Effizientes Arbeiten schafft Raum für Fokus und Wachstum – gleichzeitig braucht jede Transformation strategische Führung und fachliche Orientierung. Transformation Working efficiently creates space for focus and growth – at the same time, every transformation needs strategic leadership and legal guidance. Team Leads & Organizational Developers You want to establish modern ways of working that combine people and technology within your team, department, or entire company. AITvocat supports you with, among other things: Use Case Analysis • Workflow Optimization and responsible Use of AI • Conceptualization of Human Oversight • Policies & Processes for internal AI Operations • AI Literacy • Coordination with IT, Data Protection, Compliance and Risk Management Procurement & Supplier Management You need clear structures for selection, contracts, and responsibilities along the supply chain. AITvocat supports you with, among other things: Selection and Award Procedures • Risk-based Supplier Due Diligence • Contract Analysis and Negotiation with Suppliers • Identification of relevant Compliance Risks and Courses of Action • Development of practical Processes and Documentation Standards along the Supply Chain Your bonus Upon request, you will gain access to an established cooperation network of experienced agent builders and technical specialists for optimal support that would otherwise be hard to find. < back Boost your efficiency Schedule your free initial consultation now and together we'll discover how you can successfully transform yourself for the future. Book free consultation

Why you want to work with AITvocat. Personal words As the founder of AITvocat, authenticity and honest commitment are very important to me. I am "nordic by nature" – and that shapes a person more than you might think. My sense of humor is as shallow as the land, my perseverance is storm-tested – and I have always enjoyed sailing. Why am I telling you this? Because sailing is exactly the image that describes how I structure the strategy and innovation advisory service at AITvocat. A good boat alone won't even get you out of the harbor. Neither is a sailor who only knows the sailing statutes, but has never felt real wind. And even the best technology cannot replace a feel for current, risk, and timing. Only the interplay among these will move you forward. And that, for me, is exactly how first-class advisory services in the technological field works. The Business A Business idea alone is not enough. Compliance alone is not enough. And certainly not just Technology. Real progress only comes when Business, Compliance, & Technology are considered together. The Strength My greatest strength is being a strategic mediator. Between Management, Regulations, IT, Product and Business. Between Innovation and Compliance. Between what you want – and what the digital regulation allows. Let's speak three languages at once: Business, Compliance and IT. This speeds up decision-making – massively. With AITvocat, you work cross-functionally and build bridges before others notice the gap. This ensures your visions and projects don't stall, but progress. Let's think in terms of possibilities, not black and white. With AITvocat you'll find room to maneuver where others paint stop signs. Let us show you ways to implement business ideas and projects in a compliant and commercially sound manner. Pragmatically, with clarity and common sense. Let's show enthusiasm where things get difficult. Let's join forces and get started exactly where others give up. Whether it's complex AI models, cloud architectures, information security, or data protection. AI and digital enthusiasm can be combined with a clear legal mindset, allowing us to translate technology requirements, data protection, and information security into understandable, business-oriented, and actionable solutions. Live your vision Schedule your free initial consultation now and we'll discuss together how Technology and Compliance can strengthen your business. Book free consultation

Als Inhaberin von AITvocat biete ich pragmatische, verständliche und praxisnahe Lösungen für Business, Technologie und Compliance. KI, Datenschutz und Informationssicherheit werden so aufbereitet, dass sie umsetzbar, skalierbar und gewinnbringend sind. Mit AI- und Digital-Enthusiasmus verbinde ich ein klares Legal Mindset – so werden Technologierecht, Datenschutz und Compliance zu Deinem Wettbewerbsvorteil. Dr. Stefanie Hagemeier "Simplicity is the highest level of perfection" (Da Vinci) This idea from a leading thinker of his time shapes my work: to make complex technologies and legal matters as clear as possible so that solutions remain pragmatic and not overloaded. Who I am and what I stand for. As the founder of AITvocat, authenticity and honest commitment are particularly important to me. I am “nordic by nature” and that has a stronger influence than you might think: My humor is as shallow as the country, my perseverance has been tested by storms – and I have always enjoyed sailing. Why am I telling you this? It is important to me to support startups, mediumsized businesses, and companies in shaping a future together where Business, Compliance, and Technology are considered holistically. Enthusiasm for AI and digital technology can be combined with a clear legal mindset, and technology requirements, data protection, and information security can be translated into comprehensible, entrepreneurial, and, above all, implementable solutions. For this you need three things, and that's exactly the connection I bring: Technical understanding Entrepreneurship Industry knowledge Career Passion since 2026 Practice & Deep Dive 2020-2025 Profession, Attorney-at-law 2017-2019 Legal traineeship & entry into the legal profession 2011-2014 Studies & Doctoral Focus 2005-2010 Founder of AITvocat Fully qualified lawyer (Volljuristin, GER) • Professional Speaker at conferences, seminars and industry events Tech company Inhouse Counsel • Head of IT Compliance Data Protection Officer • Information Security Officer International law firm Technology Transfer • Cloud & IT Business Trademark Law • Industrial Property Rights Digital Regulation • Copyright • Data Protection Certifications Information Security Officer - ISO27001 (Cert. No. Z-000/45318) AI Consultant certified Leadership Practitioner Languages German, English LinkedIn Publications Hagemeier, S., in: Möhring/Nicolini, UrhR, § 44b (Text and Data Mining), Verlag C.H. Beck Munich 2021 – 2024. Hagemeier, S., in: Möhring/Nicolini, UrhR, § 60d – 60h (Digital uses for teaching, science and research), § 137o (Transitional provisions), § 142 (Evaluations), Verlag C.H. Beck Munich 2018 – 2024. Bräutigam, P.; Hagemeier, S. IT Cyber Crime Regulation in Germany and Europe, in: ITech Law Survey “The Cyber Crime Regulations – Landscape of the World, itechlaw.org, 2019. Hagemeier, S.: The German Federal Film Board. An administrative and constitutional law analysis of the administrative organization for future amendment projects. Optimus Verlag, Feb. 2015. Hagemeier, S.: Google WLAN scanning from a criminal law and data protection perspective, in: HRRS 2/2011, 72-79. Schulz W.; Hagemeier, S., Power Shift in public communication, Friedrich Ebert Foundation, Political Academy, Media policy, Bonn, 2011. Engagement Women in Security & Privacy PANDA - Woman Leadership Network

