Skip to main content
All CollectionsGetting started
Privacy and compliance
Privacy and compliance

Overview of Userled's regulatory compliance and how we ensure secure and responsible visitor identification.

Updated this week

For more information about Userled's Privacy and compliance you can visit our Trust Center or reach out to trust@userled.io.

Is Userled GDPR compliant?

Yes, Userled is GDPR compliant. However, how you use the data from Userled might require user consent. More information is available in our User Consent guide.

Data controller vs data processor

Userled's Identification capabilities are offered as part of its ABM platform offering. Under GDPR, there are two roles: “data controllers” and “data processors.” A data controller is a website or app that decides to collect and store user data. A data processor is a third-party service that receives, stores, and processes data from the controller.

Examples of data controllers are sites like eBay, Wikipedia, and YouTube. Data processors include services like DigitalOcean, AWS, and Google Cloud.

Userled is a data processor, while a website using its API is a data controller. For example, CompanyX uses Userled to fuel their ABM efforts. CompanyX is the data controller, and Userled is the data processor.

As a data controller, CompanyX must follow GDPR rules and collect and use the data correctly according to GDPR guidelines.

As a data processor, Userled must also follow GDPR and handle the data it gets from data controllers correctly, according to GDPR guidelines.

What obligations does Userled have as a data processor?

Userled must delete personal information it receives from a data controller when requested. Userled meets this requirement and supports manual data deletion requests.

Do I need to have a GDPR consent management banner if using Userled?

If you use Userled for attribution or personalization, you’ll likely need to get user consent, similar to how you handle cookies.

What about CCPA compliance?

When using Userled, you are responsible for CCPA compliance as the business, and Userled acts as a Service Provider, processing Personal Information only as needed to provide the service. We do not sell or share data outside the scope of our agreement. You must inform consumers about data processing and handle consumer rights requests. Userled supports compliance by helping with data deletion and protection.

Can you use Userled to track visitors across the internet?

No, Userled is primarily designed for account and contact-level tracking in the same-site context. The visitor ID is scoped to each Userled workspace, not the internet at large. If two Userled customers identify the same browser or device, they will receive different visitor IDs. This intentionally makes Userled unsuitable for creating a global visitor activity graph across unrelated sites as you might do with third-party cookies.

Can you use Userled for marketing attribution?

Yes, you can use Userled for marketing attribution and personalization in the context of your business. It works well for identifying visitors on the same website, or multiple websites you control, even across domains.

For example, you can use Userled to observe user interactions across landing pages and your marketing website.

Did this answer your question?