Privacy Policy / Datenschutzerklarung

Ai on Edge Platform

Controller (Verantwortlicher): Michael Konig-Weichhardt Bachweg 10, 8410 Wildon, Steiermark, Austria

Contact: privacy@aionedge.app

Last updated: April 11, 2026

Ai on Edge is designed with a privacy-first architecture. Tenant public sites avoid third-party browser requests for core fonts, scripts, and widgets, and assets are self-hosted. At the same time, the platform uses a defined set of server-side processors for infrastructure, payments, email, and selected AI features. This document serves as the legal privacy policy for the Ai on Edge platform (aionedge.app) and all tenant sites hosted on it, in compliance with the EU General Data Protection Regulation (GDPR/DSGVO), the Austrian Data Protection Act (DSG), and the ePrivacy Directive.

1. No Third-Party Browser Requests

Tenant public sites make zero third-party browser requests for their core assets. Everything is served from your own domain:

• Fonts -- Google Fonts are downloaded once during setup and self-hosted on your server. No requests to fonts.googleapis.com or fonts.gstatic.com. Funnel step fonts are also self-hosted for full GDPR compliance.
• Emojis -- Google Noto animated emojis are downloaded once and self-hosted. No requests to Google servers.
• No analytics scripts -- Built-in analytics are server-side. No Google Analytics, Facebook Pixel, or any third-party tracking.
• No CDN dependencies -- No external JavaScript or CSS libraries are loaded from CDNs.
• No embedded iframes -- No external widgets or social media embeds that phone home.
• No fingerprinting -- No browser fingerprinting or behavioral tracking techniques are used.

2. Self-Hosted Assets

Google Fonts

Fonts are synced to your server via Settings > Branding Kit > Font Pair. The platform downloads the font files from Google once and stores them locally. Public pages load fonts from your domain only. This includes fonts used in funnel steps, ensuring no external font requests anywhere on the site.

Google Noto Emojis

720 animated emojis (SVG + WebP) are synced to your server. Static SVGs are used in admin pickers for performance. Animated WebPs are displayed on the public site. All served from _platform/noto-emoji/ with immutable caching.

3. Legal Basis for Data Processing (GDPR Art. 6)

All personal data processing on the Ai on Edge platform is based on one or more of the following legal grounds:

3.1 Contract Performance (Art. 6(1)(b) GDPR)

Processing necessary for the performance of a contract with the data subject, including:

• Account creation and management
• Content hosting and delivery
• Email communication related to the service
• Payment processing for subscriptions or products

3.2 Legitimate Interest (Art. 6(1)(f) GDPR)

Processing necessary for the legitimate interests of the controller, where these interests are not overridden by the data subject's rights:

• Server-side analytics (anonymized, no external tracking)
• Security measures (rate limiting, device trust, CORS enforcement)
• Infrastructure optimization and caching
• Fraud prevention

3.3 Consent (Art. 6(1)(a) GDPR)

Processing based on the data subject's freely given, specific, informed, and unambiguous consent:

• Newsletter signup and email marketing
• Optional features that require additional data collection

Consent can be withdrawn at any time by contacting privacy@aionedge.app or using the unsubscribe mechanism provided in each communication.

3.4 Legal Obligation (Art. 6(1)(c) GDPR)

Processing necessary for compliance with legal obligations:

• Tax and accounting records related to payment transactions
• Retention of invoicing data as required by Austrian tax law (Bundesabgabenordnung)

4. Cookie Usage

Ai on Edge uses a single authentication cookie:

• No tracking cookies are set. No third-party cookies exist.
• All cookies are strictly necessary for the provision of the service.

Visitors who are not logged in receive no cookies at all.

This authentication cookie is strictly necessary for the provision of the service and is therefore exempt from consent requirements under Art. 5(3) of the ePrivacy Directive (2002/58/EC) and Section 165(3) of the Austrian Telecommunications Act (TKG 2021).

5. Data Storage

All data is stored in your Cloudflare R2 bucket, organized per tenant:

• User accounts -- Email, name, hashed password, role.
• Content -- Posts, pages, funnels, product pages, streaming pages.
• Comments -- Comment text, author, timestamp. Voice comments stored as audio files.
• Analytics -- Page views, visitor counts, device info. All processed server-side with no external tracking. IP addresses are hashed and never stored in raw form. Analytics data is stored per-tenant in R2.
• Calendar -- Events and availability stored per tenant.
• Email -- Stored in tenant-scoped folders (inbox, sent, drafts, etc.).

No data is shared between tenants. Each tenant's data is isolated under tenants/{tenant-id}/.