AITvocat I Deine Strategie- & Innovationsberatung für AI & IT. Wir gestalten Deine Zukunft, indem wir Business, Compliance und Technologie zusammendenken, damit echter Fortschritt entsteht. Strategy & Innovation Advisory for AI & IT We shape your future by thinking about Business, Compliance and Technology together to create real progress. You want to understand how digital employees are changing your business. You have new business ideas using AI. You're already using some AI tools , but you haven't noticed the effect yet. You would rather disrupt yourself than be disrupted. You still find AI a bit scary , but you're ready to get started. Then you've come to the right place. Our Services Services Transformation Outsourcing IT or switching to AI or the cloud: Supplier management slows down when processes or requirements remain unclear and risk understanding is lacking. Sound familiar? + LEARN MORE Digital distribution AI-based commerce and AI-supported sales: sounds like the future for every business, but also treacherous if pitfalls remain invisible. + LEARN MORE Digital Marketing Digital innovations boost your business, but only if you properly manage AI-generated content, campaigns, and competitive practices. + LEARN MORE Strategy With the right strategy, governance and compliance become a competitive advantage without getting bogged down in excessive documentation or isolated processes. + LEARN MORE Structure Documents and processes are often complex. Without experience, you risk ending up with toothless paper tigers, hidden liability risks, and missed opportunities. Do you want more than just mountains of paperwork? + LEARN MORE Technologies Whether startup, mediumsized business or corporation: New technologies, apps, AI and cloud sound cool, but always raise complex questions. + LEARN MORE Your FIX and FLEX solutions for special challenges Expert-as-a-Service Our Services Through our collaboration, I enable your company to actively shape the future by thinking about Business, Compliance, and Technology in an integrated way. I want to share AI and digital enthusiasm I combine a clear legal mindset with translating technology law, data protection, and information security into understandable, business-oriented, and implementable solutions. In doing so, I not only advise clients but also act as a strategic sparring partner on equal footing. understandable - practical - solutionoriented Expertise Live your vision Schedule your free initial consultation now and we'll discuss together how Technology and Compliance can strengthen your business. Book free consultation

Imprint AITvocat GmbH Schwanenstrasse 4 8840 Einsiedeln Switzerland represented by Dr. Stefanie Hagemeier UID: CHE-453.154.750 HR-Nr.:CH-130.4.036.309-4 Contact Email : mail@aitvocat.com Telephone: +41 78 333 45 48 Responsible person for journalistic and editorial content Dr. Stefanie Hagemeier c/o AITvocat GmbH Schwanenstrasse 4 8840 Einsiedeln Switzerland Design and implementation Maida Hambo Image credits The images and graphics used on this website are AI-generated or AI-modified. Consumer dispute resolution / Universal arbitration body AITvocat GmbH is neither willing nor obligated to participate in dispute resolution proceedings before a consumer arbitration board.

Hier gibt es alle Beratungsfelder im Überblick. Schau vorbei. 1 Technologies 2 Transformation 3 Digital Distribution 4 Digital Marketing 5 Strategy 6 Structure Your FIX and FLEX solutions for special challenges Expert-as-a-Service

Digitale Innovationen boosten Deine Performance, Automation und kreative Kampagnen – gleichzeitig können versteckte AI-Inhalte und nicht datenschutzkonforme Kampagnen oder wettbewerbswidrige Praktiken Deine Reputation schädigen und teuer werden. Digital Marketing Digital innovations boost your performance, automation and creative campaigns - at the same time, hidden AI content and non-compliant campaigns or anti-competitive practices can damage your reputation and become expensive. Web presence & e-commerce manager You want to design your online presence, social media presence, and sales processes responsibly and in compliance with data protection regulations. AITvocat advises you on, among other things: Compliance for Sales Platforms, Customer Portals, Online Presences • Data Protection-compliant Marketing Automation and Tracking • Business-oriented Contract Processes for Online Contracts Content Creator AI can accelerate your ideation process and make you faster, but the content used can also pose risks to privacy rights, trade secrets, and licenses. AITvocat supports you with, among other things: Compliance regarding AI-generated or AI-modified Texts, Images, Videos, and other Formats • Policies and Processes for working with Copyrighted or Sensitive Data • Preparation of Fair and Competitive Content and Advertising Strategies • Risk Assessments in Rights and License Management Online marketer & product marketer You want to use AI tools and data-driven analytics to optimize campaigns, intelligent targeting, and personalized customer journeys. AITvocat supports you with, among other things: Use Case Analyses • Data protection-compliant Performance Measurement, e.g., for Customer Surveys, Test Groups, or Mockups • Compliance in Reference Customer Projects, Success Stories, and Testimonials • Compliance Processes for Product, Event, or Marketing campaigns • Coordination with Legal, Risk, and Compliance Departments Your bonus Upon request, you will gain access to an established cooperation network of experienced agent builders and technical specialists for optimal support that would otherwise be hard to find. < back Boost your creativity Schedule your free initial consultation now and we'll discover together, how you can successfully run legally compliant campaigns. Book free consultation

Technologies New technologies open up market opportunities – at the same time, complex legal questions arise surrounding software, artificial intelligence (AI) and cloud services. Software & App Developer You create apps, platforms or software solutions and want to implement market-ready and secure requirements correctly from the very beginning. AITvocat supports you with, among other things: Compliance by Design • Intellectual Property Protection • License Compliance (including Open Source) • App Store Requirements • Compliance in AI Coding • Workshops Cloud Service Providers You are a cloud service provider or planning to launch a new cloud model and value security and compliance. AITvocat supports you with, among other things: Compliance-by-Design • Hosting and international Data Transfers of Customer Data • Business-oriented Re-Design of licensing models, Migration and Cloud Switching Offers • Partner Relationships Product Teams & AI Service Providers You are a startup, medium-sized company or established company that develops AI products such as chatbots, machine learning models, robotics or data analysis solutions. AITvocat accompanies you throughout the entire AI lifecycle: Use Case Analysis • Potential Analysis • Inventory and Risk Assessment along design, training, inference and integration phases • Coordination with Data protection, Compliance and Risk Management Your bonus Upon request, you will gain access to an established cooperation network of experienced agent builders and technical specialists for optimal support that would otherwise be hard to find. < back Start into your vision Schedule your free initial consultation now and together we'll discover how you can successfully innovate your product. Book free consultation

