Data Privacy and Data Processing Agreement

Last updated May 10, 2018

This data privacy and data processing agreement sets out how Leadbook uses and protects any information that you give Leadbook when you use this website and the associated platforms.

Leadbook is committed to follow all applicable government regulations. Should we ask you to provide certain information by which you can be identified when using this website, then you can be assured that it will only be used in accordance with this privacy
and data processing agreement.

Leadbook may change this policy from time to time by updating the Leadbook Policy
Privacy & Data Processing document, website and platform.

Regarding business contact information
Leadbook strictly complies to all articles of the Personal Data Protection Act (PDPA) of Singapore. We process business contact information such as name, job title, company, email address, phone number, etc. The information that we provide is typically found on public professional profiles, business cards, or email signatures. We do not process any sensitive personal information such as racial or ethnic origin, political opinions, religious or philosophical beliefs, health information, genetic or
biometric data, etc.

The Data Protection Provisions do not apply to business contact information. Business contact information is defined in the PDPA as “an individual’s name, position name or title, business telephone number, business address, business electronic mail address or business fax number and any other similar information about the individual, not provided by the individual solely for his personal purposes”.

Organisations are not required to obtain consent before collecting, using or disclosing any business contact information or comply with any other obligation in the Data Protection Provisions in relation to business contact information.

Click here to view the Personal Data Protection Act Overview

How does Leadbook assist you with maintaining compliance to regulations.

1. Leadbook provides a feature to manage your “Suppression List”.
A suppression list is a list of suppressed e-mail addresses used by e-mail senders to comply with the CAN-SPAM Act of 2003 (United States of America) and GDPR (Regulation (EU) 2016/679).
The feature on the Leadbook platform allows you to add contacts to the Suppression List so they are excluded from future email marketing campaigns.

2. Leadbook provides Consent Forms to help you obtain consent from data subjects.
The safest option you have to continue using emails for lead generation from European Union citizens is to use a “Consent Form”. Leadbook provides a Consent Form template to be used with potential customers in the European Union before you send any
commercial or marketing material.

3. Campaigns run by Leadbook automatically include an “Unsubscribe” (opt-out) form.
The unsubscribed email addresses are placed into a ” unsubscribe suppression list” which is used to “suppress” future email messages to that email address. By using our opt-out form, we will help you track people that have requested an opt-out
from any sales/marketing emails that have been sent by you.

4. Leadbook complies with Data Subject Rights.
Individuals can obtain information on whether their personal data is being processed, where it is stored and for what purposes. They can also ask for a copy of their personal data, free of charge.
Recipients will receive their personal data in a ‘commonly used and machine-readable
Recipients have the “right to be forgotten”. This means they can ask, at any point in time, to have their personal data erased and block further data processing.

5. Data Processing Agreement
We want all of our customers to rest easy in knowing that we process any Personal Identifiable Information in a responsible manner. When you use Leadbook to search, organize, and store lead information, we act as your data processor. When you become a user of the Leadbook Platform you will need to execute the Data Privacy and Data Processing Agreement with us.

Leadbook Data Processing Agreement

1. How we use cookies
A cookie is a small file which asks permission to be placed on your computer’s hard drive. Once you agree, the file is added and the cookie helps analyze web traffic or lets you know when you visit a particular site. Cookies allow web applications to respond
to you as an individual. The web application can tailor its operations to your needs, likes and dislikes by gathering and remembering information about your preferences.

We use traffic log cookies to identify which pages are being used. This helps us analyze data about web page traffic and improve our website in order to tailor it to customer needs. We only use this information for statistical analysis purposes and then the data is removed from the system.

Overall, cookies help us provide you with a better website, by enabling us to monitor which pages you find useful and which you do not. A cookie in no way gives us access to your computer or any information about you, other than the data you choose to share
with us.

You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. This may prevent you from taking full advantage of the website.

2. Links to other websites
Our website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over that other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question.

