Privacy Policy

1. Introduction

UnifiTelekom ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our VoIP telecommunications services, website, and applications.

By using our Services, you consent to the data practices described in this policy. If you do not agree with our policies, please do not use our Services.

2. Information We Collect

2.1 Information You Provide

• Account Information: Name, email address, phone number, company name, billing address
• Payment Information: Credit card details, bank account information (processed by secure third-party providers)
• Communication Data: Support tickets, chat messages, emails you send to us
• Service Configuration: Phone system settings, call routing preferences, user lists

2.2 Information Collected Automatically

• Call Detail Records (CDRs): Call duration, timestamps, caller/callee numbers, call status
• Usage Data: Feature usage, login times, service interactions
• Device Information: IP address, browser type, operating system, device identifiers
• Location Data: For E911 services and fraud prevention

2.3 Call Recordings & Transcriptions

If you enable call recording or AI transcription features, we process and store audio recordings and transcripts. You are responsible for obtaining necessary consent from call participants as required by applicable law.

3. How We Use Your Information

Purpose	Data Used	Legal Basis
Provide Services	Account info, CDRs, configuration	Contract performance
Billing & Payments	Payment info, usage data	Contract performance
Customer Support	Communications, account info	Contract performance
Service Improvement	Usage analytics, feedback	Legitimate interest
Security & Fraud Prevention	IP addresses, location, patterns	Legitimate interest
Legal Compliance	As required by law	Legal obligation
Marketing (with consent)	Email, preferences	Consent

4. Data Sharing & Disclosure

We do not sell your personal information. We may share data with:

• Service Providers: Payment processors, cloud hosting, analytics providers (under strict data protection agreements)
• Telecommunications Partners: Carriers and interconnect providers necessary to complete calls
• Legal Requirements: Law enforcement when required by valid legal process
• Business Transfers: In connection with mergers, acquisitions, or asset sales
• With Your Consent: For any other purposes you specifically authorize

5. Data Retention

We retain your data for the following periods:

• Account Information: Duration of account plus 7 years for tax/legal compliance
• Call Detail Records: 2 years from date of call
• Call Recordings: As configured by you (default 90 days, maximum 7 years)
• Billing Records: 7 years for tax compliance
• Support Communications: 3 years from resolution

You may request earlier deletion of certain data where not required for legal or operational purposes.

6. Your Privacy Rights

Depending on your location, you may have the following rights:

To exercise these rights, contact us at [email protected]. We will respond within 30 days.

California Residents (CCPA)

California residents have additional rights including the right to know what personal information is collected and the right to opt-out of sales (we do not sell data). You may designate an authorized agent to make requests on your behalf.

European Residents (GDPR)

If you are in the European Economic Area, you have rights under GDPR including the right to lodge a complaint with your local supervisory authority.

7. Data Security

We implement robust security measures to protect your data:

• Encryption: TLS 1.3 for data in transit, AES-256 for data at rest
• Access Controls: Role-based access, multi-factor authentication
• Certifications: SOC 2 Type II, PCI-DSS Level 1, ISO 27001
• Monitoring: 24/7 security monitoring and intrusion detection
• Audits: Regular third-party security assessments and penetration testing

While we strive to protect your data, no method of transmission or storage is 100% secure. We cannot guarantee absolute security.

8. International Data Transfers

Your data may be transferred to and processed in countries other than your own, including the United States. We ensure appropriate safeguards are in place, including:

• Standard Contractual Clauses approved by the European Commission
• Data Processing Agreements with all sub-processors
• Compliance with applicable data transfer frameworks

9. Children's Privacy

Our Services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we learn we have collected data from a child, we will delete it promptly.

10. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes by email or prominent notice on our website. Your continued use of Services after changes constitutes acceptance of the updated policy.

11. Contact Us

For privacy-related questions or to exercise your rights: