top of page

Privacy Policy

1. Controller & Contact

Controller: aihorizon R&D gGmbH i.G. (non-profit)

Registered office: Munich, Germany
Business/correspondence address: aihorizon R&D gGmbH i.G., Fahrbornweg 7, 61381 Friedrichsdorf, Germany
Email: info@aihorizon.studio
Managing Director: Dr. Anna Altmann

Registration: Registration with the Commercial Register of the Local Court of Munich (Amtsgericht München) pending (HRB to follow).
Supervisory authority: Bayerisches Landesamt für Datenschutzaufsicht (BayLDA), Promenade 18, 91522 Ansbach, Germany (you may also contact your local authority).

2. What data we process & why (website)

  • Server log files (IP address, timestamp, URL, referrer, user agent, HTTP status) to ensure security, stability and error-free delivery. Legal basis: Art. 6(1)(f) GDPR.
     

  • Cookies & similar technologies
     

    • Essential cookies (e.g., session, security, load balancing) – required for site operation. Legal basis: Art. 6(1)(f) GDPR.
       

    • Non-essential cookies (analytics/marketing) – set only after your explicit consent (true opt-in) via the cookie banner; you can withdraw consent anytime via Cookie Settings. Legal basis: Art. 6(1)(a) GDPR.
       

  • Contact by email: Request content and metadata to reply and manage follow-up. Legal basis: Art. 6(1)(b) or (f) GDPR; where applicable Art. 6(1)(a) GDPR.
     

3. Hosting & processors

  • Website hosting: Wix.com Ltd. acts as our processor. Processing may involve infrastructure in the EU and third countries (e.g., Israel/US). International transfers are protected by EU adequacy (Israel) and/or Standard Contractual Clauses and, where applicable, the EU-US Data Privacy Framework.
     

  • Email provider: dogado (email hosting & mailboxes) acts as our processor under Art. 28 GDPR. Processing takes place within the EU/EEA to the extent possible; if third-country transfers occur, they are protected by appropriate safeguards (e.g., SCCs).
     

4. Recipients / categories
IT/hosting providers (Wix, dogado) and—where necessary—communications, analytics or support vendors under Art. 28 GDPR.

5. Storage periods

  • Server logs: erased after 60 days, unless required longer for security/incident handling.
     

  • Emails/requests: retained for the handling period and statutory retention.
     

  • Cookie/consent records: retained as required for legal compliance.
     

6. Cookies & consent management
On first visit you can accept/reject/customize non-essential cookies via the banner; choices can be changed anytime via the Cookie Settings link in the footer. Consent can be withdrawn with future effect.

 

7. Your rights
Access, rectification, erasure, restriction, portability, objection to processing based on Art. 6(1)(f) GDPR, and withdrawal of consent at any time. You may lodge a complaint with a supervisory authority (see Section 1).

 

8. Security
We implement appropriate technical and organizational measures; our providers maintain industry-standard security controls.

 

9. Updates
We update this notice when services or legal requirements change. Last updated: August 22, 2025.

 

10. Web Fonts (Google Fonts — local hosting)

For a consistent visual presentation, we use Google Web Fonts. The fonts are hosted locally on our infrastructure, so no connection to Google servers is established when our pages load and no personal data is transmitted to Google. Using web fonts is necessary to display the website uniformly and efficiently. Legal basis: Art. 6(1)(f) GDPR (legitimate interests in a consistent and performant presentation).

More information about Google Fonts (general):

Google Fonts FAQ
Google Privacy Policy

German Version

bottom of page