6. Data Retention Periods

7. Third-Party Processors (GDPR Art. 28)

The following third-party service providers process data on behalf of the platform. Data Processing Agreements (DPAs) are in place with each processor in accordance with Art. 28 GDPR.

7.1 Cloudflare, Inc. (USA)

• Services: Infrastructure (Workers, R2 Storage, KV, CDN, Containers)
• Data processed: All platform data transits Cloudflare infrastructure
• Transfer mechanism: EU Standard Contractual Clauses (SCCs)
• DPA: Available at cloudflare.com/gdpr/

7.2 Mailgun Technologies (EU -- Frankfurt)

• Services: Transactional and marketing email delivery
• Data processed: Recipient email addresses, email content
• Data location: EU only (Frankfurt data center)
• Compliance: GDPR compliant, EU data processing

7.3 Paddle.com Market Limited (UK)

• Services: Platform subscription billing, invoicing, and tax collection (Merchant of Record)
• Data processed: Billing details, subscription information, payment data
• Transfer mechanism: UK Adequacy Decision, Standard Contractual Clauses (SCCs)
• Note: Paddle acts as the Merchant of Record for all platform subscriptions. When you subscribe, your payment is processed by Paddle, not directly by Ai on Edge. Paddle's privacy policy applies: paddle.com/legal/privacy

7.4 Stripe, Inc. (USA/EU)

• Services: Tenant shop payment processing (payments from end users to site owners)
• Data processed: Payment information, billing details for shop transactions
• Compliance: PCI DSS Level 1 compliant
• Transfer mechanism: EU Standard Contractual Clauses (SCCs)
• Note: Stripe processes payments for tenant online shops. Each tenant manages their own Stripe products and accounts. Payment card data is processed directly by Stripe and never touches the Ai on Edge platform servers

7.5 Groq, Inc. (USA)

• Services: Primary AI inference for chat, drafting, transcription, and selected fallback paths
• Data processed: Submitted content data required for the enabled feature (for example text, audio, or images)
• Data NOT intentionally sent as application data: No analytics datasets, no raw end-user IP addresses, no browsing-history payloads
• Transfer mechanism: EU Standard Contractual Clauses (SCCs)
• Note: AI processing is triggered by admin actions and optionally by user interactions (public chat, comment moderation, voice transcription) when enabled

7.6 Mistral AI (France / EU)

• Services: Optional AI processing for selected structured generation, moderation, embeddings, and multilingual workflows when configured
• Data processed: Submitted content data required for the specific AI task (for example text and, in selected flows, images)
• Contracting note: Mistral provides a commercial DPA for customer-processing contexts, but separate provider-side privacy and retention terms still apply
• Note: Mistral is only used when the platform is configured with MISTRAL_API_KEY

7.7 Optional: Video Conferencing Providers

If the tenant admin enables the meeting scheduler, one of the following providers is used to create video meetings. These are optional and only activated when explicitly configured:

No meeting provider is activated by default. Data is only sent to the configured provider when a meeting is booked.

No Other Third Parties

• No Google services -- Fonts and emojis are self-hosted. Public sites make zero requests to Google.
• No Cloudinary -- Media processing (video encoding, image optimization) is entirely self-hosted via Container-Media running on Cloudflare infrastructure.
• No analytics providers -- No Google Analytics, Facebook Pixel, or any external tracking service.

8. International Data Transfers (GDPR Art. 44-49)

Some processors are based in the United States. International data transfers are safeguarded as follows:

All SCCs are supplemented with technical and organizational measures to ensure an adequate level of data protection in accordance with GDPR Chapter V requirements.

9. Email Infrastructure

Outgoing emails (verification, notifications, newsletters) are sent via Mailgun EU (Frankfurt). The Mailgun EU region is GDPR compliant, with data processed and stored within the European Union. No email data is routed through non-EU servers.

10. Video Processing

Video processing is handled entirely by a container-based service running on Cloudflare infrastructure. No external video services (YouTube, Vimeo, etc.) are used. Videos are encoded using FFmpeg with SVT-AV1 and processed asynchronously. All video files remain within the platform infrastructure.

11. AI Processing

Ai on Edge uses a layered AI provider model rather than a single vendor.

• Groq is the primary external provider for general chat, admin assistant chat, transcription, and much of the platform's text and vision inference.
• Mistral AI is optional and used for selected structured or multilingual workflows when configured, including parts of SEO generation, summaries, search tags, moderation, subtitle translation, and selected reply-drafting flows.
• Cloudflare Workers AI is used inside Cloudflare infrastructure for embeddings and selected internal AI routines.

