GDPR, CFAA & DMCA

How We Obtain Data

Service Nationn leverage advanced search techniques and a comprehensive database of job boards, company career pages, and industry-specific resources to identify relevant job openings—all publicly available online. All data obtained by Service Nationn is publicly available to anyone who uses Google search. The company is committed to compliance with all relevant laws and regulations in the industry. We are committed to adhering to the terms and conditions of job platforms.

  1. We only use publicly available job postings
  2. No need to log in to any job portal or platform
  3. Fully compliant with job boards and company policies

Making Sure You Comply

By accessing our website and utilizing our job listings and resume services, you agree to take full responsibility for your job search actions and comply with all applicable laws and regulations. We provide curated job listings and resume assistance, but we do not guarantee job placement or interview offers. The final outcome depends on your application, qualifications, and employer decisions. By using our services, you acknowledge and agree to these terms.

GDPR Regulations

At Service Nationn, we are committed to protecting the privacy and personal data of our clients and customers. We have implemented a number of measures to ensure that we are compliant with the General Data Protection Regulation (GDPR).

Purpose of data collection

We collect personal data for the purpose of conducting B2B sales and establishing legitimate interest. The data we collect includes contact information such as names, email addresses, and phone numbers. This data is necessary for us to communicate with potential clients and customers about our products and services.

Legal basis for data collection

Our legal basis for collecting personal data is legitimate interest. This means that we have a legitimate reason for collecting and using the data, and that the interests of the individual are not outweighed by our interests.

Data minimization

We only collect the personal data that is necessary for the purpose of conducting B2B sales and establishing legitimate interest. We do not collect any unnecessary or excessive data.

Data security

We have implemented appropriate technical and organizational measures to protect the personal data we collect from unauthorized access, use, disclosure, or destruction. This includes encryption, access controls, and regular data backups.

Data subject rights

Individuals have the right to access, rectify, erase, restrict, and object to the processing of their personal data. They also have the right to withdraw their consent at any time. We have procedures in place to ensure that these rights are respected and that individuals can easily exercise their rights.

Email us at maulick@servicenationn.net if you want ANY data removed.

Data retention

We retain personal data for as long as it is necessary for the purpose for which it was collected. Once the data is no longer needed, we delete or anonymize it in accordance with GDPR requirements.

CFAA Regulations

Web Scraping and CFAA

The Computer Fraud and Abuse Act (CFAA) was introduced back in 1986 as an anti-hacking measure that forbids unauthorized access to computers, which imposes a criminal penalty on “a party who intentionally accesses a computer without authorization or exceeds authorized access, and thereby obtains information from any protected computer. ” CFAA-based claims are popular among data hosts because they provide for pressing criminal charges against scrapers.

In 2016 LinkedIn started sending cease-and-decease letters to hiQ Labs, the startup that was relying on data scraped from the popular social network to provide analysis of publicly available user profiles. Letters contained warnings that unauthorized access to a LinkedIn website was the violation of CFAA. Instead of ceasing its operations, the team of hiQ took LinkedIn’s accusations directly to court, claiming that the automated access of publicly available data isn’t a violation of the CFAA, while also asking the court to prohibit LinkedIn from “preventing hiQ’s access, copying, or use of public profiles on LinkedIn’s website (i.e., information that LinkedIn members have designated public).”

The court decided in favor of hiQ, allowing the company to scrape LinkedIn’s public, non-password protected data. In this article we won’t dig deeply into the ruling – you can view the full text here. It’s sufficient to note that although scraping in many cases breaks ToS of the scraped website, it’s not necessarily the violation of the Computer Fraud and Abuse Act.

“Since information on Google SERPs is also publicly available and non-password protected, Service Nationn does not break CFAA by scraping it”. Although scraping is legal by itself, it’s possible for data hosts to mount legal defenses against scrapers, including CFAA and DMCA violation claims.

On the other hand, the outcomes of recent lawsuits filed against scrapers prove that there are a lot of grey areas in current legislation on this matter, and courts may stand in favor of open access to publicly available information (see Sanding v. Sessions ruling). And even though data hosts may prevail against scrapers in courts, it’s often against their interest to sue. For example, if it weren’t for crawling public websites and scraping data from them, Google probably wouldn’t even exist.

After all, we don’t violate CFAA or DMCA when scraping publicly available information from online sources. You can rest assured: using Service Nationn services is legal, it’s not the violation of the law. By the same token, you can’t break Google ToS by simply getting data through our APIs.

DMCA Regulations

Web Scraping and DMCA

Copyright claims are often brought by data hosts against scrapers. In the United States, copyrighted work is protected by the Digital Millennium Copyright Act (DMCA).

Nonetheless, it’s widely known that facts alone can’t be copyrighted, so DMCA and similar legislation won’t protect data hosts against scrapers unless they have full control over the copyright of the stored content. The point is that the transfer of copyright ownership generally requires a written agreement signed by the copyright owner. On the other hand, however, it’s true that “the creative selection, coordination and arrangement of information and materials forming a database or compilation may be protected by copyright.” – cendi.gov. However, this protection doesn’t extend to the facts stored in the database. Put simply, copyright is meant to protect originality and creativity, not facts.

Let’s take a Google results page as an example. Its design and layout may be regarded as creative work and hence can be copyrighted. At the same time, facts contained in a results page, including headlines and snippets, are not owned by Google; in fact, they are being pulled from other people’s websites without transferring copyright ownership.

“Given that results on Google SERPs are not protected by copyright, it’s only logical that Service Nationn doesn’t violate DMCA by scraping them”. Although scraping is legal by itself, it’s possible for data hosts to mount legal defenses against scrapers, including CFAA and DMCA violation claims.

On the other hand, the outcomes of recent lawsuits filed against scrapers prove that there are a lot of grey areas in current legislation on this matter, and courts may stand in favor of open access to publicly available information (see Sanding v. Sessions ruling). And even though data hosts may prevail against scrapers in courts, it’s often against their interest to sue. For example, if it weren’t for crawling public websites and scraping data from them, Google probably wouldn’t even exist.

Disclaimer: This article does not constitute legal advice. You should seek the counsel of an attorney on your specific matter to comply with the laws in your jurisdiction.

Last updated: May 2025