fbpx

Privacy, Terms & Conditions

What is GDPR?

GDPR stands for General Data Protection Regulation and is the new European Union Regulation set to replace the Data Protection Directive and the UK Data Protection Act of 1998. The goal of GDPR is to give EU citizens more control over their personal data, a need for stronger fines for non-compliance and more control over companies and their use of personal data.

“Personal Data” refers to any information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

“Processing” is a set of operations performed on sets of personal data, whether or not by automated means, such as collection, organization, structuring, recording, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

“Restriction of Processing” is the marking of stored personal data with the aim of limiting their processing in the future.

“Sensitive Data” is a special category of personal data (including personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade-union membership, data concerning health) to which additional protections apply.

“Data Controller” is the competent authority which, alone or together with others, determines the purposes and means of the processing of personal data, where the purposes and means of such processing are determined by the Union or the Member State law.

“Data Processor” is a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

 

What’s the difference between a controller and a processor?

An organization working with personal data will operate either as a controller or a processor.

A “controller” is the organization that determines the purposes and means of the processing of personal data. If the controller processes the data itself, it will still be considered a controller. For instance, online retailers will fall under this category (as will the majority of businesses).

A “processor” is someone outside the controller organization processing the data on behalf of the controller. Examples of typical processor companies include payroll companies, accountants, market research firms and most cloud providers.

 

How is Sales.Rocks prepared for GDPR?

At Sales.Rocks, we believe that GDPR is an important milestone in the data privacy landscape, and we are committed to achieve compliance with it.

We use in-house technology – we process publicly available information to the extent that is legally permitted under applicable law.

By using Big Data and merging a sampling frame with Social Media profiles’ unstructured content, such as images and messenger applications, additional info can be linked to mobile phone numbers which allows accurate targeting (age and gender).

According to GDPR, the age range is 16 years. Sales.Rocks is respecting this regulation, and does not knowingly collect Personal Information from children who are under 16 years of age. However, some National regulatives may lower the age range, but not below 13 years.

We’ve made significant investments making the business GDPR compliant. This includes, conducting a Privacy Impact Assessment by updating our Data Protection Agreement, appointing a Data Protection Officer, assembling a GDPR Task force, and dedicating engineering resources to enhance the platform with additional GDPR compliance features.

We ensured that our Data Protection Officer is involved, properly and in a timely manner, in all issues which relate to the protection of personal data. For that purpose, the DPO reports to the highest levels of management and to the board.

  • Informing and advising the controller or the processor and all employees who carry out data processing of their obligations to this Regulation and to other Union or Member State data protection provisions;
  • Monitoring compliance with the GDPR;
  • Providing advice where requests as regards the Data Protection Impact Assessment and Monitor its performance;
  • Cooperating with the supervisory authority;
  • Act as the contact point for the supervisory authority on issues related to processing.

Our six step GDPR compliance

Understanding the Law

At our organization we know our obligations with GDPR as our work relates to processing, collecting, storing data. We always strive for improvement by organizing workshops, training and audits in order to keep our employees constantly informed about their obligations to keep the data secure and private, complying with the law.

Risk Assessment

We have made a list of what is most important to our organization and what is the best way to implement the GDPR. We risk assessed the list, determined our risk tolerance against that list, and we built our roadmap around it. GDPR and ISO 27001 mandate that organizations conduct regular risk assessments. These are helping us to identify threats and vulnerabilities that can affect an organization’s assets and give us the information we need to assure the confidentiality, availability and integrity of the personal data.

Accountability Roadmap for Demonstrating GDPR Compliance

Organizations can do this by implementing appropriate technical and organizational measures to ensure that it can demonstrate that the processing of personal data is performed in accordance with the GDPR. We established appropriate technical and organizational measures (TOMs) to ensure the protection of personal data.

Knowing which data is regulated

We know which data is regulated, therefore we already determined what information our company holds and where it is held. Since, in order to comply we need to have a clear record of the customer information in our possession, we have classified who has access to the data, who shares the data, when it was accessed and what information was used.

Providing subject’s right to access

Data subjects can contact us in order to find out information about how we process their data and what kind of data we keep. Our DPO is responsible for providing the data subject with information as to whether or not their personal data is being processed, and, when that is the case, what personal data is used.

Establishing procedures for responding to data subjects when they exercise their rights

This requirement applies to all communications conducted with the data subjects, and the specific responses required for each type of data request including access, correction, erasure, processing restrictions, objections, and data portability.

1. Definitions

“Business Day” means a day (other than a Saturday, Sunday or public holiday) when banks in the Netherlands are open for business.

“Client” means the person or firm that purchases or otherwise acquires the Data from the Company.

“Company” means Sales.Rocks BV. registered in the Netherlands, at Stationsplein 45, 3013AK, Zuid Holland, Netherlands, company number KvK 64893081.

“Data” means the data set out in the Order Confirmation, comprising information of any kind whether it be words, numbers, graphs or otherwise in any other form and whether or not it is the property of the Company or a third party, which is supplied or made available to the Client by the Company.

“Delivery Date” means the date on which the Company supplies the Data to the Client.

“Force Majeure Event” has the meaning given to it in clause 8.1.

“Intellectual Property Rights” means all patents, rights to inventions, utility models, copyright and related rights, trademarks, service marks, trade, business and domain names, rights in trade dress or get-up, rights in goodwill or to sue for passing off, unfair competition rights, rights in designs, rights in computer software, database right, topography rights, moral rights, rights in confidential information (including know-how and trade secrets) and any other intellectual property rights, in each case whether registered or unregistered and including all applications for and renewals or extensions of such rights, and all similar or equivalent rights or forms of protection in any part of the world.

“Licence” means the license or account between the Company and the Client for the use of the Data and Service incorporating these Terms.

“Order Confirmation” means the Client’s written acceptance of the Company’s quotation as set out overleaf.

“Payment Date” has the meaning set out in 4.

“Price” means the charges payable by the Client for the supply of the Data and Service in accordance with clause 4.

“Service” means all features and accessible options on the Sales.Rocks Platform in use of the Client.

“Terms” means these terms and conditions, where the following rules apply:

(a) a person includes a natural person, corporate or unincorporated body (whether or not having separate legal personality);

(b) a reference to a party includes its personal representatives, successors or permitted assigns;

(c) a reference to a statute or statutory provision is a reference to such statute or statutory provision as amended or re-enacted. A reference to a statute or statutory provision includes any subordinate legislation made under that statute or statutory provision, as amended or re-enacted;

(d) any phrase introduced by the terms including include, in particular, or any similar expression, shall be construed as illustrative and shall not limit the sense of the words preceding those terms; and

(e) a reference to writing or written includes faxes.

