Verified Data. Guaranteed Compliance.

Every dataset we deliver meets UK and EU data-protection standards — validated, documented, and transparent from source to sale.

Why Compliance Matters

Data protection isn’t optional — it’s what defines the credibility of your business. At TheSellersIndex, compliance is built into every layer of our verification process. We operate under UK ICO registration, Cyber Essentials certification, and PCI-level payment security through
Stripe.

That means the data you buy is:

Lawful:
processed under legitimate interest (GDPR Article 6 (1)(f)).
Secure:
encrypted end-to-end from verification to download
Accountable:
timestamped, auditable, and retraceable for 90 days.
We don’t trade in lists. We provide verified business intelligence — structured, lawful, and ready for responsible use.

How we ensure compliance at every step

Layer

Safeguard

Outcome

Data Capture

Publicly available Amazon marketplace information only.

No personal data harvested.

Contact Enrichment

Masked or consent-verified emails only.

GDPR-aligned contact fields.

Verification

Cross-checked against VAT and company registries.

Business identity confirmed.

Storage & Delivery

Supabase + Stripe (PCI L1) infrastructure.

Secure encryption and timed download expiry.

Retention

Records deleted automatically after 72 hours.

Zero long-term exposure.

Certifications and Standards

ICO-Registered

(UK Information Commissioner’s Office)
Registration Number: displayed in footer on live site

Cyber Essentials Certified

Independent UK security verification covering data handling and access control.

Stripe PCI Level 1

Highest payment security standard used by global financial institutions.

GDPR in Plain English

The legal foundation for how we process data

We process business information under the GDPR principle of legitimate interest.
In simple terms: we only handle data where there’s a clear commercial reason to do so — B2B communication
with verified companies.

We never process personal data unrelated to business activity.
We mask all emails until lawful contact verification exists.
We remove dormant records every 30 days.
We provide audit evidence on request under Article 30 (Records of Processing Activities).
If you’re an agency, marketplace consultant, or investor, this means you can use our data confidently without breaching data-protection law.

Data Security & Payment Protection

Your purchase and your data are secured through multiple layers:

TLS 1.3 encryption across all endpoints.
Supabase-hosted storage with signed 72-hour download links.
Stripe Payment Element — PCI L1 certified, no card data stored.
Multi-factor access control — for internal verification systems.
Automated deletion — for internal verification systems.
Result: — zero exposure, zero retention risk, zero compliance surprises.

Our Compliance Promise

We maintain what most competitors avoid — documented verification.
Every dataset contains a built-in verification trace:

This means if you’re ever asked “Where did this data come from?”, you’ll have the answer. Compliance isn’t an afterthought; it’s our commercial advantage.

Frequently Asked Questions

Is TheSellersIndex GDPR compliant?

Yes. We’re ICO-registered and operate under legitimate interest.

Is any personal data included?

No — only verified business contact fields tied to registered companies.

Can I use this data for marketing?

Yes — for B2B outreach within the UK & EU under GDPR legitimate-interest rules.

Do I need to tell contacts where the data came from?

Yes — identify yourself clearly in outreach. We supply traceable verification evidence.

Can you prove data accuracy?

Yes — each record includes timestamped verification logs accessible via the Verification Trace tool.

Verified Data. Certified Security. Trusted by Professionals.

Operate with confidence knowing your datasets are lawful, secure, and audit-ready.