In einer schnelllebigen Geschäftswelt können Abwesenheiten, Engpässe oder neue Projekte schnell zu Verzögerungen führen. Genau dann entfaltet eine externe, erfahrene Fachkraft ihre volle Wirkung: Sie bringt frische Energie ins Team, stabilisiert bestehende Strukturen und stärkt Entscheidungen, die bereits auf dem richtigen Weg sind – kurzzeitig, projektbezogen oder langfristig planbar. Expert-as-a-Service What is Expert-as-a-Service? In today's fast-paced business world, absences, bottlenecks, or new projects can quickly lead to delays. This is precisely when an experienced external professional truly shines: they bring fresh energy to the team, stabilize existing structures, and reinforce decisions that are already on the right track, whether for short-term, project-based, or long-term planning purposes. Expert-as-a-Service (Eaas) seamlessly closes this gap. An experienced strategical compliance advisor steps in precisely when your in-house counsel or project managers need more capacity, or when additional know-how can accelerate task completion in cases of increased legal complexity. How it works: The service can be booked monthly in advance starting from one (1) working day per week or more. This includes a quota of working hours for consulting, compliance review, short-term assessments, project support, etc. We can also arrange additional optional services or ad-hoc engagements outside of the EaaS retainer at any time. Your bonus No notice periods. You can flexibly adjust the number of hours and the level of support you need each month in advance or simply pause if you don't currently need assistance. Unused hours can be carried over to the following month, up to a maximum of five (5) working hours. < back Close your gap Schedule your free initial consultation now and we'll discuss, to what extent you need support. Book free consultation

AI und Automation können Vertrieb, Partnergeschäft und Kundenbindung massiv voranbringen – vorausgesetzt, Technologie, Kundenerlebnis und Prozesse greifen ineinander. Digital Distribution AI and automation can massively advance sales, partner business and customer loyalty – provided that technology, customer experience and processes are integrated. Sales directors and managers You want to drive lead generation, new customer acquisition, and customer retention in a data-driven, automated, and scalable way, and improve collaboration between sales and back office. AITvocat supports you with, among other things: Professional Optimization of AI-supported sales strategies • Business-oriented Contract Design for Customers, and De-escalation Management • Analysis for Upsell and Migration Potential • Sales Coaching including Argumentation Support for Customer Approaches • Coordination with Marketing, Product Management, and Legal Departments Partner Manager & Cooperations You want to build an efficient ecosystem of resellers, system integrators or implementation partners, or professionalize existing collaborations. AITvocat accompanies you, among other things, with: Preparation of Partner Sales Models and Go-to-Market Strategies • Negotiation Strategies • Decision-making regarding DRegulation, Data Protection, and Information Security • Business-oriented Process Design with Partners • Coordination with Legal, Risk, and Compliance Departments Your bonus Upon request, you will have access to an established network of experienced bar-admitted lawyers providing optimal legal advice that would otherwise be difficult to find. < back Increase your potential Schedule your free initial consultation now and together we'll find out how to use technologies effectively to leverage your sales potential. Book free consultation

General Terms and Conditions Version 01-01-2026 The following general terms and conditions govern the contractual basis of our collaboration. When referring to the advisors in charge, the company name is used below. For the client, we use or – more formally – . Together, we refer to us as the . 1. What Role AITvocat Does Play B2B: In order for AITvocat to enter into a business relation with you, you must act as a company or entrepreneur. AITvocat does not represent or advise consumers. Area of Expertise: AIT vocat provides modern strategy and innovation consulting, in particular in AI and cloud business development, compliance, and the use of new technologies. The focus lies on process and organizational management, governance, risk management, as well as business- and product-oriented advisory services in digital regulation, including the relevant EU regulatory frameworks, with a focus on artificial intelligence, digitalization, data protection, and information security. 2. What You Can Expect Diligence: AITvocat undertakes to perform the agreed services with the required level of professionalism and due care. However, AITvocat cannot and does not guarantee or promise any particular outcome or result. 3. What AITvocat Needs From You Transparency: In order for AITvocat to advise and support you actively, it needs complete and accurate information from you - not only at the beginning, but also on an ongoing basis throughout the collaboration. AITvocat may generally assume that the information you provide is correct. If you have previously shared information with AITvocat in a different context that is also relevant to your current matter, please make sure to explicitly inform the responsible advisor. Contact and Business Details: If anything changes - especially your contact details or business circumstances - please inform AITvocat immediately. AITvocat will apply the same level of diligence towards you. 4. Remuneration Fees: The fees owed are calculated based on the actual time spent at the agreed hourly rates. The time spent is recorded in units of 0.1 hours plus a 5% digital / expense allowance. Lawyer-as-a-Service (“LaaS”): TThe EaaS subscription can be booked on a monthly pre-paid basis, starting from a minimum service commitment of one (1) working day per week or any higher level you choose. The agreed monthly hour retainer may be used flexibly for consulting services, compliance reviews, short-notice assessments, project support, and other services offered. You may adjust the scope of the retainer on a monthly basis in advance, down to the minimum scope, or pause the EaaS subscription. Any changes will take effect in the following month, provided that you notify the respective advisor of your requested change by email no later than the 25th of the current month. Optional additional services and ad hoc engagements may be commissioned at any time and will be billed separately outside the EaaS retainer. Unused hours will be carried over into the immediately following month up to a maximum of five (5) hours; any additional hours expire without compensation. Refunds of EaaS fees already paid are excluded. Upon request, however, AITvocat will issue a corresponding voucher for future services. Travel: Unless otherwise agreed, a flat-rate travel allowance of CHF 0.76/km or EUR 0.30/km for travel by private car is agreed for travel on your