Integritetspolicy | Drömlik UCaaS Plattformsdata & GDPR

Drömlik UCaaS Privacy Policy Agreement

Your continued use of Drömlik UCaaS (the “Service”) means you consent to the data procedures expressed within this agreement.

This policy describes how Drömlik processes your information, not how other organizations treat your information. If you are using the Service in a workplace or on a device or account issued by your employer or another organization, that organization may have its own policies regarding storage, access, modification, deletion, and retention of communications and content. Content that would otherwise be private to you or a limited group may, in some cases, be accessible by your administrator. Please check with your employer or administrator for their applicable policies.

Nature and Purpose of Processing

Drömlik UCaaS is a hosted communication and collaboration platform. It processes personal data of individuals who participate in communications managed through the Service.

Information We Process

Through your use of Drömlik UCaaS, we may process various types of information—some personally identifiable, others non-identifying or aggregated. Examples include:

Personal Information – Account details, names, and contact information used for account creation and PBX administrative purposes.
Trunks – Telephone numbers associated with system configuration and routing.
Call Detail Records (CDRs) – Source/destination names and numbers, timestamps, durations, and other metrics necessary for reporting and operation.
Call Recordings – Disabled by default and opt-in only. If enabled, recordings include call metadata (numbers, IP addresses) and encrypted audio files stored securely within the system.
Voicemail – Stored voice messages with caller name, number, and message content (feature can be disabled).
Voicemail Transcription – Optional integration with Google Cloud Speech-to-Text API for transcription.
Contact Management (Company & Personal Contacts) – Optional storage and synchronization of contact information such as name, company, email, and phone numbers.
Conferencing and WebRTC Communication – Names and phone numbers of participants, transmitted via encrypted channels; not recorded or stored unless recording is enabled.
Integrations – Optional authentication-based integrations (CRM, Helpdesk, AD, Microsoft 365, Outlook, etc.) for data synchronization or call pop-ups.
APIs and SDKs – Disabled by default; when enabled, third-party applications may access system data using secure credentials.
AI & Automation Features – Optional AI-powered transcription, text-to-speech, or summary features. Data processed by third-party AI models (e.g., AWS, Azure) is limited to the content submitted for the selected function.
Messaging and Omnichannel Integrations – Optional integrations with platforms like WhatsApp or SMS for customer communication.
Remote Archiving – Optional feature for transferring encrypted data to customer-managed third-party storage services.
System and Operation Logs – Diagnostic and operational records for troubleshooting and monitoring.
Event Notifications & Reports – Used for alerts and activity summaries related to system operations.

All integrations and optional services are disabled by default and must be explicitly enabled by the administrator.

How We Use Your Information

Drömlik UCaaS uses collected data for:

Service Delivery – To provide communication, collaboration, and related PBX functions.
System Administration – For provisioning, troubleshooting, and performance reporting.
Notifications – For system updates, password resets, or administrative alerts.
Support and Maintenance – To assist with technical issues or service improvements.

Data Retention

Call Recordings, CDRs, and Voicemails – May be deleted permanently via the Web Management Portal or relevant administrative interface.
Stored Logs and Reports – Retained only as long as necessary for service functionality, compliance, or troubleshooting.

Sharing and Disclosure

Drömlik may share or disclose data only under the following conditions:

With consent from the user or administrator.
To comply with legal processes, such as court orders or government requests.
To protect safety, rights, or property of users or the public.
To detect or prevent fraud, security threats, or technical issues.

If a law-enforcement or third-party request for information is received, Drömlik will provide prior notice to the data subject where legally permissible.

Security

Drömlik takes reasonable and appropriate steps to protect your data from loss, misuse, unauthorized access, or disclosure.

All transmissions of sensitive data (e.g., login credentials) are encrypted using SSL/TLS.
Data at rest is stored in encrypted form.
System access is restricted through authentication and role-based controls.
We follow generally accepted industry standards for information security during transmission and storage.

Changes to This Privacy Policy

Drömlik may update this policy from time to time. Continued use of Drömlik UCaaS after such changes indicates acceptance of the revised terms. For material updates, we may provide additional notice or request renewed consent.