Privacy Policy

1. Privacy at a Glance

General Information

The following information provides a simple overview of what happens to your personal data when you visit this website and use our services. Personal data is any data by which you can be personally identified. For detailed information on data protection, please refer to our Privacy Policy set out below.

Controller

The controller responsible for data processing on this website is:

CodaAI – a brand of AMP Beratung
Owner: Anja Miebach
Langer Weg 7b
33332 Gütersloh
Germany
E-mail: hi@codaai.ai

2. Hosting

This website is hosted by an external service provider (host). Personal data collected on this website is stored on the host's servers. This may include IP addresses, contact requests, meta and communications data, contract data, contact details, names, website access data and other data generated via a website.

The host is used for the purpose of fulfilling contracts with our potential and existing customers (Art. 6(1)(b) GDPR) and in the interest of a secure, fast and efficient provision of our online offering by a professional provider (Art. 6(1)(f) GDPR).

We have concluded a data processing agreement (DPA) with the above-mentioned provider(s). This is a contract required by data protection law which guarantees that they process the personal data of our website visitors only in accordance with our instructions and in compliance with the GDPR.

3. General Information and Mandatory Disclosures

Data Protection

The operators of this website take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations and this Privacy Policy.

Your Rights as a Data Subject

Under the GDPR you have the right of access, rectification, erasure, restriction of processing, data portability and the right to object. To exercise these rights, please contact us at the address given above.

SSL / TLS Encryption

For security reasons and to protect the transmission of confidential content – such as orders or enquiries you send to us as the site operator – this site uses SSL or TLS encryption.

4. Data Collection on This Website

Server Log Files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are: browser type and browser version, operating system used, referrer URL, hostname of the accessing computer, time of the server request, and IP address. This data is not merged with other data sources. The basis for data processing is Art. 6(1)(f) GDPR.

Contact by E-mail or Contact Form

If you contact us by e-mail or via a contact form, your request, including all resulting personal data (name, request), will be stored and processed by us for the purpose of handling your enquiry. We do not pass this data on without your consent. Processing is carried out on the basis of Art. 6(1)(b) GDPR where your enquiry is related to the performance of a contract or is necessary for the implementation of pre-contractual measures.

Registration, User Account and Use of CodaAI Services

To use our services (e.g. Free Trial or paid plans), you must register on our website. The data entered during registration will be used solely for the purpose of using the respective offer or service for which you have registered. All mandatory information requested during registration must be provided in full; otherwise we will refuse the registration.

Data processed includes:

  • User data (e.g. name, e-mail address)
  • Contract data (e.g. services used, payment information)
  • Content data (e.g. text inputs, documents or prompts you enter into our AI services)
  • Usage data (e.g. pages visited, access times)

Processing is carried out on the basis of our legitimate interest in the efficient and secure provision of our services (Art. 6(1)(f) GDPR) and for the performance of a contract (Art. 6(1)(b) GDPR).

5. Use of Third-Party AI Services

Our service uses artificial intelligence models from third-party providers to generate content. When you use our services, the content data you enter may be transferred to the servers of these providers. We have concluded data processing agreements with these providers to ensure GDPR-compliant processing of your data.

These providers include:

  • OpenAI, L.L.C., San Francisco, USA
  • Anthropic, PBC, San Francisco, USA (provider of Claude)
  • Mistral AI, Paris, France

We only transmit the data necessary for the provision of the service. The legal basis for this processing is the performance of our contract with you (Art. 6(1)(b) GDPR).

6. Analytics and Advertising

Google Analytics

This website uses features of the web analytics service Google Analytics. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. We have concluded a data processing agreement with Google and use the "anonymizeIP" function.

7. Cookies

Our website uses cookies. These are small text files stored by your browser on your device. We use technically necessary cookies (Art. 6(1)(f) GDPR) and, with your consent (Art. 6(1)(a) GDPR), cookies for analytics and marketing purposes. You can manage your consent via our cookie consent banner.