Global Financial Data Privacy Policy

Global Financial Data

Privacy Policy

Last Updated August 27, 2018


Global Financial Data, Incorporated and its affiliates, which you have a contract with or which provide services to you, (collectively or individually, as applicable, referred to as "GFD", “Company”, "we", "our", "us") respect your right to privacy.  This Customer Privacy Policy explains who we are, how we collect, share and use personal information about you, and how you can exercise your privacy rights.  If you have any questions or concerns about our use of your personal information, then please contact us using the contact details provided at the bottom of this Customer Privacy Policy.

What personal information does GFD collect and why?

The personal information that we may collect about you broadly falls into the following categories:

  1. Information that you provide voluntarily

We ask you to provide certain information voluntarily, such as your contact details, user credentials, and employment information.

For instance, this can be by way of filling in an online form when you register to use our products and services, when you register to attend an event, when you provide us with your business card information or when you request to receive information from us. The types of information we ask you to provide, and the reasons why we ask you to provide it, include:

Types of personal information

Why we collect it

Billing information

To maintain your account with us.


Contact details including name, telephone numbers, email address and postal address.

To respond to correspondence and inquires you send us. In some cases, to gather information needed to provide products and services requested by you or your employer.  To obtain your feedback regarding our products and services.


User credentials including name, email address and personal information you provide to us in a profile.

To set up and maintain your user account.  To monitor and enforce compliance with our contractual terms.


To set up and maintain your user account.  To monitor and enforce compliance with our contractual terms.

To manage your individual user account which is covered by a corporate account of one of GFD's corporate customers, for instance, the corporate account of your employer.


  1. Information that we collect automatically

We may also collect certain information automatically from your computer or device, including information pertaining to your use patterns of our products and services.  In some countries, including countries in the European Union, this information may be considered personal information under applicable data protection laws.

Specifically, the information we collect automatically may include information like your IP address, device type, unique device identification numbers, browser-type and version, broad geographic location (e.g. country or city-level location), and other technical information.  We also collect information about how your device has interacted with our websites and products, including the pages and products accessed and links clicked. We record and keep data on how and when you’ve accessed a series in our online repositories, including whether or not you’ve clicked on a series, viewed its details, viewed its data sources and methodologies, graphed the series, or downloaded the raw data. We record whether that access was via a standard log-in, via an API or FTP feed, or through the AeonXL or other excel add-on.

Collecting this information enables us to better understand the visitors who come to our website and the users of our products and services, where they come from, and what content on our website and products and services is of interest to them.  We use this information:

 - for our analytics purposes;

- To monitor compliance with our policies and terms – We monitor for breaches of our terms and conditions and copyright policies. For example, we reserve the right to inform the user if, through the use of a corporate or individual account, you are using our content in breach of the terms and conditions of our websites. We have the right to suspend your account if we detect that your activity on our websites is invalid or fraudulent (such as having multiple accounts).

  - to improve the quality and relevance to users, of our websites and products and services;

  - to develop and update our websites and products and services;

  - for customer services purposes, for instance, reviewing our customers' training needs in respect of the use of our products;

 - to satisfy GFD’s corporate customers' requests regarding the use of our products and services by the individual users licensed by their corporate account (please note that such information in many instances and jurisdictions will be offered to clients in an aggregated form); note that customers may be required by law to request such information from GFD;

 - to send you tailored information on our products and services that we believe may be of interest or value to you and also marketing and promotional e-mails with your consent if and when required by applicable law;

  -on rare occasions to identify unauthorized use or unauthorized distribution of our products and services related or unrelated to a security issue;

 - where relevant, to review and / or update our pricing model agreed with our corporate customers;

 - and for billing purposes, so that we or others (such as content providers) are able to bill for the services provided.

 Some of this information may be collected using cookies and similar tracking technology, as explained further under the heading “Cookies and similar tracking technology".

Who does GFD share my personal information with?

We may disclose your personal information to the following categories of recipients: 

  - Third party service providers, product content providers, and partners;

  - Your employer;

  - Competent law enforcement bodies, regulatory, government agency, court or other third parties;

  - Any other person with your consent to the disclosure.

Third Party service providers;

We provide personal information to third party service providers who provide data processing services to us. These included:

Commodity Systems Inc.

Interactive Data

S&P Global

Your employer;

We provide personal information to your employer, in many instances and jurisdictions in an aggregate form, for purposes such as to fulfil our contract with them, to inform them of potential group training needs, to inform them of product/service use by certain categories of user and for pricing purposes.

