Privacy Policy

Last Updated

Last updated: December 29, 2025

Introduction

Transparent handling of personal data is very important to us. This privacy policy provides information about which personal data we collect, for what purpose, and to whom we share it. We regularly review and update this privacy policy to ensure the highest level of transparency.

The purpose of this privacy policy is to inform you about the processing of your personal data that we collect when you visit our website. Our data protection practices comply with the legal provisions of the Swiss Federal Act on Data Protection (FADP) and the EU General Data Protection Regulation (GDPR). This privacy policy serves to fulfill the information obligations under the FADP and the GDPR, as found in Art. 19 et seq. FADP and Art. 13 et seq. GDPR.

Owner / Data Controller

The data controller within the meaning of Art. 5 lit. j FADP or Art. 4 No. 7 GDPR is the person who alone or jointly with others determines the purposes and means of processing personal data. The controller under Art. 4 No. 7 GDPR is also the recipient of personal data within the meaning of Art. 4 No. 9 GDPR. Any third-party recipient will be identified separately.

With regard to our website, the owner and data controller is:

dinovo GmbH
Im Holzacher 5
8413 Neftenbach
Switzerland
Email: sven@svenroth.ai
Phone: +41 43 883 02 02

Services We Use

  • Webflow
  • Hubspot CRM
  • Google Tag Manager
  • Google-Ads
  • Google Ads Conversion Tracking
  • Linkedin-Ads
  • Cookie-Script
  • Microsoft 365

General Principles

What data do we collect from you and from whom do we receive this data

  • Personal Metadata (Name, Address, etc.);
  • Contact Informationen (Mobile, E-Mail, etc.);
  • Online Identification (e.g. Cookie, IP Address);

We primarily process personal data that you provide to us or that we collect when operating our website. We may also receive personal data about you from third parties. This may include the following categories:

Under what conditions do we process your data?

We process your data in good faith and for the purposes set out in this privacy policy. We ensure transparent and proportionate processing. If, in exceptional cases, we are unable to comply with these principles, data processing may still be lawful if there is a justification. A justification may include:

  • your approval;
  • a contract or pre-contractual measures;
  • our legitimate interests, unless your interests override ours.

How can you withdraw your consent?

If you have given us consent to process your personal data for specific purposes, we will process your data within the scope of that consent, unless we have another legal justification. You may revoke your consent at any time by sending an email to the address stated in the imprint. Any data processing that has already taken place remains unaffected.

In which cases may we share your data with third parties?

a) Principle

We may rely on the services of third parties or affiliated companies and engage them to process your data (so-called data processors). Categories of recipients include in particular:

  • Accounting, trust, and auditing firms;
  • Consulting firms (legal, tax, etc.);
  • IT service providers (web hosting, support, cloud services, website design, etc.);
  • Payment service providers;
  • Providers of tracking, conversion, and advertising services.


We ensure that these third parties and our affiliated companies comply with data protection requirements and treat your personal data confidentially. We may also be required to disclose your personal data to government authorities.

b) Social Media

We may have embedded links to our social media channels on our website. This is always visible to you (typically through corresponding icons). When you click on the icons, you will be redirected to our social media channels. In this case, the social media providers learn that you are accessing their platform from our website. The social media providers may use the data collected in this way for their own purposes. We point out that we have no knowledge of the content of the transmitted data or its use by the operators.

c) Transfer Abroad

Your personal data may be transferred to companies abroad as part of order processing. These companies are subject to the same data protection obligations as we are. The transfer may take place worldwide. If the level of data protection does not correspond to that in Switzerland, we carry out a prior risk assessment and contractually ensure that the same level of protection as in Switzerland is guaranteed (e.g., by means of the new EU Commission Standard Contractual Clauses or other legally required measures). If our risk assessment is negative, we take additional technical measures to protect your data.

How long do we retain your data?

We store personal data only as long as necessary to fulfill the individual purposes for which the data was collected.

Data that we store when you visit our website is retained for twelve months. An exception is analytics and tracking data, which may be retained longer. We store contract data for longer periods as we are required to do so by law. In particular, we must retain business communications, concluded contracts, and accounting records for up to 10 years. To the extent that we no longer need this data from you to provide our services, the data is blocked and used only for accounting and tax purposes.

How do we protect your data?

We will keep your data secure and take all reasonable measures to protect your data from loss, access, misuse, or alteration.

Our contractual partners and employees who have access to your data are required to comply with data protection regulations. In some cases, it may be necessary for us to forward your requests to companies affiliated with us. In these cases too, your data will be treated confidentially.

Within our website, we use the SSL (Secure Socket Layer) method in conjunction with the highest level of encryption supported by your browser.