behalf. Train, flight, accommodation, ancillary costs, cancellation fees, and additional travel costs will be invoiced at the actual costs upon presentation of receipts. Travel time is considered billable time, provided that it cannot be used for your client work. Meal allowances will be billed based on the applicable tax allowances at the place of service. Reimbursement of Expenses: Third-party fees (e.g., administrative, fees, courier and messenger services) and other third-party expenses are not included. These must be paid in advance. Consequences due to late advance payments shall be borne by your company. AITvocat is not obliged to advance the reimbursement of expenses, even if the invoice was issued to AITvocat by name. Invoicing: Invoices shall be issued periodically, usually on a monthly basis, and at any time upon your request. EaaS subscriptions and flat fees are billed in advance. You agree to receive invoices exclusively in digital form and waive the right to receive invoices by postal mail. Value Added Tax: Any value added tax will be charged at the applicable rate, unless an exception provided for by law applies. For clients in EU member states, value added tax is not shown; the reverse charge procedure applies (Art. 196 VAT Directive – 2006/112/EC). Payment Terms: Advance payments and prepayments are due immediately, while other invoices are payable within twenty (20) days of receipt. In the event of default, the statutory consequences of default shall apply. In such cases, AITvocat shall be entitled to suspend all services immediately. AITvocat will contact you in advance and request clarification within a reasonable period. Prepayments: AITvocat shall be entitled to demand reasonable prepayments for initial engagement, individual cases, or ongoing activities to cover the expected fees, charges, and expenses. In this case, the start of activities is dependent on the prior receipt of payment. Advances do not bear interest and are credited against the final remuneration. Advances paid will be settled upon termination of the mandate; any surplus will be refunded by AITvocat. 5. Termination, end The client relationship is based on mutual trust. You may terminate the collaboration at any time and without giving reasons with effect for the future by email. AITvocat has the same right. You remain obliged to pay all time, expenses, and other costs incurred up to that point. This also includes any further expenses necessary to properly complete the engagement (e.g., transferring information, preparing a dossier for a successor advisor). 6. Intellectual Property Client materials: All rights to documents, data, and other materials provided by you remain with you or the respective rights holders. AITvocat shall be entitled to use, reproduce, and process the documents provided for the purpose of fulfilling the engagement. At the end of the collaboration, AITvocat shall, at your request, hand over all files provided to you, subject to the following clarification. If you do not exercise this right to have the files handed over, AITvocat will archive the files for ten (10) years (and may destroy them afterwards without further consultation). If you have already received copies and scans during the engagement, the right to receive the documents is expressly deemed to have been fulfilled with the following special provision. You may request the original documents to be handed over despite having already received copies and scans, subject to reimbursement of the actual expenses and postage costs incurred. Work results: The advisor in charge shall remain the author and owner of other property rights to the results produced within the scope of the engagement. Upon full payment of the agreed remuneration, you and your affiliated companies shall be granted a non-exclusive, perpetual, and worldwide right to use the work results for the purpose of internal business operations. This right of use includes the right to make comprehensive internal use of the work results, to modify them, and to further process them internally. Disclosure to third parties or separate commercial exploitation of the work results is not permitted. For the avoidance of doubt, third parties shall not include professional advisors such as attorneys, tax advisors, auditors, or other consultants who are bound by a statutory or contractual duty of confidentiality. 7. Confidentiality AITvocat shall treat your confidential information as a trade secret and in accordance with the applicable laws confidential. AITvocat is exempt from confidentiality for the purpose of fulfilling professional standards, clarifying conflicts of interest, and exchanging information with your employees and externally authorized advisors or third parties, e.g., other attorneys, experts, auditors. AITvocat shall keep you informed about correspondence with third parties via the communication channels we have agreed upon. AITvocat may also engage its own employees and external IT service providers (including IT, cloud, and AI solutions). All natural or legal persons engaged by AITvocat for the assignement-related services shall be obliged to keep your confidential information secret in accordance with the state of the art and applicable laws. 8. Data Security AITvocat carefully selects the digital systems and service providers it uses and takes appropriate technical and organizational measures to protect your client data. You are aware that, despite reasonable efforts, there is a residual risk of unauthorized access, data loss, or manipulation when processing information digitally (e.g., via email, cloud, video conferencing, etc.). Damages resulting from loss, delay, manipulation, or unauthorized access in the context of electronic information processing will therefore only be compensated if they are based on gross negligence or intent. Unless otherwise agreed, you agree to the use of normal, unencrypted electronic communication (email). A higher level of security can be arranged upon request. 9. Changes to these Provisions Changes to these provisions during an ongoing collaboration are permissible if they are communicated to you in advance in writing or direct electronic communication (e.g., by email). They shall be deemed approved if you do not object in writing or text form (email) within four (4) weeks of receiving notification of the change. 10. Applicable Law, Place of Jurisdiction Swiss law, excluding its conflict of laws provisions, shall govern the resolution of any disputes arising out of or in connection with this client relationship. The courts of the Canton of Schwyz shall have exclusive jurisdiction, unless mandatory law provides otherwise. For clients whose registered office is located in Germany, either party shall also have the right, at its discretion, to initiate legal proceedings before the courts having jurisdiction over the client’s registered office in Germany. 1. What Role AITvocat Does Play 2. What You Can Expect 3. What AITvocat Needs From You 4. Remuneration 5. Termination, End 6. Intellectual Property 7. Confidentiality 8. Data Security 9. Changes to these Provisions 10. Applicable Law, Place of Jurisdiction PDF - English version PDF - German version Overview 1. What Role AITvocat Does Play 2. What You Can Expect 4. Remuneration 6. Intellectual Property 8. Data Security 3. What AITvocat Needs From You 5. Termination, End 7. Confidentiality 9. Changes to these Provisions 10. Applicable Law, Place of Jurisdiction

