Applies to: intelbee.com, our web apps, APIs, datasets, and browser extensions (the "Services").

IntelBee ("we", "us") provides technology‑detection insights and B2B technographic data. For most activities described here, we act as a data controller (e.g., telemetry, site analytics, our own marketing, and Public‑Source Contact Data we compile). When customers send us personal data to analyse or enrich, we act as a data processor—our Data Processing Addendum (DPA) governs that processing.

This statement summarises how we meet our obligations under the EU/EEA GDPR, UK GDPR, and Swiss FADP. For comprehensive details, see our Privacy Policy, Terms of Service, and Cookie Notice.

Account & support data: names, business contact details, credentials, support tickets.

Product telemetry: IP address, device/browser info, and event logs (minimised to what's necessary).

Public‑Source Contact Data (B2B): names, roles, employer, work emails/phones sourced from publicly available pages or licensed partners, curated for business outreach where permitted.

Customer‑provided data (processor role): lists you upload for enrichment or analysis.

Contract: to provide, secure, and support the Services you request.

Legitimate interests: to improve detection accuracy and quality; prevent abuse/fraud; operate and grow a B2B service; compile and maintain Public‑Source Contact Data proportionate to B2B expectations (with balancing tests and easy opt‑outs).

Consent: where required (e.g., non‑essential cookies/analytics in the EEA/UK and certain marketing).

Legal obligations: tax, accounting, compliance, and responding to lawful requests.

Depending on your location, you can access, correct, delete, or object to certain processing; restrict processing; or request portability. You may also opt out of marketing and (where applicable) opt out of "sale/share" of data and targeted advertising. Submit requests via [email protected] or our Privacy Request Portal. We keep suppression records to honour future opt‑outs.

We use strictly necessary cookies and, with consent where required, analytics and advertising cookies. Manage preferences anytime in Cookie Settings. We respect recognised Global Privacy Control (GPC) signals where required by law.

When data is transferred outside the EEA/UK/Switzerland, we rely on appropriate safeguards such as the EU Standard Contractual Clauses (SCCs), the UK Addendum/IDTA, and the Swiss Addendum, plus transfer‑impact assessments and vendor contractual controls.

We use vetted service providers for hosting, analytics, support, and security. Each is bound by written data‑processing terms, and we follow GDPR‑equivalent safeguards. We publish our current list and change notices at /legal/subprocessors.

We maintain technical and organisational measures appropriate to the risks, including:

See DPA Annexe 2 for a detailed control set.

If we become aware of a personal data breach affecting your data, we will notify you without undue delay and provide relevant information to support your assessment and notifications to authorities and data subjects where required (Articles 33/34).

We collect only what we need and keep it no longer than necessary for the purposes outlined or as required by law. We may retain de‑identified or aggregated data for statistics and service improvement.

For Public‑Source Contact Data, we use a legitimate interests basis consistent with B2B expectations. We provide clear opt‑out mechanisms and maintain suppression lists. We instruct customers to comply with anti‑spam and e‑privacy rules (e.g., PECR/ePrivacy, CAN‑SPAM, CASL) and to honour their own suppression lists.

Our Services are not directed to children and are intended for business use. We do not knowingly process data of individuals under the age required by local law (typically 16 in the EEA) without appropriate authorisation.

We do not make decisions producing legal or similarly significant effects solely by automated means. We may use scoring or ranking to prioritise data quality and matches.

Please contact us at [email protected] first—we aim to resolve all issues. You also have the right to lodge a complaint with your local supervisory authority.

We may update this statement to reflect changes to our practices or the law. We will post updates with a new effective date and, where material, provide additional notice.

Important note: GDPR does not provide a universal government "certificate" of compliance. Compliance is demonstrated by appropriate measures, contracts, and practices. This statement summarises those measures and links to our binding terms.