Perfect for all those GDPR wankers
Hyperise is committed to helping our customers comply with the EU’s General Data Protection Regulation (GDPR), which went into effect on May 25, 2018.

Hyperise processes professional business data only, regardless of where an individual is based. This usually includes things like job role and details about employing company. This means that Hyperise does not provide or collect consumer-focused data such as age, health, web browsing history, health records, or economic status.

While Hyperise is committed to assisting its customers in its role as a data processor, customers are still ultimately responsible for adhering to their obligations as a “data controller.” Broadly speaking, this means that customers are responsible for obligations such as:

  • Properly collecting, processing, and transmitting personal data from EU subjects
  • Properly marketing and communicating to current/potential customers
  • Properly handling requests from EU data subjects, such as erasure and access.


The EU’s General Data Protection Regulation (GDPR) strengthens the rights of EU individuals regarding how their personal data is used & collected.

You, the customer, may be based in the EU or engage in other activities that require you to comply with this new legislation. As part of this process, you may be verifying that you have appropriate arrangements in place with your vendors.

Hyperise is the “data processor” of the data we handle on behalf of our customers, whereas the customer is the “data controller”.

In plain English, that effectively means that data controller’s responsibility is to collect, process, and transmit data in compliance with applicable laws such as GDPR and it’s the data processor’s responsibility to comply with the terms of its data processing agreement with the data controller, which specifies how it can process personal data on the data controller’s behalf.

Generic Business Addresses

Whilst sending cold emails out to personal emails is a GDPR no-no, generic info@company, sales@company, marketing@company email addresses, aren’t classed as personal data.

…as long as you can’t tie it to a specific individual, then this falls outside of GDPR, which is focused on data that can be used to identify an individual person.

In terms of lead acquisition, sending an email to an “info@” may not seem optimal. However if you’re just looking for a foot-in-the-door, are reaching out to well targeted prospects, and have a solid, relevant offer, throwing an email to one of these accounts might be worthwhile.

A simple: “Would you like to hear more? Pass me along to the right person!” might go along way.

You might just be able to start moving a totally cold prospect down a funnel—GDPR worry free.

The Hyperise Prospect database contains generic business leads to help aid this process.