Overview
To read the most recent version of the General Data Protection Regulation (GDPR), visit the official European Union GDPR site.
If your organization processes personal data for people in the European Union, you may need to comply with the General Data Protection Regulation (GDPR). Apollo helps support your organization's compliance efforts with GDPR settings, unsubscribe management, and data deletion controls.
GDPR can apply to organizations that conduct business in the EU or target, collect, or process personal data from people in the EU, regardless of where the organization is located.
Because every organization's legal obligations are different, Apollo can't advise whether GDPR applies to your business or whether your current processes are compliant. You're responsible for configuring Apollo according to your organization's privacy requirements. Consult with local counsel to review your GDPR obligations before configuring Apollo.
Apollo maintains its own privacy, security, and data protection policies to support customers. To learn more about privacy on Apollo or Apollo's Data Processing Addendum (DPA), visit the Apollo Trust Center or check out the Privacy Center.
Check out the following sections to apply GDPR settings that assist in your compliance while you prospect on Apollo.
Configure GDPR Settings
You need to be an admin on Apollo to configure GDPR settings for your organization.
You can apply GDPR settings on Apollo to automatically remove all EU-located individuals from your prospecting, emailing, and email tracking activities.
These policies apply across your Apollo workspace to all users to help facilitate your organization's GDPR compliance.
GDPR settings only apply when Apollo can determine a prospect's location. If a prospect's location can't be resolved, Apollo can't apply your GDPR settings. Verify a prospect's location before engaging them if your organization relies on these controls.
To configure GDPR settings on Apollo:
- Launch Apollo and click Settings > Rules of engagement > Prospecting config.
- Toggle to enable a GDPR setting:
Forbid prospecting of residents of the European Union
This prevents users from prospecting people whose location is identified as being in the European Union. This restriction applies across search and prospecting workflows to help prevent users from adding or engaging EU-based prospects.
Forbid email sending to residents of the European Union
This prevents users from sending one-off emails or sequence emails to people whose location is identified as being in the European Union. This policy helps reduce the risk of unintentionally emailing EU-based prospects.
Forbid tracking on emails sent to residents of the European Union
This prevents open and click tracking for emails sent to people whose location is identified as being in the European Union. Emails are still sent, but Apollo doesn't insert tracking pixels or tracking links.
You have now configured GDPR settings on Apollo.
Additional Privacy Controls
Beyond GDPR settings, Apollo includes several features that can help support your organization's privacy and compliance practices:
- Email unsubscribe links
- Do Not Call (DNC) screening
- Manage removal requests
- Export personal data on request
- Delete contact data on request
- Sync updates with your CRM
Email unsubscribe links
If you use Apollo to engage in email prospecting with EU residents, you must give people the option to opt out of any future messages. Include unsubscribe links in your emails so recipients can opt out of your messages. To learn more, check out Configure Your Unsubscribe Email Link.
Do Not Call screening
Enable Do Not Call (DNC) screening to identify phone numbers that appear on supported national Do Not Call registries before engaging prospects by phone, including the UK, France, and Germany. To learn more, check out Enable Do Not Call (DNC) List Screening.
Manage removal requests
When someone requests to be removed from the Apollo database, Apollo permanently removes them from the Apollo database. However, if you saved that person to your workspace before they opted out, Apollo doesn't automatically delete them from your account.
If you no longer have an independent legal basis to retain or contact the individual, Apollo recommends deleting contacts who requested removal from your workspace. Check out how to respond to removal requests to stay compliant on Apollo.
Export personal data
If you receive a GDPR data subject request, you can export a contact's information as a CSV to help respond to data subject access requests when appropriate.
Delete contact data
If you receive a GDPR data subject request, you can delete saved contacts from Apollo when responding to data subject deletion requests or following your organization's data retention policies.
Sync updates with your CRM
Use a connected CRM integration to help keep contact records synchronized across connected systems after you update personal data.
Next Steps
Looking for related privacy and compliance features? These resources can help you round out your organization's data protection workflows in Apollo.
| Configure Your Unsubscribe Email Link | You can configure unsubscribe links for your emails to give recipients a clear way to opt out of future communications. |
|---|---|
| Enable Do Not Call (DNC) List Screening in Apollo | Your team can enable Do Not Call screening to identify supported DNC-listed phone numbers before placing outbound calls. |
| Understand Removal Requests and Stay Compliant on Apollo | You can review and respond to removal requests to make sure saved contacts are handled according to your organization's retention policies. |
| Integrations | You can connect your CRM to help keep contact information synchronized after you update personal data in Apollo. |
| Export Contacts to a CSV | You can export contact records to help respond to data subject access requests or support your internal compliance processes. |