Important notes regarding data handling:

• AI providers receive the content necessary to perform the enabled feature. That may include text, audio, or images submitted by an admin, member, or visitor.
• Submitted content may itself contain personal data if a user includes it in a prompt, upload, or message.
• The platform does not intentionally send analytics datasets, raw end-user IP addresses, or browsing-history payloads to external AI providers as part of normal AI inference.
• AI processing can be triggered by admin actions and, when enabled, by visitor-facing features such as public chat, voice transcription, image analysis, and moderation.
• External AI providers apply their own contractual, abuse-monitoring, and retention terms. Tenant admins should review the current Groq and Mistral legal documentation when enabling these integrations.

12. Data Subject Rights (GDPR Art. 15-22)

If you are a data subject whose personal data is processed by this platform, you have the following rights under the GDPR:

12.1 Right of Access (Art. 15)

You have the right to obtain confirmation as to whether personal data concerning you is being processed, and to access that data along with information about the processing.

12.2 Right to Rectification (Art. 16)

You have the right to request correction of inaccurate personal data or completion of incomplete data.

12.3 Right to Erasure (Art. 17)

You have the right to request deletion of your personal data. Account deletion can be initiated via your profile page, which removes all associated personal data within 30 days.

12.4 Right to Restriction of Processing (Art. 18)

You have the right to request restriction of processing in certain circumstances, such as when you contest the accuracy of your data.

12.5 Right to Data Portability (Art. 20)

You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller.

12.6 Right to Object (Art. 21)

You have the right to object to the processing of your personal data based on legitimate interest (Art. 6(1)(f)). Upon objection, we will cease processing unless we can demonstrate compelling legitimate grounds.

12.7 Right Not to Be Subject to Automated Decision-Making (Art. 22)

No automated decision-making or profiling with legal or similarly significant effects is carried out on this platform.

Exercising Your Rights

To exercise any of these rights, contact: privacy@aionedge.app

We will respond to your request within 30 days, in accordance with Art. 12(3) GDPR.

12.8 Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority. The competent authority for Austria is:

Osterreichische Datenschutzbehorde (Austrian Data Protection Authority) Barichgasse 40-42, 1030 Vienna, Austria Phone: +43 1 52 152-0 Email: dsb@dsb.gv.at Website: https://www.dsb.gv.at

13. Children's Data

The Ai on Edge platform is not intended for use by individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that personal data has been collected from a child under 16 without parental consent, we will take steps to delete that data promptly.

14. GDPR / DSGVO Compliance Summary

The platform supports GDPR compliance through:

• No third-party browser requests on tenant public pages -- Fonts, emojis, scripts, and core assets are self-hosted for the site frontend.
• Self-hosted assets -- Fonts and emojis served locally (no Google requests from visitors).
• Account deletion -- Users can delete their accounts via their profile page, removing all personal data.
• Legal pages -- Configurable Impressum, Privacy Policy (Datenschutz), and Terms of Service pages in Settings > Account.
• Email verification -- Optional email verification for new registrations.
• Minimal data collection -- Only essential data is stored (no behavioral tracking, no fingerprinting).
• Cookie consent -- Only one functional cookie is used (authentication), which is exempt from consent requirements under GDPR as it is strictly necessary for the service.
• IP address hashing -- Visitor IP addresses are hashed before storage and never stored in raw form.
• EU email infrastructure -- Mailgun EU (Frankfurt) keeps email data within the EU.
• Self-hosted fonts in funnels -- Funnel step fonts are self-hosted, avoiding external requests to Google Fonts.

15. Legal Pages (Admin Configuration)

Configure your legal pages in Settings > Account:

• Impressum -- Required in many EU countries. Displayed in the site footer.
• Privacy Policy (Datenschutz) -- Your data protection policy. Linked in the footer.
• Terms of Service -- Your terms and conditions.

These pages support the full rich text editor with formatting, links, and images.

16. Technical Security Details

• All API requests are authenticated with JWT tokens stored in HttpOnly cookies.
• Passwords are hashed with PBKDF2 before storage.
• Device trust system tracks trusted devices for enhanced security.
• Rate limiting is applied to authentication and API endpoints.
• CORS headers restrict API access to the configured domain.
• All traffic is served over HTTPS via Cloudflare.

17. Related Legal Documents

• Terms and Conditions
• Refund Policy
• Impressum / Legal Disclosure
• Platform Documentation

18. Changes to This Policy

We may update this privacy policy from time to time. Material changes will be communicated through the platform. The "Last updated" date at the top of this document indicates when the most recent revision was made.