Privacy Policy

At K2 Mobility GmbH, protecting the privacy of our application users and website visitors is one of our main priorities. This privacy policy explains what information we collect, how we use it, and the measures we take to protect your information.

Version 002, last updated: November 6, 2024

1. Who We Are and How to Contact Us {#who-we-are}

K2 Mobility GmbH
Am Speicher 4, 14473 Potsdam, Germany

For any questions or further information about this privacy policy, you can contact us at:
Email: info@k2mobility.com

2. Scope of This Privacy Policy {#scope}

This policy applies to:

Mobile App Users: Individuals who use the PANION Mobile App as part of their work, as assigned by their employer.

Dashboard Users: Administrators designated by client organizations to manage the PANION Dashboard Management Tool.

Website Visitors: Individuals browsing the K2 Mobility website.

This policy does not apply to any data collected by your employer in connection with driving activities. Contact your fleet manager for details on how your company manages this data.

3. Purpose of Data Collection and Processing {#data-processing}

3.1 Mobile App Users

Data Collected: App version, OS version, IP address, login timestamps, GPS and LOCATION data, as well as other telematics data when connected to a vehicle.

Purpose:

Debugging and app performance tracking.
Analysis of driving patterns and energy consumption.

Legal Basis: Legitimate Interest
Retention: 1 year

3.2 Dashboard Users

Data Collected: Authentication data, user login information, and usage logs.

Purpose: Managing access to the PANION Dashboard Management Tool.

Legal Basis: Legitimate Interest
Retention: 2 years

3.3 Website Visitors and B2B Inquiries

Data Collected: Contact information, inquiry details, and optional consent for marketing communications.

Purpose: Responding to website inquiries and handling B2B communications.

Legal Basis: Legitimate Interest
Retention: 3 years for inquiries; 1 week for B2B cold call campaigns.

4. Third-Party Services and International Data Transfers {#third-party-services}

We share data with third-party service providers only when necessary and in compliance with applicable laws. Key third-party services include:

App Monitoring: Service providers in the EU help us monitor app stability and resolve issues.

Cloud Hosting: Our cloud services are located within the EU.

Email Services: Email providers in the EU ensure secure communication.

5. Data Protection and Security Measures {#data-security}

K2 Mobility employs a range of security measures, including:

Access Controls: Limited access to facilities and data based on user roles.

Encryption: SSL and HTTPS for data transmission; hard drive encryption for employee devices.

Multi-Factor Authentication (MFA): Required for all sensitive applications.

Regular Security Audits: Ongoing reviews and updates to security protocols.

6. Your Data Rights and How to Exercise Them {#data-rights}

Under the GDPR, you have the following rights:

Right of Access: Request details about the data we hold about you.

Right to Rectification: Correct any inaccurate or incomplete data.

Right to Erasure: Request data deletion when data is no longer needed or if processing is unlawful.

Right to Restriction: Limit data processing in specific situations.

Right to Data Portability: Receive a copy of your data in a machine-readable format.

Right to Object: Oppose data processing based on legitimate interest unless compelling grounds exist.

How to Exercise Your Rights

Contact us via email at info@k2mobility.com or by mail at our physical address listed in Section 1.
You may also lodge a complaint with a supervisory authority, a list of which is available here.