 

2. Basis of Licence

You may, unless prohibited by these terms, use the service and data provided for personal purposes. You also may store or print the given content solely for your personal or internal business purposes.

Please do not copy or distribute the Service or Output Data. You are not allowed to reproduce or distribute any information included in this letter, whether in aggregate or individual form.

 

3. Data Sharing and Rights

You agree to the following terms by providing data from your end to our service:

3.1 When you submit any Data to us, such as contact information such as names, email addresses, phone numbers from people in your submitted lists, we get the appropriate licenses from you:

  • We grant your permission to use the data in aggregated form so long as we don’t reveal any information about who the author is or the company he or she works for. (We’ll never use the Submitted Data in a way that violates any contract we have entered into, such as NDAs, or any law).
  • You also give us the perpetual and irrevocable right to publish this data available to our users and their purposes or share it with third parties (see Privacy Policy, 5.3.1 Third-Party Software Subprocessors)
  • We have your permission to create derivative works, models, or data sets with the Submitted Data. You allow us to own the derivative work, but not the original Submitted Data. “Derivative works’ could include things like aggregated or modeled data sets. For example, if we take data from a few different sources and combine it to form one new data set. Another example would be if we used multiple sets of submitted data, from multiple providers, in order to aggregate finding insights about certain industries.

3.2 We want to make sure you feel confident in the licenses we request. If you’re not sure, please refer to the text below and make a point to understand if your rights are affected by sharing data with us.

  • You warrant and represent that you own or otherwise have the necessary rights, permissions, and authority to provide Submitted Data to us, including such data in its entirety and such use by us will not violate any agreements you’ve signed or any applicable laws.
  • You warrant and represent that the data you submit does not contain any information about individuals under the age of 18.
  • You affirm and warrant that you have not and will not provide any information in violation of the U.S. Health Insurance Portability and Accountability Act (HIPAA) to us.
  • You warrant and represent that you will only provide the Submitted Data to us that is true and accurate.

4. Subscription Accounts and Payment

We provide this Service through trial or paid accounts – For example, one-time, monthly, or annual subscriptions. Unless stated otherwise in the account subscription, the following rules will apply when you sign up for our subscription-based service: 

  • You agree to pay us the applicable fee previously chosen during the registration for your account for the time chosen by you during the same registration process.
  • The invoice must be paid in full upon receipt. Unpaid amounts are subject to law plus all expenses of collection (including reasonable attorneys fees) that we may incur. We reserve the right to terminate service immediately.
  • Any taxes, for example, VAT or other than those based on our income, which you become legally obligated to pay as a result of receiving the Service are your responsibility.
  • The agreement will be valid for the Initial Service Term specified on the registration form, and will automatically renew for periods of time equal to the Initial Service Term unless either party requests non-renewal at least 1 day(s) prior.
  • This agreement can also be terminated by either party upon cancelation of the account or at any time in the event of nonpayment. The reason has to do with the other party breaching one of the terms of this agreement.
  • Customers will pay in full for the Service up to and including the last day on which the Service was provided.
  • Sales.Rocks Drip Campaigns Module operates under a Fair Use Policy in order to prevent potential abuse. The upload limits for the Submitted Data are therefore advised to be lower than 1000 rows.
  • Customers without custom subscriptions will need to cancel their ongoing subscription before the recurring deadline of 11:59 p.m. CET on the day before your next recurring billing date or they will be charged for the next subscription period. All payments are final and we do not offer refunds or partial refunds for unused periods including neglected subscription extensions due to non-cancellation. You can, of course, continue to use your subscription service after the cancellation action until your renewal date to align with the last day of your current billing cycle. At any time, and for any reason, we may offer credits to some or all of our members. We determine the amount and form of credits, and whether to provide them, at our complete discretion. The credits for such circumstances are not transferable to requests in the future, nor do they obligate us to provide further credits in the future.

 

5. Intellectual Property Rights

We, as in Sales.Rocks BV. own all rights to this service, including the patents, copyrights, trade names, and service marks associated with it. For instance, we own any design or product features inherent in the service, such as the way data is organized, curated, and presented. We also own any know-how or other intellectual property inherent in how we create and display the content. As an affiliate, you are not given any rights to the intellectual property related to the Service and Sales.Rocks identity.

 

6. Use of Email Services

These practices from our service fall under the Clients responsibility:

  • sending domain marked as spam due to sending an amount of emails per day larger than the advised;
  • having high bounce rates due to submitted unverified data;
  •  email account getting blocked due to usage of the Email Warmer with a ramp-up higher than the recommended;
  • sending domain marked as spam due to mass-emailing;
  • send emails that generate an unacceptable level of spam or complaints;

If you have questions regarding the recommended usage, please reach to us at help@sales.rocks

7. Indemnity from the Client

7.1. The Client shall keep the Company indemnified in full against all costs, expenses, damages and losses (whether direct or indirect), including any interest, penalties, and legal and other professional fees and expenses awarded against or incurred or paid by the Company as a result of or in connection with:

(a) any claim made against the Company by a third party arising out of, or in connection with, the use of the Data, to the extent that the claim is attributable to the acts or omissions of the Client, its employees, agents or subcontractors;

(b) any claim made against the Company by a third party arising out of, or in connection with the breach, negligent performance or failure or delay in performance of the Licence by the Client, its employees, agents or subcontractors; and

(c) any claim made against the Company by a third party arising out of, or in connection with the Client disclosing or making available the Data to a third party, whether permitted by the Licence or not.

7.2. This clause 10 shall survive expiry or termination of the Licence.

 

8. Force Majeure

8.1. For the purposes of the Account, Force Majeure Event means an event beyond the reasonable control of the Company including but not limited to strikes, lock-outs or other industrial disputes (whether involving the workforce of the Company or any other party), failure of a utility service or transport network, act of God, war, riot, civil commotion, malicious damage, compliance with any law or governmental order, rule, regulation or direction, accident, breakdown of plant or machinery, fire, flood, storm or default of suppliers or subcontractors.

8.2. The Company shall not be liable for any loss suffered or incurred by the Client as a result of any delay in or failure of the Company performing its obligations under the Licence arising from any Force Majeure Event.

