
B2B-only data. No consumer emails or private personal information enters the database.
Legitimate-interest outreach basis. BookYourData relies on the GDPR legitimate-interest basis for relevant B2B communications.
Opt-out enforcement. BookYourData maintains and enforces a suppression list.
Do-not-contact list support. BookYourData honors every do-not-contact request.
Privacy request portal. Individuals submit access, correction, or deletion requests directly.
Real-time data hygiene. BookYourData keeps contacts accurate and active on an ongoing basis.
No sensitive categories. Health records, financial data, and personal identifiers stay out of the database entirely.
What GDPR, CCPA, PECR, and CAN-SPAM Cover
GDPR, CCPA, PECR, and CAN-SPAM are four separate privacy and marketing laws, each governing a different region and channel.
Regulation | Full Name | Governs |
GDPR | General Data Protection Regulation | Personal data handling across the European Union |
CCPA | California Consumer Privacy Act | Consumer data rights in California |
PECR | Privacy and Electronic Communications Regulations | Electronic marketing communications in the United Kingdom |
CAN-SPAM | Controlling the Assault of Non-Solicited Pornography and Marketing Act | Commercial email in the United States |
BookYourData's B2B-only, publicly available data sourcing keeps every record outside the consumer-data scope these four laws restrict.
What This Means for You
BookYourData supplies verified B2B contact data for legitimate business outreach, while the customer stays responsible for how that data gets used.
Compliant sending is a shared responsibility. BookYourData handles sourcing and data hygiene. The customer handles email content and sending practices, including honoring opt-outs, using accurate sender identity, and avoiding misleading content in every campaign.
BeSpoke, BookYourData's private, human-researched list-building service, sources every list under the same B2B-only, publicly available data standard, so BeSpoke lists meet the same GDPR, CCPA, PECR, and CAN-SPAM compliance approach described above. Learn more about BeSpoke.
FAQ
Does BookYourData collect consumer or personal data?
No. BookYourData sources business-only (B2B) contact data exclusively from publicly available records, and no consumer or sensitive personal information gets collected, stored, or sold.
How do I request access, correction, or deletion of my data?
Submit the request through BookYourData's privacy request portal. The portal handles access, correction, and deletion requests, backed by do-not-contact list support and suppression list enforcement.
Who is responsible for compliant email sending, BookYourData or the customer?
The customer. BookYourData supplies verified B2B contact data, and the customer controls email content and sending practices, including opt-outs, sender identity, and message accuracy.