What are your rights?

a) Right to information

You may request information about the data we have stored about you at any time. Please send your request, along with proof of identity, to sven@svenroth.ai. You also have the right to receive your data in a commonly used file format if we process your data automatically and if:

  • You have given your consent to the processing of this data; or
  • You have disclosed data in connection with the conclusion or performance of a contract.

We may restrict or refuse to provide information or data if doing so conflicts with our legal obligations, our own legitimate interests, public interests, or the interests of a third party. The processing of your request is subject to the statutory processing period of 30 days. However, we may extend this period due to a high volume of requests, for legal or technical reasons, or because we need more detailed information from you. You will be informed of the extension in a timely manner, at least in writing.

b) Deletion and Rectification

You have the option to request the deletion or rectification of your data at any time. We may reject the request if we are required by law to retain the data for a longer period or without changes, or if your request conflicts with a legal obligation.

Please note that exercising your rights may conflict with contractual agreements and may have corresponding effects on the performance of the contract (e.g., early termination of the contract or cost consequences).

c) Legal Proceedings

If you are affected by the processing of personal data, you have the right to enforce your rights in court or to file a complaint with the competent supervisory authority. The competent supervisory authority in Switzerland is the Federal Data Protection and Information Commissioner: https://www.edoeb.admin.ch

Changes to the Privacy Policy

We may change this Privacy Policy at any time. The changes will be posted on svenroth.ai; you will not be notified separately.

Specific data processing operations

Website hosting and log file creation

When you visit svenroth.ai, certain data is automatically stored on our servers or on the servers of services and products that we use and/or have installed for the purposes of system administration, statistics, backups, or tracking. These include:

  • the name of your internet service provider;
  • Your IP address (under certain circumstances);
  • the version of your browser;
  • the operating system of the computer used to access the URL;
  • the date and time of access;
  • the website from which you accessed the URL;
  • the search terms you used to find the URL.

This data cannot be linked to specific individuals, and it is not combined with data from other sources. Log files are stored to ensure the website functions properly and to safeguard the security of our IT systems. This constitutes our legitimate interest. The data is stored only for as long as is necessary to achieve the purpose for which it was collected. Accordingly, the data is deleted upon the end of the respective session. The storage of log files is strictly necessary for the operation of the website; therefore, you have no option to object.

Webflow

We use the “Webflow” service provided by Webflow, Inc., 398 11th Street, 2nd Floor, San Francisco, CA 94103, USA (“Webflow”) to host and deliver our website, including the blog. Webflow is used to deliver page content, forms, and static assets (e.g., images, stylesheets, scripts); for which Webflow uses globally distributed content delivery networks (CDNs). As part of the provisioning process, technically necessary information transmitted automatically by your browser is processed on the server side, including IP address, date and time of access, URL/referrer, user agent (browser/OS), subpages accessed, and the amount of data transferred. This processing is necessary for the delivery and security of the website. Personal data may be transferred to the United States. Webflow bases such transfers on EU Standard Contractual Clauses (SCCs) or equivalent safeguards. Further information on the purpose, scope, and retention period, as well as on the sub-processors used, can be found in Webflow’s privacy policy.

Go Highlevel

We use GoHighLevel as a CRM and marketing automation platform (HighLevel Inc., Dallas, Texas, USA, or its relevant affiliates). GoHighLevel helps us manage contacts and customer relationships (e.g., form submissions, appointment bookings, newsletter sign-ups), send emails and SMS, run funnels and landing pages, and analyze the use of our content. Depending on the interaction, the following data may be processed for these purposes: Master data (e.g., name, email, phone, company), communication data and content, usage/interaction data (page views, sessions, clicks, form interactions, downloads), technical metadata (IP address, timestamps, user agent, referrer), and — for email and SMS communication — delivery and interaction data (opens, clicks, replies, bounces, opt-outs). For web analytics and the assignment of interactions to a contact, GoHighLevel uses cookies and similar technologies (including its external tracking script served via msgsndr.com, to recognize returning visitors and to link website interactions to a contact profile). We use non-technically necessary cookies exclusively with your consent. GoHighLevel processes data primarily in the United States; the transfer is based on appropriate safeguards (e.g., EU Standard Contractual Clauses) or other permissible legal grounds. As a data processor, GoHighLevel only has access to the extent necessary to perform the respective functions; a data processing agreement has been concluded with HighLevel Inc.

