Compliance & data protection

Responsible Lead Generation Built Around Trust

GrowthNest Media is committed to transparent, responsible, and secure lead generation practices designed around UK data protection principles.

Compliance principles

A considered approach to responsible campaigns.

Campaign controls should be designed to support compliance, subject to campaign requirements, the lawful basis and consent framework.

UK GDPR Principles

Campaigns should follow principles including lawfulness, fairness, transparency, purpose limitation, data minimisation, accuracy, storage limitation, and security.

Consumer Transparency

Consumers should receive clear information about how their details may be used and who may contact them.

Consent Management

Where consent is used, campaign consent language, records, timestamps, and source information should be retained appropriately.

Lawful Basis Review

Each campaign should identify and document the appropriate lawful basis before processing begins.

Data Minimisation

Only information necessary for the campaign and qualification criteria should be collected and delivered.

Data Accuracy

Lead information should undergo reasonable validation and quality checks before delivery.

Retention Controls

Personal data should not be stored longer than necessary for the stated campaign purpose.

Data Subject Rights

Processes should support access, correction, objection, restriction, and deletion requests where applicable.

Telephone campaign controls

Controls designed for the campaign.

Control requirements should be set according to the product, audience, lawful basis, delivery model and client instructions.

Exact campaign requirements may vary depending on the product, audience, lawful basis, delivery model, and client instructions.
TPS screening where required
Client suppression files
Internal do-not-call lists
Campaign exclusions
Call recording notices
Consent wording
Agent training
Quality assurance reviews
Complaint escalation
Audit trails

Lead verification process

A structured path from brief to delivery.

01

Campaign requirements reviewed

02

Targeting and exclusions configured

03

Consent or lawful-basis framework documented

04

Data and telephone screening applied

05

Lead information validated

06

Duplicate and suppression checks completed

07

Secure delivery prepared

08

Reporting and complaint handling maintained

Data security

Delivery controls designed for the workflow.

Technical and access controls should be considered according to delivery methods and campaign requirements. Specific encryption standards or security certifications are not represented here.

Secure API Delivery

Delivery workflows can be designed to support controlled data exchange.

CRM Integration

Campaign delivery can be aligned to compatible CRM workflows.

Encrypted Transfer

Appropriate transfer controls can be considered for the delivery model.

Role-Based Access

Access should be limited to people with a legitimate operational need.

Password Protection

Password controls should be used where files or portals require access.

Restricted File Sharing

Sharing methods should be selected with access and purpose in mind.

Secure Cloud Storage

Storage arrangements should be reviewed against campaign requirements.

Incident Response Planning

Clear escalation and response processes should be planned where appropriate.

Client responsibilities

Compliance works best as a shared responsibility.

Clients may also be responsible for ensuring their own processes, policies and use of campaign data meet applicable requirements.

Reviewing campaign scripts
Providing suppression files
Confirming permitted targeting
Using leads only for agreed purposes
Maintaining their own privacy notices
Respecting opt-outs and objections
Protecting downloaded data
Following applicable marketing rules
Managing data retention appropriately

Compliance documentation

Documentation can be reviewed before launch.

Document availability and suitability should be confirmed for the specific campaign. These are request-only placeholders; no documents are created or downloadable here.

Company information

The details that matter, clearly stated.

Legal Company Name

GrowthNest Media Limited

UK Company Number

12762926

India Operations

Grevitywings Technologies

Indian Company Registration

Indian company registration details will be updated following completion of incorporation and statutory registrations.

Registered Office

1st Floor, 7A, A.J.C. Bose Road, Kolkata – 700017, West Bengal, India

Place of Registration

Kolkata, West Bengal, India

Business Email

business@growthnestmedia.co.uk

Accounts Email

accounts@growthnestmedia.co.uk

General Enquiries

info@growthnestmedia.co.uk

UK Telephone

+44 7864 386980

India Telephone

+91 33 4000 0000

UK Business Hours

Monday – Friday 09:00 – 18:00 GMT/BST

India Business Hours

Monday – Saturday 10:00 – 19:00 IST

Frequently asked questions

Compliance, clarified.

Helpful campaign-planning information. This page does not replace legal advice.

Screening requirements may vary by campaign, product, audience and lawful basis. These should be agreed during campaign planning where applicable.

Plan with confidence

Need to Review Compliance Before Launching?

Speak with our team about campaign scripts, targeting criteria, suppression requirements, consent wording, and delivery controls.