1. Introduction

At keinsaas, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services. Please read this privacy policy carefully. If you do not agree with the terms of this privacy policy, please do not access the site.

This policy complies with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

2. Data Controller

The data controller responsible for your personal data is:

keinsaas
Responsible: Hagen Rothmann
📧 info@keinsaas.com
📍 Geibelstraße 57, 22303 Hamburg, Germany

3. Data We Collect

We collect the following categories of personal data:

Personal Information:

• Name, email address, contact details when you register or contact us

• Company information and professional details

Usage Data:

• Pages visited, features used, time spent on the site

• IP address, browser type, device information

• Cookies and similar tracking technologies

Content and Information:

• All files, documents, messages, and information you upload, send, or provide to us

• Content within uploaded materials processed by our AI systems

• Form submissions and communications

Communication Data:

• Messages sent through our contact forms

• Email communications and support requests

  
  

4. Legal Basis for Processing

We process your personal data based on the following legal bases under GDPR:

• Consent (Article 6(1)(a)): For information processing, marketing communications, and cookies

• Contract performance (Article 6(1)(b)): To provide our services

• Legitimate interests (Article 6(1)(f)): For website analytics and service improvement

• Legal obligations (Article 6(1)(c)): For compliance with applicable laws

  
  

5. How We Use Your Data

We use your personal data for the following purposes:

• Service Provision: To provide and improve our automation and AI services

• Content Processing: To process all uploaded, sent, or provided information using AI models (Gemini, Anthropic and OpenAI) hosted within the EU for personalized content generation and internal marketing/sales activities

• Communication: To respond to inquiries and provide customer support

• Marketing: To send relevant updates about our services (with your consent)

• Analytics: To analyze website performance and user behavior

• Legal Compliance: To fulfill legal and regulatory requirements

• 
  

Important: No data or content generated from your information is shared with third parties.

6. Data Sharing and Transfers

We may share your personal data with:

Service Providers: Third-party vendors who assist us in providing our services, including:

• Cloud hosting providers (EU-based)

• AI processing services (Gemini, Anthropic and OpenAI, hosted within the EU)

• Email service providers

• Analytics providers

  
  

Legal Requirements: When required by law, court order, or to protect our rights and safety

Business Transfers: In connection with any merger, sale, or acquisition of our business

We do not share any data or content generated from your information with third parties.

All third-party processors are contractually bound to protect your data and comply with GDPR requirements.

7. Data Retention

We retain your personal data for the following periods:

• Account data: Until account deletion or 3 years after last activity

• Uploaded information and content: Up to 12 months if no user account is assigned; otherwise until account deletion or upon request

• Marketing data: Until you unsubscribe or withdraw consent

• Analytics data: Up to 26 months in anonymized form

• Support communications: Up to 3 years for quality assurance

  
  

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data:

• Encryption of data in transit and at rest

• Regular security audits and assessments

• Access controls and authentication protocols

• Staff training on data protection

• Incident response procedures

  
  

9. Your Rights Under GDPR

You have the following rights regarding your personal data:

• Access (Article 15): Request a copy of your personal data

• Rectification (Article 16): Correct inaccurate or incomplete data

• Erasure (Article 17): Request deletion of your data ("right to be forgotten")

• Restriction (Article 18): Limit the processing of your data

• Portability (Article 20): Receive your data in a structured, machine-readable format

• Objection (Article 21): Object to processing based on legitimate interests

• Withdraw consent: For processing based on consent

  
  

To exercise these rights, contact us at info@keinsaas.com or support@keinsaas.com for data deletion requests.

10. Cookies and Tracking Technologies

We use cookies and similar technologies to:

• Enhance user experience and website functionality

• Analyze website traffic and usage patterns

• Personalize content and advertisements

• Remember your preferences and settings

  
  

You can manage cookie preferences through your browser settings. Some features may not function properly if cookies are disabled.

11. Marketing Communications

When you sign up for keinsaas Navigator and Knowledge services, you consent to receive marketing emails based on your use of our resources. You can:

• Unsubscribe using the link in any marketing email

• Contact us at info@keinsaas.com to opt out

• Update your communication preferences in your account settings

  
  

12. International Data Transfers

While our AI processing partners (Gemini, Anthropic and OpenAI) are hosted within the EU, any data transfers outside the EU are protected by:

• Adequacy decisions from the European Commission

• Standard Contractual Clauses (SCCs)

• Other appropriate safeguards under GDPR

  
  

13. Children's Privacy

Our services are not intended for children under 16. We do not knowingly collect personal data from children under 16. If you believe we have collected such data, please contact us immediately.

14. Data Breach Notification

In the event of a data breach affecting your personal data, we will:

• Notify the relevant supervisory authority within 72 hours

• Inform affected individuals if there is a high risk to their rights and freedoms

• Take immediate steps to contain and remedy the breach

  
  

15. Supervisory Authority

You have the right to lodge a complaint with a supervisory authority if you believe your data protection rights have been violated. The relevant authority depends on your location within the EU.

16. Changes to This Policy

We may update this Privacy Policy periodically. We will:

• Post the updated policy on our website

• Update the "Last updated" date

• Notify you of material changes via email or website notice

• Obtain fresh consent where required by law

  
  

17. Contact Us

For any questions, concerns, or requests regarding this Privacy Policy or your personal data, contact us at:

General inquiries: info@keinsaas.com
Data deletion requests: support@keinsaas.com
Address: Geibelstraße 57, 22303 Hamburg, Germany
Responsible: Hagen Rothmann

Response time: We aim to respond to all data protection inquiries within 30 days.