Individuals can contact D&B's compliance team by email or via a helpline, and retain the right to escalate complaints directly to their local data protection authority if they are unsatisfied with D&B's response.
This analysis describes what Dun & Bradstreet's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
The explicit acknowledgment of the right to complain to a data protection supervisory authority is a legally required disclosure under GDPR and reflects standard practice in jurisdictions with active regulatory oversight, giving individuals a meaningful enforcement pathway beyond D&B's own processes.
You have a direct escalation path to your local data protection regulator if D&B does not adequately respond to your data rights request, which provides a meaningful enforcement mechanism particularly for EU, UK, and Swiss residents with access to active supervisory authorities.
Cross-platform context
See how other platforms handle Contact and Complaint Escalation Rights and similar clauses.
Compare across platforms →Monitoring
Dun & Bradstreet has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"If you have a question or concern about this Statement, you may contact D&B Global Compliance & Ethics or raise a question or concern using our Helpline. If you are based in other countries, you also may contact us. You also have the right to lodge a complaint or concern with your local data protection supervisory authority. Contact details for data protection authorities are here.— Excerpt from Dun & Bradstreet's D&B Privacy Policy
REGULATORY LANDSCAPE: The right to lodge complaints with supervisory authorities is a mandatory disclosure under GDPR Article 13 and 14. EU data protection authorities (including those of the 27 EU member states), the UK ICO, and the Swiss FDPIC are the relevant regulatory bodies for complaints from individuals in those jurisdictions. U.S. residents may escalate complaints to state Attorneys General for CCPA-related matters or to the FTC for federal consumer protection concerns. GOVERNANCE EXPOSURE: Low. The provision reflects standard regulatory compliance language and does not create unusual exposure. The helpline mechanism and compliance officer email (complianceofficer@dnb.com) provide documented contact channels, which is a positive governance indicator. JURISDICTION FLAGS: EU and UK data subjects have the most robust supervisory authority structures with enforcement powers including fines, corrective orders, and audit rights. U.S. residents have more limited federal enforcement pathways, though state-level mechanisms are strengthening, particularly in California, Colorado, and Virginia. CONTRACT AND VENDOR IMPLICATIONS: B2B customers should note that this complaint mechanism is available to their employees and customers who are data subjects, and that complaints escalated to supervisory authorities may indirectly affect the customer organization's own compliance posture if it shares data with D&B. COMPLIANCE CONSIDERATIONS: Compliance teams should document D&B's compliance contact details and supervisory authority escalation pathways for inclusion in their own privacy program documentation. The helpline URL (helpline.dnb.com) and compliance email should be recorded for vendor risk files.
Full compliance analysis
Regulatory citations, enforcement risk, and due diligence action items.
Free: track 1 platform + weekly digest. Watcher: 10 platforms + same-day alerts. No credit card required.
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
The explicit acknowledgment of the right to complain to a data protection supervisory authority is a legally required disclosure under GDPR and reflects standard practice in jurisdictions with active regulatory oversight, giving individuals a meaningful enforcement pathway beyond D&B's own processes.
You have a direct escalation path to your local data protection regulator if D&B does not adequately respond to your data rights request, which provides a meaningful enforcement mechanism particularly for EU, UK, and Swiss residents with access to active supervisory authorities.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Dun & Bradstreet.