Privacy notice Overview Website Visit Cookies External Links or Icons Business Development, Communication Business Relationship Video- & Audio Conferences, Webinar Job Application Disclosure to Third Parties International Data Transfers Data Security No Automated Decision-Making Data Subject Rights PDF - German version PDF - English version Version 01.01.2026 Welcome to what is perhaps the only privacy notice that tries not to put you to sleep. Because hey, it's about data – your personal data. When referring to the advisor in charge, the company`s name is used below. In short: AITvocat collects and processes certain personal data when you visit this website, book an appointment, or when we work together in a business relationship. This privacy notice explains what happens with your personal data, why it happens, and how AITvocat complies with the rules of Swiss data protection law (FADP), where necessary, the GDPR. The necessary information is clearly structured in expandable sections and formulated in a neutral manner, i.e., regardless of gender, everyone is included here. It's good to stay dynamic, so this privacy notice is not set in stone - it is a living document. Please note: The following information is provided for informational purposes only and does not form a mutually binding part of your collaboration with AITvocat. If any changes occur, you will always find the most recent version here - identified by a revised date at the top. Data Controller and Contact AITvocat GmbH Schwanenstrasse 4 8840 Einsiedeln Switzerland EU representative: Dr. Matthias Annweiler (personally) Business mailing address: Ashurst LLP, Herzog-Max-Str. 4, 80333 Munich, Germany Email: privacy@aitvocat.com Telephone: +41 78 333 45 48 For the High-Flyers Among You For those who prefer the eagle's-eye view, here is a table summarizing the most important facts: Type of Personal Data AITvocat processes general personal data about you, in particular contact information and some technical information that arises for the purpose of or in connection with digital communication, and which may identify you when combined with additional information. Data Provided AITvocat processes personal data that you provide. Collected Data AITvocat processes personal data that AITvocat collects about you from public sources. Data Received AITvocat processes personal data about you that AITvocat receives from third parties. Purpose of Processing Online Presence In order to operate the website securely and stably, technical data, which also includes personal data, is collected. Business Development, Communication AITvocat processes personal data in order to communicate with you and with third parties, such as authorities, by email, telephone, mail, or other means. Business relationship Your personal data is processed and stored for pre-contractual measures and for processing your engagement, for related administrative matters. Job Application If you apply for a job at AITvocat, AITvocat will process your data for the purpose of reviewing your application, conducting the application process, and, in the case of successful applications, preparing and concluding a employment contract. Security AITvocat processes personal data to ensure and continuously improve the appropriate security of IT systems, applications, and other infrastructure (e.g., offices). Compliance AITvocat processes personal data to comply with applicable laws, for example, to combat money laundering, to fulfill tax or professional obligations, and for internal as well as external investigations in which AITvocat is a party, such as those involving an authority or an appointed private entity. Storage Duration AITvocat may process your personal data for as long as required for the purposes of processing, statutory retention periods, and legitimate interests, in particular for documentation and evidence purposes, or as long as storage is still technically necessary (e.g., in the case of backup routines). Disclosure to Third Parties Where authorized to do so, AITvocat will disclose your personal data to other companies, which may decide for themselves how to use the data. These include external service providers such as banks, trustees or tax advisors, insurance companies, collection agencies, address verifiers and credit agencies, cooperation partners or external experts with whom AITvocat may need to coordinate the provision of services, as well as authorities and courts. Locations of Data Processing Switzerland and Europe AITvocat processes your personal data only in Switzerland and Europe. Third Countries Depending on the case — for example via digital information service provider, sub processors of a service provider or in collaboration with foreign enterprises or foreign authorities — your personal data may potentially be transferred to other countries. If a recipient is located in a country without an adequate level of data protection, AITvocat obliges the recipient by contract to comply with the required level of data protection. AITvocat may also disclose personal data to a country without adequate data protection without concluding its own contract if it can rely on an exception. Your Rights as a Data Subject Access → Art. 25, 26 FADP, Art. 15 GDPR Rectification → Art. 6 para. 5 FADP, Art. 16 GDPR Restriction of processing → Art. 6 FADP, Art. 18 GDPR Data portability → Art. 28 para. 1, 29 FADP, Art. 20 para. 1 GDPR Erasure → Art. 6 para. 5 FADP, Art. 17 GDPR Withdrawal of consent → Art. 6 para. 6 FADP, Art. 7 para. 3 GDPR Objection → Art. 6 para. 1 sentence 1 lit. f GDPR in conjunction with Art. 21 GDPR Complaint → Art. 77 GDPR Please note that your rights may be limited in individual cases or vary in their exercise depending on the legal basis. Website Visit External Links or Icons Business Development, Communication Video- & Audio Conferences, Webinar Website Visit AITvocat is considered the operator of the website www.aitvocat.com and its subpages (collectively, the "website"). Purpose: Through this website you can get a digital overview of AITvocat's legal advisory services and interesting insights. Data categories: You can generally access and browse this website without entering personal data. However, to keep the website operational and secure, certain usage data (so-called server log data) are automatically transmitted to and stored by the hosting service provider with each visit, including the following information: Browser type/version Operating system used Referrer URL (the previously visited website) Hostname of the accessing computer (IP address) Date and time of the server request Name of the requested file Amount of data transferred Notification of successful retrieval These data are not merged with other data sources and remain separate from your personal data that you may provide, for example, via a contact or appointment form. Retention period: This bundle of server log data is not stored longer than necessary for the hosting service provider's security processes and is deleted once the purpose ceases to apply. Legal basis: Since a trouble-free and secure website operation is the absolute foundation for a reputable web presence and your browsing experience, AITvocat