droidcorp.de Privacy Policy

Last Updated: 21 September 2025

This Privacy Policy explains how Also Probably LLC (dba “droidcorp.de”) (“droidcorp.de,” “we,” “us,” “our”) collects, uses, shares, and protects personal data when you use our website, dashboard, and AI chatbot services (the “Service”).

1. Who We Are (Controller)

Also Probably LLC (dba droidcorp.de) is the data controller for personal data processed through the Service, unless stated otherwise in this Policy or in a client-specific agreement.

2. What We Collect

• Account Data: Name, email address, company details, billing information you provide when creating or managing an account.
• Client Uploaded Data: Content you upload or connect for chatbot training/knowledge (e.g., documents, URLs).
• End-User Interaction Data: Information generated when users interact with our or client chatbots, including chat content, timestamps, IP address, browser/OS information, approximate location derived from IP, and technical diagnostics.
• Report Request Data: Information provided to request an LLM Presence Report (e.g., email, company name, website URL, optional notes). We generate a unique Report ID and store request metadata.
• Log and Diagnostic Data: Server and application logs, event metadata, and security telemetry (e.g., error traces, delivery/bounce/complaint events for emails).
• Cookies/Similar Technologies: We use essential cookies and similar technologies necessary to operate the Service (e.g., session management, security, fraud prevention). We do not use third-party advertising cookies.

3. How We Use Personal Data (Purposes & Legal Bases)

• Provide and improve the Service (operate chatbots, generate reports, maintain infrastructure, provide support). Legal basis: performance of a contract or pre-contractual steps (Art. 6(1)(b) GDPR) and our legitimate interests in operating a secure, reliable service (Art. 6(1)(f) GDPR).
• Transactional communications (e.g., one-time “report ready” or error notifications for requested reports). Legal basis: performance of a contract (Art. 6(1)(b) GDPR).
• Security, abuse prevention, and quality assurance (monitoring, logging, rate limiting, email bounce/complaint handling, incident response). Legal basis: legitimate interests (Art. 6(1)(f) GDPR).
• Compliance (tax/accounting record-keeping, responding to lawful requests). Legal basis: legal obligations (Art. 6(1)(c) GDPR).
• Optional features with consent (where applicable). Legal basis: consent (Art. 6(1)(a) GDPR). Where we rely on consent, you may withdraw it at any time without affecting the lawfulness of processing based on consent before withdrawal.

4. One-Time Transactional Emails

When you request an LLM Presence Report, we send a one-time transactional email to deliver your report or notify you about processing status. These emails are not marketing, contain clear sender identification, and include the request timestamp and Report ID. We track delivery, bounce, and complaint events to maintain service quality and suppress problem addresses.

5. Sharing and Sub-Processors

We use trusted service providers (“sub-processors”) to help deliver the Service. Typical categories include:

• Cloud hosting and infrastructure (e.g., application hosting and storage).
• Email delivery (e.g., transactional email sending and event processing).
• AI/ML and code execution platforms (for chatbot processing and custom code execution).
• Payment processing (if you purchase paid services).

We remain responsible for our sub-processors. Where required, we implement appropriate data processing agreements and safeguards (including Standard Contractual Clauses for international transfers). Current core providers include, among others: Render.com (application hosting), Amazon Web Services (including Amazon SES for email delivery), TIXAE CORE LIMITED (AI processing), and Replit (custom code hosting/execution). We may update providers as our Service evolves.

6. International Data Transfers

We may process personal data in the United States, the European Union/EEA, New Zealand, or other countries where our providers operate. Where personal data is transferred from the EU/EEA or UK to a country without an adequacy decision, we rely on appropriate safeguards such as the European Commission’s Standard Contractual Clauses and complementary measures as needed.

7. Data Retention

• Account Data: Retained while your account is active and as needed to comply with legal obligations or establish/defend legal claims.
• Client Uploaded & End-User Interaction Data: Retention is limited to what is necessary for the Service and governed in part by our sub-processors’ technical retention schedules and client configuration. Where feasible, we enable client-level controls to delete or export data.
• Report Request Data: Retained for 30 days to process and deliver requested reports, then deleted. Resulting report artifacts may be retained for up to 90 days for delivery verification and support.
• Log and Diagnostic Data: Typically retained up to 30–90 days for security, troubleshooting, and service-quality purposes, unless a longer period is needed for an investigation or legal obligation.

8. Your Privacy Rights

Depending on your location, you may have rights to access, rectify, erase, restrict or object to processing, and to data portability. You also have the right to lodge a complaint with a supervisory authority (for EEA residents, a Data Protection Authority in your member state). To exercise your rights, contact us using the details below. We may need to verify your identity before responding.

9. Security

We implement technical and organizational measures designed to protect personal data, including encryption in transit, access controls, network security, event monitoring, and vulnerability management. No system is completely secure; we continually improve our safeguards and investigate incidents, notifying affected users and regulators when required by law.

10. Children

The Service is not intended for children under the age of 16, and we do not knowingly collect personal data from children under 16. If you believe a child has provided personal data, please contact us so we can delete it.

11. Changes to This Policy

We may update this Policy from time to time. The “Last Updated” date above reflects the most recent changes. If changes materially affect your rights or how we process personal data, we will provide additional notice where required.

12. Contact

For questions or requests regarding this Policy or your personal data, contact:

Also Probably LLC (dba droidcorp.de)
2880W Oakland Park Blvd Suite 225C
Oakland Park, FL 33311, USA
Email: alex@droidcorp.de