GDPR Compliance

1. Introduction

TeleIQ Inc. ("we," "us," or "our") is committed to protecting the privacy and security of your personal data in compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679. This page explains how we comply with GDPR and your rights as a data subject under this regulation.

The GDPR is a comprehensive data protection law that applies to the processing of personal data of individuals in the European Union (EU) and European Economic Area (EEA). Even if you are outside the EU/EEA, we are committed to providing you with similar protections and rights.

2. Data Controller Information

As the data controller, TeleIQ Inc. is responsible for determining the purposes and means of processing your personal data. We take this responsibility seriously and have implemented appropriate technical and organizational measures to ensure GDPR compliance.

3. Legal Basis for Processing

Under GDPR, we must have a legal basis for processing your personal data. We process your personal data under one or more of the following legal bases:

• Consent: You have given clear consent for us to process your personal data for a specific purpose.
• Contract: The processing is necessary for a contract we have with you, or because you have asked us to take specific steps before entering into a contract.
• Legal Obligation: The processing is necessary for us to comply with the law (not including contractual obligations).
• Legitimate Interests: The processing is necessary for our legitimate interests or the legitimate interests of a third party, unless there is a good reason to protect your personal data which overrides those legitimate interests.

4. Your GDPR Rights

Under the GDPR, you have the following rights regarding your personal data:

Right to Be Informed

You have the right to be informed about the collection and use of your personal data. This includes information about why we are processing your data, how long we will keep it, who it will be shared with, and your rights regarding your data. We provide this information through our Privacy Policy and this GDPR Compliance page.

Right of Access

You have the right to access your personal data that we hold. This is commonly known as a "data subject access request." You can request a copy of your personal data and information about how we are using it. We will provide this information free of charge within one month of your request.

Right to Rectification

You have the right to have inaccurate personal data rectified or completed if it is incomplete. We encourage you to keep your personal data up-to-date and accurate. You can update your information through your account settings or by contacting us directly.

Right to Erasure (Right to be Forgotten)

In certain circumstances, you have the right to have your personal data erased. This right is not absolute and only applies in specific circumstances, such as:

• The personal data is no longer necessary for the purpose we originally collected or processed it
• You withdraw your consent (where processing was based on consent)
• You object to the processing and there are no overriding legitimate grounds for continuing
• The personal data has been unlawfully processed
• The personal data must be erased to comply with a legal obligation

Right to Restrict Processing

You have the right to request that we restrict the processing of your personal data in certain circumstances, such as:

• When you contest the accuracy of the data
• When the processing is unlawful but you do not want the data erased
• When we no longer need the data, but you need it for legal claims
• When you have objected to processing and verification of overriding grounds is pending

Right to Data Portability

You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller. This right only applies when:

• The processing is based on your consent or for the performance of a contract
• The processing is carried out by automated means

Right to Object

You have the right to object to the processing of your personal data in certain circumstances, including:

• Processing based on legitimate interests or the performance of a task in the public interest
• Direct marketing (including profiling for direct marketing)
• Processing for purposes of scientific or historical research and statistics

Rights Related to Automated Decision Making and Profiling

You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects you. We will inform you if we use automated decision-making processes and give you the opportunity to express your point of view and contest the decision.

5. How to Exercise Your Rights

To exercise any of your GDPR rights, please contact us at:

When you contact us, please include:

• Your full name and contact information
• A description of which right(s) you wish to exercise
• Any relevant details to help us locate your information
• Proof of your identity (we may request additional information to verify your identity)

We will respond to your request within one month. In complex cases, we may extend this period by a further two months, in which case we will inform you of the extension and the reasons for it.

6. Data Protection Principles

We process personal data in accordance with the following GDPR principles:

• Lawfulness, Fairness, and Transparency: We process personal data lawfully, fairly, and in a transparent manner.
• Purpose Limitation: We collect personal data for specified, explicit, and legitimate purposes and do not process it in a manner incompatible with those purposes.
• Data Minimization: We only collect personal data that is adequate, relevant, and limited to what is necessary.
• Accuracy: We take reasonable steps to ensure personal data is accurate and kept up to date.
• Storage Limitation: We keep personal data in a form that permits identification for no longer than is necessary.
• Integrity and Confidentiality: We process personal data securely with appropriate technical and organizational measures.
• Accountability: We are responsible for and can demonstrate compliance with the data protection principles.

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period, we consider:

• The amount, nature, and sensitivity of the personal data
• The potential risk of harm from unauthorized use or disclosure
• The purposes for which we process your personal data
• Whether we can achieve those purposes through other means
• Applicable legal requirements

8. International Data Transfers

Your personal data may be transferred to, and processed in, countries other than the country in which you are resident. These countries may have data protection laws that are different from the laws of your country.

When we transfer personal data from the EU/EEA to countries outside the EU/EEA, we ensure appropriate safeguards are in place, such as:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions by the European Commission
• Other appropriate safeguards as required by GDPR

9. Data Security

We have implemented appropriate technical and organizational security measures designed to protect your personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. These measures include:

• Encryption of data in transit and at rest
• Regular security assessments and audits
• Access controls and authentication procedures
• Employee training on data protection and security
• Incident response and breach notification procedures

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your personal data, we cannot guarantee its absolute security.

10. Data Breach Notification

In the event of a data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours of becoming aware of the breach, as required by GDPR.

If the breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly without undue delay. Our notification will include:

• The nature of the personal data breach
• The likely consequences of the breach
• The measures we have taken or propose to take to address the breach
• Contact information for further inquiries

11. Children's Privacy

Our services are not directed to children under the age of 16. We do not knowingly collect personal data from children under 16. If you are under 16, please do not provide any personal data through our services.

If we learn that we have collected personal data from a child under 16 without parental consent, we will take steps to delete that information as quickly as possible. If you believe we might have any information from or about a child under 16, please contact us at privacy@teleiq.ai.

12. Supervisory Authority

If you are located in the EU/EEA, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement if you believe we have not complied with GDPR.

A list of supervisory authorities in the EU/EEA is available at: https://edpb.europa.eu/about-edpb/about-edpb/members_en

However, we would appreciate the opportunity to address your concerns before you approach a supervisory authority, so please contact us first.

13. Updates to This Policy

We may update this GDPR Compliance page from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any material changes by posting the updated policy on our website and updating the "Effective Date" at the top of this page.

We encourage you to review this page periodically to stay informed about how we are protecting your personal data and complying with GDPR.

14. Contact Us

If you have any questions about our GDPR compliance, how we process your personal data, or if you wish to exercise your rights, please contact us at: