Privacy policy (revDSG & GDPR)

Controller
LLM Optimizeation Ready
Hünenbergerstrasse 8, 6330 Cham, Switzerland
Email: privacy@llmoready.com
Website: llmoready.com

Scope
This privacy policy explains the type, scope, and purposes of processing personal data when using our website, our SaaS platform (“LLMO Ready”), and related services. It complies with the Swiss Federal Act on Data Protection (revDSG) and – where applicable – the EU General Data Protection Regulation (GDPR).

Definitions
“Personal data” means any information relating to an identified or identifiable natural person. “Processing” covers any handling of data (e.g. collection, storage, use, disclosure, deletion). “Processors” are service providers that process data on our behalf.

1. Categories of data processed

• Usage/meta data: IP address, device/browser information, access data, log files, preferred language, interactions on the website.
• Account & contract data: Name, company, position, address, billing address, email, login data, subscription plan, contract and billing information.
• Communication data: Contents of support requests, emails, forms, attachments if applicable.
• Payment data: Payment method, transaction ID, billing status (processed via payment providers; we do not store full card details).
• Content/configuration data: Product/catalog data provided by you, settings, logs within the service.

2. Purposes of processing

1. Provision of the website & SaaS platform, performance of pre-contractual measures, contract fulfilment.
2. Account creation, authentication, access management (user and role management).
3. Billing & payment processing, including compliance with statutory retention duties.
4. Support & communication, handling of inquiries, incident handling.
5. Security & stability, fraud prevention, abuse prevention, logging of system events.
6. Product improvement, analysis of anonymised usage data (no personal profiling).
7. Legal enforcement, establishment, exercise, or defence of legal claims.

3. Legal bases (if GDPR applies)

• Art. 6 para. 1 lit. b GDPR: contract performance/pre-contractual measures (registration, usage, billing).
• Art. 6 para. 1 lit. c GDPR: legal obligation (tax/commercial law).
• Art. 6 para. 1 lit. f GDPR: legitimate interests (security, product improvement, fraud prevention).
• Art. 6 para. 1 lit. a GDPR: consent (e.g. cookie consent, optional communication).
• Under revDSG we process personal data based on necessity for contract performance, consent, or overriding interests.

4. Recipients & processors

We use carefully selected processors (e.g. hosting, email/newsletter, payment service providers, monitoring/status, error tracking). They process data solely on our instructions, are contractually bound (including confidentiality, data security, sub-processing), and are regularly audited.

The current list of our processors (“sub-processors”) can be accessed at llmoready.com/subprocessors.

5. Data transfers to third countries

If processing takes place in countries without an adequate level of data protection, we implement appropriate safeguards (usually EU standard contractual clauses and supplementary measures). Copies are available on request via privacy@llmoready.com.

6. Storage duration

We process personal data only as long as necessary for the purposes outlined above or as required by law. Contract and billing data are retained in line with statutory periods (usually 10 years in Switzerland and up to 10 years under EU law). Afterwards, data are anonymised or deleted.

7. Mandatory information

Specific data are required to register or provide our services. Without these details, account creation or service delivery is not possible.

8. Cookies & similar technologies

We use necessary cookies (e.g. session/CSRF) and – with consent – optional cookies/local storage for analytics or convenience. A consent banner allows you to manage and withdraw choices. Details: llmoready.com/cookies.

9. No automated individual decision-making

We do not conduct automated decision-making with legal effect. No profiling for marketing purposes.

10. Data security

We implement appropriate technical and organisational measures (encryption in transit/at rest, access restrictions, role management, backup/recovery, logging, hardening, least privilege).

11. Minors

Our offering targets business customers (B2B). We do not intentionally process data of minors.

12. Your rights

Depending on applicable law (revDSG/GDPR), you have rights to access, rectification, deletion, restriction, data portability, and objection to processing based on legitimate interests. You may withdraw consent at any time with future effect. Contact: privacy@llmoready.com. Complaints: Switzerland: Federal Data Protection and Information Commissioner (FDPIC); EU/EEA: competent supervisory authority at your place of residence, work, or alleged infringement.

13. Changes

We may amend this policy if processes or legal requirements change. The current version always applies.

Effective: 01.10.2025 · Version 1.0