Website Privacy Policy

2. Scope

This policy applies only to the marketing site www.nixiai.ai. The signed-in Nixi AI web-app provides its own privacy policy inside the app (see /legal/nixi-ai-privacy-policy).

3. What data we collect and why

Anonymous usage data (coarse device class, browser family, country). We do not store your IP address or User-Agent. Used for aggregate site analytics and to detect errors.

Legal basis: legitimate interest in improving the service (Art. 6(1)(f) GDPR). Retention: 13 months.

Marketing-attribution cookies (only after you click "Accept" on the cookie banner). We use three first-party cookies to attribute campaigns: `nixi_sid` (session UUID), `nixi_ft` (first-touch UTMs and ad click IDs), `nixi_lt` (last-touch UTMs and ad click IDs).

Legal basis: consent (Art. 6(1)(a) GDPR; § 25 TTDSG). Retention: 12 months. You can withdraw consent anytime via the "Cookie settings" link in the footer.

Contact-form data (name, email, message). Used solely to respond to your enquiry.

Legal basis: performance of pre-contractual steps (Art. 6(1)(b)). Retention: until the request is resolved plus 12 months.

We do not collect health data, patient records, or other special-category data on this site.

4. Cookies & analytics

Analytics on this site is operated in-house. No third-party analytics provider, no cookies set or required for analytics. IP addresses and User-Agents are not stored; a daily-rotating one-way hash produces a short visitor token used only for unique-visitor counts.

On first visit, a cookie banner asks whether you want to allow marketing-attribution cookies. Until you click "Accept," no marketing cookies are set. Strictly necessary cookies (the consent preference itself, session security) may be set by the site without prior consent under § 25 TTDSG.

Cookies set on this site, in full:

• `nixi_consent`, strictly necessary. Stores your cookie-banner choice ("accepted" or "declined"). Retention: 12 months.
• `nixi_sid`, marketing-attribution, set only after "Accept." Session UUID. Retention: 12 months.
• `nixi_ft`, marketing-attribution, set only after "Accept." First-touch campaign attribution (UTMs, `gclid`, `li_fat_id`, `msclkid`, `fbclid`). Retention: 12 months.
• `nixi_lt`, marketing-attribution, set only after "Accept." Last-touch campaign attribution. Retention: 12 months.

No tracking or advertising cookies from third parties are loaded.

5. Hosting & international transfers

The site and its analytics are hosted on EU infrastructure. No personal data is transferred outside the EU.

6. Your rights

Under GDPR you may request: access, rectification, erasure, restriction, data portability, or objection to processing. You can also file a complaint with your local supervisory authority (e.g. HBDI, Hesse).

Contact us at hello@nixiai.ai. We respond within 30 days.

7. Security measures

Traffic between your browser and our servers is encrypted via TLS 1.2+. We maintain industry-standard safeguards against unauthorised access.

8. Contact & Data Protection Officer

9. Changes

If we change this policy, we will update the date above and, for material changes, display a notice on the site.