TelosBook demo

Privacy Notice

Last Updated: May 6, 2026

This Privacy Notice describes how Telos, Inc. ("Telos," "we," "us," or "our") collects, uses, discloses, and protects personal information in connection with our website at gettelos.com, our mobile and web applications, our APIs, and our other online and offline services that link to or reference this Privacy Notice (collectively, the "Services").

A Note on Customer Data

Telos provides an AI-native operating system that companies (our "Customers") use to manage their finances, banking, payroll, contracts, and other back-office work. To provide the Services, Customers authorize Telos to access information from their banking, accounting, payroll, HR, CRM, document, email, and other connected systems, and Customers and their personnel submit information to the Services directly. We refer to this information collectively as "Customer Data."

This Privacy Notice does not govern Customer Data. Telos processes Customer Data on behalf of, and at the direction of, our Customers, under written agreements that include any applicable Data Processing Addendum. The privacy practices that govern Customer Data are those of the Customer that controls it. If you are an employee, contractor, vendor, or counterparty of a Telos Customer and you have questions about how that Customer uses your information in connection with Telos, please contact the Customer directly.

This Privacy Notice does govern personal information about visitors to our marketing website, account holders interacting with our Services on their own behalf, prospective customers, business contacts, event attendees, applicants for employment, and the like.

1. Updates to This Notice

We may update this Privacy Notice from time to time. When we do, we will revise the "Last Updated" date above and, where the change is material, provide additional notice (for example, by email or an in-product banner). Your continued use of the Services after an update means you accept the revised Privacy Notice.

2. Personal Information We Collect

2.1 Information You Provide

We collect personal information when you choose to provide it, including:

  • Account information — name, email, phone number, password, employer, job title, and similar profile details when you create or administer an account.
  • Billing information — billing address, tax identifiers, and information related to your payments. Payment-card numbers are handled by our PCI-compliant payment processors and are not stored by Telos.
  • Communications — messages you send to our sales, support, or other teams (including chat, email, and form submissions), and any attachments.
  • Demos, events, and surveys — information you provide when you request a demo, attend or register for one of our events, or participate in a survey or research program.
  • Recruiting — information you submit if you apply for a job with Telos, including your résumé, work history, references, and any voluntarily disclosed demographic data.

2.2 Information Collected Automatically

When you use the Services, we (and our service providers) automatically collect certain information about your device and your interactions with us, including:

  • Device and connection information — IP address, device type, operating system, browser type and version, language, time zone, and approximate location derived from IP.
  • Usage information — pages and features visited, time spent, links clicked, error logs, performance data, referrer URL, and similar telemetry.
  • Cookies and similar technologies — cookies, pixels, web beacons, local storage, and SDK identifiers used to operate, secure, and improve the Services and (where you have consented or applicable law permits) for analytics and marketing.

You can control cookies and similar technologies through your browser settings or, where applicable, through the cookie-preference controls we provide. Disabling certain cookies may affect how the Services function. We do not currently respond to "Do Not Track" browser signals; we do honor recognized opt-out preference signals (such as Global Privacy Control) where required by applicable law.

2.3 Information from Third Parties

We may receive personal information about you from:

  • Our Customers — if you are an Authorized User of a Telos Customer, the Customer provides us with your account information for purposes of provisioning your access.
  • Service providers — including identity verification providers, fraud-prevention services, hosting and analytics providers, and customer-relationship-management providers.
  • Marketing and lead-data providers — including business contact databases used to identify prospective Customers.
  • Publicly available sources — including company websites, public regulatory filings, and professional networking sites.
  • Partners — including referral partners, integration partners, and event co-sponsors.
  • Authentication and connected-account providers — when you authenticate using a third-party service (e.g., Google, Microsoft) or authorize Telos to access a Connected Account, the relevant provider shares profile information with us in accordance with your authorization and that provider's privacy practices.

3. How We Use Personal Information

We use personal information to:

  • Provide and operate the Services — including authenticating users, provisioning accounts, processing transactions, integrating with Connected Accounts, and providing customer support.
  • Improve and develop the Services — including debugging, measuring performance, training and improving general-purpose Telos models using de-identified and aggregated data, and researching new features. We do not use identifiable Customer Data to train models that are made available to other customers without Customer consent. (See our Terms of Service for further detail.)
  • Communicate with you — including responding to inquiries, sending service-related messages, and (with your consent or as otherwise permitted) sending marketing communications.
  • Personalize your experience — including remembering preferences and tailoring content.
  • Operate our business — including billing, accounting, audit, security, fraud prevention, and recordkeeping.
  • Comply with legal obligations — including responding to lawful requests from public authorities and enforcing our agreements.
  • Other purposes you consent to or that we describe at the time of collection.

4. Legal Bases (Where Applicable)

Where applicable law (such as the GDPR or UK GDPR) requires a legal basis for processing, we rely on:

  • Contract — to perform our agreement with you or take pre-contract steps at your request.
  • Legitimate interests — including operating, marketing, securing, and improving the Services, where those interests are not overridden by your rights.
  • Consent — where required (for example, certain marketing communications or non-essential cookies); you may withdraw consent at any time.
  • Legal obligation — to comply with applicable law.