relies on Art. 6 para. 2, Art. 31 para. 2 FADP, Art. 6 para. 1 sentence 1 lit. f GDPR. Data recipients: This website is operated by the hosting service provider Wix.com Ltd., Yunitsman St. 5, Tel Aviv, Israel, on behalf of AITvocat (see the EU Commission’s adequacy decision here ). Wix.com participates in the EU-U.S. Data Privacy Framework and the Swiss-U.S. Data Privacy Framework and has certified its compliance (see here ). Server log data is hosted via multi-cloud hosting in secure data centers operated by AWS, Google, Equinix, and others that are ISO 27001-certified, primarily located in the following regions: North America and Europe. Naturally, privacy-by-design principles are also applied – during transmission, Wix.com uses HTTPS over TLS 1.2 or higher, as well as an SSL certificate. Data at rest is encrypted with AES-256, the industry standard for encryption methods. Within Wix.com’s PCI environment, a FIPS 140-2 certified Hardware Security Module (HSM) is used, which represents the highest standard for encryption and secure data storage. The Digital Cookies 🍪 When guests come, you need cookies in the house. The same goes here: This website serves some digital cookies - also known as cookies. These include cookies in the strict sense, but also scripts, pixels, and similar web browser technologies. These small text or code files are stored locally on your device when you visit the website. They make this website user-friendly and work properly. Personal data may be collected and processed in the process - no crumbs, but with clear rules. What Kinds of Cookies Are Used Here? Necessary cookies: These are the basics - like butter on your bread. Without them, the website simply doesn't run smoothly. They ensure for example, that content and layout are displayed correctly and that the site technically functions at all. Functional cookies: These are the little chocolate nuggets - your comfort features. They remember, for example, your language and view settings or save unsent form entries so you don't have to type them again. With each revisit, your browser sends the stored functional cookie back to the web server. The cookies used here are therefore essential for the functionality of certain convenience features, such as maintaining an active session. AITvocat has agreed with the web designer to restrict the services to useful, non-consent-requiring helpers - because AITvocat assumes you like comfort and a fast, uncomplicated browsing experience. Advertising or marketing cookies: AITvocat does not intend to track you across multiple websites. AITvocat prefers direct exchange and hope for your positive recommendation. If you like the Strategic and Innovation Advisory, feel free to recommend AITvocat - and of course your suggestions are always welcome. Just call, book an online appointment, or write a positive review - that helps AITvocat gain new clients without marketing and tracking measures. Third-party cookies: In some cases, a little external support can enhance the quality of your browsing experience – for example, to show you interactive maps or videos directly on this website. However, these are services provided by third parties, and they may collect your personal data (including your IP address) for their own purposes and may store it – possibly in data centers outside Switzerland or the EU – as soon as you interact with their embedded elements. These providers have their own privacy and cookie policies, over which AITvocat has no control. However, this kind of functionality is not currently in use here, so AITvocat can, for the time being, forgo a consent banner. How to Delete or Disable Cookies If you want to clear the slate, you can simply delete your browser history. That will remove all cookies from all websites you have visited. But beware: doing so will also remove stored information such as form entries or language settings. Without the full "tabula rasa" you can also configure your browser to refuse cookies altogether or to ask you each time a cookie is about to be stored. How to set this depends on your browser and device - check the help function for specifics. External Links or Icons Sometimes you will find QR codes, hyperlinks or icons on the website that lead you to external sites or applications (e.g., LinkedIn). AITvocat selects such links with care - but I cannot monitor every change in their content. If you notice that an external link violates applicable law or points to a dead page, please let me know. Important to know: Providers of external websites or applications may collect your personal data on their own pages for their own purposes. In such cases, they are the data controllers and must ensure that they comply with applicable data protection laws. Business Development, Communication Purpose: When you write to AITvocat via the contact form, you voluntarily provide personal data - thank you for your trust! The advisor in chare will use it to coordinate your inquiry, contact you, perhaps clarify preliminary questions by email, or prepare our meeting. Data categories: Your first and last name, phone number, email address; it is also very helpful to receive initial notes from you about the topics you wish to discuss. Retention period: AITvocat or the system deletes or anonymizes your personal data as soon as AITvocat no longer strictly needs them. However, AITvocat cannot delete them immediately: AITvocat must keep your personal data for as long as claims could be asserted against AITvocat or laws (e.g., the Swiss Code of Obligations) require retention. For pure appointment requests without a subsequent engagement, AITvocat deletes these data in due time, e.g., after a cancellation or after the appointment if no engagement arises. If an engagement ensues, the appointment (including notes) becomes part of my engagement documentation and must be retained for ten (10) years from the end of the fiscal year in which we last had contact. Legal basis: Since our communication may take place at different times and in different contexts during our collaboration, let us briefly use legal terminology and say - it depends: If it concerns handling the initial enquiry without a subsequent engagement, this is covered by the purpose limitation and the legitimate interest in processing your request → Art. 6 para. 2, Art. 31 para. 2 lit. a) FADP and Art. 6 para. 1 lit. f GDPR. If the communication takes place within an existing business relationship or serves to initiate such a relationship, the interest in performance of the contract is decisive → Art. 6 para. 2, Art. 31 para. 2 lit. a FADP and Art. 6 para. 1 lit. b GDPR. For a few special cases, such as a newsletter subscription, AITvocat asks for your consent, which then serves as the legal basis for processing → Art. 6 para. 6 FADP and Art. 6 para. 1 lit. a GDPR. Of course: you may withdraw any consent given at any time going forward. Data recipients: For emails, appointment scheduling, chat, and online meetings, AITvocat uses Microsoft Office 365 Enterprise Premium services. The service provider is Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, D18 P521, Ireland. Microsoft participates in the EU–U.S. and Swiss–U.S. Data Privacy Frameworks and is certified for compliance (see here ). As part of the subscribed cloud services, Microsoft provides the assurance of the so-called MS EU Data Boundary for the processing of personal data, with AITvocat hosting your personal data exclusively in Swiss data centers (including those with ISO 27001 certification). Additional data protection and information security configurations (more than 800 predefined settings) were set up, maintained, and continuously monitored and improved by the IT service provider SoloPro, Hübnerstr. 