This analysis describes what Dun & Bradstreet's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology
Cross-border data transfers affect EU, UK, Swiss, and Asia-Pacific data subjects whose personal information is moved to the US, and the legal validity of those transfers depends on the continued recognition of these frameworks by regulators.
Dun & Bradstreet, through its subsidiaries including Eyeota and NetWise Data, operates as a registered data broker aggregating professional and business data on hundreds of millions of people and organizations, often without direct consumer relationships. Individuals may find their name, job title, employer, and professional contact information held and licensed by D&B without having consented directly to that collection. You can submit a data subject rights request, including access and deletion requests, through the TrustArc portal linked on D&B's Individual Rights page at https://submit-irm.trustarc.eu/services/validation/ba81b98f-997d-4216-b4cc-d64cf261b082.
How other platforms handle this
Your information, including Personal Data, is processed at the Company's operating offices and in any other places where the parties involved in the processing are located. It means that this information may be transferred to — and maintained on — computers located outside of Your state, province, c...
We process and store information in the U.S. and other countries. By using our Services and Software, you authorize Adobe to transfer your personal information across national borders and to other countries where Adobe and its partners operate.
When we transfer personal data from the European Economic Area, the United Kingdom, or Switzerland to the United States or other countries that do not provide the same level of data protection, we implement appropriate safeguards, such as Standard Contractual Clauses approved by the European Commiss...
Monitoring
Dun & Bradstreet has changed this document before.
Receive same-day alerts, structured change summaries, and monitoring for up to 10 platforms.
"Since 2016, we have upheld multilateral standards to provide assurance for how we manage our cross-border privacy and data protection obligations and to support our certifications under the following frameworks recognized by regulators: EU-U.S. Privacy Shield (2016), Swiss-U.S. Privacy Shield (2017), EU-U.S. Data Privacy Framework (2023), Swiss-U.S. Data Privacy Framework (2023), UK Extension to EU-U.S. Data Privacy Framework (2023), APEC Cross-Border Privacy Rules System (2023), TRUSTe Responsible AI Certification (2024), Global Cross Border Privacy Rules (CBPR) (2025)— Excerpt from Dun & Bradstreet's D&B Privacy Policy
Professional Governance Intelligence
Need to monitor specific governance provisions?
Professional includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.
Built from archived source documents, structured governance mappings, and historical version tracking.
Cross-border data transfers affect EU, UK, Swiss, and Asia-Pacific data subjects whose personal information is moved to the US, and the legal validity of those transfers depends on the continued recognition of these frameworks by regulators.
No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Dun & Bradstreet.