Precision B2B Lead Generation
Last Updated: May 10, 2025
At BravoTangoBravo, we are committed to ensuring that our business practices comply with the General Data Protection Regulation (GDPR). As a B2B lead generation service that processes personal data, we understand the importance of data protection and privacy rights.
This page outlines our approach to GDPR compliance and how we protect the personal data we process.
The General Data Protection Regulation (GDPR) is a comprehensive data protection law that came into effect on May 25, 2018. It applies to all organizations operating within the EU and to organizations outside the EU that offer goods or services to individuals in the EU or monitor their behavior.
The GDPR gives individuals greater control over their personal data and requires organizations to be transparent about how they collect, use, and store personal data.
BravoTangoBravo acts as both a data controller and a data processor:
In both roles, we are committed to complying with the GDPR principles and safeguarding the personal data we handle.
We adhere to the following GDPR principles in our data processing activities:
We process personal data lawfully, fairly, and in a transparent manner. We provide clear information about how we collect and use personal data in our Privacy Policy.
We collect personal data for specified, explicit, and legitimate purposes and do not process it in a manner incompatible with those purposes.
We limit the personal data we collect to what is necessary for the purposes for which it is processed.
We take reasonable steps to ensure that the personal data we process is accurate and kept up to date.
We retain personal data only for as long as necessary for the purposes for which it is processed.
We implement appropriate technical and organizational measures to protect personal data against unauthorized or unlawful processing, accidental loss, destruction, or damage.
We take responsibility for complying with the GDPR and can demonstrate our compliance.
Under the GDPR, we must have a lawful basis for processing personal data. The lawful bases we rely on include:
As a B2B lead generation service, we primarily rely on legitimate interest as our lawful basis for processing business contact information. We conduct legitimate interest assessments to ensure that our processing is necessary and balanced against the individual's interests, rights, and freedoms.
Where required by law, we obtain consent for specific processing activities, such as sending marketing communications.
We process personal data when necessary for the performance of a contract with our clients or to take steps at their request before entering into a contract.
We process personal data when necessary to comply with a legal obligation.
We respect and facilitate the rights of individuals under the GDPR, including:
Individuals have the right to request access to their personal data that we process.
Individuals have the right to request correction of inaccurate personal data or completion of incomplete personal data.
Individuals have the right to request the deletion of their personal data in certain circumstances.
Individuals have the right to request the restriction of processing of their personal data in certain circumstances.
Individuals have the right to receive their personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.
Individuals have the right to object to the processing of their personal data in certain circumstances, including processing for direct marketing purposes.
Individuals have the right not to be subject to a decision based solely on automated processing, including profiling, that produces legal effects or similarly significantly affects them.
To exercise any of these rights, individuals can contact us using the information provided in the "Contact Us" section below.
We implement appropriate technical and organizational measures to protect personal data, including:
When we transfer personal data outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place, such as:
In the event of a personal data breach, we have procedures in place to:
While not legally required to do so, we have appointed a Data Protection Officer (DPO) to oversee our data protection strategy and ensure compliance with the GDPR. Our DPO can be contacted at dpo@bravotangobravo.com.
As a B2B lead generation service, we help our clients obtain business contact information. We advise our clients to:
We provide our clients with information about the source of the data and the categories of personal data we collect to help them meet their transparency obligations.
If you have any questions about our GDPR compliance or wish to exercise your rights under the GDPR, please contact us at:
Email: dpo@bravotangobravo.com