Data Protection

Data Protection Declaration

I. General

The following privacy policy applies to the use of the website www.tel.io and https://mytel.io (hereinafter referred to as "websites").

We attach great importance to privacy. The collection and processing of your personal data takes place in compliance with the applicable data protection regulations, in particular the EU General Data Protection Regulation (GDPR). We collect and process your personal data in order to offer you the above mentioned websites.

This statement describes how and for what purpose your data is collected and used and what options you have in relation to personal information.

By using this site, you consent to the collection, use and transfer of your information in accordance with this Privacy Policy.

By clicking on the field for data protection in the contact form, you consent to the processing of your personal data in the context of the request in the contact form.

II. Controller

The controller for the collection, processing and use of your personal data within the meaning of the GDPR is the Telio Management GmbH, Holstenstraße 205, 22765 Hamburg, registered in the commercial register of the district court Hamburg - HR B 112181 -.

If you wish to object to the collection, processing or use of your data by us in accordance with this Privacy Policy as a whole or for individual measures, you can address your objection to the above-mentioned responsible body. You can save and print this privacy policy at any time.

III. General use of the websites

1. Accessing data

We collect information about you when you use this website. We automatically collect information about your usage and interaction with us and register information about your computer or mobile device. We collect, store and use data about every access to our online offer (so-called server log files). The access data includes name and URL of the retrieved file, date and time of retrieval, amount of data transferred, message about successful retrieval (HTTP response code), browser type and browser version, operating system, referrer URL (this means the previously visited page), IP address and the requesting provider. We use these log data without assignment to you or other profiling for statistical evaluations for the purpose of operation, security and optimization of our online offer, but also for the anonymous recording of the number of visitors to our website (traffic) and the extent and nature of Use of our website and services and analyze the traffic, find and fix bugs and improve our services. We reserve the right to retrospectively review the log data if, on the basis of concrete evidence, there is a legitimate suspicion of unlawful use. We store IP addresses in the log files for a limited period of time, if this is necessary for security purposes. We store IP addresses even if we have a specific suspicion of a crime in connection with the use of our website. In addition, as part of your account, we save the date of your last visit (for example, when registering, logging in, clicking links, etc.).

2. E-Mail contact

If you contact us (e.g. via contact form or e-mail), we will save your details for the processing of the request as well as in the event that follow-up questions arise. We store and use other personal data only if you consent to it or if this is permitted by law without special consent.

3. Legal basis and duration of storage

The legal basis of the data processing in accordance with the preceding paragraphs is Article 6 (1) (f) GDPR. In particular, our interests in data processing include ensuring the operation and security of websites, facilitating the use of websites, and processing your requests through our contact forms.

Unless specifically stated, we store personal information only as long as this is necessary for the fulfillment of the purposes pursued.

IV. Your rights 

Under applicable law, you have various rights regarding your personal information. If you would like to assert these rights, please submit your request via:

  • Email to Data.Protection.Officer@tel.io
  • or by post with a clear identification of your person to the Data Protection Officer, Telio Management GmbH, Holstenstraße 205, 22765 Hamburg.
  • or through our contact forms on the tel.io or mytel.io websites

Below is an overview of your rights.

1. Right to confirmation and information

You have the right at any time to obtain confirmation from us as to whether the personal data relating to you are being processed. If this is the case, you have the right to obtain free information from us about your personal data we are storing, together with a copy of this data. Furthermore, there is a right to the following information:

  • the processing purposes;
  • the categories of personal data being processed;
  • the recipients or categories of recipients to whom the personal data have been disclosed or are still being disclosed, in particular to recipients in third countries or to international organizations;
  • if possible, the planned duration for which the personal data will be stored or, if this is not possible, the criteria for determining that duration;
  • the right of rectification or erasure of the personal data relating to you or restriction of processing by the controller or a right to object to such processing;
  • the existence of a right of appeal to a supervisory authority;
  • if the personal data is not collected from you, all available information about the source of the data;

As a responsible company, we dispense with automated decision-making including profiling according to Article 22 (1) and (4) GDPR.

2. Right to rectification

You have the right to demand that your personal data shall be rectified without delay. 

Taking into account the purposes of processing, you have the right to request the completion of incomplete personal data.

