Data Privacy Policy
Deutsche Telekom AG attaches great importance to protecting your personal data. We always inform you what personal data we collect, how your data is used, and how you can influence the process.
1. What data is recorded, how is it used, and how long is it stored?
- Necessary processing for the provision of the digital service (Art. 6 para. 1b GDPR, § 25 para. 2 no. 2 TDDDG)
When using our website telekom.com, hereinafter referred to as the digital service: When you visit our websites, the web server temporarily records the domain name or your computer’s IP address, the file requested (file name and URL) by the client, the http response code, and the website from which you are visiting us.
The recorded data is used solely for data security purposes, particularly to protect against attempted attacks on our web server (Article 6 (1f) GDPR). We do not use it to create individual user profiles nor do we share this information with third parties. It is erased after seven days at the latest. We reserve the right to statistically analyze anonymized data records. - Processing in the provision of the digital service that is carried out on the basis of legitimate interest (Art. 6 para. 1 f GDPR, § 25 para. 2 no. 2 TDDDG)
When you use our digital service, our servers temporarily record the domain name or IP address of your device as well as other data, such as the requested content or the response code.
The logged data is used exclusively for data security purposes, in particular to defend against attacks on our server. They are neither used for the creation of individual user profiles nor passed on to third parties and will be deleted after 7 days at the latest. We reserve the right to statistically evaluate anonymized data sets. - Processing in the provision of the Digital Service by third parties
Many operating systems provide the possibility to dictate the text in addition to input via keyboard. When using this function, the language is processed by the third party (e.g. Apple, Google, Microsoft) as the controller and the result is displayed in the input field. For details of the functionality, how you can switch the use on or off and the legal basis of the processing, please contact the respective operating system manufacturer (third party).
2. Data control of the social media plug-ins used or links to social media platforms
Some pages contain buttons from social media networks (such as Facebook, Google, Instagram, X [Twitter], Pinterest, Xing, TikTok or LinkedIn) with which you can recommend the offers of the Deutsche Telekom AG to your friends and acquaintances.
To ensure you retain full control of the data, the used buttons provide direct contact between the respective social network and the visitor only once you actively click on the button (one-click solution).
In our digital service, we only use the pictograms of the respective social media network. Only by clicking on the pictogram will you be directed to the company page on the respective social media platform. The social media platforms as well as the third-party content providers, which can be reached via the pictograms, provide these services and the processing of their data under their own responsibility.
By activating the social media plug-in or link via the pictogram, also for sharing content (Art. 6 para. 1 a GDPR), the following data can be transmitted to the social media providers: IP address, browser information, operating system, screen resolution, installed browser plug-ins, previous page if you followed a link (referrer), the URL of the current page, etc.
On the next call, the social media plug-ins are again provided in the default inactive mode, so that no data is transmitted on a subsequent visit.
Further information on social media plug-ins, the scope and purposes of the respective data processing as well as further data protection-relevant information can be found in the Privacy Policy of the respective controller as well as for the explanation of the <<1-Click solution on Heise.de>>>.
3. Will my usage habits be evaluated, e.g. for advertising purposes or tracking?
Explanations and definitions:
We want you to enjoy accessing our websites and use our products and services. We analyze usage behavior on the basis of anonymized or pseudonymized information so you can find the content that interests you and so we can make our websites user-friendly. We, or companies commissioned by us as part of any order processing, create usage profiles to the extent permitted by law. This information cannot be traced back to you directly. The following information is intended to provide you with general information on the various purposes of processing data. Cookies that are strictly necessary to provide the web service cannot be rejected (see explanation at 1. above).
Market research/Reach measurement
Reach measurement provides statistics on a website’s usage intensity and the number of users, along with comparable figures for all of the connected services. Individual users are not identified at any time. Your identity is always protected.
- Required cookies
These cookies are required to enable you to navigate through the web pages and use key functions. They support basic functions.
Name: cookieinfo
Purpose: Confirms that the user agreed on the notices regarding the cookies
Storage period: 6 months
Country of processing: Germany
Name: MATOMO_SESSID
Purpose: Temporary nonce cookie to prevent CSRF security issues
Storage period: Session cookie
Country of processing: Germany
4. Where can I find the information that is important to me?
Additional information on data protection when using our products as a customer of Telekom Deutschland GmbH can be found in the data protection Information under https://www.telekom.de/datenschutzhinweise or under https://www.telekom.com/en/company/data-privacy-and-security/governance-data-privacy.
5. What rights do I have?
You have the right
- To request information on the categories of personal data concerned, the purposes of the processing, any recipients of the data, and the envisaged storage period (Art. 15 GDPR);
- To request that incorrect or incomplete data be rectified or supplemented (Article 16 GDPR);
- To withdraw consent at any time with effect for the future (Art. 7 (3) GDPR);
- To object to the processing of data on the grounds of legitimate interests, for reasons relating to your particular situation (Article 21 (1) GDPR);
- To request the erasure of data in certain cases under Art. 17 GDPR – especially if the data is no longer necessary in relation to the purposes for which it was collected or is unlawfully processed, or you withdraw your consent according to (c) above or object according to (d) above;
- To demand, under certain circumstances, the restriction of data where erasure is not possible or the erasure obligation is disputed (Art. 18 GDPR);
- To data portability, i.e., you can receive the data that you provided to us in a commonly used and machine-readable format such as CSV, and can, where necessary, transfer the data to others (Art. 20 GDPR);
- To file a complaint about the data processing with the responsible supervisory authority (for telecommunications contracts: the German Federal Commissioner for Data Protection and Freedom of Information (Bundesbeauftragter für den Datenschutz und die Informationsfreiheit); for any other matters: State Commissioner for Data Protection and Freedom of Information, North Rhine-Westphalia (Landesbeauftragter für den Datenschutz und die Informationsfreiheit Nordrhein-Westfalen)).
6. Who does Deutsche Telekom AG pass my data on to?
To processors, i.e., companies we engage to process data within the legally defined scope, Article 28 GDPR (service providers, agents). In this case, Deutsche Telekom also remains responsible for protecting your data. We engage companies particularly in the following areas: IT, sales, marketing, finance, consulting, customer services, HR, logistics, and printing.
To cooperation partners who, on their own responsibility, provide services for you or in conjunction with your Deutsche Telekom contract. This is the case if you order services of these partners from us, if you consent to the involvement of the partner, or if we involve the partner on the basis of legal permission.
Owing to legal obligations: In certain cases, we are legally obliged to transfer certain data to a state authority that requests it.
7. Where is my data processed?
Your data will be processed in Germany and other European countries.
In some cases, your data is also processed in countries outside the European Union (i.e. in so-called third countries). If data processing takes place in third countries, this will take place insofar as you have expressly consented to this or if it is necessary for our provision of services to you or if it is provided for by law (Art. 49 GDPR).
Your data will only be processed in third countries if certain measures are taken to ensure that an adequate level of data protection is in place (e.g. adequacy decision of the EU Commission or so-called suitable safeguards, Art. 44 et seq. GDPR, (see here).
8. Who is responsible for data processing? Who should I contact if I have any queries regarding data privacy at Deutsche Telekom?
Deutsche Telekom AG acts as the data controller. If you have any queries, please contact our Customer Services department or the Global Data Privacy Officer, Dr. Claus D. Ulmer, Friedrich-Ebert-Allee 140, 53113 Bonn, Germany, datenschutz@telekom.de.
© Deutsche Telekom AG – January 2025