Esven Gülsen & Sakizli Furkan Red Tincture GbR
Leopoldstr 31, 80802 München, Germany
Email: furkan.sakizli@redtincture.de
Phone: +49 1590 194 386
Authorized Representatives: Partners Furkan Sakizli, Gülsen Esven
We process personal data in accordance with the following legal bases under GDPR:
We take appropriate technical and organizational measures to ensure a level of security appropriate to the risk, in accordance with legal requirements, taking into account the state of the art, implementation costs, and the nature, scope, context, and purposes of processing.
Measures include in particular securing confidentiality, integrity, and availability of data by controlling physical and electronic access to data, as well as access, input, disclosure, ensuring availability, and separation.
TLS/SSL Encryption (HTTPS): We use TLS/SSL encryption technology to protect data transmitted via our online services from unauthorized access.
IP Address Shortening: Where IP addresses are processed by us or service providers and technologies used, and processing of a complete IP address is not necessary, the IP address is shortened (IP masking).
We delete personal data we process in accordance with legal provisions as soon as underlying consents are revoked or no further legal bases for processing exist. This applies to cases where the original processing purpose ceases or data is no longer needed.
General retention periods under German law:
As a data subject under GDPR, you have the following rights:
We process user data to provide our online services. For this purpose, we process the user's IP address, which is necessary to deliver content and functions of our online services to the user's browser or device.
Collection of Access Data and Log Files: Access to our online offer is logged in the form of "server log files." Server log files may include the address and name of retrieved web pages and files, date and time of retrieval, transferred data volumes, notification of successful retrieval, browser type and version, user's operating system, referrer URL, and generally IP addresses and the requesting provider.
Hosting: Our website is hosted on Vercel. The hosting services serve to provide the following services: Infrastructure and platform services, computing capacity, storage space and database services, security services, and technical maintenance services.
We use cookies in accordance with legal requirements. We obtain prior consent from users where required. Where consent is not necessary, we rely on our legitimate interests. This applies when storing and reading information is essential to provide explicitly requested content and functions.
Types of Cookies:
Users can revoke given consents at any time and object to processing in accordance with legal requirements, including through privacy settings of their browser.
When contacting us (e.g., by mail, contact form, email, telephone, or via social media) and within existing user and business relationships, information of inquiring persons is processed to the extent necessary to respond to contact inquiries and any requested measures.
Our website offers a chat function whose answers are generated by a large language model (LLM) — an artificial intelligence system. In accordance with the transparency obligations of Art. 50 of the EU Artificial Intelligence Act (Regulation (EU) 2024/1689), we inform you that when using this chat you are interacting with an AI system, not with a human. This is also indicated directly at the chat input field.
When you send a message, its text content is transmitted via our server to an external AI provider (processor) solely to generate a reply. Requests are proxied through our server — your IP address and device identifiers are not shared with the AI providers. We do not store chat content on our servers, do not create user profiles from it, and do not use it to train AI models.
Where data is transferred to providers in the USA, the transfer is safeguarded under Art. 46 GDPR by the EU-U.S. Data Privacy Framework and/or standard contractual clauses. Providers may retain requests for a short period for abuse prevention in accordance with their policies; details can be found in the linked provider documents.
Processing is based on Art. 6(1)(b) GDPR (provision of the chat function you request) and Art. 6(1)(f) GDPR (legitimate interest in operating an efficient, secure AI assistant). Chat content is processed transiently and is not retained by us after the reply is delivered.
We ask you to regularly inform yourself about the content of our privacy policy. We adapt the privacy policy as soon as changes in data processing we carry out make this necessary. We will inform you as soon as changes require your cooperation (e.g., consent) or other individual notification.
Last updated: July 2026