• What are your Data Protection Officer's (DPO's) contact details?
• Do you have a process for reporting information security breaches that affect your clients to them in a timely manner?
• Has your telephone list been cleaned against preference service suppression files?
• Are staff required to do regular information security and data protection training?
• What certifications, accreditation, memberships or similar does Cognism hold?
• Do you transfer data outside the European Economic Area? If yes, which protections do you have in place?
• Is Cognism the Data Controller or the Data Processor of the data provided?
• What has Cognism done internally to comply with GDPR and data privacy regulations?
• Does Cognism maintain all required GDPR documentation?
• How are data subjects' opt-out requests actioned?
• Have all data subjects given their consent to receive marketing content from third parties?
• What is the legal basis of data processing?
• How often is the data updated?
• How is your data obtained?
• Do you have a standard GDPR Response?