TeamGuru is the ultimate leadership tool for lean operations teams worldwide.

Privacy, Security & General Data Protection Regulation (GDPR) Policy

(Effective: January 21, 2025)

This policy applies to Team Solutions s.r.o. ("Team Solutions", "We", "Us", or "Our"), the provider of TeamGuru leadership software suite and service. Team Solutions is committed to protecting the privacy of your personal information.

Introduction

This policy sets out our commitment to protecting the personal data of all individuals with whom we interact, in accordance with the General Data Protection Regulation (GDPR). We are committed to ensuring the security and protection of any personal data that we process, and to provide transparency on how we use and retain that data.

Scope

This policy applies to all personal data processed by us, regardless of the means by which the data is collected. This includes data collected through our website, mobile applications, and other digital and offline channels.

Data Collection

We will only collect personal data that is necessary for the specific purpose for which it is being collected. We will inform individuals of the purpose for which their data is being collected at the time of collection and obtain their explicit consent when necessary.

Data Processing

We will process personal data in a fair, lawful, and transparent manner. We will only process personal data for the specific purpose for which it was collected, and we will not process it in any other way that is incompatible with that purpose. We will implement appropriate technical and organizational measures to ensure the security of personal data.

Data Retention

We will not retain personal data for longer than is necessary for the purpose for which it was collected. We will periodically review the data we hold and delete any data that is no longer required.

Data Security

Team Solutions takes the security of your personal information very seriously and has implemented appropriate technical, organizational and administrative measures to protect your personal information from unauthorized access, use, disclosure, alteration, or destruction.

These measures include, but are not limited to, the use of firewalls, encryption, and secure server environments. We also regularly review and update our security measures to ensure that your personal information is protected at all times.

We require that our employees, contractors, and third-party service providers who have access to your personal information are bound by strict confidentiality agreements and are required to adhere to our security protocols.

We also encourage you to take steps to protect your personal information by keeping your login credentials confidential, logging out of your account after use, and updating your security settings.

Please do not hesitate to contact us if you have any questions or concerns about our security practices.

Data Access and Correction

Individuals have the right to access and correct their personal data. We will provide individuals with access to their personal data upon request and will correct any inaccuracies in the data.

Data Breaches

We will report any data breaches to the appropriate authorities within 72 hours of becoming aware of the breach. We will also inform affected individuals of any data breaches that may affect them.

Privacy rights

  • Right to be informed: We will inform individuals about the collection and use of their personal data, through clear and concise privacy notices.
  • Right of access: Individuals have the right to access their personal data and any information related to its processing.
  • Right to rectification: Individuals have the right to have their personal data corrected if it is inaccurate or incomplete.
  • Right to erasure: Individuals have the right to request the deletion of their personal data in certain circumstances.
  • Right to restrict processing: Individuals have the right to request that processing of their personal data is restricted in certain circumstances.
  • Right to data portability: Individuals have the right to receive their personal data in a structured, commonly used, and machine-readable format and the right to transmit that data to another controller.
  • Right to object: Individuals have the right to object to the processing of their personal data in certain circumstances.
  • Right not to be subject to automated decision-making: Individuals have the right not to be subject to a decision based solely on automated processing, including profiling.

Cookies

We use cookies on our website to enhance the user experience and to collect anonymous data for analytics and marketing purposes.

We will inform individuals about the use of cookies on our website and obtain their consent before placing any non-essential cookies on their device.

Individuals have the right to refuse the use of cookies and can do so by adjusting their browser settings.

We will provide clear instructions on how to manage and delete cookies in the cookie consent notice and on our website, and we will also provide a link to this policy in the cookie consent notice.

Third Parties

We may share personal data with third parties for specific purposes, such as providing services or fulfilling legal obligations.

We will only share personal data with third parties that provide adequate levels of data protection and have appropriate safeguards in place.

We will ensure that any third-party service providers are contractually bound to process personal data in accordance with this policy and GDPR.

International data transfer

If we transfer personal data outside the European Economic Area (EEA), we will ensure that the recipient provides an adequate level of data protection.

AI Features Privacy and Data Usage

The Artificial Intelligence (AI) features within TeamGuru, including AI Insights and Predictions, are solely intended to enhance productivity and support better decision-making for our users.
Our AI features process only anonymized numerical data to generate valuable insights without compromising privacy. All data analyzed by AI models are entirely stripped of identifiers, ensuring there is no link to individual users, specific applications, customers, or organizational units. This strict anonymization makes the data resemble a raw set of numbers with no context, so the AI cannot infer any personal or organizational details.
  • Anonymized Data Only: Only anonymized numerical data is processed by the AI models, with no access to identifiable information such as customer names, roles, or other personal details.
  • No Model Training: Data analyzed by AI is used exclusively for real-time analysis and is never stored or reused for model training, safeguarding your information from future reuse.
  • Third-Party AI Providers: When utilizing third-party AI models, we partner only with providers that comply with GDPR and maintain high data security standards. These providers guarantee that data is processed securely and not used for training purposes.
  • Right to Explanation: We prioritize transparency in how AI generates insights. Users may request explanations regarding how specific insights are derived from their anonymized data.

Contact

For any questions or concerns about this policy or our handling of personal data, please contact us at privacy@teamguru.com. We will respond to all requests within a reasonable time frame and in accordance with GDPR.

Changes to this Policy

We may update this policy from time to time. If we make changes, we will post the updated policy on our website and update the "Effective Date" at the top of this page.

Compliance

We will regularly review our compliance with this policy and take appropriate steps to address any issues that arise. Any employee found to have violated this policy will be subject to disciplinary action.

 

Commitment to Security
and Quality Standards

 

We prioritize the security, privacy, and quality of our services. To ensure we meet the highest standards, we adhere to internationally recognized frameworks and undergo regular audits and certifications.

ISO 9001: Quality Management Systems

Our certification under ISO 9001 demonstrates our dedication to delivering consistent quality. We focus on customer satisfaction, process optimization, and continuous improvement, ensuring that we meet your expectations effectively.

ISO 27001: Information Security Management

We are certified against ISO 27001, the leading international standard for managing information security. This certification ensures that we have implemented a robust Information Security Management System (ISMS) to protect the confidentiality, integrity, and availability of your data. Key elements include:

  • Risk-based approach to identifying and mitigating security threats.
  • Policies and controls designed to safeguard information assets.
  • Continuous monitoring and improvement of security practices.

SOC 2 Type 2: Trust Services Criteria

We regularly undergo SOC 2 Type 2 audits, which evaluate our systems against the rigorous Trust Services Criteria. These reviews validate our commitment to:

  • Security: Protection of systems against unauthorized access and breaches.
  • Availability: Ensuring systems are operational and available as committed.
  • Confidentiality: Protection of sensitive customer and business information.
  • Processing Integrity: Accurate and authorized data processing.

Regular Audits and Continuous Improvement

We believe that compliance is an ongoing process, not a one-time achievement. That’s why we:

  • Perform regular internal and external audits.
  • Continuously update our policies to reflect changes in regulatory and industry requirements.
  • Empower our teams with training on security best practices.

By adhering to these frameworks and practices, we ensure that your data is handled with the utmost care and security while delivering the reliability and quality you expect from us.