Is FutureLens AI compliant with GDPR and CAN-SPAM?

Yes. FutureLens AI designs outbound email campaigns aligned with UK GDPR, EU GDPR, and the US CAN-SPAM Act, using legitimate interest, transparency at first contact, and prompt opt-out handling.

Does FutureLens AI scrape websites or LinkedIn profiles?

No. We do not scrape websites, LinkedIn profiles, or online directories. Prospect data is sourced exclusively from licensed B2B data providers and permitted enrichment APIs.

Who owns the data used in outbound campaigns?

Campaigns are executed exclusively on behalf of clients. FutureLens AI operates primarily as a data processor acting on documented client instructions.

Compliance

Compliant and Responsible B2B Outreach | FutureLens AI

Compliant and Responsible B2B Outreach

Designed for AI, IT services, and security-focused organisations that care about doing outbound the right way.

Our Compliance-First Approach

FutureLens AI provides B2B outbound email campaigns for AI-driven companies, IT services providers, and cybersecurity firms. Compliance, deliverability, and reputational safety are treated as first-class design constraints — not afterthoughts.

We deliberately avoid high-risk growth tactics, scraped data, and opaque automation in favour of documented, auditable, and conservative outbound systems.

Role & Data Responsibility

The business operates primarily as a data processor, acting on documented client instructions.
Campaigns are executed exclusively on behalf of clients and for their commercial benefit.
No prospect databases are built or retained as a reusable internal asset.
Controller responsibilities remain with the client unless explicitly agreed otherwise.

Lawful Basis for B2B Outreach

Outbound email campaigns rely on Legitimate Interests as the lawful basis under UK GDPR and EU GDPR, where applicable.

B2B contacts only (no consumers).
Professional relevance established via agreed Ideal Customer Profiles (ICP).
Minimal data usage, limited to what is necessary for outreach.
Clear balancing of commercial interest against recipient privacy expectations.

Data Sources & Enrichment

Prospect data is sourced from licensed B2B data providers (e.g. Apollo).
Enrichment and personalisation tools may be used to supplement data.
All enrichment data is obtained via permitted APIs or licensed providers.
No scraping of websites, LinkedIn, or social platforms.
No grey-market data brokers or resold bulk lists.

Transparency & First Contact

Transparency is provided at the point of first contact. Outreach emails include:

Who is contacting the recipient and on whose behalf.
The business reason for the outreach.
A clear and functional opt-out mechanism.

We do not rely on "disproportionate effort" exemptions for cold outreach.

Opt-Outs & Suppression

Opt-out requests are processed within 48 hours (often sooner).
Opt-outs are honoured per client campaign.
Global objections or explicit do-not-contact requests are respected.
Suppression controls are applied across tooling to prevent re-contact.

Outbound Infrastructure Controls

Dedicated sending domains provisioned per client.
Gradual ramp-up and conservative daily sending limits.
Inbox reputation and deliverability monitoring.
MFA enforced on all outbound and enrichment platforms.

Regulatory Coverage

This framework is designed to align with:

UK GDPR
EU GDPR (where applicable)
UK PECR (B2B context)
US CAN-SPAM Act

This page is provided for transparency and informational purposes and does not constitute legal advice.