8.3. If the Force Majeure Event prevents the Company from performing any of its obligations under the Licence for more than four weeks, the Company shall, without limiting its other rights or remedies, have the right to terminate the Licence immediately by giving written notice to the Client.

 

9.General

9.1. Assignment and subcontracting: The Client shall not be entitled to assign, transfer, charge, subcontract, or otherwise deal with all or any of its rights or obligations under the Licence without the prior written consent of the Company. The Company may at any time assign, transfer, charge, subcontract, or deal in any manner any or all of its obligations under the Account.

9.2. Notices: Any notice or other communication required to be given to a party under or in connection with the Account shall be in writing and shall be delivered to the other party personally or sent by post, recorded delivery, or by commercial courier, at its registered office (if a company) or (in any other case) its principal place of business, or sent by fax to the other party’s main fax number. Any notice or other communication shall be deemed to have been duly received if delivered personally, when left at the address referred to above or, if sent by post or recorded delivery, at 9.00 am on the second Business Day after posting, or if delivered by commercial courier, on the date and at the time that the courier’s delivery receipt is signed, or if sent by fax, on the next.

9.3. Waiver: No failure or delay by either party in exercising any of its rights under the Licence shall be deemed to be a waiver of that right, and no waiver by either party of any breach of the Licence by the other shall be considered as a waiver of any subsequent breach of the same or any other provision.

9.4. Severance: If any provision of the Licence is held by any court or other competent authority to be invalid or unenforceable in whole or in part, the validity of the other provisions of the Terms and the remainder of the provision in question shall not be affected.

9.5. No partnership: Nothing in the Licence is intended to, or shall be deemed to, constitute a partnership or joint venture of any kind between any of the parties, nor constitute any party the agent of another party for any purpose. No party shall have authority to act as agent for, or to bind, the other party in any way.

9.6. Third parties: A person who is not a party to the Licence shall not have any rights under or in connection with it.

9.7. Variation: Except as set out in these Terms, any variation, including the introduction of any additional terms and conditions, to the Licence, shall only be binding when agreed in writing and signed by the Company.

9.8. Governing law and jurisdiction: The Licence, and any dispute or claim arising out of or in connection with it, shall be governed by, and construed in all respects in accordance with, the laws of The Netherlands and the parties irrevocably submit to the exclusive jurisdiction of the courts of The Netherlands.

 

Consumer Marketing Data

The data can only be used the number of times stated on the order confirmation and only within the time period stated. The data is seeded and we will monitor the use of the data supplied. Non-compliance with the terms of the license are likely to be a breach of the Data Protection Act. We do not allow mobile numbers to be used for SMS campaigns.

We do not allow any telephone numbers to be used in an automated calling system known as a dialer. If it was your intention to use the data for an SMS or dialer campaign please contact your Account Manager.

Restrictions on content

There are certain subjects and sectors that we do not allow our data to be used for; this is either due to the law or due to the nuisance factor. The data cannot be used for any of the following:

  • Religious activity and promotion
  • Ethnicity- you cannot target individuals by ethnicity
  • Political activity or promotion
  • Products or services on an adult or sexual nature
  • Products or services that promote violence or offensive weapons
  • Payment Protection Insurance claims
  • Personal Injury claims
  • Pensions or Investments schemes
  • Payday loans or other high interest loans
  • Medical services or pharmaceutical products
  • Any product or service that is unlawful
  • If it was your intention to use the data for any of the above please contact your Account Manager.

Restrictions on handling the data

The data cannot be passed on to any third party without our prior consent. If you intend to pass the data onto a third party, i.e. a mailing house, telemarketing agency, data processor, email marketing bureau etc. please confirm the company name, address, and contact number.

After the license has expired you must delete the data from all of your computer systems and backup systems, you must also contact any third parties that have handled the data on your behalf and ask them to remove the data from their systems.

Last updated: 11h of January 2024

Sales.Rocks B.V. (“Sales.Rocks”, or “us” or “we” or “our” shall include Sales.Rocks affiliates and subsidiaries) within its scope of work and in order to realize its core activity collects, stores, and processes personal data.

Sales.Rocks provides samples and services to support the market research industry by providing clients with access to consumer and business respondents via email and LinkedIn communication. We also provide B2B data for sales and marketing purposes.

Our company Data Protection Policy refers to our commitment to treat the information of employees, customers, stakeholders, and other interested parties with the utmost care and confidentiality.

With this policy, we ensure that we gather, store, and handle data fairly, transparently, and with respect towards individual rights.

This Privacy Policy describes the types of information we collect, how we use the information, how we store the information, how we share or disclose the information, as well as the possibilities regarding the use and processing of the information. Where we decide the purpose or means for which this personal data is processed, we are the “data controller.” We will comply with all applicable data protection laws, including the General Data Protection Regulation 2016/679. You have the right to object to us processing your personal data for direct marketing purposes.

While Sales.Rocks is committed to assisting its Customers in its role as a data processor, Customers are still ultimately responsible for adhering to their obligations as a “data controller.” Broadly speaking, this means that Customers are responsible for obligations such as:

  • Properly collecting, processing, and transmitting personal data from EU subjects
  • Properly marketing and communicating to current/potential customers
  • Properly handling requests from EU data subjects, such as erasure and access.

Personal data means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

This policy does not apply to the practices and processing of our customers, companies that we do not own or control, to individuals that we do not employ or manage or to services provided by other companies but accessible through our Website.

This Privacy Policy explains but is not limited to the following:

  • What personal data we may collect about you or your company;
  • Why our processing is lawful;
  • Who we may share your information with;
  • How we will use the information;
  • Who we may provide that information with;
  • Your rights regarding the information.

Sales.Rocks is a member of the following industry organizations and complies with all the privacy policies and codes of ethics of these associations:

  • ISO (The International Organization for Standardization)

 

1. What type of information do we collect?

We gather personal information if and to the extent it is necessary to provide our services to you, and if we are entitled or obliged to process personal information under applicable law.

Sales.Rocks Website: If you contact us about our products and services or request a demo on our website, or request marketing content through third-party websites, the forms you complete or the emails you send may include information about you, such as your full name, your email address, the organization on behalf of whom you are contacting us, a general or personal phone number and your inquiry.

Sales.Rocks’ Online Client Platform: In order to provide a Sales.Rocks Client with access to our platform and enable them to access our services, we collect the full name, email address, and password of each individual authorized by such client to access the platform, as mandatory for platform registration, and additional data points, that the client can fill to complete their profile.