3. What we collect
We may collect the following information:

  • name and job title
  • contact information including email address
  • demographic information such as postcode, preferences and interests
  • other information relevant to customer surveys and/or offers

4. What we do with the information we gather
We require this information to understand your needs and provide you with a better service, and in particular for the following reasons:

  • Internal record keeping.
  • We may use the information to improve our products and services.
  • We will send promotional emails about new products, special offers or other information which we think you may find interesting using the email address which you have provided.
  • From time to time, we may also use your information to contact you for market research purposes. We may contact you by email, phone, fax or mail. We may use the information to customize the website according to your interests.

5. Security
We are committed to ensuring that your information is secure. In order to prevent unauthorized access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect online.

6. Controlling your personal information
You may choose to restrict the collection or use of your personal information in the following ways:

  • whenever you are asked to fill in a form on the website, look for the box that you can click to indicate that you do not want the information to be used by anybody for direct marketing purposes
  • if you have previously agreed to us using your personal information for direct marketing purposes, you may change your mind at any time by writing to or emailing us at:

We will sell, distribute or lease your personal information to third parties unless we do not have your permission or are required by law not to do so. We may use your personal information to send you promotional information about third parties which we think you may find interesting if you tell us that you wish this to happen.

If you believe that any information we are holding on you is incorrect or incomplete, please write to or email us as soon as possible, at the above address. We will promptly correct any information found to be incorrect.We will sell, distribute or lease your personal information to third parties unless we do not have your permission or are required by law not to do so. We may use your personal information to send you promotional information about third parties which we think you may find interesting if you tell us that you wish this to happen. If you believe that any information we are holding on you is incorrect or incomplete, please write to or email us as soon as possible, at the above address. We will promptly correct any information found to be incorrect.

Regarding GDPR for countries in the European Union

The General Data Protection Regulation (GDPR), is a data privacy regulation in the European Union (EU). The GDPR provides standards across the EU to bolster and protect the privacy right of EU citizens. The GDPR applies to you if your company is located within the EU, if you are doing business in the EU, or if you are collecting personally identifiable information (“PII”) from EU citizens in the EU and abroad.

The GDPR only changes the game for EU residents. This means for people residing in the Union, regardless of where their company’s based at. You can still contact the rest of the world following current regulations. Keep your lists targeted and make sure to apply certain tactics for people inside the EU.

Under GDPR All Contact Emails are Considered Personal Identifiable Information. Be aware that it doesn’t matter if it is a personal or work email. In principle, if an email contains certain information about a person (name, surname, initials) is already enough for the email to be considered data protected by the GDPR.

Non-personal emails are outside of the GDPR’s reach. Emails like or are not associated with any
identifiable information, so cold emailing without a consent to these accounts should be fair game.

The GDPR lists 6 lawful grounds for processing personal data:

  • Consent from the person
  • A contract with the person
  • Compliance with a legal obligation
  • Protection of vital interests (on life or death situation)
  • A public tasks (by public authorities)
  • Legitimate interests (when a private sector organization has a genuine or legitimate interests such as commercial benefit to process without consent, provided that it does not outweigh the interests of the data subjects)

Per Recital 47 of the GDPR, the processing of personal data for direct marketing purposes may be regarded as carried out for a legitimate interest. However, you do need to consider if your marketing purposes could be outweighed by the interests and rights of the data subjects.

If you obtain data not directly from the data subject (such as in the case of you using Leadbook to search for lead information), you need to provide notice to the data subjects that you have their data in the first communication, and allow them to opt-out easily. The notice needs to provide information that includes:

  • who you are
  • what are you using the data for,
  • where the data originates from, and
  • giving the person the right to correct, erase, or withdraw their consent.

The data subject consent has to be obtained prior to sending them marketing material and the consent has to be active. A box that the lead has to tick is or a reply to a clear question on your first email is sufficient consent given that you clearly indicated the purpose behind emailing them.

You can provide the notice the first time you are contacting the person (but no later than one month after you obtain the data).
If the data subject exercises their rights to opt-out and have their data corrected, or deleted, you are obligated to respect the rights of the data subjects.

If you have any questions regarding Personal Data Privacy, please contact us