Legal
Privacy information for aixi convert+share
This information supplements the general privacy policy of aixi Projektentwicklung GmbH, Wipplingerstrasse 10, 1010 Vienna, Austria, e-mail office@aixi.com, with the processing operations of the aixi convert+share service. The controller within the meaning of the GDPR is aixi Projektentwicklung GmbH; full company details can be found in the imprint.
Uploaded images
Image files you upload for conversion are processed on our servers solely for that purpose and are neither analysed for their content nor disclosed to third parties. The legal basis is performance of a contract pursuant to Art 6(1)(b) GDPR. Without registration, converted files are deleted automatically and irrevocably 24 hours after creation; for registered users, after one week. Registered users can also delete their files early at any time in the dashboard.
Metadata in images
To protect your privacy, the service removes EXIF metadata, in particular location data and device information, from converted images by default. You can expressly enable the retention of metadata before conversion.
Guest use and daily limit
To enforce the daily limit for unregistered use, the IP address is processed exclusively as a salted, non-reversible hash value and never stored in plain text. The hash values are deleted automatically after 24 hours at the latest. The legal basis is our legitimate interest in preventing abuse pursuant to Art 6(1)(f) GDPR.
Account data
Upon registration we process your e-mail address, a password hash, the time of your consent to the terms of use and, if enabled, the secret for two-factor authentication. This data is processed for the provision of your account pursuant to Art 6(1)(b) GDPR and deleted upon account deletion.
Share links, albums and QR codes
Share links for images and albums contain random tokens and are accessible to anyone who knows the link until expiry. QR codes are generated locally in your browser. Please share links only with intended recipients.
No external services, cookies
The service loads no fonts, scripts or other content from third-party servers. Only technically necessary cookies are used, namely for sign-in, security checks and your language preference. No tracking or advertising cookies are set.
Blocking of content and accounts
In the event of breaches of the terms of use, individual content, albums or accounts may be blocked or deleted. In that case we process the data required to document the incident on the basis of our legitimate interest pursuant to Art 6(1)(f) GDPR.
Your rights
You have the right to access, rectification, erasure, restriction of processing, data portability and objection, as well as the right to lodge a complaint with the Austrian Data Protection Authority. Please direct requests to office@aixi.com.