Data privacy

Deutsche Telekom AG (DTAG) attaches great importance to protecting your personal data.

It is important to us to inform you what personal data we collect, and how your data is processed.

1. Where can I find the information that is important to me?

This data privacy information provides an overview of the items which apply to Deutsche Telekom processing your data in this web portal.

Further information, including information on data protection in general and in specific products, is available at https://www.telekom.com/en/corporate-responsibility/ data-protection-data-security/data-protection and https://www.telekom.com/en/deutsche-telekom/privacy-policy-1744.

The general information on your rights, the data privacy officer, etc. is available in the data privacy notes for employees at https://mydms.telekom.de:443/mydms/Start.do?spx=LTDOC369347149015630954097917.

More information on data privacy, in particular on intended use, deletion periods, etc. can be found in this complementary data privacy information. You can send a request for information in accordance with Art. 15 GDPR for this specific data processing to contact@winners-circle-goldclub.telekom.com.

2. Who is responsible for data processing?

Deutsche Telekom AG acts as the data controller. If you have any queries, please contact our Customer Services department or our Data Protection Officer, Dr. Claus D. Ulmer, Friedrich-Ebert-Allee 140, 53113 Bonn, Germany, datenschutz@telekom.de.

3. What data is recorded, how is it used, and how long is it stored?

Registering to the website: to register to the Gold Club website your first name, last name, emailaddress and address. This data is required for login purposes, the Gold Club participation and for regular information on the Gold Club (i.e. via email) and is stored on the servers of SCALEWAY SAS BP 438 75366 Paris CEDEX 08 France.
Registering for the Gold Trip: Personal data of winners, guests and other participants will only be collected and used to process registration and organization prior, during and after the trip and will bedeleted 6 months after the trip. The data is stored on the website servers mentioned in 4.
Technical characteristics: When you visit our websites, the web server temporarily records the domain name or your computer’s IP address, the file requested (file name and URL) by the client, the httpresponse code, and the website from which you are visiting us. The recorded data is used solely for data security purposes, particularly to protect against attempted attacks on our web server (Article 6 (1f)GDPR). We do not use it to create individual user profiles nor do we share this information with third parties. It is erased after seven days at the latest. We reserve the right to statistically analyze anonymized data records.
User surveys: The website provides an own survey tool. Website ratings and relevant feedback can be surveyed (Art. 6 (1) a GDPR). Only anonymous information is processed and there is no way of tracing the sender. Personal data or personally identifiable data is not transferred at any time. We store and analyze thedata for a period of 24 months. When an active feedback survey is displayed on the website, you can reject this survey or cancel it at any time. Answers are only sent once you have completed the survey.
Miscellaneous: Winners’ names and pictures taken during the Trip will be stored for internal documentation purposes at DTAG.

4. Will my usage habits be evaluated, e.g. for advertising purposes or tracking?

We want you to enjoy using our websites and take advantage of our products and services.

We have an economic interest in ensuring this is the case. The Gold Club website only uses cookies to enable you to navigate through the web pages and use essential features, such as accessing secure areas and maintaining your login status during a browser session. This ensures that you do not need to re-enter your credentials (username and password) repeatedly. These cookies are stored both in your browser and on our server. The legal basis for these cookies is Article 6 (1) b GDPR respectively for third Countries Art. 49 (1) b GDPR.

Company: Blackbit digital Commerce GmbH
Purpose: Login
Storage period: Session cookie or 12 months (staying logged in)
Country of processing: France

5. What rights do I have?

You have the right

a) To request information on the categories of personal data concerned, the purposes of the processing, any recipients of the data, and the envisaged storage period (Art. 15 GDPR);

b) To request that incorrect or incomplete data be rectified or supplemented (Article 16 GDPR);

c) To withdraw consent at any time with effect for the future (Art. 7 (3) GDPR);

d) To object to the processing of data on the grounds of legitimate interests, for reasons relating to your particular situation (Article 21 (1) GDPR);

e) To request the erasure of data in certain cases under Art. 17 GDPR – especially if the data is no longer necessary in relation to the purposes for which it was collected or is unlawfully processed, or you withdraw your consent according to (c) above or object according to (d) above;

f) To demand, under certain circumstances, the restriction of data where erasure is not possible or the erasure obligation is disputed (Art. 18 GDPR);

g) To data portability, i.e., you can receive the data that you provided to us in a commonly used and machine-readable format such as CSV, and can, where necessary, transfer the data to others (Art. 20 GDPR);

h) To file a complaint about the data processing with the responsible supervisory authority (for telecommunications contracts: the German Federal Commissioner for Data Protection and Freedom of Information (Bundesbeauftragter für den Datenschutz und die Informationsfreiheit); for any other matters: State Commissioner for Data Protection and Freedom of Information, North Rhine-Westphalia (Landesbeauftragter für den Datenschutz und die Informationsfreiheit Nordrhein-Westfalen).

6. Who does Deutsche Telekom pass my data on to?

To processors: We engage companies particularly in the following areas: Sales, Marketing, HR.
Our current processors are ON THE ROCK Veranstaltungskonzepte GmbH and Deutsche Telekom Service Europe (DTSE).
To cooperation partners who, on their own responsibility, provide services for you or in conjunction withyour employment contract. Our current cooperation partners are ON THE ROCK Veranstaltungs-konzepte GmbH and Deutsche Telekom Service Europe (DTSE).
Owing to legal obligations: In certain cases, we are legally obliged to transfer data to a state authority that requests it.

7. Where is my data processed?

Your data will be processed in Germany and other European countries. If, in exceptional cases, your data is processed in countries outside the European Union (in so-called third countries), this will take place

a) if you have expressly consented to this (Article 49 (1) a GDPR). (In most countries outside the EU, thelevel of data protection does not meet EU standards. This concerns in particular comprehensive monitoringand control rights of state authorities, e. g. in the USA, which disproportionately interfere with the data protection of European citizens,

b) or to the extent necessary for our service provision to you (Article 49 (1) b GDPR),

c) or to the extent required by law (Article 49 (1) c GDPR).

Furthermore, your data will only be processed in third countries if certain measures ensure a suitable level of data protection (e.g., EU Commission‘s adequacy decision or suitable guarantees, Art. 44 et seq. GDPR).

We are sorry but Internet Explorer is not supported. Please use a different browser.

Your browser is not supported.