A Transparency Tapestry for Responsible Data Processing
At Dun & Bradstreet (D&B), compliance and ethics begins with human-centered values and principles. The values and principles are set forth in our Code of Conduct and Ethics and guide us in designing, implementing, improving, disposing, and retiring data processing and management systems in a way that respects human rights, privacy and data protection, non-discrimination, diversity, equity, inclusion, and other applicable legal and regulatory obligations.
At Dun & Bradstreet, we focus on helping to bring businesses and other organizations together by providing insights about economic opportunities and risks, including data about businesses, business decision-makers and other people who represent organizations of all sizes across industries and sectors around the world. We aggregate data, combine, and generate data, including scores, ratings, and other analytics. Our Dun & Bradstreet Data Cloud contains data and insights on over 600M+ organizations around the globe.
As a responsible data steward for almost 200 years, we strive to balance our commercial obligations and responsibilities with respect for the interests of the organizations and people about whom we process data. As part of this commitment, we aim to be transparent around the ways we process data about people, businesses, and other organizations as well as how we use Artificial Intelligence (AI) systems. Our goal is to improve visibility, engagement, and enrich the overall quality of our data to support meaningful data-driven insights, more opportunities and better business and professional decision-making and outcomes while respecting the interests and rights of individuals and their communities.
This Privacy, Data and AI Transparency Statement reflects the privacy, data processing, and data protection standards of the Responsible Dun & Bradstreet Entities in the U.S. Information about our data processing in other markets is available here.
We strive to build and maintain trust through an accountability-based compliance and ethics program that applies to our data processing globally. The following core policies provide the foundation for our program and serve as the basis for our certifications described below:
Our program has been designed and audited for compliance with ISO 27701, Privacy Information Management Systems (PIMS). In markets in which we are certified as compliant with ISO 27001, Information Security Management Systems (ISMS), we also hold an ISO 27701 certification (PIMS). These certifications are designated on the global ISO certifications page, where applicable.
Since 2016, we have upheld multilateral standards to provide assurance for how we manage our cross-border privacy and data protection obligations and to support our certifications under the following frameworks recognized by regulators:
We process many types of data to support business decisioning, including data about people, businesses, organizations, places, economic activity, sustainability, legal, and other significant business events, and third-party risks. Some of the data we process is considered personal data. Some of the systems we use to process data are AI Systems.
Dun & Bradstreet, Inc. is registered as a data broker in the U.S. States of California, Oregon, Texas and Vermont.
Eyeota Pte. Ltd is registered as a data broker in the U.S. State of California.
NetWise Data, LLC is registered as a data broker in the U.S. States of California and Vermont
The Dun & Bradstreet Entities responsible for data processing in accordance with the standards described in this Trust Centre are listed here.
We provide Responsible Data Processing sheets (RDPS) for our products and solutions:
RDPS – ChatD&B for Data Blocks
RDPS - Nordic Company Data in D&B Data Blocks: Third Party Risk & Compliance Use
We are committed to respecting the data and digital rights of individuals in both their personal and professional capacities as set forth in our Global Data Subject Rights Policy Statement. You may exercise your rights in connection with our data processing here.
If you have a question or concern about this Statement, you may contact D&B Global Compliance & Ethics or raise a question or concern using our Helpline. If you are based in other countries, you also may contact us. You also have the right to lodge a complaint or concern with your local data protection supervisory authority. Contact details for data protection authorities are here.
There are multiple Contact Forms popups in the page. Only one Contact Form popup could be present on single page. Please reconfigure Contact Forms and refresh the page.