Privacy
Kaino GmbH offers several product lines. Here you will find the privacy information for each product line.
Aegis: Privacy for AI
You can find the Aegis privacy policy at aegis-firewall.com/en/privacy.
Web hosting
The data-protection provisions for the website service (processing under Art. 28 GDPR, clause 9) are part of the website service contract terms.
This website (kaino.at)
This privacy policy explains which personal data we process on this website, for what purpose and on what legal basis. We process data in line with the General Data Protection Regulation (GDPR) and limit ourselves to what is necessary.
1. Controller
Kaino GmbH
Grabenweg 68
6020 Innsbruck
Austria
Email: hello@kaino.at
Phone: +43 512 411012
2. Which data we process and why
Contact form
When you use our contact form, we process the data you provide (name, email address, subject and message) as well as your IP address in order to handle and answer your enquiry. The legal basis is your consent and the performance of pre-contractual measures (Art. 6(1)(a) and (b) GDPR). We keep this data for as long as it is needed to handle your enquiry and delete it afterwards, unless statutory retention obligations apply.
Server log data
When the website is accessed, technically necessary data (including IP address, date and time, the page requested and browser type) is processed in server logs in order to provide the website securely and reliably. The legal basis is our legitimate interest in secure operation (Art. 6(1)(f) GDPR).
Cookies and consent
By default this website sets only one technically necessary entry that stores your cookie choice. Analytics or marketing cookies are only set after your explicit consent. Details are in our Cookie Policy.
3. Recipients and processors
To provide the website and deliver contact enquiries, we use carefully selected service providers (hosting, incoming email and, where activated, spam protection and web analytics). They process data only on our behalf and on the basis of data-processing agreements under Art. 28 GDPR. Any disclosure beyond this to third parties takes place only where we are legally required to do so. Specifically, we use the following processors:
Hosting (Hetzner)
Our website is hosted by Hetzner in Germany.
- Hetzner Online GmbH, Industriestr. 25, 91710 Gunzenhausen, Germany
- Purpose: hosting of the website and processing of the server log data (see the “Server log data” section above)
- Server location: Germany
- Data-processing agreement pursuant to Art. 28 GDPR in place
- Privacy policy: hetzner.com/legal/privacy-policy
Incoming email (mailbox.org)
Email addressed to us, including enquiries sent via the contact form, is received via mailbox.org.
- Heinlein Hosting GmbH (mailbox.org), Schwedter Straße 8/9A, 10119 Berlin, Germany
- Purpose: receiving and storing incoming email (including contact enquiries)
- Server location: Germany
- Data-processing agreement pursuant to Art. 28 GDPR in place
- Privacy policy: mailbox.org/en/data-protection
Spam protection (Cloudflare)
Where enabled, Cloudflare Turnstile checks entries in our contact form for automated abuse; the contents of your form entries (name, email address, message) are not transferred to Cloudflare. The legal basis is our legitimate interest in protecting the website against abusive automated use (Art. 6(1)(f) GDPR).
- Cloudflare, Inc., 101 Townsend St., San Francisco, CA 94107, USA
- Purpose: protecting the contact form against automated abuse
- Third-country transfer: USA (EU-US Data Privacy Framework, plus standard contractual clauses pursuant to Art. 46 GDPR)
- Data-processing agreement pursuant to Art. 28 GDPR in place
- Privacy policy: cloudflare.com/privacypolicy
Web analytics (Google)
Where activated, we use Google Analytics 4 only after your explicit consent given via the cookie banner (Art. 6(1)(a) GDPR; details and withdrawal in our Cookie Policy). You can withdraw a given consent at any time with effect for the future via the cookie settings.
- Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
- Purpose: reach measurement and web analytics
- Third-country transfer: data may be transferred to Google LLC, USA (EU-US Data Privacy Framework, plus standard contractual clauses pursuant to Art. 46 GDPR)
- Data-processing agreement pursuant to Art. 28 GDPR in place
- Privacy policy: policies.google.com/privacy
4. Storage period
We store personal data only for as long as it is necessary for the purposes stated above or as required by statutory retention periods. After that, the data is deleted.
5. Security
We take appropriate technical and organisational measures to protect your data, including encrypted transmission (TLS/HTTPS).
6. External links
This privacy policy does not apply to third-party websites we link to. The respective providers are responsible for their content and data protection.
7. Your rights
Under the GDPR you have the following rights:
- access to the data processed about you (Art. 15 GDPR),
- rectification of inaccurate data (Art. 16 GDPR),
- erasure (Art. 17 GDPR) and restriction of processing (Art. 18 GDPR),
- data portability (Art. 20 GDPR),
- objection to processing (Art. 21 GDPR),
- withdrawal of a given consent with effect for the future (Art. 7(3) GDPR).
To exercise your rights, a message to hello@kaino.at is enough.
8. Right to lodge a complaint
You have the right to lodge a complaint with a supervisory authority. In Austria this is the Austrian Data Protection Authority (Österreichische Datenschutzbehörde, dsb.gv.at).
9. Changes to this privacy policy
We update this privacy policy when our processing or the legal situation changes. The version published on this page at the time applies.
Last updated: 16 July 2026
