GDPR Compliance Statement
Bright Chase
Effective Date: 1 December, Monday, 2025
Bright Chase is committed to full compliance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”). This GDPR Compliance Statement explains how we lawfully collect, process, and protect personal data within our B2B data services.
1. Data Controller
Bright Chase acts as a Data Controller under the GDPR.
Company Name: Bright Chase
Contact Email: gdpr@brightchase.io
Purpose: Provision of B2B contact and business data services
+1 (833) 603-0773
8 The Green Suite Suite A Dover, Delaware 19901, United States
2. Nature of Data Processed
Bright Chase processes business-related personal data only, which may include:
First and last name
Job title and professional role
Company name and business address
Business email address
Business phone number
Industry and company-related information
Bright Chase does not knowingly process:
Sensitive personal data
Consumer (B2C) personal data
Private or personal email addresses
3. Source of Data
Our Legitimate Interests Include:
Publicly available professional sources
Company websites and business directories
Licensed data partners
Direct business communications
We do not store or have access to your payment information.
4. Legal Basis for Processing
Bright Chase processes personal data under Article 6(1)(f) – Legitimate Interest of the GDPR.
Our Legitimate Interests Include:
Providing accurate B2B contact data
Supporting lawful business-to-business marketing
Enabling sales, marketing, and lead generation activities
Maintaining and improving data quality
A Legitimate Interest Assessment (LIA) has been conducted to confirm that:
Processing is necessary for B2B purposes
Data subjects reasonably expect such use
Processing does not override individual rights
5. Purpose of Processing
Personal data is processed to:
Create and maintain B2B contact databases
Deliver data services to clients
Verify, enrich, and update business records
Respond to GDPR and data subject requests
Ensure regulatory compliance
6. Data Sharing
Personal data may be shared with:
Clients using Bright Chase services
Authorized processors and infrastructure providers
Regulatory authorities where legally required
Bright Chase does not share data with unauthorized third parties.
7. International Data Transfers
Where data is transferred outside the European Economic Area (EEA), Bright Chase ensures appropriate safeguards, including:
Standard Contractual Clauses (SCCs)
Data Processing Agreements (DPAs)
Secure transfer protocols
8. Data Retention
Personal data is retained only for as long as necessary to:
Fulfill legitimate business purposes
Ensure data accuracy and relevance
Meet legal and contractual obligations
Data is regularly reviewed and securely deleted when no longer required.
9. Data Subject Rights
Under the GDPR, individuals have the right to:
Access their personal data
Request correction of inaccurate data
Object to processing
Restrict processing
Request erasure of data
Requests can be made by emailing:
Bright Chase
gdpr@brightchase.io
+1 (833) 603-0773
8 The Green Suite Suite A Dover, Delaware 19901, United States
All requests are handled within 30 days.
10. Right to Object to B2B Marketing
Individuals may object at any time to the processing of their data for direct B2B marketing purposes.
Upon receiving an objection, Bright Chase will promptly:
Suppress the data from further use, or
Permanently delete the data, where applicable
11. Data Security Measures
Bright Chase implements appropriate technical and organizational safeguards, including:
Controlled access to data
Secure servers and storage
Regular monitoring and audits
Confidentiality obligations for staff and partners
12. GDPR Inquiries & Complaints
For GDPR-related questions or to exercise your rights, contact:
Bright Chase
gdpr@brightchase.io
+1 (833) 603-0773
8 The Green Suite Suite A Dover, Delaware 19901, United States
You also have the right to lodge a complaint with a supervisory authority in your EU member state.
13. Policy Updates
This GDPR Compliance Statement may be updated to reflect regulatory or operational changes. Updates will be published on this page.