5. How We Share Personal Information

We share personal information with the following categories of recipients:

  • Service providers and processors — including hosting and infrastructure providers (e.g., cloud hosting), AI and machine-learning providers, payment processors, analytics providers, customer-support tools, communications providers, and security and fraud-prevention vendors. These providers process personal information on our behalf under written agreements.
  • Connected Account providers and aggregators — when a Customer authorizes Telos to interact with a Third-Party Service (e.g., a bank, payroll system, or accounting platform), Telos will exchange personal information with that service as needed to deliver the Telos Services.
  • Telos Customers — if you use the Services as an Authorized User of a Telos Customer, your account information and information about your use of the Services may be shared with that Customer.
  • Business and integration partners — including referral partners and partners with whom we jointly offer features.
  • Professional advisors — including auditors, attorneys, accountants, and insurers.
  • Authorities and other parties — when we believe in good faith that disclosure is necessary to (a) comply with applicable law, regulation, legal process, or government request; (b) enforce our terms; (c) protect the rights, property, or safety of Telos, our users, or others; or (d) detect, prevent, or address fraud, security, or technical issues.
  • Corporate transactions — in connection with a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, your information may be transferred as part of that transaction, subject to standard confidentiality protections.

We do not "sell" personal information for monetary consideration, and we do not "share" personal information for cross-context behavioral advertising as those terms are defined under the CCPA, except as we may further describe in a state-specific notice or cookie banner. Where applicable, you may exercise opt-out rights as described in Section 9.

6. AI and Machine Learning

The Services use artificial-intelligence and machine-learning models, including AI Agents that, when authorized, take actions on a Customer's behalf. As part of providing and improving the Services, we process personal information through these models in accordance with this Privacy Notice and our Terms of Service. AI-generated output is probabilistic and may be inaccurate; we encourage you to review AI output and AI Agent actions before relying on them, and to review our Terms of Service and Documentation for the controls available to you.

7. Data Retention

We retain personal information for as long as we have an ongoing relationship with you, as needed to provide the Services, and as required to meet our legal, accounting, audit, tax, regulatory, or contractual obligations, or to resolve disputes and enforce our agreements. When personal information is no longer needed, we securely delete or de-identify it. Customer Data is retained in accordance with the agreement between Telos and the Customer that controls it.

8. Security

We maintain administrative, technical, and physical safeguards designed to protect personal information against loss, misuse, and unauthorized access, disclosure, alteration, or destruction. Our security practices are described in our Security Policy. No method of transmission or storage is completely secure, however, and we cannot guarantee absolute security.

9. Your Rights and Choices

Depending on where you live and applicable law, you may have rights with respect to your personal information, including the right to:

  • Access or know what personal information we hold about you;
  • Correct inaccurate personal information;
  • Delete personal information;
  • Port your personal information to another service;
  • Opt out of certain uses, including "sale" or "sharing" of personal information (as those terms are defined under U.S. state privacy laws), targeted advertising, and certain profiling;
  • Limit the use of sensitive personal information to specific purposes; and
  • Withdraw consent where processing is based on consent.

To exercise these rights, email privacy@gettelos.com. We will verify your request as required by applicable law and will respond within the timeframes those laws require. You may also designate an authorized agent to make a request on your behalf, subject to verification.

If you are an employee, contractor, or counterparty of a Telos Customer and your request relates to Customer Data, please contact the Customer directly. Telos will refer your request to the relevant Customer or assist them in fulfilling it as our agreement with that Customer requires.

You will not be discriminated against for exercising your privacy rights. If you believe we have not adequately addressed your concerns, you may have the right to file a complaint with your data-protection authority.

Marketing Communications

You can unsubscribe from marketing emails by following the unsubscribe link in any message or by contacting us. Even if you opt out of marketing, we may still send you transactional or service-related communications.

Cookies

You can manage cookies through your browser settings or any cookie-preference controls we provide.

10. State-Specific Disclosures (United States)

This section provides additional information for residents of certain U.S. states.

Categories of personal information we have collected in the past 12 months include identifiers (e.g., name, email, IP address); commercial information (e.g., transaction history with us); internet or network activity; geolocation data (approximate); professional or employment information; inferences drawn from the above; and, if you provide them, certain sensitive identifiers (e.g., account credentials).

Sources of this information are described in Section 2.

Purposes for which we use this information are described in Section 3.

Categories of recipients are described in Section 5.

Retention is described in Section 7.

Sale and Sharing. We do not sell personal information for monetary consideration. To the extent any disclosure of personal information for advertising or analytics purposes constitutes a "sale" or "share" under your state's law, you may opt out by emailing privacy@gettelos.com or by using the controls provided in our cookie banner (where shown). We honor recognized opt-out preference signals (such as Global Privacy Control) as required by applicable law.

Sensitive personal information. We do not use sensitive personal information for purposes that would require an opt-out or consent right under applicable law beyond the purposes permitted by those laws.

Rights. Residents of California, Colorado, Connecticut, Delaware, Indiana, Iowa, Kentucky, Maryland, Minnesota, Montana, Nebraska, New Hampshire, New Jersey, Oregon, Rhode Island, Tennessee, Texas, Utah, and Virginia (and other states with comparable laws) may have rights as described in Section 9.

11. Children

The Services are not directed to children under 16, and we do not knowingly collect personal information from children. If you believe a child has provided personal information to us, please contact us at privacy@gettelos.com and we will take appropriate steps to delete it.

12. International Data Transfers

Telos is headquartered in the United States and processes personal information in the United States and other countries. If you are located outside the United States, your information will be transferred to and processed in the United States, where data-protection laws may differ from those of your country. Where required by applicable law, we use appropriate safeguards (such as standard contractual clauses) for international transfers.

13. Third-Party Sites and Services

The Services may link to or integrate with third-party websites, products, and services that we do not operate. This Privacy Notice does not apply to those third parties, and we are not responsible for their privacy practices. Please review the privacy notices of any third-party services you use.

14. Contact Us

If you have any questions about this Privacy Notice or our privacy practices, contact us at:

Telos, Inc. 390 NE 191st St STE 24567, Miami, FL 33179 Email: privacy@gettelos.com