Analytics on the Website and the Platform: Our website and online client platform use cookies and other mechanisms to collect and log analytical information, to help analyze use, to compile statistical reports on the use of our website, and to improve our website and marketing. To find out more about the use of cookies and adjust your cookie preferences, please visit point 23. in this Privacy Policy.

  • Information you provide to us:

We process personal information that you actively and knowingly provide to us (e.g. your first name, last name, email address) if you sign-up for our newsletter or through our chat.

We will inform you each time which information is required so you can choose to use our services or not. If you choose not to provide us with certain information you may not be able to register with us or take advantage of some of the features we provide.

1.1 Log data

Whenever you visit our site, we may collect information that your browser sends to us which is called log data. This data may include information such as your IP address, browser version, access times and dates, and other related statistics. Additionally, we use log data including your IP address for security purposes such as whitelisting, prevention, and recognition of attacks and malware.

  • number of visits to our website;
  • pages visited while at the website and time spent per page;
  • page interaction information, such as scrolling, clicks, and browsing methods (using heatmaps);
  • referring websites where visitors have come from and where they go afterwards;
  • page response times and any download errors; and
  • other technical information relating to end-user device, IP address, or browser or browser plug-in.

Sales.Rocks does not seek to collect any non-business-related data such as date of birth, home address, personal email, or telephone number, and Sales.Rocks does not collect sensitive personal data.

 

2. How do we collect information?

Information submitted or provided by you.

We collect publicly available information to the extent legally permitted under applicable law. We may append this information to our existing information.

Our data will be:

  • Accurate and kept up-to-date.
  • Collected fairly and for lawful purposes only.
  • Processed by the company within its legal and moral boundaries.
  • Protected against any unauthorized or illegal access by internal or external parties.

Our data will not be:

  • Communicated informally.
  • Stored for more than necessary to fulfill the purposes for which it was collected.
  • Transferred to organizations, states, or countries that do not have adequate data protection policies.
  • Distributed to any party other than the ones agreed upon by the data’s owner (exempting legitimate requests from law enforcement authorities).

Sales.Rocks B2B Database: Sales.Rocks gathers current and historic business contact data. The data collected about individuals on the Sales.Rocks platform consists of:

  • Name;
  • Employer Company & Company Details;
  • Previous employment history;
  • Office Location (Country, City & Postcode);
  • Business Telephone Number;
  • Skills Set;
  • Company Business Email Address;
  • Contact Business Email Pattern with Probability scores;
  • Job Title.

We also hold data in respect of your employer company such as its name, alias, size, industry, website, web technologies used, and industry. Where you have moved jobs, we may hold your previous employers and previous titles.

In order to be able to link back info to specific email addresses we make use of hashes of email addresses. Once emails are generated temporarily (e.g. via the most likely email format of a company in combination with first name and/or surname), we generate hashes and store these with the suggested format. Hashing is generating a value or values from a string of text using a mathematical function. In our case, we use the hashes for storing instead of the actual email address. There are instances where users want to look up additional information based on provided email addresses. We would then hash these emails in the same way to allow a search with our database.

In order to provide certain aspects of its services, Sales.Rocks requires a full name and company domain to be recorded against profiles in its database. We do not store the contact email address but only the suggested pattern. Where Sales.Rocks does not have the business email address of a profile from public sources, it may generate a business email address based on the email address structure understood to be implemented by the employer company.

The majority of the personal data we collect about you comes from publicly available sources such as business and employment-oriented social networks, recruitment websites, and company websites.

 

3. How we use personal data

  • We collect personal data for sales and marketing purposes to help our clients improve their products, services or the way they conduct their business.
  • Personal data will only be kept or used by us for the purposes listed in our Privacy Policy.
  • You may choose to obtain access to or correct your personal information at any time. Similarly, you may withdraw your consent to processing your personal data at any time (in which case we will delete your personal data). In order to effect any of these, please contact us using the details below.

4. Processing Grounds

We process personal data based on four different legal grounds.

4.1. Consent as a legal ground for lawful processing

In some instances, Sales.Rocks processes a data subject’s data with a given consent. Your consent may be obtained by third parties on Sales.Rocks’ behalf. You have the right to withdraw such consent at any time and we will cease to process data after consent is withdrawn. Examples of consent are when you have opted-in for being contacted by our team, subscribed to a newsletter, engaged with us via chat, or signed up for our platform.

4.2 Contractual necessity as a lawful basis for processing

Sales.Rocks may process your data to comply with our legal and regulatory obligations e.g. preventing, investigating, and detecting crime, fraud, or anti-social behavior and prosecuting offenders, including working with law enforcement agencies.

4.3 Contractual necessity as a lawful basis for processing

GDPR Recital 40 mentions ‘the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract’ as a legitimate basis of lawful processing and GDPR Recital 44 simply states that processing should be lawful where it is necessary in the context of a contract or the intention to enter into a contract. Therefore we may process your data where we have a contract with the individual and we need to process their personal data to comply with our obligations under the contract.

4.4 Legitimate Interest

Sales.Rocks processes personal data when it is in our or our clients’ legitimate interest to do so and when these interests are not overridden by the interests or fundamental rights and freedoms of the data subject. Our and our client’s legitimate interests include: having information about potential business customers or finding suitable survey respondents organized in one searchable database, being able to retrieve accurate, updated, and complete information, being able to identify a contact that holds a certain role within a B2B company; enabling clients to only reach out to relevant contacts, being able to generate and contact potential B2B leads in order to undertake forms of B2B marketing, having access to aggregated statistical insights for the purpose of understanding patterns and trends, being able to receive statistical data on country, industry or employee size level.

Our Services are designed to help users and vendors (e.g. HR professionals, B2B partners, sales platforms) validate and verify contact information and to find business profiles they seek in order to interact with relevant Contacts, through access to business profiles retained in the Sales.Rocks database (“Sales.Rocks Database”).

The information provided by Sales.Rocks B.V. is retrieved from the web, public sources, open registries in countries with open data policies, or from the contribution of relevant data from other users and business partners.

GDPR Recital 47 also states that the processing of personal data for direct marketing purposes may be regarded as carried out for a legitimate interest.