3. Right to be erased ("right to be forgotten")

You have the right to ask us to delete your personal information without delay, and we are required to delete your personal information immediately if one of the following is true:

  • The personal data are no longer necessary for the purposes for which they were collected or otherwise processed.
  • You revoke your consent on which the processing was based in accordance with Article 6 (1) GDPR (a) or Article 9 (2) (a) GDPR and there is no other legal basis for the processing.
  • You object to the processing in accordance with Article 21 (1) of the GDPR and there are no legitimate reasons for the processing, or you object to the processing in accordance with Article 21 (2) GDPR.
  • The personal data were processed unlawfully.
  • The deletion of personal data is required to fulfill a legal obligation under Union or national law to which we are subject.
  • The personal data were collected in relation to information society services offered pursuant to Article 8 (1) of the GDPR.

 

If we have made the personal data publicly available and if we are obliged to delete them in accordance with Art. 17 GDPR, we take appropriate measures, including technical ones and by taking into account the available technology and the implementation costs to inform other data controllers who process the personal data that you have requested for deleting all links to such personal information or copies or replicas of such personal information.

4. Right to restriction of processing

You have the right to demand from us the restriction of processing, if any of the following conditions are giving:

  • The accuracy of your personal data is contested by you for a period of time that allows us to verify the accuracy of your personal information,
  • the processing is unlawful and you have objected to the deletion of personal data and instead require the restriction of the use of personal data;
  • we no longer need your personal information for the purposes of processing, but you need it to assert, exercise or defend your rights; or
  • You have objected to the processing under Article 21 (1) GDPR, as long as it is not certain that the legitimate reasons of our company outweigh yours.

5. Right to Data Portability

You have the right to receive the personal information that you have provided to us in a structured, common and machine-readable format, and you have the right to transfer that information to another person without hindrance from us, provided that:

  • the processing is based on a consent pursuant to Article 6 (1) (a) GDPR or Article 9 (2) (a) GDPR or a contract pursuant to Article 6 (1) (b) GDPR; and
  • Processing using automated procedures. In exercising your right to data portability in accordance with paragraph 1, you have the right to obtain that the personal data are transmitted directly by us to another party, as far as technically feasible.

6. Right of objection

You have the right, for reasons of your own particular situation, to object at any time to the processing of personal data relating to you pursuant to Article 6 (1) (e) or (f) of the GDPR; this also applies to profiling based on these provisions. We no longer process personal information, unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or the processing is for the purposes of asserting, exercising or defending legal claims.

7. Right to revoke a data protection consent

You have the right to revoke your consent to the processing of personal data at any time.

8. Right to complain to a supervisory authority

You have the right to complain to the Hamburg Commissioner for Data Protection and Freedom of Information, Kurt-Schumacher-Allee 4, 20097 Hamburg, as well as in the Member State of your residence, place of work or place of alleged infringement, if you consider that the processing of your personal data is unlawful.

V. Data security

We make every effort to ensure the security of your data within the framework of applicable data protection laws and technical possibilities. Your personal data will be transmitted encrypted with us. We use the SSL (Secure Socket Layer) coding system, but point out that data transmission over the Internet (for example, when communicating by e-mail) may have security vulnerabilities. A complete protection of the data from access by third parties is not possible. We also do not warrant that our offer will be available at specific times; Disturbances, interruptions or failures cannot be excluded. The servers we use are regularly backed up carefully.

VI. Automated decision-making

There is no automated decision-making based on personal data collected.

VII. Disclosure of data to third parties, No data transfer to non-EU countries

Basically, we only use your personal data within our company. If and to the extent that we engage third parties in the performance of contracts, these personal data are only received to the extent that the transmission is required for the corresponding service. In the event that we outsource certain parts of the data processing ("order processing"), we contractually obligate processors to use personal data only in accordance with the requirements of data protection laws and to ensure the protection of the data subject's rights. Data is not transmitted to agencies or persons outside the EU and is not planned.

VIII. Data Protection Officer

If you have any questions or concerns about privacy, please contact to our Group Data Protection Officer via Data.Protection.Officer@tel.io.

 

Group Guideline Data Protection (PDF)