Data protection under EU law

Teamworx4 processes personal data in compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679 and the German Federal Data Protection Act (BDSG neue Fassung). This page describes our data protection framework for platform users and website visitors.

1. Data processing framework

Teamworx4 acts as a data controller for personal data collected through this website. For data processed as part of platform engagements, we act as a data processor on behalf of our clients. A data processing agreement (DPA) is provided as standard with all platform engagements.

2. Data storage and transfers

All personal data is stored on servers located within the European Union. We do not transfer personal data to countries outside the EU/EEA without appropriate safeguards in place. Our infrastructure providers operate under standard contractual clauses as required by GDPR Article 46.

3. Data minimisation

We collect only the personal data necessary for the specified purpose. For website visitors, this means server log data and (with consent) analytics data. For platform users, this means the workforce and operational data required for the platform to function as agreed in the engagement scope.

4. Data subject rights

Under GDPR, individuals whose data we process have the following rights:

• Right of access (Article 15): You may request a copy of the personal data we hold about you.
• Right to rectification (Article 16): You may request correction of inaccurate personal data.
• Right to erasure (Article 17): You may request deletion of personal data in specified circumstances.
• Right to restriction (Article 18): You may request restriction of processing in specified circumstances.
• Right to portability (Article 20): You may request your data in a structured, machine-readable format.
• Right to object (Article 21): You may object to processing based on legitimate interests.

To exercise any right, contact [email protected]. We will respond within 30 calendar days.

5. Data breach notification

In the event of a personal data breach that is likely to result in risk to individual rights and freedoms, we will notify the relevant supervisory authority within 72 hours as required by GDPR Article 33. Affected individuals will be notified without undue delay where required by Article 34.

6. Supervisory authority

The supervisory authority responsible for Teamworx4 in Germany is the Berlin Commissioner for Data Protection and Freedom of Information (Berliner Beauftragter für Datenschutz und Informationsfreiheit).

7. Data protection contact

For all data protection enquiries: [email protected]