Privacy at SIMOSphere AI

A plain-language summary of how this site and the SIMOSphere AI platform behind it handle personal data. The binding legal text lives at simosphereai.com/datenschutz; this page is the operational explanation.

Where data lives

All inference traffic and all account data sits on infrastructure located in the European Union (Germany). We do not transfer personal data into third countries unless a customer explicitly enables BYOK routing to a non-EU upstream provider. In that case the dependency is documented in the AVV and the operator (you) remains responsible for the upstream contract.

What this onboarding site collects

  • Form input when you start a registration: email address, password (hashed via Argon2id), chosen plan, optional company name.
  • HTTP request metadata (IP address, user agent, referrer) for fraud prevention, rate limiting, and aggregate analytics. Stored in Cloudflare and our application logs.
  • A locale cookie (NEXT_LOCALE) so the language switcher remembers your choice. No tracking identifier.

We do not use third-party analytics that profile individuals. No Google Analytics, no Meta Pixel, no LinkedIn Insight Tag. Server logs are kept for 30 days and then erased.

What the inference platform processes

The /v1 and /v2 API surfaces process whatever payload your client sends. By default the gateway logs only metadata (timestamp, model id, token counts, latency). Full request and response bodies are retained only when a tenant explicitly enables audit-mode, in which case retention defaults to 90 days. PII redaction can be turned on per tenant to scrub email addresses, phone numbers, and German personal identifiers before the prompt reaches the model.

We sign Auftragsverarbeitungsverträge (Art. 28 GDPR) free of charge for paying tenants — request via [email protected].

Your rights

Per Art. 15–22 GDPR you can request access, correction, erasure, restriction, portability, or object to processing of your personal data. Send your request to [email protected] and we will respond within 30 days. Data portability exports are delivered as JSON.

You always have the right to lodge a complaint with the competent supervisory authority (for SIMO GmbH that is the Bayerisches Landesamt für Datenschutzaufsicht, Promenade 18, 91522 Ansbach).

Controller

SIMO GmbH, Würzburger Str. 152, 63743 Aschaffenburg, Germany. HRB 15769 AG Aschaffenburg. Contact: [email protected].