This Privacy Notice explains how TelQ Telecom GmbH (operating ClickTerm) processes Personal Data when we act as a controller—for example on our website, in the ClickTerm Admin Console, and in sales/support interactions. Under the GDPR and similar laws, controllers must provide specific transparency information when collecting data.
Important (Controller vs. Processor): When your organization uses ClickTerm to present clickwrap terms to your end users, ClickTerm typically processes those end-user data on behalf of your organization (as a processor). That processing is governed primarily by the ClickTerm Data Processing Addendum (DPA) and your organization’s contract with ClickTerm—not primarily by this Privacy Notice. For end-user requests about those clickwrap flows, please contact the organization that presented the clickwrap to you.
Controller: TelQ Telecom GmbH (ClickTerm)
Address: Neuer Wall 71, 20354 Hamburg, Germany
Commercial register: HRB 144036
Privacy contact: legal@clickterm.com
Support contact: support@clickterm.com
If you are an end user interacting with a clickwrap presented by an organization using ClickTerm, ClickTerm generally processes your data on behalf of that organization as its processor (or sub-processor). In that case:
the organization is responsible for providing you with its own privacy notice; and
your privacy rights requests should be directed to the organization.
ClickTerm’s processor obligations and security/transfer terms are described in our DPA:
https://api.clickterm.com/clickwrap/b5bae9b3-04a0-4ab4-8726-80ffb679dd57/latest
Depending on how you interact with ClickTerm, we may process:
A) Website and marketing interactions
Contact details (name, work email, company, role)
Messages you send us (forms, email, chat)
Basic device and usage data (IP address, device/browser info, timestamps, pages viewed, approximate location derived from IP)
B) Account and Admin Console (customer-side users / Authorized Users)
Account and profile data (name, work email, password hash, role/permissions)
Authentication and security data (login events, IP address, device/browser info, security logs)
Customer account metadata (company name, billing admin, plan and usage overview)
C) Billing
Billing contact details and invoices
Payment status and transaction references (payment card data is handled by our payment provider; we do not typically store full card numbers)
D) Support and communications
Support tickets, call notes, and correspondence
Technical diagnostic information you provide or that is generated in connection with troubleshooting (for example, log extracts or error identifiers)
We collect Personal Data:
directly from you (e.g., when you sign up, contact us, or use the Admin Console),
automatically from your device (e.g., logs, IP address, browser/device info), and
from our service providers (e.g., payment status references from our payment provider).
Where the GDPR or similar frameworks apply, we process Personal Data for the following purposes and legal bases:
A) Provide the Service and administer accounts
Legal basis: performance of a contract (Art. 6(1)(b)).
B) Security, fraud prevention, abuse detection, and service integrity
Legal basis: legitimate interests (Art. 6(1)(f))—protecting our systems, customers, and users.
C) Customer support and service communications
Legal basis: performance of a contract (Art. 6(1)(b)) and/or legitimate interests (Art. 6(1)(f)).
D) Billing and accounting
Legal basis: performance of a contract (Art. 6(1)(b)) and legal obligation (Art. 6(1)(c)) where applicable.
E) Sales, relationship management, and B2B marketing (where permitted)
Legal basis: legitimate interests (Art. 6(1)(f)) and/or consent (Art. 6(1)(a)) depending on the channel and local law. You can opt out of marketing at any time.
F) Compliance with legal requirements
Legal basis: legal obligation (Art. 6(1)(c)) and/or legitimate interests (Art. 6(1)(f)).
Where we rely on legitimate interests, we consider necessity and proportionality and implement safeguards. You can object to processing based on legitimate interests (see “Your rights” below).
We use cookies and similar technologies for:
Strictly necessary functions (e.g., authentication, security, session management)
Optional analytics or marketing (only if enabled and/or only with consent where required)
In Germany and many other jurisdictions, storing or accessing information on a user’s device for non-essential purposes generally requires consent under rules such as Section 25 TTDSG (and similar ePrivacy rules), and subsequent data processing must have an appropriate GDPR legal basis.
Cookie preferences. Where we use a cookie banner/consent tool, you can manage your cookie preferences through:
the cookie consent banner shown when you visit our website (if applicable), and/or
the “Cookie Preferences” / “Cookie Settings” control available on our website (typically in the footer),
and you can also adjust cookie settings through your browser.
We may share Personal Data with:
Service providers / processors (e.g., hosting, analytics, customer support tooling, email delivery, and payment processing) who support ClickTerm
Professional advisors (legal, accounting, auditors) as needed
Authorities where required by law
Potential buyers or successors in connection with a corporate transaction (subject to confidentiality and applicable law)
A list of ClickTerm processors/sub-processors (including scope distinctions) is published here:
https://api.clickterm.com/clickwrap/9ca82158-c7a6-4e1d-b803-d5f27b5a8164/latest
We do not sell Personal Data in the ordinary sense. If we ever engage in activities that constitute “sale” or “sharing” under certain laws (e.g., via certain advertising technologies), we will provide appropriate notice and choices as required.
If we transfer Personal Data outside the EEA/UK/Switzerland, we use appropriate safeguards such as:
the EU Standard Contractual Clauses (SCCs),
where applicable, the UK Addendum, and
Swiss adaptations,
as described in our DPA and contractual arrangements with service providers.
We keep Personal Data only as long as necessary for the purposes described above, including:
Account data: for the duration of the customer relationship and a limited period after termination as needed for legal, security, and dispute handling
Billing records: for statutory retention periods
Security logs: for a limited period necessary to maintain security and investigate incidents
Sales/support communications: for as long as needed to manage the relationship and respond to inquiries, and then for a reasonable period consistent with legal and operational needs
Depending on your location and applicable law, you may have rights to:
access your Personal Data
correct inaccurate data
delete data (where applicable)
restrict or object to certain processing (including processing based on legitimate interests)
data portability (where applicable)
withdraw consent at any time (where processing is based on consent)
Marketing opt-out. You can opt out of marketing communications at any time by using the unsubscribe mechanism in the message (where provided) or by contacting us.
How to exercise rights. To exercise your rights, contact: legal@clickterm.com
We may need to verify your identity before fulfilling a request.
US state privacy rights (where applicable). If you are a resident of a US state with an applicable privacy law (e.g., California and similar laws), you may have rights such as:
to know/access, delete, and correct certain Personal Data,
to opt out of “sale” or “sharing” (as defined by applicable law),
to limit certain uses of sensitive Personal Data (if applicable), and
to not be discriminated against for exercising your rights.
You may also be able to use an authorized agent where permitted by law (subject to verification).
We do not use your Personal Data in the controller context to make decisions based solely on automated processing that produce legal or similarly significant effects on you, unless we provide notice and do so in compliance with applicable law.
We implement technical and organizational measures designed to protect Personal Data, including access controls, encryption in transit, logging, and incident response processes. More information may be available in our Security Overview:
https://api.clickterm.com/clickwrap/9d6a16fb-da87-4447-af23-971b3d0dc19e/latest
ClickTerm is intended for business and professional use and is not directed to children. We do not knowingly collect Personal Data from children.
You can lodge a complaint with your local supervisory authority. If you are in Hamburg (or want to contact our lead authority in Hamburg), you can contact the Hamburg Commissioner for Data Protection and Freedom of Information (HmbBfDI).
We may update this Notice from time to time. We will post the updated version and revise the “Published on” date above. If changes are material, we may provide additional notice (e.g., in-product).