Marketing Privacy Policy

Firefish Ltd is serious about the privacy of your data.

Firefish Ltd and its affiliates, Firefish Data Ltd, The Pineapple Lounge Ltd, The Pineapple Lounge LLC, and Firefish USA LLC, form a group of businesses also referred to as the Firefish Group.

The Firefish Group (also “we” and “our” in this policy) is serious about the privacy of your data in its marketing activities and we are committed to meeting all of our responsibilities as a Data Controller in respect of your personal data. The below privacy policy applies to all companies in the Firefish Group unless otherwise specified.

How do we collect your personal data?

We collect your personal data directly in a variety of ways:

  • As a direct result of working with you
  • If you have contacted us via email
  • Via direct message on LinkedIn
  • If you have signed up to receive our newsletter

What data do we need to collect?

  • Name
  • Company email address
  • Company Name
  • Country
  • IP address (if you have contacted us through our website or signed up to our newsletter)

How do we use your personal data?

We only collect and use the information needed to deliver and manage our newsletter, our marketing communication or to respond to any requests you send to us. If you opt-in to receive marketing communication from us, you accept the practices set out in this policy.

What happens to your data?

In order to technically support our marketing communication we use the following third party software providers: HubSpot – our CRM system.
HubSpot host all of our customer data within the EU on Amazon Web Services (SOC2 and ISO27001 Certified), in accordance with their Data Processing Agreement as part of our subscription and are GDPR compliant.

We may also use ZeroBounce which helps us verify and validate email addresses to ensure our marketing communication reaches correct and up to date contacts.

Firefish Data Ltd does not host any contact data on HubSpot and uses Capsule as its CRM system which is integrated into Microsoft Outlook. Capsule hosts its infrastructure on Amazon Web Services (AWS) in the United States. To comply with GDPR while hosting data in the US, Capsule relies on mechanisms like the Data Privacy Framework and Standard Contractual Clauses (SCCs). This ensures that the transfer of data from the EU/UK to the US meets European legal standards for data protection. Capsule is SOC 2 Type II certified (verified by AICPA) and ISO 27001 compliant via AWS.

Our marketing providers have AI features which we may use to build and verify contact data. Should you wish to find out more about how the marketing providers we work with secure your data, you can view their privacy policies by clicking the links above.

Data security and retention
Any data exchanges between us and our providers are by secure transfer. Any data held by the Firefish Group is stored on our secure server for 1 month and can only be accessed by certain approved members of staff. Firefish Data Ltd do not retain any temporary CSV or Excel export files on our internal server. Data is otherwise held securely by the software providers on their systems for as long is necessary. Data is retained in order to record your preferences and to ensure you only get the communication you’ve chosen to receive from us. Contact data shared with ZeroBounce is only held for 30 days before being deleted.
Firefish Ltd will not use your personal data for profiling, to send unsolicited emails or to pass it to other third parties without your express consent.

Your data rights
You have the following rights in relation to your Personal Data and to exercise any of these please use the contact details for our Data Protection Officer below.

  • Right of access – request a copy of your personal data
  • Right to rectification – you can have inaccurate data corrected
  • Right to erasure (“right to be forgotten”) – in certain circumstances
  • Right to restrict processing – limit how your data is used
  • Right to data portability – receive your data in a usable format (where applicable)
  • You have an absolute right to object to your data being used for direct marketing at any time
  • Right to withdraw consent – where given

Your right to opt-out
If you no longer wish to receive marketing communication from us, or update your marketing preferences, then you can do so by using the links at the bottom of any email marketing communication we send you, now or in the future. Please allow 72 hours for your details to be removed from our system.

Want to get in touch?

Write to: Data Protection Officer, 170-172 Tower Bridge Rd, London, SE1 3LS, UK

Email: dataprotection@firefishgroup.com

You also have the right to contact your local data protection supervisory authority if you’re not happy with our response. If you are located in the UK this is the Information Commissioner’s Office (“ICO”) and contact details can be found on the ICO website, https://ico.org.uk/global/contact-us/.

Policy Version: V6.2024

Note: This policy only applies to this website. Other sites may vary.

Policy Version: V7.2026

Contact

London

uk@firefishgroup.com

+44 (0)20 7826 9900

icon

New York

usa@firefishgroup.com

+1 (718) 855 4206

icon

Links

Home

About

Careers

Sustainability

Policies

People

Social

Memberships

Membership Logo
Membership Logo
Membership Logo
Membership Logo
Membership Logo
Membership Logo

© 2026 Firefish.