If you upload email lists on Facebook, then you're Email Database considered as a data controller. As you do this process, you need to ensure that the data you control complies with the GDPR regulations. This only applies if you're collecting the information of people residing in European countries. What you need to know is that it doesn't Email Database matter if your business doesn't operate in the EU. You're under the law's jurisdiction as long as you have some data on EU citizens.
So what this means is that you need to have transparency in terms of how you collect data and how you intend to use it at the very least. Other things you need to show will include the users that agreed to opt-in to your data collection and how long you intend to hold their information. You need to ensure that you gave your users the ability Email Database to opt-out and give them access to their collected data when they demand it. If you use the detailed targeting features within Facebook, you don't need to worry about Email Database compliance. Facebook becomes the controller of data and it becomes their responsibility to ensure that the data you use is compliant with the regulations set by the GDPR.
The Facebook Lead Ads and Facebook Custom Email Database Audience Become More Complicated When you run Lead Ads that ask for the users' personal data or you upload on Facebook lists of users to create a Custom Audience these are the only times you become a data processor. What this means is that you need to Email Database maintain GDPR compliance when handling EU citizen data. Failure to do this can result in fines of up to 4% of the total revenue of your company.