How is Terminus processing data covered by the GDPR?
Terminus is also primarily only processing account-level data from customers (who are entities, not individuals) to perform the account-based marketing service. Terminus intentionally minimizes the processing of personal data as an account-based solution.
Under GDPR, personal data is any piece of data that allows one to identify a specific person located in the EU/EEA. The GDPR provides the following as examples of personal data: Full Name, ID Number, Home Address, Date of Birth, Telephone Number, Gender, Race, Religion, Biometric, Economic, Social Identity Data, Online Identifier*. In contrast, Terminus collects the following types of Account-Level Data: Company Name, Website, Company Address, Employee Count, Revenue Range, SIC & NAICS codes, Company Social Profiles, Latitude & Longitude, Stock Symbol, Company IP Address Ranges.
While Terminus does process personal-level data to perform its account-based marketing service, it does not expose this data to our customers and thus protects individuals’ data through anonymization.
*Recital 30 of the GDPR states online identifiers can be considered personal data if they can be used to single out or identify an individual: “Natural persons may be associated with online identifiers provided by their devices, applications, tools and protocols, such as internet protocol addresses, cookie identifiers or other identifiers such as radio frequency identification tags. This may leave traces which, in particular when combined with unique identifiers and other information received by the servers, may be used to create profiles of the natural persons and identify them.”
Disclaimer: The GDPR is broad in scope and compliance will vary greatly between organizations. This guide should not be considered legal advice, it is informational only and aims to help you understand how Terminus is addressing GDPR compliance as a data processor. If you are looking for legal advice after reading this guide, please consult legal counsel with your specific questions regarding GDPR.