Tedee App Privacy and Cookies Policy


I. GENERAL INFORMATION

  1. The controller of your personal information is Tedee Sp. z o. o., based in Warszawa, 21/57 Karola Bohdanowicza Street, 02-127 Warszawa, Poland (“Tedee” or “Controller”).
  2. Tedee has not appointed a Data Protection Officer. For matters related to data protection, please contact us at e-mail: [email protected] or in writing to the Company’s registered office address indicated above.
  3. The Controller runs a mobile application under the name ‘tedee app’, hereinafter referred to as the Application, used to control electronic devices manufactured by Tedee (‘Devices’).
  4. Personal data in accordance with this Privacy Policy is all information about an individual identified or identifiable by one or more factors, including device IP, location data, Internet ID and information collected through cookies and other similar technology.
  5. Providing personal data to fulfill the contract for the provision of services specified in the Terms of Use of the Application, i.e. the App and the Account, is voluntary, but it is also the condition for the conclusion of the contract. The consequence of failing to provide personal data will be the inability to conclude a contract and provide services.
  6. Under the acronym GDPR is understood as the Regulation of the European Parliament and of the Council (EU) 2016/679 of 27 April 2016 on the protection of natural persons in relation to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC.
  7. A user within the meaning of this Privacy Policy is any natural person accessing the Application or otherwise using the services indicated in the Terms of Use of the Application.
  8. Persons who register on the Application are asked to provide data necessary to create and operate the account. In order to facilitate the operation, the User may provide additional data, thereby consenting to its processing. Such data can be deleted at any time based on the person’s request.
  9. The Controller shall exercise due diligence to select and use appropriate technical and organizational measures to ensure the protection of processed personal data. Full access to databases have only persons duly authorized by the Controller.
  10. The Controller protects personal data against unauthorized access, as well as against processing in violation of applicable laws.
  11. Visitors cannot access the Application without prior registration and accepting the provision of the personal data processing under this Privacy Policy.


II. SCOPE OF DATA

  1. The Controller shall process only the following types of User’s data:
    a) during setup of the User’s account in the Application:


III. PURPOSES AND BASES OF PERSONAL DATA PROCESSING BY THE CONTROLLER

  1. Data will be processed in order to secure:
    a) performance of the contract for the provision of services specified in the Regulations of the Website (on the basis of Article 6(1)(b) of GDPR);
    b) fulfilling a legal obligation to the Controller (on the basis of art. 6 par. 1 letter c of GDPR);
    c) analytical and statistical analysis of users’ activities and their preferences in order to improve functionalities and services (on the basis of Article 6(1)(b) GDPR);
    d) marketing of own products or services, including personalized ones (on the basis of Article 6.1.f GDPR);
    e) asserting or securing claims (on the basis of Article 6(1)(f) of the GDPR);
  2. User activity on the Application, including his/her personal data, may be recorded in system logs. The information collected in the logs is processed in connection with the provision of services. The Controller processes them also for technical purposes – in particular, data may be temporarily stored and processed in order to ensure security and correct functioning of IT systems, e.g., in connection with making security copies, tests of changes in IT systems, detection of irregularities or protection against misuse and attacks.


IV. PERIOD OF PERSONAL DATA PROCESSING

  1. As a rule, the Data is processed for the duration of the provision of the service or the processing of the order, until the withdrawal of the consent given or until an effective objection is raised against the processing of the data in cases where the legal basis of the data processing is the legitimate interest of the Controller.
  2. The period of Data processing may be extended if the processing is necessary to establish and assert or defend against possible claims, and after that time only in the case and to the extent required by law. After the end of the processing period, the data shall be irreversibly deleted or anonymized.


V. RECIPIENTS OF DATA

  1. In connection with the provision of services, Data will be disclosed to external entities (such as Hubspot), including in particular providers responsible for the operation of IT systems, entities such as banks and payment operators, entities providing accounting, legal, audit, consulting, courier services.
  2. In case of obtaining the User’s consent, his/her data may also be made available to other entities for their own purposes, including marketing purposes.
  3. Data can be transferred to a third country/international organization.
  4. The Application does not collect any information automatically, except for the information contained in cookies.


VI. User’s rights

  1. The User has the right to access his personal data, obtain a copy of them, the right to rectify, erase, restrict processing, the right to data portability, the right to object to the processing of the data on the basis of the Controller’s legitimate interest or to the processing for direct marketing purposes, the right to withdraw consent at any time without affecting the legality of processing (if the processing is carried out on the basis of consent), which was performed on the basis of consent before its withdrawal.
  2. The right to rectify Data is exercised in relation to a User who has an account in the Application also by allowing him/her to edit the data directly in the “User Profile” section.
  3. In case the processing of personal data is considered to violate the provisions of the RODO or other data protection regulations, the data subject may file a complaint with the Polish President of the Office for Personal Data Protection.
  4. A request concerning the exercise of data subjects’ rights may be submitted in writing or by e-mail to the contact details of the Data Controller indicated below or directly to the Data Protection Officer.
  5. The request should, if possible, precisely indicate what it concerns. In particular, what right the requesting person wishes to exercise and the subject of the request. 5
  6. If the Controller is not able to determine the content of the request or identify the person submitting the request on the basis of the notification made, it will ask the applicant for additional information.
  7. Requests will be responded to within one month of receipt. If it is necessary to extend this deadline, the Controller will inform the applicant of the reasons for such extension.
  8. The response will be provided to the e-mail address from which the application was sent, and in case of applications sent by letter, by ordinary mail to the address indicated by the applicant, unless the content of the letter indicates the desire to receive feedback to the e-mail address (if such e-mail address was provided).

Version history:

  • ver. 1.1 – August 15th, 2023
  • ver. 1.2. – May 22nd, 2024