Plausible

We use Plausible Analytics as a privacy-friendly web analytics service (Plausible Analytics Ltd., Dublin, Ireland). Plausible helps us understand how our website is used (e.g., which pages are visited, how visitors arrive, on which devices) in order to improve our content and performance. Plausible is designed as a cookieless, privacy-first analytics tool: it does not use cookies, does not collect or store personal data, does not create persistent identifiers, and does not track visitors across websites or sessions. The following aggregated, non-identifying data may be processed for these purposes: Page URL, HTTP referrer, browser, operating system, device type, and country/region (derived from the IP address, which is not stored). Outbound link clicks and file downloads may additionally be counted as aggregated events. Plausible processes data exclusively within the European Union (servers located in Germany); no data is transferred to third countries. Because no personal data within the meaning of the GDPR is processed and no cookies or similar technologies requiring consent are used, no consent is required for this processing (legitimate interest, Art. 6(1)(f) GDPR, in the statistical analysis of our website). As a data processor, Plausible only has access to the extent necessary to perform the respective functions; a data processing agreement has been concluded with Plausible Analytics Ltd.

Google Tag Manager

For the management of website tags via an interface, we use the Google Tag Manager, a service provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google"). The Google Tag Manager itself (which implements the tags) is a cookie-free domain and does not process personal data. The service triggers other tags, which in turn may collect data. Google Tag Manager does not access this data. If deactivation has been carried out at the domain or cookie level, it remains in effect for all tracking tags implemented with Google Tag Manager.

Google-Ads

We use the Google Ads service on our website, an online advertising service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter "Google"). Google Ads enables us to display advertisements in Google search results and within the Google advertising network.

Google Ads Conversion Tracking

We use the "Google Ads" online advertising program on our website, and in this context, conversion tracking. Google Ads Conversion Tracking is an analytics service provided by Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google"). When you click on an advertisement placed by Google, a conversion tracking cookie is set on your device. These cookies have limited validity, do not contain personal data, and are therefore not used for personal identification. If you visit certain pages of our website and the cookie has not yet expired, Google and we can recognize that you clicked on the advertisement and were redirected to this page. The information obtained with the help of the conversion cookie is used to generate conversion statistics. You can prevent the storage of cookies by making the appropriate technical settings in your browser software. You can also deactivate personalized advertising in your Google advertising settings.

Linkedin-Ads

We use advertising services from LinkedIn on our website, a service provided by LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland ("LinkedIn"). LinkedIn Ads enable us to place targeted advertising based on users' interests and behavior. LinkedIn uses cookies and similar technologies to display ads based on your previous visits to our and other websites. This allows us to measure and optimize the effectiveness of our advertising measures. The information collected by LinkedIn Ads is anonymous to us, meaning we do not receive personal data of individual users. However, this data is stored and processed by LinkedIn, so that a link to the respective user profile is possible and LinkedIn can use the data for its own advertising purposes, in accordance with the LinkedIn Privacy Policy.

If you are a LinkedIn member and are logged into your LinkedIn account while visiting our website, the data collected by LinkedIn Ads will be linked to your LinkedIn account. The use of LinkedIn Ads serves the purpose of analyzing and optimizing the effectiveness of our advertising measures. Data processing is based on our legitimate interest in targeted advertising and the analysis of the impact and efficiency of this advertising.

Linkedin Insight Tag

We have integrated the LinkedIn Insight Tag on our website, a tool from LinkedIn, a service provided by LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland ("LinkedIn"). The LinkedIn Insight Tag enables us to collect information about visitors to our website, particularly about the type of LinkedIn features that visitors use and how they interact with these features. This tool helps us create targeted ads on the LinkedIn platform and measure the effectiveness of these ads. By using the LinkedIn Insight Tag, cookies are set on your device that enable the collection of pseudonymized data, such as the URL of the visited page, the referrer URL, the IP address (in shortened form), device and browser properties, and timestamps.

Cookie-Script

Our website uses Cookie-Script, a cookie consent and compliance service provided by Objectis Ltd. Cookie-Script helps us obtain and manage the consent of our users for cookies and online tracking in accordance with legal requirements. When you visit our website, Cookie-Script may collect information about your consent decisions and your interaction with the consent popup. This information is used to ensure that only the cookies and tracking technologies to which you have consented are activated on your device.

Microsoft 365

For various office and communication tasks, we use Microsoft 365, a service provided by Microsoft Corporation, One Microsoft Way, Redmond, WA 98052-6399, USA. Microsoft 365 offers a range of productivity tools, including email (Outlook), document storage (OneDrive), collaboration tools (Teams), and Office applications such as Word, Excel, and PowerPoint. When you contact us, for example by email, or when we share documents, these interactions are processed and stored via Microsoft 365. Our data is stored on Microsoft servers in Switzerland. Furthermore, Microsoft has implemented various security and privacy measures to protect the data of its customers.