Competent law enforcement bodies, regulatory, government agency, court or other third parties;

We provide personal information to any competent law enforcement body, regulatory, government agency, court or other third party where we believe disclosure is necessary (i) as a matter of applicable law or regulation, (ii) to exercise, establish or defend our legal rights, or (iii) to protect your vital interests or those of any other person;

Legal basis for processing personal information (EEA visitors / users only)

Our legal basis for collecting and using the personal information described above will depend on the personal information concerned and the specific context in which we collect it. 

As a general rule, we will only collect personal information from you only where we have your consent to do so, where we need the personal information to perform a contract with you (for instance, your subscription to one of our products), or where the processing is in our legitimate interests and not overridden by your data protection interests or fundamental rights and freedoms (for instance, where we process personal data regarding the usage of our products and services, as described above).  In some cases, we may also have a legal obligation to collect personal information from you.

If we ask you to provide personal information to comply with a legal requirement or to perform a contract with you, we will make this clear at the relevant time and advise you whether the provision of your personal information is mandatory or not (as well as of the possible consequences if you do not provide your personal information). 

Similarly, if we collect and use your personal information in reliance on our legitimate interests (or those of any third party), this interest will normally be to provide our products and services and communicating with you as necessary to provide our services to you and for our legitimate commercial interest, for instance, when responding to your queries, improving our products and services, advising you of product features or new releases, informing you of product maintenance, or undertaking marketing activities.  We may have other legitimate interests and if appropriate it will be clear to you at the relevant time regarding what those legitimate interests are.

Where we send you communications regarding our products or services from our different divisions and affiliates that may be of interest to you, we do so based on your consent, if and when required by applicable law.

If you have questions about or need further information concerning the legal basis on which we collect and use your personal information, please contact us using the contact details provided below.

How does GFD keep my personal information secure?

We use appropriate technical and organizational measures to protect the personal information that we collect and process about you.  The measures we use are designed to provide a level of security appropriate to the risk of processing your personal information. 

Specifically, our servers are located in various regions which may be located outside of the jurisdiction where you are located. This means that when we collect your personal information we may transfer it to or process it in a country which you may not reside.

Our third-party service providers, product content providers and partners, with whom we may share personal information as described above, are located in and transfer personal information to various jurisdictions around the world.

However, we have taken appropriate safeguards to require that your personal information will remain protected in accordance with this Customer Privacy Policy. These include implementing the European Commission’s Standard Contractual Clauses for transfers of personal information between our group companies, which require all group companies to protect personal information they process from the EEA in accordance with European Union data protection law. 

Data retention

We retain personal information we collect from you where we have an ongoing legitimate business need to do so (for example, to provide you with a product or service you have requested, as set forth in our information governance procedures, or to comply with applicable legal, tax or accounting requirements) up to seven (7) years if you have not envocted your right to be forgotten. 

When we have no ongoing legitimate business need to process your personal information, we follow our information governance procedures and either delete or anonymise your personal information, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.

Your data protection rights

Your rights include the right to access, correct, update or request deletion of your personal information. You also have the right to withdraw the consent you have provided to us.

You have the following data protection rights:

  - to access, correct, update or request deletion of your personal information. 

  - you can object to processing of your personal information, ask us to restrict processing of your personal information or request portability of your personal information.

 - to opt-out of marketing communications we send you at any time.  You can exercise this right by clicking on the “unsubscribe” or “opt-out” link in the marketing e-mails we send you, by using the contact details below.

 - if we have collected and process your personal information with your consent, then you can withdraw your consent at any time.  Withdrawing your consent will not affect the lawfulness of any processing we conducted prior to your withdrawal, nor will it affect processing of your personal information conducted in reliance on lawful processing grounds other than consent.

 - to complain to a data protection authority about our collection and use of your personal information. For more information, please contact your local data protection authority.

Updates to this Customer Privacy Policy

We may update this Customer Privacy Policy from time to time in response to changing legal, technical or business developments. When we update our Customer Privacy Policy, the updated version will be posted, and we will take appropriate measures to inform you, consistent with the significance of the changes we make. If and where your consent is required by applicable data protection laws, we will obtain your consent to any material Customer Privacy Policy changes.

You can see when this Customer Privacy Policy was last updated by checking the “last updated” date displayed at the top of this Customer Privacy Policy. 

How to contact us

If you have any questions or concerns about our use of your personal information, please contact our Data Protection Officer at privacy@globalfinancialdata.com  or the Data Protection Officer, Global Financial Data, Incorporated, 29122 Rancho Viejo Road, Ste. 215, San Juan Capistrano, CA 92675.