Unlock global tradeshow insights with unique data on over 16,000 events.
Unlock global tradeshow insights with unique data on over 16,000 events.
Last updated: 26 May 2025
Your privacy matters to us. This Privacy Policy explains how getdigby, a trading name of JDCGL Ltd (“we”, “our” or “us”), collects, uses, shares and safeguards personal data when you visit getdigby.com, purchase a subscription, access our application programming interface (API) or otherwise interact with our products and services (collectively, the “Service”).
JDCGL Ltd is a company registered in England and Wales (company number [[COMPANY NUMBER_PLACEHOLDER]]) with its registered office at [[ADDRESS_PLACEHOLDER]].
For the purposes of UK data-protection legislation, JDCGL Ltd is the data controller of the personal data described in this notice.
If we process personal data strictly on behalf of a corporate client (for example, where an enterprise customer uploads their own contact lists for enrichment), we do so as a data processor and the client remains the data controller. In such cases a separate Data Processing Agreement will apply.
This notice covers:
visitors to our website and users of our application or API;
individual contacts at our customers, suppliers and prospective customers; and
personal data contained within the tradeshow datasets we license to our subscribers.
It does not cover third-party websites linked from our Service. Those sites are governed by their own privacy statements.
| Category of data | Typical items | Source |
|---|---|---|
| Account & contact data | Name, job title, company name, business e-mail address, telephone number, postal address, login credentials | Provided by you when you create an account, complete a form, correspond with us or sign a contract |
| Payment & transaction data | Billing address, VAT number, payment-card details (processed by our payment provider), subscription history, invoices | Supplied by you or generated during a purchase |
| Usage data | Log files, audit trails, IP address, browser type, pages visited, time spent on pages, API call volume | Collected automatically via cookies, server logs and similar technologies |
| Marketing preferences | Records of consents, opt-outs, email engagement metrics | Provided by you or captured via our email platform |
| Dataset contact information | Names, roles, company names, work email addresses, telephone numbers of tradeshow organisers or exhibitors | Licensed from reputable third-party data providers, publicly available event programmes, or organisers who submit data to us |
We do not intentionally collect special-category (sensitive) data or data relating to children.
Under the UK GDPR we rely on the following lawful bases, depending on the context:
| Legal basis | When we use it |
|---|---|
| Performance of a contract | To set up and administer your subscription, process payments, provide support and deliver the Service |
| Legitimate interests | To analyse usage and improve the Service, protect against misuse, market similar B2B services to corporate subscribers, and maintain business records. We balance our interests against your rights before relying on this basis. |
| Consent | For sending marketing e-mails to new prospects who have not previously interacted with us, and for non-essential cookies. You may withdraw consent at any time. |
| Legal obligation | To comply with tax, accounting and other statutory requirements, or to respond to lawful requests from authorities. |
We use personal data to:
Create and manage accounts — verifying identity, issuing credentials and servicing subscriptions.
Provide and maintain the Service — supplying data, delivering API responses and resolving technical issues.
Invoice and process payments — through PCI-DSS compliant payment processors.
Improve our products — monitoring performance, carrying out analytics and developing new features.
Communicate with you — sending operational messages (e.g. renewal reminders, security alerts) and, where permitted, marketing communications about product updates or events.
Enforce our Terms & Conditions — detecting fraud, misuse or violations of our data-usage restrictions.
Comply with law — maintaining records, fulfilling lawful disclosure requests and exercising or defending legal claims.
We operate a B2B marketing programme aimed at professionals who are likely to benefit from our tradeshow-insight platform. If we email you, each message will include a clear unsubscribe link; you can also object to marketing at any time by emailing privacy@getdigby.com. Existing customers may receive relevant product news under the soft opt-in rules unless they opt out.
We use cookies, pixels and local storage to:
remember preferences and maintain sessions;
measure website performance and detect errors;
understand how visitors browse our site in order to improve user experience; and
facilitate certain marketing and retargeting activities.
Essential cookies are set automatically. Non-essential cookies (e.g. analytics, advertising) are set only after you provide consent via the banner that appears on your first visit. Full details are available in our separate Cookie Policy.
