Legal
Privacy Policy
This policy explains how we process personal data when you visit our website, contact us or enter into a business relationship with us.
1. Controller
Myna Technologies Jannis ErniJannis Erni
Lochäckerstrasse 25
8302 Kloten, Switzerland
Email: info@myna-ai.ch
We are the controller under the Swiss Federal Act on Data Protection (FADP) and, where applicable, the General Data Protection Regulation (GDPR).
2. Scope
This Privacy Policy applies to myna-ai.ch, communications with us, and our administration of prospects, customers, contracts and accounting.
It does not apply to personal data that customers process within their own MYNA Box. The relevant customer generally determines the purpose and means of that processing; details are governed contractually where required.
3. Website delivery
When you visit the website, technically necessary data is processed. This may include your IP address, date and time, requested address, amount of data transferred, referrer, browser, operating system, and error or security events.
This processing allows us to deliver the website, maintain stability, analyse errors and prevent misuse. Where the GDPR applies, it is based on our legitimate interest in operating a secure and functional website (Article 6(1)(f) GDPR).
Ordinary server and security logs are generally retained for no more than 30 days. If a specific security incident occurs, relevant logs may be retained until the investigation and enforcement of claims are complete.
4. Inquiries and communication
When you use the inquiry form or contact us by email, we process the information you provide. The form requests your first name, last name, company and email address. A box inquiry additionally includes the desired number of users and preferred commercial model.
To identify misuse, we may also evaluate the submission time, the time taken to complete the form, and an invisible honeypot field. We do not use an external CAPTCHA provider for this purpose.
We use these details to review and respond to your inquiry and to take steps toward a potential business relationship. Where the GDPR applies, this processing is based, depending on the context, on steps taken before entering into a contract (Article 6(1)(b) GDPR) or our legitimate interest in responding to business inquiries (Article 6(1)(f) GDPR).
We do not use form data for newsletters or general promotional campaigns. Any future newsletter would include a separate sign-up and unsubscribe process.
5. Customer administration and accounting
For advanced prospects and customers, we process the necessary master, contact, quotation, contract, invoice and payment data. This may include names, companies, business contact details, customer numbers, quotations, contracts, invoices, payments and accounting records required by law.
The purposes are preparing quotations, performing contracts, customer support, invoicing, accounting and compliance with legal obligations. Where the GDPR applies, this processing is based on Article 6(1)(b), (c) and (f) GDPR.
6. Service providers and recipients
We use carefully selected providers for hosting, email communication, transactional-message delivery, cloud infrastructure, customer administration, invoicing, accounting and IT support. They receive personal data only as required for their respective services and process it under contractual or legal obligations.
Other recipients may include public authorities, courts, fiduciaries, banks, insurers or professional advisers where disclosure is legally required or necessary to protect our rights.
7. International processing
Personal data is processed primarily in Switzerland and the EU/EEA. Certain IT or communication services may permit access from or processing in other countries, particularly the United States.
If the recipient country is not recognised by law as providing an adequate level of protection, we use appropriate safeguards, particularly recognised standard contractual clauses and any necessary supplementary measures, or rely on a statutory exception.
8. Retention
We retain personal data only for as long as necessary for the relevant purpose or to meet legal obligations.
- Inquiries that do not result in a customer relationship: generally up to three years after the last substantive contact.
- Contractual, invoicing and accounting records: generally ten years under applicable statutory retention duties.
- Server and security logs: generally no more than 30 days, subject to specific security incidents.
Longer retention may apply where required to establish, exercise or defend legal claims or to comply with mandatory law.
9. Cookies, local storage and tracking
The website currently does not use analytics tools, advertising pixels, session recording, embedded third-party content or cross-site tracking.
Your light or dark mode selection is stored as a functional preference in your browser's local storage. It remains on your device and is not read by us for analytics or advertising. We therefore do not currently display a cookie consent banner.
The fonts used by the website are served by the MYNA web server, so loading them does not establish a connection to an external font provider.
10. Your rights
Subject to applicable law, you may have the right to request access to your personal data, correction of inaccurate data, deletion, restriction of processing, disclosure or portability of certain data, and to object to certain processing. You may withdraw consent at any time with effect for the future.
To exercise your rights, contact info@myna-ai.ch. We may request information needed to verify your identity securely.
You may also lodge a complaint with the Swiss Federal Data Protection and Information Commissioner (FDPIC). Where the GDPR applies, you may also complain to a competent EU/EEA data protection authority.
11. Security and automated decisions
We use appropriate technical and organisational measures to protect personal data against loss, misuse, unauthorised access, alteration and disclosure. Absolute security cannot be guaranteed for electronic communications.
For the processing described here, we do not make decisions based solely on automated processing that produce legal or similarly significant effects, and we do not conduct high-risk profiling.
12. Changes
We may update this Privacy Policy when our processing activities or the law change. The version published on this page applies.