4.5 Sales.Rocks Database

The Business Profiles we collect from publicly available sources and from our trusted business partners are stored in the Sales.Rocks Database. Our algorithms process this information in order to identify the most up-to-date information related to each profile. In addition, The Sales.Rocks Database includes Business Profiles relating to individuals, which were lawfully obtained by Sales.Rocks from business partners who own established and legitimate directories or from publicly available sources. We may use and share Business Profiles with our Users when they use our Plugin online for the purpose of validating and authenticating online identities by finding relevant data related to a specific individual. We may also disclose to our vendors and business partners (or permit their access to) Business Profiles retained in the Sales.Rocks Database for the purpose of ensuring that their current data is up to date, enriching it, and allowing our partners to obtain relevant Business Profiles for employment, commercial and business opportunities. If you prefer that we will not share your Business Profile with our Users, vendors, or business partners, you may opt out by filling in your relevant details here.

In this case, we shall not continue to use or disclose your Business Profile. To learn more about our commitment to respect your rights in accordance with applicable privacy and data protection regulations, please see “Your Rights Regarding Your Personal Information” below. The following information is not collected to the Sales.Rocks Database: any information which is shared with us by our Users when downloading or using our Plugins, or accessing and registering on our Site. Specifically – If a User chooses to connect with the CRM or Email account to the Sales.Rocks App, Sales.Rocks will not collect information associated with such use. In order to provide our service and match the relevant information from our database with applicable profiles Users view on supported sites, we need to read certain words (such as full name and company name of the Contacts) We store the data in our servers temporarily and delete it after providing the Users with the service. This data is not added to our database. Sales.Rocks does not store browsing history or data.

 

5.With whom do we share the data?

We will share your information with the following:

5.1 Our companies

Access to personal data within Sales.Rocks B.V., Sample Solutions B.V., and our group of companies are restricted to those individuals who have a need to access the information for our business purposes.

5.2 Our clients

We may share personal data with our clients as part of the offering of our services. Sales.Rocks provides limited access to its database. Our clients may use the data to contact individuals on their business telephone, at their business email address, through other electronic mail, or through targeted display ads on social networks in order to market products and/or services and for marketing purposes.

Please note that in making available the data to its clients, Sales.Rocks is processing such data as a processor on behalf of the client, who is acting as the controller. Clients will likely have their own privacy policies and opt-out options, and we recommend you review them. Where Sales.Rocks has made personal data available to its clients, the client privacy policy should list Sales.Rocks as thier data source.

5.3 Suppliers, subcontractors, service providers

We keep your information confidential but may disclose it to suppliers or subcontractors insofar as it is reasonably necessary for the purposes set out in this privacy policy. However, this is on the basis that they have agreed to safeguard this information.

This includes external third-party service providers, such as accountants, auditors, experts, lawyers, and other outside professional advisors; IT systems, support, and hosting service providers; technical engineers; data storage and cloud providers and similar third-party vendors and outsourced service providers that assist us in carrying out business activities.

5.3.1 Third-Party Software Subprocessors

MongoDB Ltd. 

Data can be hosted in the U.S., EU or Australia depending on Customer’s selection with respect to Customer’s hosting location.

Sales.Rocks’ products and services rely on MongoDB to efficiently manage and store diverse data types as part of our data processing pipeline. MongoDB plays a crucial role in enabling seamless data storage, retrieval, and manipulation, contributing to our ability to handle high volumes of data with ease.

Elastic Cloud

Elasticsearch controls and operates in The Netherlands USA, and other websites operated or controlled by Elasticsearch may be located, in various countries.

Sales.Rocks uses Elastic Cloud for the purpose of scaling resource capacities, such as data and machine learning nodes, to support your most demanding searches.

Amazon Web Services, Inc.

Data can be hosted in the U.S., EU, or Australia at Customer’s election. May be accessed globally by Sales.Rocks employees.

Sales.Rocks Database is hosted on AWS Frankfurt. AWS may have access to all Customer Data. However, as a general principle, AWS will not access any Customer instances of Sales.Rocks except in limited cases such as to investigate service issues.

5.4 Resellers

Sales.Rocks works with resellers in various countries. They can potentially receive access to part of the database.

5.5 Government authorities

In addition, we may disclose your information to the extent that we are required to do so by law (which may include to government bodies and law enforcement agencies); in connection with any legal proceedings or prospective legal proceedings; and in order to establish, exercise or defend our legal rights (including providing information to others for the purposes of fraud prevention).

5.6 Potential acquirers or investors

If we are involved in a merger, acquisition, or sale of all or a portion of our assets, you will be notified via email, account message and/or a prominent notice on our website of any change in ownership or uses of this information, as well as any choices you may have regarding this information.

 

6. Data Storage, Security, and transfer of data

6.1 Where is the data stored?

Information including without limitation, personal information is primarily stored on servers and systems located in the EU, which servers are licensed, owned, and/or maintained by or on behalf of Sales.Rocks. We are using the Amazon AWS cloud with our website and platforms being hosted in Frankfurt.

6.2 Security

Your personal information is treated as strictly confidential and we have taken appropriate technical and organisational security measures against loss and unlawful processing of such information.

As a company that works in this field, Sales.Rocks highly values system security and data safeguard. Our systems require identity assurance, visible trust, and strong protection and therefore Sales.Rocks security policies include data encryption, pseudonymization, firewalls, malware protection, intrusion detection, safe data storing, SSL security certificates, and reliable web hosting.

Sales.Rocks is ISO 27001 certified and receives a yearly audit on data security and data protection as well, on behalf of the mother company Sample Solutions B.V., which regulates all safety procedures of the data.

Please be aware that, although we endeavor to provide reasonable security for information we process and maintain, no security system can prevent all potential security breaches.

6.3 Transferring data

All of our data is delivered via our own platform where we host the data on a dedicated server.

You may withdraw your consent to processing your business personal data at any time by contacting at datasubjectrequest@sales.rocks.

6.4 Links to Other Sites

Our service may contain links to other sites. If you click on a third-party link, you will be directed to that site. Note that these external sites are not operated by us. Therefore, we strongly advise you to review the Privacy Policy of these websites. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

 

7. Client information

We treat all information we receive from clients as confidential and do not use the information for any purpose other than to fulfill our obligations to them. We keep client information secure at all times and prevent the misuse and unauthorized disclosure of it by our employees or any third parties.

 

8. Children and minors

Our site and services are directed to the general public. We do not knowingly collect Personal Information from children under sixteen years of age.

 

9. How long do we retain Personal Information?

We will retain your Personal Information for the period necessary to fulfill the purposes for which it was collected and as required for business or legal purposes unless a longer retention period is required or permitted by law.

