← BACK_TO_SYSTEM

Privacy Policy

Privacy according to GDPR

1. Data Controller

Responsible for data processing on this website is:


CompassAI

c/o IP Management #8281

Ludwig-Erhard-Straße 18

20459 Hamburg

Germany


E-Mail: studio@compassai.io

2. Collection and storage of personal data as well as type and purpose of its use

When visiting the website:

When accessing the ReelKit Web App (operated by CompassAI), information is automatically sent to our website's server by the browser used on your device. This information (e.g., IP address, date and time of the request, browser used) is temporarily stored in a so-called log file. The processing is carried out in accordance with Art. 6 Para. 1 lit. f GDPR to ensure a smooth connection setup and system security.


When using the app (In-Memory Processing):

ReelKit acts as a stateless, high-performance engine. When you input topics, this data is sent directly via secure interfaces to our partner AI models (Google Gemini, Anthropic Claude). This processing (text inputs) occurs exclusively in-memory. We do not permanently store your queries or generated content on our own servers. The processing is carried out for the fulfillment of a contract (provision of the tool) in accordance with Art. 6 Para. 1 lit. b GDPR.

3. Hosting (Vercel)

Our website is hosted by Vercel Inc., 440 N Barranca Ave #4133, Covina, CA 91723, USA. When you visit our website, Vercel collects various log files including your IP addresses. Vercel is used on the basis of Art. 6 Para. 1 lit. f GDPR. We have a legitimate interest in the most reliable representation of our website. We have concluded a Data Processing Addendum (DPA) with Vercel to ensure GDPR-compliant processing.

4. SSL/TLS Encryption

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content. You can recognize an encrypted connection by the fact that the address line of the browser changes from "http://" to "https://" and by the lock symbol in your browser line.

5. Note on Data Transfer to the USA

Our tools integrate APIs from Google and Anthropic. Data processing may occur on servers located in the USA. We ensure compliance through the use of Standard Contractual Clauses (SCCs) approved by the EU Commission, ensuring that your data is handled according to European data protection standards even when processed abroad.

6. Cookies & Local Storage

This app does not use tracking cookies, analytics pixels, or similar marketing technologies. We only use local storage in your browser (e.g., `reelkit-lang`) to save your language preferences (EN/DE). This is technically necessary (Art. 6 Para. 1 lit. f GDPR).

7. Your Rights (Data Subject Rights)

You have the right:

  • to request information about your processed personal data in accordance with Art. 15 GDPR.
  • to demand the correction of incorrect data in accordance with Art. 16 GDPR.
  • to request the deletion of your data in accordance with Art. 17 GDPR.
  • to demand the restriction of processing in accordance with Art. 18 GDPR.
  • to receive your data in a structured format (data portability) in accordance with Art. 20 GDPR.
  • to revoke your consent at any time in accordance with Art. 7 Para. 3 GDPR.
  • to lodge a complaint with a supervisory authority in accordance with Art. 77 GDPR.