We disclose personal data only where necessary:
| Recipient | Purpose | Safeguards |
|---|---|---|
| Cloud-hosting and IT-support providers | To host the platform, store backups, and provide technical support | Contractual obligations, UK/EU Standard Contractual Clauses if outside UK/EEA |
| Payment processors | To process subscription fees securely | PCI-DSS compliance, restricted access |
| Email and CRM vendors | To send service emails and manage customer relationships | Data-processing agreements, opt-out mechanisms |
| Data enrichment partners | To validate or supplement business contact data within our dataset | Limited to professional details; no consumer data |
| Professional advisers | Auditors, lawyers, insurers for business governance | Confidentiality undertakings |
| Authorities | Where required by law, court order or to protect rights, property or safety | Disclosure assessed on a case-by-case basis |
| Successor entities | In connection with a merger, acquisition or sale of assets | Contractual commitments to respect this notice |
We do not sell personal data to third parties for their own marketing.
Our primary servers are located in the United Kingdom. Where we rely on suppliers outside the UK or European Economic Area, we ensure an equivalent level of protection by using one or more of:
a UK adequacy decision for the destination country;
UK/EU Standard Contractual Clauses; or
binding corporate rules.
Copies of relevant transfer safeguards can be requested using the contact details below.
We apply appropriate technical and organisational measures, including:
encryption of data in transit and at rest;
role-based access controls and multi-factor authentication;
regular penetration testing and vulnerability scans;
documented incident-response procedures and staff training.
Despite our efforts, no system can be guaranteed 100 % secure. If we detect a breach affecting your personal data, we will notify you and regulators where legally required.
We keep personal data only for as long as necessary:
Account data — retained for the duration of your subscription plus six years to satisfy tax and contractual obligations.
Marketing contact details — retained until you opt out or we determine the details are out of date.
Dataset contact information — refreshed periodically; outdated records are archived and removed during scheduled cleansing cycles.
Log files — typically retained for up to 12 months, unless required for security investigations or legal reasons.
Aggregated or anonymised data may be kept indefinitely, as it no longer identifies individuals.
Under the UK GDPR you have the right to:
| Right | What it means |
|---|---|
| Access | Ask for a copy of the personal data we hold about you. |
| Rectification | Request corrections to inaccurate or incomplete data. |
| Erasure | Request deletion of your data where there is no lawful reason for us to keep it. |
| Restriction | Ask us to pause processing while a dispute is resolved. |
| Portability | Receive certain data in a structured, machine-readable format or ask us to transfer it to another controller. |
| Object | Object to processing based on legitimate interests or to direct marketing. |
| Automated decision-making | Not to be subject to decisions based solely on automated processing that significantly affect you. |
To exercise any of these rights, please email privacy@getdigby.com. We may need to verify your identity before fulfilling a request and will respond within one month (or inform you if an extension is necessary). If you are dissatisfied with our response, you have the right to complain to the Information Commissioner’s Office (ICO) at www.ico.org.uk.
The Service is intended for use by professionals aged 18 years or older. We do not knowingly collect or solicit personal data from anyone under 16. If you believe a child has provided us with personal information, please contact us so we can delete it.
We may update this notice from time to time to reflect changes in laws, technology or our practices. Any changes will be posted on this page and, if material, we will notify registered users by e-mail or via the Service interface. Please review this page periodically. The “last updated” date indicates when the current version took effect. Continued use of the Service after an update signifies acceptance of the revised notice.
If you have questions about this Privacy Policy, wish to exercise your data-protection rights, or need further information, please contact:
Data Protection Officer
JDCGL Ltd (trading as getdigby)
20-22 Wenlock Road
London
N1 7GU
UK
E-mail: privacy@getdigby.com
We are committed to protecting your privacy and welcome any feedback on this notice.
Unlocking insights from granular data on over 16,000 tradeshows globally to empower market intelligence leaders
© 2025 | All rights reserved | Designed with ❤ by JDCGL Ltd