Privacy Policy

Last updated: May 22, 2026

Tables.so ("Tables", "us", "we", or "our") operates the https://tables.so website and related applications, APIs, and tools (the "Service"). This Privacy Policy explains how we collect, use, and share personal data, and the rights individuals have in relation to that data.

This policy covers three groups of people: (1) visitors to our website; (2) account holders and users of the Service; and (3) individuals whose business contact information appears in the data we make available through the Service.

1. Our Role

Our role under data protection law depends on the data in question:

  • Data you upload to the Service. Where you upload your own data for us to process on your behalf (for example, a list you ask us to enrich or verify), you are the controller and we act as your processor, processing that data only to provide the Service to you.
  • Business contact data we source and provide. Where we compile, maintain, and make available business contact and company information, we act as an independent controller of that data. Customers who then use or export that data act as independent controllers of their own processing.

2. Personal Data We Process

Website visitors and account users

  • Account data: name, email address, phone number, company, job title, and login credentials.
  • Usage data: IP address, browser type and version, pages visited, time and date of visits, device identifiers, and similar diagnostic data.

Business contact data in the Service

For individuals whose professional information is included in the Service, we process business-context data such as: name, job title and role, employer and company attributes, business email address and phone number, and public professional profile links. We do not seek to collect special categories of personal data or data relating to children.

3. Where the Data Comes From

We obtain personal data from the following sources:

  • Directly from you when you create an account, use the Service, contact us, or request a demo.
  • Automatically through cookies and similar technologies when you use our website (see Section 8).
  • From third-party data providers and publicly available sources. The business contact and company information in the Service is compiled from reputable third-party data providers and publicly accessible sources (such as public professional profiles and company websites). This means we may hold information about you even if you have not interacted with us directly.

4. How and Why We Use Data

We process personal data for the following purposes and on the following legal bases under the GDPR:

  • To provide and maintain the Service for account users — necessary for the performance of our contract with you.
  • To compile, verify, enrich, and maintain our business contact dataset — based on our legitimate interests (and those of our customers) in providing accurate B2B prospecting and enrichment tools, balanced against the rights of the individuals concerned, who are included in a professional capacity only.
  • To secure, monitor, and improve the Service including analytics and fraud prevention — based on our legitimate interests.
  • To communicate with you about your account and, where permitted, to send marketing — based on our legitimate interests or your consent, which you may withdraw at any time.
  • To comply with legal obligations and to establish, exercise, or defend legal claims.

5. How We Share Data

We may share personal data with:

  • Service providers who process data on our behalf (such as cloud hosting, email delivery, analytics, payment, and support providers) under appropriate data protection terms.
  • Customers of the Service, who receive business contact data as part of using the Service and are responsible for their own subsequent use of it.
  • Authorities or other parties where necessary to comply with a legal obligation, enforce our terms, protect our rights or the safety of others, or in connection with a merger, acquisition, or sale of assets.

We do not sell personal data in the sense of exchanging it for money outside of providing the Service.

6. International Transfers

We are based in Denmark and process personal data within the EU/EEA. Where data is transferred to service providers outside the EU/EEA, we rely on an appropriate transfer mechanism, such as the European Commission's Standard Contractual Clauses or an adequacy decision, to ensure your data receives an equivalent level of protection.

7. Data Retention

We retain personal data only for as long as necessary for the purposes described in this policy: account data for as long as you maintain an account and a reasonable period afterwards; business contact data for as long as it remains accurate and useful for the dataset, subject to opt-out and erasure requests; and longer where required to meet legal, accounting, or security obligations.

8. Cookies and Tracking

We use cookies and similar technologies to operate and improve our website.

  • Essential cookies are necessary for the website to function and cannot be switched off in our systems.
  • Analytics cookies let us count visits and traffic sources so we can measure and improve performance. We use Google Analytics for this purpose.

You can manage your preferences through the cookie banner shown on your first visit, or by configuring your browser. If you refuse cookies, some parts of the Service may not function properly.

9. Your Rights

If you are in the EEA, you have the right to access, rectify, erase, restrict, or object to our processing of your personal data, to data portability, and to withdraw consent where processing is based on consent. Where we process business contact data based on legitimate interests, you have the right to object to that processing at any time.

To exercise any of these rights, contact us at info@tables.so. You also have the right to lodge a complaint with your local supervisory authority — in Denmark, this is Datatilsynet (the Danish Data Protection Agency).

10. Opting Out and Removal

If you would like your business contact information removed from the Service, or you no longer wish to receive communications, you can request this at any time by emailing info@tables.so. We will action valid requests without undue delay and will apply suppression so the information is not re-added from our sources where technically feasible.

11. Security

We implement appropriate technical and organizational measures to protect personal data. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will post the updated policy on this page and update the "Last updated" date above. Material changes may be communicated to account users directly.

13. Contact Us

If you have any questions about this Privacy Policy or how we handle personal data, please contact us:

  • By email: info@tables.so