Data Sharing & Confidentiality

Data is submitted to GRESB through a secure online platform. It can only be seen by current GRESB staff and, to a more limited extent, authorized personnel from GRESB’s third-party validation provider, Sustainability Assurance Services (SAS).

GRESB Scores are not made public. Results and data output of the GRESB Real Estate Assessment are only disclosed to the participants themselves.

GRESB does not disclose a participant’s data to other participants as a default.

An entity’s participation status is disclosed in the following locations:

• In the Benchmark Report

  • Non-listed entities: The Entity & Peer Group Characteristics Table discloses the fund manager's name and the names of its private peer constituents.

  • Listed entities: The Entity & Peer Group Characteristics table discloses the entity name and the names of its listed peer group constituents.

• In the GRESB Participant Directory

  • Non-listed entities: GRESB displays the fund manager's name.

  • Listed entities: GRESB displays the entity name.

GRESB is fully compliant with GDPR. The GRESB Privacy Statement can be found here. We also have specific internal policies, such as our Data Breach Policy and our Data Protection Policy, related to GDPR that we cannot share externally for security reasons. Please note that asset-level data does not fall under the incidence of GDPR because it does not contain any personal data.

GRESB’s data security measures and systems have been reviewed by an external expert and no issues were flagged. The GRESB website and the GRESB Portal are fully HTTPS/TLS encrypted. GRESB has strict and extensive policies on data security that cannot be shared externally for security reasons.