If data is found in different online sources (see stated sources under 4.5 Sales.Rocks Database) are stored in Sales.Rocks Database, the data storage time depends on the last successful access to the respective data in one of the related public sources. If this was more than 12 months ago for all available sources, or after our regular data updates, the data will no longer be displayed in the Sales.Rocks Database.

If you withdraw your consent to our processing of your personal data, we will delete the personal data concerned at that point and will not keep a copy of it. Your right to withdraw your consent is dealt with in more detail below.

10. Conditions for consent

Where the processing is based on consent, the data subject shall have the right to withdraw his or her consent at any time. The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal. You may withdraw your consent for us to collect, use or disclose your personal data by giving us written notice via the web form placed on the Privacy Center page.

 

FAQ

11. Which rights do I have as a data subject?

You always have the following rights set forth under the applicable law:

  • The right to get transparent information about the processing of your Personal Information;
  • The right to get access to your Personal Information.
  • The right to rectify inaccurate Personal Information concerning you and to get information about any rectification.
  • The right to erase Personal Information concerning you and to get information about any erasure.
  • The right to restrict the processing of Personal Information concerning you and to get information about any restriction.
  • The right to receive Personal Information you provided to us (and which concerns you) and transmit this received Personal information to another provider.
  • The right to object to any data processing that is based on our legitimate interest.
  • The right not to be subject to a decision solely based on automated processing including profiling.
    We respond to all inquiries within thirty days.

 

12. Can I see and/or correct information about me?

Yes, you can. We allow individuals to see and correct the data we have about them. Please send us such requests through the Privacy Center page.

 

13. How can I access my information?

You may access the information we collect from or about you in order to review, edit or delete such information, or you may exercise your right to opt-out from communications from Sales.Rocks, by filling out the request form on our website, on the Privacy Center page.

 

14. How can I opt-out?

You may opt-out by:

  • Clicking on the unsubscribe link contained in any e-mail communication received from Sales.Rocks
  • Filling out the request from on the Privacy Center page

EU Residents

Respectful to the GDPR, Sales.Rocks will notify every individual about their contact data held in the Sales.Rocks database via the email address held in the database with a notice detailing the information on that person, the purpose for which this data is used including the rights a person has to request access or remove data from the Sales.Rocks database.

This process is done automatically, when the contact information about the persons enters the database, and there is no need to request it previously to your notice.

If an individual is not sure about their data held in the Sales.Rocks database, a request for this information can be sent manually via the Sales.Rocks Privacy Center.

 

15. Legal proceedings

We may disclose your personal data if required to do so by law in order to (for example) respond to a subpoena or a request from law enforcement, a court or a government agency (including in response to public authorities to meet national security or law enforcement requirements) or in good faith in the belief that such action is necessary to:

  • Comply with a legal obligation.
  • Protect or defend our rights, interests or property or that of third parties.
  • Prevent or investigate possible wrongdoing in connection with the services.
  • Act in urgent circumstances to protect the personal safety of users of the services or the public.
  • Protect against legal liability.

 

16. Does using Sales.Rocks mean that I have a “legitimate interest” to reach out to EU Data Subjects?

Unfortunately the answer is no. You are ultimately responsible for how you use data collected from its own customers or from a 3rd party vendor, such as Sales.Rocks.

It remains the responsibility of a customer, as the data controller, to ensure that it has a legal basis to use that information and any required consent to send marketing, or other communications to the individual. We rely on our Customers to adhere to their own responsibilities as far as how they communicate with customers/prospective customers.

 

17. For residents of California

Your Rights Under the California Consumer Protection Act of 2018 (“CCPA”)

Pursuant to the California Consumer Protection Act of 2018 (“CCPA”), and subject to certain exceptions and limitations, Californians can contact Sales.Rocks to exercise the rights described below with respect to certain personal information that Sales.Rocks holds about them. To the extent those rights apply to you, they are described below. Sales.Rocks also handles certain personal information on behalf of our customers. You should contact those customers to exercise any rights you may have with respect to that personal information.

Right to Know About Personal Information Collected, Disclosed, or Sold

You have the right to request that we provide you with details about the personal information we collect, use, disclose and sell. You can submit a verifiable consumer request by contacting us via datasubjectrequest@sales.rocks. Sales.Rocks reserves the right to verify your identity to our satisfaction, including by asking you to log into your account if you have one.

You are entitled to receive the following:

  • The personal information that Sales.Rocks has currently hold connected to your profile
  • The business/commercial purpose for the collection or selling.
  • The categories of third parties with whom Sales.Rocks shares personal information.
  • Because Sales.Rocks has disclosed or sold (as those words are defined in the CCPA) personal information to third parties in the last twelve months, you are also entitled to receive the categories of personal information that Sales.Rocks has disclosed or sold in the past twelve months.

Right to Request Deletion of Personal Information

You have the right to request deletion of the personal information we have collected about you (subject to some exceptions). You can submit your request as described above, and we reserve the right to conduct the verification described above.

Right to Non-discrimination for the Exercise of a Consumer’s Privacy Rights

You have the right not to receive unlawful discriminatory treatment by Sales.Rocks for the exercise of your privacy rights under the CCPA.

Right to Opt-Out of the Sale of Personal Information

You have the right to opt-out of the sale of your personal information by Sales.Rocks. You can submit a verifiable consumer request through our Privacy Center.

List of Categories of Personal Information to be Collected and May Have Been Sold or Disclosed and Categories of Personal Information Collected

The categories of personal information we may collect include:

“Identifiers” such as

  • Telephone number(s) (business telephone numbers)
  • Email address(es) (business email address)
  • Full Name
  • Job Title

All of the information above is collected for the purposes of market research. In CCPA terms, these purposes, which are described further in that section of our Privacy Policy, include but are not limited to the following examples:

  • Undertaking internal research for technological development and demonstration.
  • Undertaking activities to verify or maintain the quality or safety of services and devices, and to improve, upgrade, or enhance services and devices; and
  • Facilitating the operational purposes of Sales.Rocks or our service providers.
  • Categories of Personal Information that May Have Been Sold.
  • Sales.Rocks sold all of the above categories of personal information in the last twelve months.
  • Categories of Personal Information that Were Disclosed.

These rights for the residents of California are covered by the CCPA (California Consumer Privacy Act) and therefore Sales.Rocks has obliged to enable California residents to exercise their rights with request options for access and removal from our database through our privacy center.

