- What are your Data Protection Officer's (DPO's) contact details?
- Do you have a process for reporting information security breaches that affect your clients to them in a timely manner?
- Has your telephone list been cleaned against preference service suppression files?
- Are staff required to do regular information security and data protection training?
- What certifications, accreditation, memberships or similar does Cognism hold?
- Do you transfer data outside the European Economic Area? If yes, which protections do you have in place?
- Is Cognism the Data Controller or the Data Processor of the data provided?
- What has Cognism done internally to comply with GDPR and data privacy regulations?
- Does Cognism maintain all required GDPR documentation?
- How are data subjects' opt-out requests actioned?
- Have all data subjects given their consent to receive marketing content from third parties?
- What is the legal basis of data processing?
- How often is the data updated?
- How is your data obtained?
- Do you have a standard GDPR Response?