LogiKlu Compliance Information for CCPA (California Consumer Protection Act) and GDPR (General Data Protection Regulation)
The California Consumer Privacy Act (CCPA) is a statute of the state of California and is intended to enhance privacy rights and consumer protection for residents of California, United States. The CCPA became effective on January 1, 2020 and applies to collection of consumers' personal data. CCPA defines personal information as information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked (directly or indirectly) with a particular consumer or household such as a real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, social security number, driver's license number, passport number, or other similar identifiers.
LogiKlu software solution utilizes Company IP address to identify businesses and organizations and does not identify any personal IP addresses or personal devices. The focus is in providing broad business data about the Business Visitor / Company visiting the website to the subscribers of LogiKlu. Since business related data is not under the purview of CCPA, which has the intention of protecting personal data, LogiKlu software is not relevant to the CCPA.
LogiKlu collects business IP addresses, which are then matched to a business profile in our database, and then such information is made available to subscribers of LogiKlu. On request, as an additional service, contact details of relevant decision makers within the matched business are provided. Such contact information is collected from various public data sources. LogiKlu customers can then contact them to provide relevant information pertaining to the products and services in which visitors from those companies have expressed interest during their visit to our customer’s website. As this information includes first name, last name and email address, this service could constitute the processing of personal data and therefore required to be compliant with CCPA.
The General Data Protection Regulation (EU) is a regulation (law) on data protection and privacy in the European Union (EU) and the European Economic Area (EEA) but also addresses the transfer of personal data outside the EU and EEA areas. The GDPR's primary goal is to give individuals control over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU. The regulation contains many provisions and requirements related to the processing of personal data of individuals (referred to as 'data subjects' in the GDPR) who are located in the EEA, and applies to any enterprise—regardless of its location and the data subjects' citizenship or residence—that is processing the personal information of individuals inside the EEA. So, irrespective of the location of the company, if data is being collected on EU individuals coming to the Company’s website, then it needs to comply with GDPR legislation.
LogiKlu software solution identifies business IPs and provides related business data, which are not applicable to personal privacy covered in GDPR. When someone from a Company visits a LogiKlu subscriber’s website, only the business IP is identified and matched with business details in the database. No personal details about the individual is collected or tracked. All visit data is aggregated on the company level. The information related to the Company such as business name and address, website and business telephone number are all free of any GDPR regulation, as these are not in the category of personal data.
However, on request, as an additional service, LogiKlu offers the service of providing names and email addresses of key decision makers at these Companies, As such, these names and business email addresses of these employees fall under the category of personal data. But if a LogiKlu subscriber believes under their own legal guidance that these people could have a legitimate interest in the products and services being offered as indicated by visits to the website, then they may be allowed to process and act upon this data. As LogiKlu software identifies businesses visiting the website instead of individual visitors by tracking a company IP, all the business data provided by LogiKlu can be utilized for B2B marketing purposes under the grounds of legitimate interest.