 

18. For residents of Canada

Your Rights Under the Personal Information Protection and Electronic Documents Act 2000 (“PIPEDA”)

Pursuant to the Personal Information Protection and Electronic Documents Act 2000 (“PIPEDA”), and subject to certain exceptions and limitations, Canadians can contact Sales.Rocks to exercise the rights described below with respect to certain personal information that we holds about them. To the extent those rights apply to you, they are described below. Sales.Rocks also handles certain personal information on behalf of our customers. You should contact those customers to exercise any rights you may have with respect to that personal information.

Right to Know About Personal Information Collected, Disclosed, or Sold

You have the right to request that we provide you with details about the personal information we collect, use, disclose and sell. You can submit a verifiable consumer request by contacting us via datasubjectrequest@sales.rocks. Sales.Rocks reserves the right to verify your identity to our satisfaction, including by asking you to log into your account if you have one.

You are entitled to receive the following:

  • The personal information that Sales.Rocks has currently hold connected to your profile
  • The business/commercial purpose for the collection or selling.
  • The categories of third parties with whom Sales.Rocks shares personal information.
  • Because Sales.Rocks has disclosed or sold (as those words are defined in the PIPEDA) personal information to third parties in the last twelve months, you are also entitled to receive the categories of personal information that Sales.Rocks has disclosed or sold in the past twelve months.

Right to Request Deletion of Personal Information

You have the right to request deletion of the personal information we have collected about you (subject to some exceptions). You can submit your request as described above, and we reserve the right to conduct the verification described above.

List of Categories of Personal Information to be Collected and May Have Been Sold or Disclosed and Categories of Personal Information Collected

The categories of personal information we may collect include:

“Identifiers” such as

  • Telephone number(s) (business telephone numbers)
  • Email address(es) (business email address)
  • Full Name
  • Job Title

All of the information above is collected for the purposes of market research. In PIPEDA terms, these purposes, which are described further in that section of our Privacy Policy, include but are not limited to the following examples:

  • Undertaking internal research for technological development and demonstration.
  • Undertaking activities to verify or maintain the quality or safety of services and devices, and to improve, upgrade, or enhance services and devices; and
  • Facilitating the operational purposes of Sample Solutions or our service providers.
  • Categories of Personal Information that May Have Been Sold.
  • Sample Solutions sold all of the above categories of personal information in the last twelve months.
  • Categories of Personal Information that Were Disclosed.

These rights for the residents of Canada are covered by the PIPEDA (Personal Information Protection and Electronic Documents Act) and therefore Sales.Rocks has obliged to enable Canada residents to exercise their rights with request options for access and removal from our database through our privacy center.

 

19. Google user data

The Sales.Rocks Platform (app.sales.rocks) has the option to integrate with the user’s Gmail account in order to enable email sending via the Gmail API Service. The information stored on our end, with given permission by Google, is the email address connected to the Sales.Rocks account, the access token and outbox information on the sent emails through the Sales.Rocks Email Sequences Module. This information is only used to provide you with the following services:

  • Sending Emails on your behalf through the Sales.Rocks Platform, Email Sequences Module;
  • Tracking of opens, clicks, bounce rate, out-outs, number of messages sent to an email address for statistical purposes and reports.

The Gmail inbox option for incoming emails is not integrated with the Sales.Rocks Platform, meaning we do not store incoming emails from the Email Sequences. The only information about incoming emails are responses, which are tracked with an analytical algorithm. The content of the incoming emails is not read nor stored on the Sales.Rocks Platform.

We do not have insight, nor access to your general Gmail inbox, and are not able to read nor store sent emails other than the ones sent from the Sales.Rocks Platform through the Email Sequences Module.

You can revoke access to your Gmail account from the Sales.Rocks Platform anytime in the settings tab of the Email Sequence Module.

If you revoke your access, we will not be able to further send out emails from the Sales.Rocks Platform through your Gmail account, and all of the stored data will be deleted upon your request.

We do not share nor pass on any of your data to third parties.

Disclosure

Sales.Rocks use of information received from Google APIs corresponds to Google API Services User Data Policy, including the Additional requirements for Specific API Scopes.

20. Contact forms and email contact

Description and scope of data processing

A contact form distributed through a third-party form software Marquiz is present on our website and can be used to make contact electronically. If a visitor uses this option, the data entered in the input screen will be transmitted to us and saved both in our internal contact list and in the base of Marquiz with limited access to only us, Sales.Rocks B.V. as a direct user of their services.

The data will solely be utilized for processing the conversation and will not be shared with third parties.

Legal basis for data processing

The legal basis for processing data where the user has granted consent is art. 6(1)(a) of the GDPR.

The legal basis for processing data transmitted in the course of sending an email is art. 6(1)(f) of the GDPR. If the aim of the email contact is the execution of a contract, a further legal basis for processing the data is art. 6( 1)(b) of the GDPR.

Purpose of data processing

We will only process personal data from the input screen to respond to the inquiry. If we are contacted by email, we also have a necessary legitimate interest in processing the data.

Other personal data processed during the submission process serves to prevent misuse of the contact form and ensure the security of our technical information systems.

Retention period

Data is deleted as soon as it is no longer required for the purpose for which it was recorded. For personal data from the contact form input screen and data submitted via email, this occurs when the particular conversation with the user has ended, or upon request from the data subject.

Other personal data recorded during the submission process will be deleted in a period of 30 days after the deletion request.

Option of objection and elimination

Users have the right to withdraw their consent for their personal data to be processed at any time. If users contact us via email, they can object to their personal data being processed. However, if this happens, we cannot continue the conversation. Withdrawal does not require a specific form and should be directed to the responsible party.

After the contact with us has ended, any personal data will be deleted.

21. Use of Google Analytics

Description and scope of data processing

This website uses Google Analytics, a web analysis service provided by Google Inc. (‘Google’). Google Analytics uses so-called ‘cookies’, text files that are stored on your computer and that enable us to analyze your use of our website. As a rule, the information generated by the cookie concerning your use of this website will be transmitted to a Google server in the USA and stored there. If IP anonymization is activated on this website, however, your IP address will be truncated beforehand by Google within the Member States of the European Union and in other countries which are contracting parties to the Agreement on the European Economic Area. The full IP address will be transmitted to a Google server in the USA and only truncated there in exceptional circumstances. On the instructions of the operator of this website, Google will use this information to analyze your use of the website, compile reports about website activities and provide other services related to the use of the website and of the Internet to the website operator.

The IP address transmitted from your browser within Google Analytics will not be linked to other Google data.

