Last updated: 21 Oct 2025
1) Who we are (Data Controller)
TEAMLANCE LTD
ULITSA “ARHITEKT KAMEN PETKOV” 62, Plovdiv 4000, Bulgaria
VAT: BG203971324
Contact: [email protected]
This policy explains how we collect, use, share, and protect personal data when you visit teamlance.io, contact us, or use our services. We process personal data in accordance with the EU/UK GDPR and applicable local laws.
2) What this policy covers
-
Visitors to our website (teamlance.io).
-
Prospective or existing clients, contractors, and partners who contact us or engage our services.
-
Clients who authorize us to access their Google Ads data (see Google Ads API Data below).
This policy does not cover third-party websites you may reach via links from our site.
3) The data we collect
3.1 Website interactions
-
Contact forms / email: name, company, email address, phone (optional), and the message you send.
-
System logs / security: IP address and basic technical data recorded by our hosting provider for security and reliability (e.g., error logs, firewall logs).
3.2 Business operations
-
Client/billing information needed to enter into and perform a contract (e.g., company details, invoicing information, points of contact).
-
Project and communication history necessary to provide our services.
3.3 Google Ads API Data (only if you authorize access)
If you connect or authorize us to your Google Ads account, we may access data via the Google Ads API with the permissions you grant. Typical categories:
-
Account, campaign, ad group, ad/asset metadata (including Performance Max asset groups and assets)
-
Budgets, statuses, labels
-
Reporting metrics: impressions, clicks, costs, conversions and related KPIs
-
Keywords and search-term reports where available
We do not access payment instrument details or other sensitive categories unrelated to the purpose described below.
4) Why we process data (Purposes) and legal bases
| Purpose | Examples | Legal basis (GDPR) |
|---|---|---|
| Respond to enquiries & provide proposals | Handling contact form/email requests, scheduling calls | Art. 6(1)(b) contract or pre-contract steps; Art. 6(1)(f) legitimate interests |
| Perform and improve our services | Project delivery, reporting, account management, QA | Art. 6(1)(b) contract; Art. 6(1)(f) legitimate interests |
| Security and fraud prevention | Server logs, access controls | Art. 6(1)(f) legitimate interests |
| Legal & compliance | Invoices, tax/audit records, legal claims | Art. 6(1)(c) legal obligation; Art. 6(1)(f) legitimate interests |
Google Ads API — specific purposes
We use client-authorized Google Ads data to:
-
power analytics dashboards and scheduled reports,
-
run pacing/quality checks and anomaly alerts,
-
generate plain-language performance summaries and testing insights,
-
support campaign management workflows for accounts we are authorized to manage.
No sale of Google Ads data. No use for targeting outside your accounts.
5) Google API Services User Data Policy (Limited Use)
Where we access Google Ads data, we comply with the Google API Services User Data Policy, including Limited Use:
-
We only use Google Ads data to provide or improve features for the client who authorized access.
-
We do not transfer Google Ads data to third parties except sub-processors necessary to provide the service (e.g., secure hosting).
-
Human access is limited to what’s necessary for support, security, or compliance.
-
Access can be revoked at any time via Google’s account permissions (OAuth).
6) Cookies & similar technologies
Current status: We do not set any non-essential cookies on teamlance.io.
If any cookie appears, it will be strictly necessary (e.g., a consent or security cookie) and cannot be switched off because the site needs it to function.
If we later introduce analytics or advertising cookies, we will:
-
display a consent banner,
-
use cookies only with your consent, and
-
update this policy with a cookie list and controls.
You can always manage or clear cookies in your browser settings.
7) Data sharing & sub-processors
We may use reputable third-party providers for hosting, storage, email, logging/monitoring, and project tools. These providers act as processors under data-processing terms and only process data on our instructions.
We do not sell personal data. We may disclose data where required by law or to establish/defend legal claims.
A current list of core sub-processors is available on request.
8) International transfers
If personal data is transferred outside the EEA/UK, we use lawful transfer mechanisms (e.g., EU Standard Contractual Clauses, UK IDTA/Addendum, or an adequacy decision) and apply appropriate safeguards.
9) Data retention
-
Contact/enquiry records: typically 12–24 months after last activity.
-
Contract/project/billing records: retained as required for tax and legal obligations (usually 5–10 years, jurisdiction-dependent).
-
Google Ads API data: retained only as long as necessary to provide the service and per client agreement (by default up to 13 months), then deleted or aggregated.
10) Security
We apply technical and organizational measures appropriate to the risks: encryption in transit and at rest where applicable, role-based access, MFA for admin systems, least-privilege principles, logging, and regular reviews.
11) Your rights
Subject to applicable law, you have the right to:
-
access, rectify, or erase your personal data;
-
restrict or object to processing;
-
data portability;
-
withdraw consent (where processing is based on consent);
-
lodge a complaint with your supervisory authority (e.g., Commission for Personal Data Protection – Bulgaria or your local authority).
To exercise rights, contact [email protected]. We may need to verify your identity.
12) Children
Our site and services are not directed to children under 16. We do not knowingly process children’s data.
13) Changes to this policy
We may update this policy from time to time. Significant changes will be posted on this page with an updated “Last updated” date. Continued use of the site/services constitutes acceptance of the revised policy.
14) Contact
Questions about this policy or our data practices:
TEAMLANCE LTD — [email protected]
ULITSA “ARHITEKT KAMEN PETKOV” 62, Plovdiv 4000, Bulgaria