Privacy Policy
Last Updated: February 2025
Our Commitment to Privacy
At Nexus Aiil, we take the protection of your personal data very seriously. This privacy policy informs you about the nature, scope, and purpose of the collection and use of personal data on our website and in the context of our AI services.
We process your data in accordance with the EU General Data Protection Regulation (GDPR), the Swiss Federal Act on Data Protection (FADP), and other applicable data protection regulations.
Controller: Nexus Aiil, Bahnhofstrasse 47, 8001 Zurich, Switzerland
1. What Data We Collect
Contact Data
- • Name, First Name
- • Email Address
- • Phone Number (optional)
- • Company/Organization (optional)
- • Message/Inquiry
Legal Basis: Art. 6(1)(b) GDPR (Pre-contractual measures)
Usage Data
- • IP Address (anonymized)
- • Browser Type and Version
- • Operating System
- • Referrer URL
- • Date and Time of Access
- • Pages Visited
Legal Basis: Art. 6(1)(f) GDPR (Legitimate interest)
Cookie Data
- • Session cookies for website functionality
- • Preference cookies for user settings
- • Analytics cookies (only with consent)
- • Marketing cookies (only with consent)
Legal Basis: Art. 6(1)(a) GDPR (Consent) / Art. 6(1)(f) GDPR (Legitimate interest)
2. How We Use Your Data
Service Provision
- • Processing inquiries
- • Providing our AI services
- • Communicating with customers
- • Contract fulfillment
- • Support and customer care
Website Optimization
- • Analyzing website usage
- • Improving user-friendliness
- • Technical optimizations
- • Error diagnosis and troubleshooting
- • Security monitoring
Marketing Communication
- • Sending service updates (only with consent)
- • Information about new AI services
- • Invitations to webinars and events
- • Newsletter (only with explicit consent)
You can unsubscribe from marketing communications at any time.
Legal Obligations
- • Fulfilling legal retention obligations
- • Invoicing and accounting
- • Compliance and audit requirements
- • Legal enforcement in case of violations
3. Data Protection Measures
Technical Security
- • SSL/TLS encryption for all data transfers
- • End-to-end encryption for sensitive data
- • Regular security updates
- • Firewalls and intrusion detection
- • Secure data centers in Switzerland
Organizational Measures
- • Access control and authorization concepts
- • Regular employee training
- • Confidentiality agreements
- • Documented data protection processes
- • Regular data protection audits
Data Breaches
In the unlikely event of a data breach, we will inform the responsible supervisory authorities within 72 hours and notify affected individuals promptly about the breach and the measures taken.
4. Your Rights
Under the GDPR and Swiss data protection law, you have various rights regarding your personal data:
Right to Access (Art. 15 GDPR)
You can request information about the personal data we process.
Right to Rectification (Art. 16 GDPR)
You can request the correction of inaccurate or incomplete data.
Right to Erasure (Art. 17 GDPR)
You can request the deletion of your data, provided no legal retention obligations exist.
Right to Data Portability (Art. 20 GDPR)
You can receive your data in a structured, machine-readable format.
Right to Object (Art. 21 GDPR)
You can object to the processing of your data based on legitimate interest.
Withdrawal of Consent
You can withdraw your consent at any time with effect for the future.
Contact for Data Protection Inquiries:
Email: [email protected]
Phone: +65 44 312 84 06
Mail: Nexus Aiil, Bahnhofstrasse 47, 8001 Zurich
5. Retention Period
Contact Inquiries
Data from contact forms will be deleted 3 years after the last contact, unless a business relationship exists.
Reason: Retention for potential business initiation
Contract Data
Customer data is retained for 10 years after the end of the contract (commercial retention obligation).
Reason: Legal retention obligations (Commercial Code, Tax Code)
Usage Data
Log files and analytics data are automatically deleted after 24 months.
Reason: Technical security and website optimization
Marketing Data
Newsletter subscriptions and marketing consents are stored until revoked.
Reason: Consent until withdrawal
6. Third Parties and International Transfers
Google Services
Google Analytics: Website analysis (only with consent)
Google Ads: Conversion tracking (only with consent)
Data Protection: Google LLC is certified under the EU-U.S. Data Privacy Framework
Opt-out: Google Analytics Opt-out
Meta/Facebook Pixel
Purpose: Conversion measurement and remarketing (only with consent)
Data Protection: Standard contractual clauses for data transfer
Objection: Facebook Ad Settings
Microsoft Bing
Bing Ads: Conversion tracking (only with consent)
Legal Basis: EU Standard Contractual Clauses
International Data Transfers
Transfers to third countries are only carried out with appropriate safeguards (adequacy decisions, standard contractual clauses, or certifications). Your rights remain unaffected.
7. Legal Bases for Processing
Performance of a Contract (Art. 6(1)(b) GDPR)
- • Processing inquiries
- • Providing our AI services
- • Communicating with customers
- • Support and care
Legitimate Interest (Art. 6(1)(f) GDPR)
- • Website security and operation
- • Abuse detection
- • Technical optimization
- • Anonymized statistics
Consent (Art. 6(1)(a) GDPR)
- • Marketing cookies
- • Newsletter dispatch
- • Analytics cookies
- • Remarketing
Legal Obligation (Art. 6(1)(c) GDPR)
- • Tax law retention
- • Commercial law documentation
- • Compliance requirements
8. Contact and Right to Lodge a Complaint
Data Protection Officer
Supervisory Authority
Right to Lodge a Complaint: You have the right to lodge a complaint with a data protection supervisory authority about our processing of your personal data. However, we recommend that you first contact us directly to clarify your concerns.