This website uses Google Analytics with the extension ‘_anonymizeIp()’. This means that IP addresses are truncated prior to further processing and cannot therefore be linked to a particular individual. Where the data collected has a personal connection to you, it will thus be excluded, and the personal data therefore deleted immediately.

Legal basis for data processing

The legal basis for processing data using cookies for analysis purposes where the user has granted specific consent is art. 6(1)(a) of the GDPR.

Purpose of data processing

We use Google Analytics so that we can analyze the use of our website and make regular improvements. The statistics we obtain enable us to improve our offer and make it more interesting for you as a user. In the exceptional circumstance where personal data is transferred to the USA, Google complies with the EU-US Privacy Shield, www.privacyshield.gov/EU-US-Framework. The legal basis for the use of Google Analytics is art. 6(1)(f) s. 1(f) of the GDPR.

Retention period, option of objection and elimination

You can prevent cookies from being stored by configuring your browser software accordingly; we would like to make you aware, however, that in this case you may not be able to use all the functions of this website to their full extent. In addition, you can prevent the compilation of the data created by the cookie and related to your use of the website (including your IP address) to Google and the processing of this data by Google by downloading and installing the browser plug-in available at this link: tools.google.com/dlpage/gaoptout.

22. Google Analytics Remarketing

Description, purpose and scope of data processing

Our websites use the functions of Google Analytics Remarketing in connection with the cross-device functions of Google AdWords and Google DoubleClick. The provider is Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA.

This function allows the target audiences for advertising which were created with Google Analytics Remarketing to be linked with the cross-device functions of Google AdWords and Google DoubleClick. This allows Interest-based, personalized advertising tailored to you on the basis of your previous usage and surfing behavior on one device (e.g. mobile phone) to also be displayed on another device (e.g. tablet or PC).

Retention period, option of objection and elimination

If you have granted relevant consent, Google will link your Web and App browser history with your Google account for this purpose. This means that the same personalized advertising can appear on every device you log onto with a Google account.

To support this function, Google Analytics records Google-authenticated user IDs, which are temporarily linked to our Google Analytics data, to define and create target audiences for cross-device promotional advertising.

You can permanently refuse cross-device Remarketing/Targeting by deactivating personalized advertising in your Google account; follow the link below: www.google.com/settings/ads/onweb.

Legal basis for data processing

Data recorded will only be merged with your Google account with your consent, which you may grant or withdraw (art. 6(1)(a) of the GDPR). Where data capture processes are not merged with your Google account (e.g. because you do not have a Google account or have deactivated merging), data is captured on the basis of art. 6(1)(f) of the GDPR. The legitimate interest arises from the fact that the website operator has an interest in the anonymous analysis of visitors to the website for advertising purposes.

Third-party supplier details

More detailed information and the data protection provisions can be found in Google’s Privacy Policy at www.google.com/policies/technologies/ads/

23. Updates to this Privacy Policy

This Privacy Policy may be updated periodically and without prior notice to you to reflect changes to Sales.Rocks’ practices and procedures set forth herein. In the event of any updates or changes to this Privacy Policy, Sales.Rocks’ will post a prominent notice on Sales.Rocks’ website(s) to notify you of any significant changes.

Data Protection Request:

For any data protection questions or concerns please visit our Privacy Center page and fill out the request form.

You have the right to ask us not to process your personal data for marketing purposes. You can exercise your right to prevent such processing at any time by contacting our Data Protection Team.

Last updated: 12th of July 2023

Contact Information:

Email: datasubjectrequest@sales.rocks
Address: Halfrond 41, 3071 PP, Rotterdam, Zuid-Holland, The Netherlands
Phone: +31 10 310 4085

The Managing Director and Management Team of Sales.Rocks have established this quality policy and along with all the employees of this company, are fully aware of their responsibilities and their individual contributions to the quality management system and share a common aim to achieve client satisfaction.

Sales.Rocks aims to excel in international telephone sampling. To achieve this, Sales.Rocks utilizes a stringent training and instruction process for the sales, marketing, data and web development teams, and well-trained staff to be able to meet the goals.

Our mission is continuous improvement and enrichment of our talent, knowledge, and expertise for driving value for each client by creating the ultimate customer experience and delivering top-notch B2B samples.

Sales.Rocks is committed to delivering high quality services which fully meet customers’ requirements at all times. We aim at building long-term, mutually beneficial relationships with our worldwide customers by understanding their specific needs and being flexible in offering solutions that meet their expectations.

We are committed to continuous improvements in compliance which we achieve by carrying out internal audits, client satisfaction surveys and quality management reviews in order to identify areas of nonconformity, but also to monitor, measure and establish new objectives towards improving our services and business performance.

We want all our employees to be committed to quality and to act accordingly, as we recognize that it is our responsibility, from top management down, to provide all personnel with the means and the motivation to do so.

Sales.Rocks will continue to make quality a fundamental part of our policy and maintain our reputation for honesty and integrity by ensuring that these principles are reflected throughout the organization. The Company’s Management Team will ensure that this policy statement is briefed, understood and implemented at all levels within the company.

Sales.Rocks complies with the CCPA by enabling California residents to request removal of their personal data from the Sales.Rocks database and by that to opt-out from selling their personal information.

What is CCPA?

The California Consumer Privacy Act (CCPA) is a statute that protects and regulates privacy rights and ensures consumer protection for residents of California, The United States.

The CCPA applies to any business, including any for-profit entity that collects consumers’ personal data, which does business in California, and satisfies at least one of the following thresholds:

Has annual gross revenues in excess of $25 million;
Processes, buys, accesses, or sells the personal information of 50,000 or more consumers or households; or
Earns more than half of its annual revenue from selling consumers’ personal information.

What refers to Sales.Rocks by the definition from the CCPA for “sell”?

Sales.Rocks collects publicly available data about professionals that are covered by the CCPA for personal information. The data collected on a person is a publicly available personal profile that is shown to the Sales.Rocks users on the Sales.Rocks Platform, extension or via other APIs.

The full contact profiles on the Sales.Rocks Platform might also include other information collected from other websites and other available sources. These profiles include information identified in the CCPA as name, email address, employment history.

I’m a California resident, how can I remove my data from Sales.Rocks?
If you have found information about you distributed by Sales.Rocks you can use the data request options from our privacy center to request access or removal from our database.

In that case, your request will be processed and all information about you concerning your privacy will be removed from the database, thus not shown to Sales.Rocks users, nor processed or used further.

You can use our toll-free number for any concerns or data removal requests:
+1 833 591 1249