Privacy at Bloomreach

At Bloomreach, we understand that privacy is a fundamental human right. We also understand the value of data-driven decisions. Therefore, our products and services are designed to provide your customers with magical experiences driven by the information they are happy to provide.

Our Solution

Maintaining Data Quality

At Bloomreach, we understand that all data is not created equal. Our platform supports implementation of server-to-server tracking, which can serve as a long-term, privacy-first solution.

Respecting Customer Preference

The Bloomreach Engagement pillar was the first to be GDPR certified. We are experts in adapting to customer preferences, therefore our products are built with privacy by design. The available features include customer rights, access minimization, data minimization, and legal base management features.

Playing to Win

Privacy isn’t an add-on, it’s a competitive advantage you need to build around. We are pioneers in providing our customers with magical experiences using zero-party and first-party data and are happy to share the knowledge with our clients.

Privacy Culture

We aim to create a strong privacy culture among our employees, and strongly believe that every Bloomreacher is an essential part of ensuring the fundamental right of privacy for our customers.

This culture is present at all stages of the employee lifecycle, starting with on‑boarding sessions, through the annual privacy training, all the way to company events for raising awareness. This shows our commitment to keep the data of our customers secure.

Bloomreach has valid certifications to show how seriously we take the topics of security and compliance.

The First GDPR Certified Company in the World

SOC 2 (Type 1) Report

5 ISO
Certifications

HOLD'EM Close to Your Heart

We believe that privacy should be a top priority for every person working with personal data. Therefore, we live by a set of privacy principles that facilitates a data privacy mindset for all. These principles are based on the standards introduced by GDPR, CCPA, ISO, and SOC and greatly capture the essence of these regulations, while providing a simple way to apply them across our company. All of our employees are trained on application of HOLD’EM principles in their daily work. An extended training program for our clients is available as a part of Bloomreach academy, too.

Honesty

Be clear about what you collect and why.

Obedience

Seek your customer’s consent and respect their requests.

Legality

Stay within legal limits.

Defense

Defend data from anyone and anything.

Exactness

Maintain data accurately and keep it up to date.

Minimization

Keep only what you need.