GDPR Statement

Security and protection of personal data 

Regulation no. 679/2016 on the protection of individuals about the processing of personal data and on the free movement of such data, implemented from 25 May 2018, introduces additional data protection measures across the European Union.

This regulation emphasizes the transparency of the data subject and the data controller’s accountability to the processing of personal data and sets out a series of specific safeguards to protect as effectively as possible the privacy of minors, , strengthens the rights guaranteed to the data subjects and introduces new rights: the right to be forgotten, the right to data portability and the right to restrict the processing.


360insights complies with the ICC / ESOMAR International Code, applicable to all market research and opinion poll companies, existing local data protection regulations and implemented the measures required by the new regulation.


a.We have a personal data protection officer


Its main role is to monitor compliance with the requirements of the Regulation and to report on existing obligations in the field of personal data protection;


b.We have identified the personal data categories, their processing and purpose, the persons involved in the process


c.We have reviewed internal work procedures so that access to personal data is only granted to authorized persons


d.We protect our personal data through, but not limited to, the following:

Pseudonymization and encryption of personal data collected as a result of market research

Increase the complexity of access passwords and the frequency with which they are changed

Implement a new internal storage model and access with specific responsibilities and rights


e.We have extended the protection of personal data by introducing new clauses into contracts with our clients and suppliers, mentioning the specific measures applied.