<img src="https://secure.leadforensics.com/144511.png" alt="" style="display:none;">
Request demo


Source more prospects,
close more deals

Legitimate interest and the GDPR: a B2B marketer's guide

March 24, 2021

Cast your mind back to 2018.

Some great films came out that year - Black Panther, Crazy Rich Asians. Instagram stories became a thing, France won the Soccer World Cup, there was even a royal wedding. Lots happened.

But, pop culture aside, 2018 was huge for B2B marketers. It’s the year GDPR took the marketing world by storm.

Unsure of what all these changes meant for businesses in general and marketing in particular, a buzzword(s) of sorts emerged that put marketers at ease: Legitimate Interest. 

But, what is it? How do you apply it? And how can you ensure that you’re as GDPR compliant as possible?

Easy. Just keep reading.

Our Head of Legal, Aksa Kalam answered all of our questions below 👇

What is legitimate interest? | Why is it important in GDPR compliance? | What should be considered when marketing in Europe? | Does GDPR replace PECR? | Does legitimate interest apply to marketing calls AND emails? | What are the implications for B2B marketers for not complying? | Anything else marketers should consider? | Cognism’s data

What is legitimate interest? 🧐

Data driven marketing needs to be compliant. Legitimate interest is the most flexible of the GDPR’s lawful basis for processing.  

“In legal terms, it’s where the processing of personal data is legitimate for the legitimate interests of the controller, or a third party. In simple terms, it applies whenever an organisation uses personal data in a way in which the data subject would expect and which would have a minimal privacy impact.” - Aksa Kalam

In B2B marketing, legitimate interest is one of the lawful basis for collecting and processing data and allows you to prove the reasoning behind emailing your prospects based on their industry and job title.

There’s a legitimate interest in your product from these prospects as they’re in industry X or hold title Y.

In other words, legitimate interest could constitute an acceptable alternative to express consent or opt-in.

Why is it important in GDPR compliance? ⚖️

The GDPR requires a lawful basis for processing data. It applies whenever you’re processing data that allows an individual to be identified (directly or indirectly), even if they’re acting in a professional capacity.

Aksa explains exactly which parts of the GDPR marketers need to comply with:

“There are six available lawful bases for processing. You must confirm your lawful basis before you start processing personal data. Two of these six bases are most commonly attributed to B2B marketing - they are consent and legitimate interest.”

What should be considered when marketing in Europe? 🌍

It’s important to remember that each country has its own regulations relating to the Privacy and Electronic Communications Regulation (PECR) and you’ve got to have your finger on the pulse with this.

“Despite having unified regulations in the EU, each country has its own regulations relating to PECR, which means that European marketers need to be aware of the varying regulations in different member states before carrying out marketing campaigns. This can be challenging as some countries have a stricter approach to regulation than others.” - Aksa Kalam

Does GDPR replace PECR? 🕵️‍♀️

Although these regulations can be confusing, they must not be confused!

Aksa explains:

“GDPR does not replace PECR. Countries can have individual regulations relating to PECR, but they must meet the privacy standards outlined in the GDPR.”

Does legitimate interest apply to marketing calls AND emails? ☎️ 📧

Legitimate interest is not always appropriate for processing data and cannot be used as the default basis for your data processing.

PECR, however, applies to both marketing calls and emails.

What are the implications for B2B marketers for not complying? 👮‍♀️

Be prepared to cough it up - (can we still say that in 2021? 🦠)

Fines for failing to comply can be incredibly hefty! Aksa told us:

“Enforcement action from regulators includes steep fines such as the £20M fine given to Experian in 2020, impact on internal procedures, and a loss of trust in the market.”

Anything else marketers should consider? 💭

There are a number of considerations that marketers need to bear in mind when operating in Europe, however, if we had to go into each one, this would become the never-ending blog post (cue Limahl 🎶).

Aksa says that in 2021, B2B marketers should focus on upcoming changes to the Privacy and Communications Directive.

Check out more on the compliance landscape and our forecasts for 2021 here.

Cognism’s data 🚀

Ensuring that your data is compliant shouldn’t be an added headache for you and your team!

Cognism’s B2B data is fully compliant with the different laws within the 30 countries in which we operate.

Want to see the difference that our high-quality data can make to your business? Book your free demo at the link below 👇

Request your demo today

The contents of this article are for the purposes of general awareness only. They do not constitute legal or professional advice. The content may have changed since this article was published. Readers should take appropriate professional advice for their own particular circumstances.