SampleQuick

Compliance & Methodology Center

Built to be checked.

Most data suppliers ask you to take their methods on trust. We do the opposite. This page sets out, in full, how we find people, the lawful basis we rely on, what we will and won’t collect, and exactly what arrives in your compliance pack.

We’re a new entrant. Rather than point to a long client list, we point to our method — everything below is something you can audit against the records we deliver. This is research recruitment: we build screened sample frames of defined professional populations so you can invite people into legitimate research. It is not lead generation.

Lawful basis

For research recruitment we rely on legitimate interests under Article 6(1)(f) of the UK GDPR — the recognised basis for contacting named professionals, in their professional capacity, to invite them into research in the public or sector interest.

  • We keep a documented Legitimate Interests Assessment (LIA) for each engagement, working through the purpose, necessity, and balancing tests. A summary is included in your compliance pack.
  • We honour PECR for electronic contact and flag channel-level constraints so your fieldwork team can plan.
  • Our processing is aligned to the UK GDPR end to end — data minimisation, purpose limitation, accuracy, storage limitation, and accountability designed in.

Sourcing policy

  • Public and official registers, professional-body directories, regulatory listings, and institutional websites where individuals are listed in their professional capacity.
  • We respect site terms and robots directives.
  • We collect no special-category data — nothing about health, ethnicity, beliefs, or any Article 9 category.
  • We do not use purchased lists of unknown provenance. If we can’t show you where a record came from, it doesn’t go in your frame.

Provenance

Every record carries the source URL, the collection date, and the evidence that supports it — delivered as a full source manifest. Any record can be independently checked: you, your client, or a regulator can follow the URL and see the basis for inclusion.

Suppression & data subject rights

We maintain a standing suppression list applied to every frame before delivery. Opt-outs are honoured permanently. We handle access, rectification, objection, and erasure promptly — and because every record is traceable, removal is clean. Each frame ships with a suppression note and guidance on routing rights requests.

Data handling

Encryption in transit and at rest. Retention defaults that favour deletion. Single-purpose processing — data assembled for your research is used for your research. Never resold — a frame built for you is yours.

Standards we work to

We’re a new entrant and describe our standing honestly. We operate to the following — this is an account of the standards we apply, not a claim of certification we don’t hold: UK GDPR, the MRS Code of Conduct, and ICO guidance. Where a standard requires formal membership or audit, we’ll say so plainly.

The compliance pack

Every delivery includes: an LIA summary, a model privacy notice, the full source manifest, a suppression note, and data-handling guidance. This is the document a cautious procurement or legal team asks for — we give it to you before they have to.

Frequently asked

Is this lead generation?

No. We build sample frames for research recruitment — screened populations of professionals invited into legitimate research, under legitimate interests, with an easy right to object. We don’t sell sales leads.

What’s your lawful basis?

Legitimate interests under Article 6(1)(f) of the UK GDPR, supported by a documented LIA for each engagement and bounded by PECR for electronic contact channels. We give you the LIA summary so you can see the reasoning.

Can we get a DPA?

Yes. A data processing agreement is available on request and we expect to sign one where we act as a processor for your data. We’re happy to work to your paper or provide ours.

Do you collect special-category data?

No. We collect no Article 9 special-category data. Our records cover professional roles and public professional contact points — not health, ethnicity, beliefs, or any other protected characteristic.

Can someone be removed?

Yes, at any time. An individual can object or ask to be erased — directly or via you — and we suppress them permanently. Because every record is traceable to its source, removal is clean and verifiable.

A data processing agreement, a sample compliance pack, and a redacted source manifest are all available on request, so your legal and procurement teams can review our method before you commit.

Talk to us about your population