Privacy Policy

We collect information to provide and improve our B2B lead intelligence services. The types of information we collect depend on how you interact with WholeDatabase.

We use the information we collect for the following purposes:

• Service delivery — to create and manage your account, process transactions, and provide access to our B2B lead database
• Platform improvement — to analyze usage patterns, diagnose technical issues, and develop new features
• Communication — to send account notifications, respond to inquiries, and provide customer support
• Security — to detect, prevent, and address fraud, unauthorized access, and other security concerns
• Legal compliance — to comply with applicable laws, regulations, and legal processes
• Marketing — to send product updates and promotional content where you have opted in (you can unsubscribe at any time)
• Analytics — to understand how our platform is used and to measure the effectiveness of our services

We process your personal data based on legitimate interest, contractual necessity, your consent, or legal obligation, depending on the specific purpose and context.

As a B2B lead intelligence platform, WholeDatabase collects and processes business contact information to build our database of verified leads. This section explains how we source, verify, and maintain the business data available through our platform.

Data sourcing: We collect B2B data exclusively from publicly available sources, including company websites, business directories, professional networking platforms, government registries, public filings, and other openly accessible business listings. Our AI-powered data pipeline aggregates and processes this information to build comprehensive business profiles.

Verification process: All data passes through our multi-step AI verification pipeline to ensure accuracy and quality. We verify email deliverability, validate phone numbers, confirm business details against multiple sources, and maintain an industry-leading 95% accuracy rate. Records that fail verification are flagged or removed from the database.

B2B data only: Our database contains strictly business-to-business contact information. We do not collect or sell personal consumer data. The information in our database pertains to individuals in their professional capacity, including business email addresses, work phone numbers, company details, and professional roles.

Data freshness: We deliver 200,000 new verified business leads monthly across USA, UK, Canada, and Australia. Our pipeline continuously refreshes and re-verifies existing records to maintain data quality and remove outdated entries.

If you are a business professional whose information appears in our database and you wish to be removed, please reach out via our contact page. We process all removal requests promptly.

We do not sell your personal account information to third parties. We may share your information in the following limited circumstances:

• Service providers — trusted third-party vendors who help us operate our platform (e.g., hosting, payment processing, email delivery, analytics). These providers are contractually bound to protect your data and use it only for the services they provide to us.
• Legal requirements — when required by law, regulation, legal process, or enforceable governmental request
• Business transfers — in connection with a merger, acquisition, reorganization, or sale of assets, where your information may be transferred as a business asset
• Protection of rights — when necessary to enforce our Terms of Service, protect our rights, property, or safety, or that of our users or the public
• With your consent — when you explicitly authorize us to share your information with a specific third party

Regarding the B2B lead data available through our platform: this data is provided to our subscribers under the terms outlined in our Terms of Service and Data Processing Agreement. Subscribers are responsible for using the data in compliance with applicable laws.

We retain your personal information for as long as necessary to fulfill the purposes described in this policy, unless a longer retention period is required or permitted by law.

• Account data — retained for as long as your account is active and for a reasonable period thereafter to handle reactivation requests or legal obligations
• Usage and technical data — typically retained for up to 24 months for analytics and platform improvement purposes
• Communication data — support correspondence is retained for up to 36 months to provide consistent service
• Billing records — retained as required by tax and financial regulations, typically 7 years
• B2B database records — continuously refreshed and re-verified; outdated or unverifiable records are removed from the active database

When data is no longer needed, we securely delete or anonymize it. You may request earlier deletion of your personal data by contacting us, subject to any legal obligations requiring continued retention.

We take the security of your information seriously and implement industry-standard technical and organizational measures to protect it against unauthorized access, alteration, disclosure, or destruction.

• Encryption of data in transit (TLS/SSL) and at rest
• Regular security assessments and vulnerability scanning
• Strict access controls and role-based permissions for our team
• Secure cloud infrastructure with reputable providers
• Incident response procedures to address potential breaches promptly
• Employee security training and confidentiality agreements

While no method of transmission or storage is 100% secure, we continuously monitor and improve our security practices. If you believe your account security has been compromised, please contact us immediately via our contact page.

Depending on your location and applicable data protection laws (including GDPR, CCPA, and other regional regulations), you may have the following rights regarding your personal data:

• Right of access — request a copy of the personal data we hold about you
• Right to rectification — request correction of inaccurate or incomplete personal data
• Right to erasure — request deletion of your personal data, subject to legal retention requirements
• Right to data portability — request your data in a structured, commonly used, machine-readable format
• Right to restrict processing — request that we limit how we process your data in certain circumstances
• Right to object — object to processing of your personal data for direct marketing or based on legitimate interests
• Right to withdraw consent — withdraw your consent at any time where processing is based on consent
• Right to lodge a complaint — file a complaint with your local data protection authority

To exercise any of these rights, please contact us through our contact page. We will respond to your request within 30 days. For more details on your rights under GDPR, see our GDPR Compliance page.

We use cookies and similar tracking technologies to enhance your experience, analyze platform usage, and support our marketing efforts. Cookies are small text files stored on your device when you visit our website.

We use essential cookies to ensure the platform functions correctly, analytics cookies to understand usage patterns, and optional marketing cookies for relevant advertising. You can manage your cookie preferences at any time through your browser settings.

For full details on the specific cookies we use, their purposes, and how to control them, please refer to our Cookie Policy.

WholeDatabase operates globally and our B2B database covers businesses in the USA, UK, Canada, and Australia. Your information may be transferred to, stored, and processed in countries other than your country of residence.

When we transfer personal data internationally, we ensure appropriate safeguards are in place to protect your information in compliance with applicable data protection laws. These safeguards may include:

• Standard Contractual Clauses (SCCs) approved by the European Commission
• Adequacy decisions by relevant data protection authorities
• Binding corporate rules or other approved transfer mechanisms
• Data processing agreements with all third-party providers

For more information about our data transfer practices and safeguards, please see our Data Processing Agreement.

WholeDatabase is a B2B lead intelligence platform designed exclusively for business professionals and organizations. Our services are not intended for individuals under the age of 16, and we do not knowingly collect personal information from children.

If we become aware that we have inadvertently collected personal data from an individual under 16, we will take immediate steps to delete that information. If you believe a child has provided us with personal data, please reach out via our contact page so we can take appropriate action.

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes, we will notify you by:

• Posting the updated policy on this page with a revised "Last updated" date
• Sending an email notification to registered users for significant changes
• Displaying a prominent notice on our platform when applicable

We encourage you to review this policy periodically. Your continued use of WholeDatabase after any changes take effect constitutes your acceptance of the updated policy.

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please reach out to us. We are committed to addressing your privacy concerns promptly and transparently.

You can reach us through our contact page.

For data protection inquiries, privacy rights requests, or to report a concern, please use our contact page. We aim to respond to all inquiries within 30 days.