Last Updated: 8/13/2020
GBG Group plc and its subsidiary, Loqate Inc., ("GBG", "we", "us" or "our") take the protection and security of your personal data very seriously. This privacy notice sets out the personal information we collect and process about you through our products and services, the purposes of the processing and how you can exercise your privacy rights.
You may be reading this notice because of a link provided by one of our third party data suppliers, one of our customers, or you simply want more information on processing in relation to our products and services.
Where Loqate Inc. collects personal information from you directly, for example, through our website or because you have applied for a job with us, or for information specifically related to Loqate Inc., please see our Loqate US Website Privacy Notice. For information specifically related to GBG Group Plc, please see our Global Website, and choose the applicable Privacy Notice contained in the footer that applies to your specific jurisdiction . You may also scroll down to the bottom of this notice to find direct hyperlinks to the various policies.
Please note that our customers and data suppliers have a separate relationship with you, or will have a lawful reason for processing your data. They are separately required to provide you with information (e.g. through their own privacy notice) about how they collect and process your data.
We have offices in 19 locations, and our registered head office is located within the United Kingdom at:
GB Group Plc
Chester Business Park
Our Company Registration Number is: 02415211
If you have any questions about how we use your personal data, please contact our Data Protection Officer by email at DPO@gbgplc.com or call + 44 (0) 1244 657277.
We review this privacy notice on an annual basis, sooner if changes to regulation require it or we change the way we process personal data.
This privacy notice covers information in relation to the products and services that we offer globally.
GBG is a global technology organization. Typically, customers use our technology so they can verify the information that you give to them about yourself. We do this by matching third party reference data (which we receive from data suppliers) against the data you give about yourself to our customers. For example:
More examples are included in the table below describing why we collect your personal data.
The personal information that we may collect about you broadly falls into the following categories:
|Attribute||Telephone/Email/Date of Birth|
|Device||IP, Geocode, DeviceID|
|Financial||Home Ownership, County Court Judgments, Insolvency|
|Image||Photo on a passport or driving licence|
Why we collect your personal data depends on the services we provide.
|GBG Service||Description of services / why we collect this personal data|
|Fraud & Compliance Management||
GBG’s need for collecting and using the personal information described above will depend on the personal information concerned and the specific context in which we collect it.
However, please rest assured that we will normally collect personal information where the processing is in our legitimate interests and such collection will not intentionally override your data protection interests or fundamental rights and freedoms. These interests include our legitimate business interests which can provide a societal benefit, such as preventing fraud, crime prevention and detection and try to ensure that only individuals who should have access to services or perform in a particular role are able to do so.
If you have questions about or need further information concerning the basis on which we collect and use your personal information, please contact us using the contact details provided below.
As explained above under What do we do, we receive personal data about you from our customers and data suppliers. We also send your personal data to our customers and data suppliers in order to provide our products and services. Here we set out further details about our customers, suppliers and other categories of recipients.
We offer our products services to public and private organisations worldwide. These include:
|Financial Services||Banks, insurance providers|
|eCommerce||Retail (online shopping), online commerce platforms|
|Consumer Directories||Travel and leisure, media|
|Public Sector||Law enforcement, local government, education bodies|
|Utilities||Gas, electricity, water suppliers and switching/price comparison sites|
We work with a number of data suppliers. These include:
|Data Supplier||Further information|
|Government / Public Authorities||These bodies include authorities that provide driving licence information, passport information, citizen identification number, social security number, deceased records, criminal record information, insolvency records (publicly available) or sanctions lists (publicly available).|
|Regulated Financial Services Organisations / Firms||These entities collect information about your financial status, but this data can also be used to help organizations like us verify your identity by confirming you are who you say you are, and confirm where you live, or whether you have lived at an address.
These entities include credit reference agencies (CRAs), which are also known as credit bureaus or consumer reporting agencies. There are 3 CRAs in the US: Equifax, Experian and TransUnion.
|Other Regulated Organisations / Firms||These entities provide personal data which can help verify your number or contact you. For example you have made a choice whether or not your landline is included in the public telephone directory.|
|Commercial Organisations||These entities provide your contact details, such as name, address, telephone number or email address, which we can then use to meet the request you have made to one of our Customers.
For example, a business may provide us with the address you used at check out in order to have our technology verify that the address you provided them with is accurate to ensure that your goods are shipped to your location.
|Publicly available data, collected by a third party organisation or GBG||These entities provide information about insolvency records, property information, sanction lists, PEPs information, social media / convention online information / deep web / dark web, income index or family situation.|
|Location data||These entities provide information about geocodes, co-ordinates, postcodes or zipcodes.|
We may also disclose your personal data to the following categories of recipients:
We retain personal information we collect from our customers and data suppliers where we have an ongoing legitimate business need to do so (for example, to provide our customers with a service you have requested or for our customers to comply with applicable legal requirements, such as anti-money laundering).
When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize it or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.
If you have questions about or need further information concerning how long we keep your personal data for, please contact us using the contact details provided below.
Your personal information may be transferred to, and processed in, countries other than the country in which you are resident. These countries may have data protection laws that are different than the laws of your country.
Our group companies, data suppliers, customers and third party service providers operate around the world. This means that when we collect your personal information we may process it in any of these countries.
However, we have taken appropriate safeguards to require that your personal information will remain protected in accordance with this privacy notice.
We appreciate that at GBG we may not always get things right and it is regrettable for us as an organisation when we receive a complaint. We take all complaints seriously and can assure you we will do our best to deliver a satisfactory outcome. If you do wish to complain about how your personal data is used by GBG then please write to us at:
Privacy & Data Compliance Team
GB Group Plc
Chester Business Park
Alternatively, you can email us at firstname.lastname@example.org.
GBG will investigate and aim to respond within 10 working days. This allows us time to investigate your complaint thoroughly.
Your rights privacy rights may vary depending on the jurisdiction in which you reside. For more information on your privacy rights, please see your applicable privacy notice located on our GBG Global Website, or please click directly on the hyperlink below that corresponds to your region below:
For GBG Group Plc:
For Loqate Inc.:
Should you believe that none of these policies apply to you, please do not hesitate to contact us directly at email@example.com.