Skip to main content
All CollectionsSecurity
Is Wiza GDPR compliant?
Is Wiza GDPR compliant?

How to keep your cold email campaigns in check

Stephen Hakami avatar
Written by Stephen Hakami
Updated over a week ago

Organizations headquartered in the European Union (EU) and those handling the private data of EU-based persons must generally adhere to the General Data Protection Regulation (GDPR) since May 25, 2018.

On June 28, 2021, the EU granted adequacy decisions for the EU GDPR and the Law Enforcement Directive (LED). As a result, data can continue to be transferred in a manner consistent with previous practices in the majority of cases.

The UK has incorporated the GDPR into its domestic legislation, known as the UK GDPR.

The GDPR modernizes and synchronizes the framework for managing personal data within the EU, introducing new responsibilities for organizations and fresh rights for individuals. We work hard to comply with the GDPR and apply its principles as we build new services.

In this article:

Does this affect me?

The GDPR regulation applies to any EU residents' data, regardless of where the processor or controller is located. This means that if you’re using Wiza from the US to reach out to other US corporations, the regulation doesn’t affect you. But if some of your customers or leads are in the EU, you should pay attention to it.

For any UK-based business that provides services or goods to individuals in the EU, compliance with the EU GDPR is mandatory.

This requirement stems from the global applicability of the EU's GDPR, which extends to all countries regardless of their EU membership status. Non-EU countries, including the UK, are obligated to ensure the implementation of the GDPR.

Consequently, organizations operating in the UK must uphold comprehensive GDPR compliance in accordance with both EU and UK regulations. Additionally, they are also obliged to adhere to the provisions outlined in the Data Protection Act 2018, which governs data protection within the UK.

In practice, most companies need to take the GDPR into consideration.

How Wiza is complying with the GDPR

Even though the GDPR only applies to data from EU residents, we made the decision to apply broadly the requirement of the regulation. This means that we don’t restrict any privacy-related feature based on the geographical location of a data subject.

Here are some of the actions we’ve taken to ensure we’re compliant:

Purposes of the processing

A common misconception regarding GDPR is that the sole legitimate way to process personal information of UK/EU data subjects is through consent. Although consent is a legitimate ground for processing, it isn't the only one. Wiza's valid basis for processing data is its inherent interest in delivering its services to its users.

We process only publicly available online data for informational purposes. Our users have a legitimate interest in having easier access to already public data regarding other businesses. By working as a specialized search engine, we make it possible for companies to connect with each other.

Systematic pseudonymisation of non-public data

Our applications heavily pseudonymise data to ensure the privacy of data subjects. Any attributes that doesn’t need to remain in its original form is truncated to remove any possibility to be linked back to a specific data subject.

Right of erasure

Because we deal with publicly available web data, information removed from a website are also removed from our database. But if a data subject wishes to speed up the removal of any in our index, we offer a way to claim email addresses. It is then possible to either update the data or entirely remove it.


We’re taking the security of the data we manage very seriously. Our architecture has been vastly upgraded prior to the GDPR enforcement: Our entire cluster is systematically behind a firewall. Double authentication is required for any connection.

Wiza does not condone ‘spamming’ thousands of emails with the same message. Instead, our tool lets sales reps connect with B2B leads who will be interested in their product. 


We invite you to look at our Privacy Policy as it contains a precise description of how we process data. Should you have any other questions, we’re here to help:

Did this answer your question?