2, 80637 Munich, Germany. Business Relationship Purpose: Your personal data are processed and stored for handling your engagement, as well as related settlement matters. Data categories: All personal information you provide, e.g., name, first name, phone number, email, role within your organization, but also data passed on by others, e.g., authorities, business partners, or data AITvocat obtains from publicly accessible sources like commercial registers and websites. Retention period: AITvocat or the system deletes or anonymizes your personal data as soon as they are no longer strictly necessary. AITvocat cannot, however, delete them immediately: AITvocat must retain your personal data as long as claims against AITvocat could arise or laws (e.g., the Swiss Code of Obligations) require retention. Engagement documentation must be retained for ten (10) years from the end of the fiscal year in which we last had contact. Legal basis: Since this concerns the existing business relationship, the interest in performance of the contract is the relevant basis → Art. 6 para. 2, Art. 31 para. 2 lit. a FADP and Art. 6 para. 1 lit. b GDPR. Data recipients: For secure and efficient order management (including accounting and invoicing), AITvocat uses the modern software solution CARL. The service provider is 390 Grad AG (trade name: CARL), Churerstrasse 54, 8808 Pfäffikon, Switzerland. Your personal data is hosted exclusively in Swiss data centers (including those with ISO 27001 certification). Video & Audio Conferences, Webinars Purpose: When we cannot meet in person due to distance or a full schedule, AITvocat conducts online meetings using a digital collaboration platform. This also applies to webinars that AITvocat offers from time to time. The data needed for this is used to provide the virtual meeting space, conduct our meeting efficiently, and keep the platform secure and reliable. Data categories: The scope of processing depends on the data required for the specific online meeting. Typically, this includes your first and last name and data that enables user authentication, such as your email address or phone number and other access credentials, the IP address of your internet connection, details about your device, operating system, browser, and other technical and language settings that enable effective remote communication. It also includes our communications and other information you share, such as your profile picture, professional title/role, chat input, text files, spoken words, video recordings, and in the case of active transcriptions, the timestamps with the speaker’s name. Retention period: AITvocat or the system deletes/anonymizes your personal data as soon as AITvocat no longer requires it. However, your data cannot be deleted immediately: AITvocat must retain your personal data as long as legal claims may be brought against AITvocat or as long as storage obligations apply (e.g., under Swiss contract law). The online meeting (including communications, recordings, and/or transcripts) is generally part of the engagement documentation, which must be retained for ten (10) years from the end of the fiscal year in which we last had contact. Legal basis: Let’s look at the underlying legal principles: User authentication & login – If your data is processed for authentication and access to the conferencing platform, this is based on the legitimate interest in secure usage → Art. 6 para. 2, Art. 31 para. 2 lit. a) FADP and Art. 6 para.1 lit. f) GDPR. Live transcription & transcript – Unless otherwise agreed, AITvocat uses live transcription in Microsoft Teams Premium. This processing is based on the legitimate interest in ensuring efficient documentation of meetings → Art. 6 para. 2, Art. 31 para. 2 lit. a) FADP and Art. 6 para.1 lit. f) GDPR. What actually happens then? While we talk, Microsoft Teams creates a real-time transcript of what is said. This is very helpful for accessibility purposes and meetings with foreign-language participants. The system does not create audio or video recordings – Microsoft only live-streams the spoken audio and converts it into text using automatic speech recognition (ASR). You can view the transcript during the meeting, but you cannot copy or forward it. As the meeting host, only AITvocat has access to the transcript and can send it to you upon request. Nothing is stored that wouldn’t otherwise appear in an email. Bonus: After the meeting, you receive a concise summary capturing requirements, commitments, and action items. More privacy & anonymity desired? – In Teams, transcripts and subtitles automatically include your name and a timestamp. If you prefer to remain anonymous, you can hide your name – this applies to the live meeting and the stored version. For instructions, please refer to the linked Microsoft help page before the meeting. Video recording – In this case, AITvocat records audio, video, and any content you share on your screen – but only with your explicit consent. Legal basis → Art. 6 para. 6 FADP and Art. 6 para. 1 lit. a) GDPR. You will always be informed beforehand – either in the meeting invitation or at the latest directly before the recording begins. If you are uncomfortable with the recording, please inform us in advance. We will then consider solutions such as anonymization, no recording, or alternative documentation. Only what is visible or audible is recorded: your spoken words, your video if your camera is on and you speak, and your screen if you share it. A live transcript also runs in parallel, converting speech to text (see the previous bullet point). If you join late, you will see a clear notice that recording is in progress. More privacy & anonymity is always possible – turning off your camera means no video of you; muting your microphone means no audio from you; both off means you remain a silent participant. When you activate camera and/or microphone, this counts as consent to recording. Please also ensure that no third parties are visible or audible in your environment. You may use background blur or virtual backgrounds if available. Also important: Access links and meeting credentials must not be shared with unauthorized persons. Data recipients: For online meetings, AITvocat uses Microsoft Office 365 Enterprise Premium services. The service provider is Microsoft Ireland Operations Limited, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, D18 P521, Ireland. Microsoft participates in the EU-U.S. and Swiss-U.S. Data Privacy Frameworks and is certified for compliance (see here ). As part of the subscribed cloud services, Microsoft provides assurances under the MS EU Data Boundary, with AITvocat hosting your personal data exclusively in Swiss data centers (including ISO 27001-certified facilities). Additional data protection and information security configurations (over 800 preset settings) are established, maintained, and continuously monitored and improved by the IT service provider SoloPro, Hübnerstr. 