How We Collect Our Data

InsideView is a business-to-business (B2B) company that provides business information to our customers. The information in our database is about companies (e.g., company address, industry-type, annual revenues) and their employees (e.g., job title and business contact information). Our database never includes information about your private life or about you as an individual consumer.

We gather our information from public data sources and reputable third party content vendors such as S&P Global Market Intelligence, Equifax, and Refinitiv (formerly Thomson-Reuters), who obtain their data from publicly available sources. We also include email addresses that we derive based on patterns of email address formats, for example: first.last@company.com.

In addition, we collect contact information directly from customers as a normal part of doing business, to complete a contract, provision your services, provide support, or to communicate with you as a customer. We do not include this data in the database that forms the foundation of our products and services, and we do not share it with other customers.

The following are answers to the most commonly asked questions.

Does InsideView do email scraping?

We do not!  Email scraping, also known as email harvesting, is the practice of gathering contact information from email signature blocks for the purpose of adding the information to a contact database. This information is gathered without the individual knowing or consenting to it. This is a questionable practice used by a number of data aggregators, including most notably, ZoomInfo.

For example, the ZoomInfo Community Edition Terms of Use state, “In exchange for your use of Community Edition, you agree to let us access information in your email inbox, specifically the information in signature blocks of emails you have received and your contacts.” This means that:

  1. If you’ve ever emailed someone who uses the ZoomInfo Community Edition, your information has been scraped, without your knowing, and is now in the ZoomInfo database.
  2. If you’re a ZoomInfo customer, even if you do not participate in the Community Edition, you’re using contact information that has been gathered using this questionable practice.

InsideView is careful to only source business contact information from either the public domain or under valid licenses from suppliers who also get their data from publicly available sources. We do not gather contact data by email signature scraping, as ZoomInfo does.

Does InsideView comply with privacy rules and regulations, like the GDPR and CCPA?

Yes, you can be confident in using the data InsideView provides. We follow privacy and security best practices and comply with all applicable laws and regulations, including the EU General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). In fact, before the GDPR went into effect, we were in compliance with the very strict EU – U.S. Privacy Shield Framework and the Swiss – U.S. Privacy Shield Framework, together known as the “Privacy Shield”. Bottom line, InsideView is committed to protecting your data privacy.

How does InsideView comply with the GDPR’s requirement regarding consent?

The GDPR provides six legal bases for processing personal information. There’s a lot of focus on the “consent with” basis, which is often referred to as “opt-in,” but that’s not the only legal way to use business contact information.

InsideView relies on the “legitimate interest” basis. It’s a bit complicated, but in simple terms it means we can provide business contact information to our customers, as long as we meet these two conditions:

  1. The individuals would reasonably expect that their business contact information will be obtained and used for business purposes, which may include marketing. In fact, the regulators responsible for administering the GDPR acknowledge that “the processing of personal data for direct marketing purposes may be regarded as carried out for a ‘legitimate interest.”
  2. We provide clear guidelines about how our customers can and cannot use our data, so that they are unlikely to violate an individual’s privacy rights. We do this by including the guidelines in our customer and vendor contracts and by requiring our customers and vendors to also comply with privacy laws.

Since each customer is unique, you also each need to decide which legal basis your company will use to comply with the GDPR.

Related resources
KirkpatrickPrice Blog: GDPR Fundamentals: Legal Basis for Processing
ICO. (Information Commissioner’s Office): Lawful Basis for Processing

How does InsideView comply with the CCPA?

InsideView provides a simple process for requesting access to and/or removal of your personal information from our database. Just send an email to privacy@insideview.com, or mail your request to us at:

InsideView Technologies, Inc.
Attn: Legal Dept / Privacy Officer
444 De Haro Street, Suite 210
San Francisco, CA 94107.

 

We’ll respond promptly to your requests as soon as we verify your identity, just as we’ve always done.

Please see our privacy policy for complete details.