Become a member

Data Protection Policy (GDPR Compliant) – Leads Market

1. Introduction

Leads Market platform is committed to ensuring the security and privacy of personal data processed within our platform. This Data Protection Policy outlines how we collect, store, and protect personal data in compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679.

2. Scope

This policy applies to all employees, contractors, third-party service providers, and users of Leads Market who handle personal data.

3. Data Protection Principles

We adhere to the following GDPR principles:

  • Lawfulness, Fairness, and Transparency – Data is processed lawfully, fairly, and transparently.
  • Purpose Limitation – Data is collected for specified, legitimate purposes.
  • Data Minimization – Only necessary data is collected.
  • Accuracy – Data is kept accurate and up to date.
  • Storage Limitation – Data is retained only as long as necessary.
  • Integrity and Confidentiality – Security measures protect data from unauthorized access.
  • Accountability – We maintain compliance documentation.
4. Legal Basis for Processing

Leads Market platform processes personal data based on one or more of the following lawful grounds:

  • Performance of a contract (e.g., providing services).
  • Legal compliance (e.g., tax or financial regulations).
  • Legitimate interest (e.g., fraud prevention, platform improvement).
  • User consent (e.g., marketing communications).

5.  Data Security Measures

To protect data, we implement:

  • Encryption for sensitive data.
  • Access controls and authentication protocols.
  • Regular security audits and staff training.
  • Data breach response procedures.

6.  Data Subject Rights

Under GDPR, users have the right to:

  • Access personal data.
  • Rectify inaccurate data.
  • Erase data (right to be forgotten).
  • Restrict or object to processing.
  • Data portability for transferring personal data.
  • Withdraw consent for processing.

7. Data Sharing & Transfers

Personal data is only shared with authorized third parties under strict data processing agreements (DPAs). If data is transferred outside the EEA, we ensure compliance using:

  • Standard Contractual Clauses (SCCs)
  • Adequacy decisions by the European Commission
  • Other lawful mechanisms

8. Data Retention

Personal data is retained only as long as necessary for business or legal purposes, after which it is securely deleted.

9. Data Breach Policy

In case of a data breach, we:

  1. Assess the impact and contain the breach.
  2. Notify the supervisory authority within 72 hours if required.
  3. Inform affected individuals if their rights are at risk.
  4. Document all breaches and responses.
10. Contact & Compliance

For any data protection concerns, please contact our Data Protection Officer (DPO) at email: info@leads-market.net
If you believe your data rights are violated, you may file a complaint with your local Data Protection Authority.

Comparing privacy laws: GDPR v. Kenya Data Protection Act
PDF (2.056 kb)

Leads Market 2025