2, 80637 Munich, Germany. Job Application Purpose: You may apply to AITvocat at any time either spontaneously or for an advertised position — thank you for your interest! AITvocat will use your documents for the recruitment process, i.e., for screening and review, possible contact, and arranging interviews. Data categories: Your application documents, including name, contact details, CV, employment references, and any other evidence you provide by email. Retention period: You may withdraw your application at any time. If you decline or AITvocat is unable to offer you a position, AITvocat will delete your documents after six months (to protect legal claims). If you are hired, your application documents become part of your personnel file. Legal basis: AITvocat processes and stores your application data as a pre-contractual measure and due to the legitimate interest in deciding on a potential employment relationship → Art. 328b Swiss CO in conjunction with Art. 6 para. 1 and 2 FADP, Art. 6 para. 1 lit. b GDPR. Data recipients: The provisions set out in the above Section for business development and communication apply here as well. Disclosure to Third Parties Sometimes AITvocat must disclose your personal data to third parties - don't worry, always securely and only when necessary. Typical cases for AITvocat include: Cooperation partners and external experts: Sometimes, in the course of our collaboration, we need additional experts who become part of the assignment but do not work directly at AITvocat, such as auditors or technicians. I also have a great network of sharp legal colleagues and notaries who can provide specialized support for very specific tasks, and we may involve them by agreement if needed. Authorities, courts and public bodies: Legal obligations often require disclosure of certain data, e.g., in court filings, inquiries from supervisory authorities, commercial register entries — i.e., whenever legal duties or contractual requirements must be fulfilled. Accounting, bank and fiduciary: For billing, tax returns and financial administration AITvocat needs the help of a tax advisor, a bank and possibly debt collection agencies, address verifiers and credit bureaus to process invoices or comply with tax obligations. Insurances: Involved insurers sometimes need certain basic or engagement-related information to assess their contractual obligations and insurance coverage. AITvocat selects all these third parties carefully in compliance with data protection laws. Your data remain confidential and protected according to the state of the art. International Data Transfers As explained above in the individual sections, data processing by AITvocat itself takes place only in Switzerland or Europe. Depending on the case – for example, through digital information processors, subcontractors, or in proceedings involving foreign companies or before foreign courts or authorities – your personal data may potentially be transferred to other countries. AITvocat does not simply send your personal data out into the world. Transfers to such third countries by contracted service providers only occur if an adequate level of data protection exists there, such as an official determination of adequacy equivalent to the EU or Switzerland - or if the providers have contractually guaranteed that at least an equivalent level is observed, e.g., with the EU Standard Contractual Clauses, including appropriate additional safeguards. AITvocat reviews compliance with these assurances regularly. AITvocat may also disclose your personal data to a country without adequate protection without concluding its own contract when AITvocat can rely on an exception. An exception may apply particularly in foreign legal proceedings, but also in cases of overriding public interest or when the performance of a contract in your interest requires such disclosure (e.g., when data are disclosed to authorized correspondent law firms), when you have consented, or when the data are publicly available and you have not objected to the processing. Data Security Processing activities are technically and organizationally designed to comply with data protection regulations, and the protective measures implemented correspond to the state of the art, the type and extent of processing and the risk the processing entails for your personality or fundamental rights. This website uses, for security reasons among others, spam protection and security gateways and SSL/TLS encryption to protect the transmission of sensitive content. You can recognize this in your browser's address bar: it begins with "https://" and shows a padlock icon. With SSL encryption enabled, third parties cannot read your data during transmission. No Automated Decision-Making AITvocat does not use fully or partial automated decision-making. Data Subject Rights You may exercise various rights at any time as a data subject - always within the scope of the particular situation and applicable law. If you exercise one of these rights, AITvocat may have to reuse your personal data to comply with your request. If costs arise from your request, AITvocat will notify you in advance. In individual cases, AITvocat may still retain or process certain personal data, e.g., if required by law, where a legitimate interest exists, or if AITvocat needs the data to enforce legal claims. Access: You want to know what AITvocat knows about you, what AITvocat uses it for, how long it is stored and who else may see it? No problem - you can request access at any time → Art. 25, 26 FADP, Art. 15 GDPR. Rectification: Your contact details contain a typo or are out of date? Please let AITvocat know and AITvocat will correct them immediately → Art. 6 para. 5 FADP, Art. 16 GDPR. Restriction of processing: You can request that AITvocat restricts processing, e.g., if the accuracy of the data is disputed or you have objected → Art. 6 FADP, Art. 18 GDPR. Data portability: You want your data packaged in a machine-readable format or transferred to someone else? - Say the word and AITvocat will provide the data export owed to you → Art. 28 para. 1, 29 FADP, Art. 20 para. 1 GDPR. Erasure: You can request deletion of your data as far as no legal or contractual duties or technical reasons prevent it → Art. 6 para. 5 FADP, Art. 17 GDPR. Withdrawal of consent: If you once gave AITvocat permission to process certain data, you may withdraw it at any time → Art. 6 para. 6 FADP, Art. 7 para. 3 GDPR. Objection: If the GDPR applies, you may object to processing where your personal data are processed on the basis of legitimate interests per Art. 6 para. 1 sentence 1 lit. f GDPR → Art. 21 GDPR, provided there are grounds arising from your particular situation or the objection relates to direct marketing. In the latter case, you have a general right to object without explaining a particular situation. Complaint: Please first complain to AITvocat personally if you like. You may, however, also file a complaint with a supervisory authority at any time if you believe your rights have been violated → Art. 77 GDPR. A list of EEA authorities can be found here: https://www.edpb.europa.eu/about-edpb/about-edpb/members_en Cookies Business Relationship Disclosure to Third Parties International Data Transfers Data Security No Automated Decision-Making Data Subject Rights Job Application