About GDPR Compliant Data

The first thing to know is whether--and to what extent--the GDPR law is applicable to you. The GDPR applies to ‘controllers’ and ‘processors’. You as a ‘Controller’ regulates the purposes and means of processing personal data while as a ‘Processor’ (we) are responsible for processing personal data on behalf of the controller.

To refresh, The General Data Protection Regulation (GDPR) (EU) 2016/679 is a regulation in EU law on data protection and privacy for all individuals within the European Union (EU) and the European Economic Area (EEA).

It also addresses the export of personal data outside the EU and EEA. The GDPR aims primarily to give control to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.

GDPR and SMARTe Inc.
Get ready for GDPR compliant data with SMARTe as ‘Data Processor’ to meet the changing regulations while leveraging “Data as a Service” sales and marketing intelligent platform. SMARTe with its 10+ years of industry experience has developed GDPR aligned processes wherein it protects the consumer data by setting stringent rules on how we process, gather and protect individual data. We have tried to cover all channels of communications with data subjects. As a Data processor and our business model, the B2B portion of the GDPR law applies to us.

Legitimate Interest is one of the six lawful bases for processing personal data under the GDPR and you must have a lawful basis in order to process personal data in line with the ‘lawfulness, fairness and transparency’ principle.


You may be asking yourself, “where should I start with GDPR?”. There’s a lot to digest when it comes to the new Regulation so, to help you out, we’ve created a methodology that guides you how can we help you comply with GDPR compliant data.

SMARTe takes into account “the interests or fundamental rights and freedoms of the data subject which require the protection of personal data”, and check they don’t override interests. We comply with Article 6(1)(f) of Recital 47 which is a three-part test a key elements of the legitimate interests

We comply to Article 6(1)(f) which is a three-part test a key elements of the legitimate interests

• Purpose test – is there a legitimate interest behind the processing?
• Necessity test – is the processing necessary for that purpose?
• Balancing test – is the legitimate interest overridden by the individual’s interests, rights or freedoms?

Bespoke GDPR Compliant Methodology

Relevant GDPR Compliant Methodology