Skip to Content

Privacy Policy

We want you to understand how we collect, use, and disclose personal data (information that identifies you as an individual) on our website. This policy also informs you about your rights regarding the personal data you provide to us.

Responsible Party:

AAI Innovations GmbH

Franklinstraße 26b, 10587 Berlin

Commercial Register: Munich HRB 231934

Managing Director: Intakhab Mehboob Khan

What is personal data?

Personal data is any information relating to an identified or identifiable natural person. This includes all data that identifies you as an individual or makes you identifiable, such as name, postal address, telephone number, e-mail address, IP address, etc.

How do we use personal data and what are the legal bases?

When you visit our website, certain information is automatically collected and stored:

  • Address (URL) of the accessed page and the previously visited page
  • Web browser and version
  • Operating system
  • Host name and IP address of the device used to access the site
  • Unique device identifiers (UDIDs)
  • Country, date, and time

As a standard, web server log files are stored for 1 day and will be deleted automatically. We do not pass this data to third-parties.

Further personal data may be collected depending on your interaction with AAI, for example:

  • First name and surname;
  • E-Mail address;
  • Company and job position;
  • Country and city.

Purposes of processing include:

  • Providing you with requested information, products, and services
  • Communicating with you and responding to inquiries
  • Processing applications and recruitment procedures
  • Improving our website layout, services, and products

Legal bases for processing:

  • Contractual necessity (Art. 6(1)(b) GDPR)
  • Legitimate interests (Art. 6(1)(f) GDPR), e.g. recruitment assessments, site security
  • Consent (Art. 6(1)(a) GDPR), e.g. for newsletters, cookies, or recruitment data where applicable

We ensure that our legitimate interests are always balanced against your rights.

Administrative and internal purposes

We may use your data to improve our site, services, and products, and to ensure that our website is presented in the most effective manner for you and your device.

Recruitment

We process the personal data you provide as part of your application (e.g. CV, cover letter, contact details, career history, qualifications) to manage and conduct the recruitment process. The legal basis is your consent, Art. 6(1)(b) GDPR, and, where applicable, § 26 BDSG.

Your data will only be shared with employees directly involved in recruitment (HR and relevant managers). External service providers (e.g. applicant management software) may process data on our behalf under strict contractual obligations.

If your application is unsuccessful, your data will be deleted no later than six months after the recruitment process ends, unless you consent to longer retention (e.g. for future opportunities) or longer storage is required by law.

You have the right to request access, rectification, deletion, restriction of processing, and portability of your data, and the right to withdraw consent at any time with future effect.

Principles of processing (Art. 5 GDPR)

We process your data according to the following principles:

  • Lawfulness, fairness, transparency
  • Purpose limitation (specific, explicit, legitimate)
  • Accuracy (up-to-date and correct)
  • Data minimisation (adequate, relevant, limited to necessity)
  • Integrity and confidentiality (secure processing)
  • Storage limitation (limited retention and deletion once no longer needed)

Data sharing

We will never sell your data. In limited cases, we share it with trusted service providers under strict safeguards to ensure security and confidentiality.

Web hosting: Our site is hosted by Odoo S.A. (Belgium) with secure, EU-based servers. A Data Processing Agreement under Art. 28 GDPR is in place.

Third-party services: We may use providers for customer database hosting or advertising. Cookies and pixels may be used to provide relevant content.

Cookies and Consent Management

You can accept, reject, or customise cookies through our banner on first visit. You may withdraw or adjust your preferences anytime via the “Cookie Settings” link.

  • Essential cookies: Necessary for site functionality (Art. 6(1)(f) GDPR)
  • Analytics cookies: For site usage analysis, only with consent (Art. 6(1)(a) GDPR)
  • Marketing cookies: For personalised content/ads, only with consent (Art. 6(1)(a) GDPR)

Social Media (LinkedIn)

We use a simple link (not a plugin) to our LinkedIn page. No data is transmitted unless you click the button. Please see LinkedIn’s Privacy Policy for details.

Contact and Support Forms

By submitting a form, you consent to us processing the information you provide for the purpose of responding to your request (Art. 6(1)(a) GDPR). Data is transmitted securely and deleted after 3 months, unless needed longer for the purpose. You may withdraw your consent at any time by emailing dsb@automotive-ai.com.

Posts and Comments

When commenting on our blog, we store your comment, chosen name, time of submission, optional email, and IP address. This ensures we can take action in case of legal violations. Comments remain stored until deleted by you or for legal reasons. Legal basis: consent (Art. 6(1)(a) GDPR).

Download of Research Materials

To access downloads, registration is required. Processing is based on your consent (Art. 6(1)(a) GDPR), which you may withdraw at any time.

Google reCAPTCHA / YouTube

Details on these third-party integrations, their purposes, and legal bases (consent and standard contractual clauses for transfers) remain as in your draft.

Data from Sensor Vehicles

AAI uses sensor-equipped vehicles for development and testing. Data (including number plates and pedestrians) is anonymised directly on the device. Processing is based on legitimate interest (Art. 6(1)(f) GDPR). No further use of raw personal data occurs.

Data Retention

We only retain personal data as long as necessary for the purposes described, or as required by law. Data is deleted or restricted once no longer needed.

Security

We apply appropriate technical and organisational measures to protect data. SSL/TLS encryption is used on our website.

Your Rights under GDPR

You have the right to:

  • Access, rectify, or delete your data
  • Restrict or object to processing
  • Data portability
  • Lodge a complaint with a supervisory authority

Contact

Data Protection Officer: dsb@aai-innovations.com | +49 176 248 329 68

General enquiries: info@aai-innovations.com

We reserve the right to update this Privacy Policy. The Privacy Policy was last updated on 07.04.2025.