GDPR Compliance

Telsense Inc. is committed to protecting the personal data of all individuals in the European Economic Area (EEA) and the United Kingdom (UK) in accordance with the General Data Protection Regulation (EU) 2016/679 ("GDPR") and the UK GDPR as retained in UK law. We act as a data controller for the personal data you provide to us, and as a data processor for any personal data you store or process through our platform on behalf of your own customers.

We rely on the following lawful bases for processing your personal data:

• Contract (Art. 6(1)(b)): Processing necessary to register domains, process payments, and deliver services you have requested
• Legal obligation (Art. 6(1)(c)): ICANN WHOIS data requirements, financial record-keeping, and law enforcement requests
• Legitimate interests (Art. 6(1)(f)): Fraud prevention, platform security, and improving our services
• Consent (Art. 6(1)(a)): Marketing communications and non-essential cookies, where you have provided explicit consent

Under GDPR, EEA and UK residents have the following rights:

• Right of Access (Art. 15): Request a copy of the personal data we hold about you, including the purposes and categories of processing
• Right to Rectification (Art. 16): Request correction of inaccurate or incomplete personal data
• Right to Erasure (Art. 17): Request deletion of your personal data where it is no longer necessary for the purpose it was collected, subject to legal retention obligations
• Right to Restriction (Art. 18): Request that we restrict processing while a dispute is resolved
• Right to Data Portability (Art. 20): Receive your data in a structured, machine-readable format (JSON or CSV)
• Right to Object (Art. 21): Object to processing based on legitimate interests, including profiling
• Rights related to automated decision-making (Art. 22): We do not make solely automated decisions that have significant legal effects on you

To exercise any right, submit a Data Subject Access Request (DSAR) to dpo@telsense.com. We will acknowledge your request within 72 hours and respond within 30 days (extendable to 90 days for complex requests).

As Telsense is incorporated in the United States, we may transfer personal data from the EEA/UK to the US. We ensure such transfers are protected by appropriate safeguards, including Standard Contractual Clauses (SCCs) approved by the European Commission, and we conduct Transfer Impact Assessments (TIAs) where required. We rely on EU–US Data Privacy Framework certification where applicable.

We have appointed a Data Protection Officer (DPO) who can be contacted at dpo@telsense.com. EEA residents also have the right to lodge a complaint with their national supervisory authority. A list of EU supervisory authorities is available at edpb.europa.eu.

If you are using Telsense as a business and process personal data of your own customers through our platform, you may require a Data Processing Agreement (DPA) with us as required by Art. 28 GDPR. Please contact legal@telsense.com to request a DPA.

In the event of a personal data breach affecting EEA/UK residents, Telsense will notify the relevant supervisory authority within 72 hours of becoming aware of the breach where required by Art. 33 GDPR. Where a breach is likely to result in a high risk to your rights and freedoms, we will also notify you directly without undue delay, as required by Art. 34 GDPR.