Privacy Policy

Last updated: January 2026

This Privacy Policy describes how Kynvoria AG ("we," "us," or "our") collects, uses, and protects your personal information when you visit our website or use our services. We are committed to protecting your privacy and ensuring the security of your personal data in accordance with the General Data Protection Regulation (GDPR) and applicable Austrian and European Union data protection laws.

Data Controller

The data controller for this website and our services is Kynvoria AG, located at Ottakringer Straße 10, 4095 Linz, Upper Austria, Austria (Registration Number: FN487392a).

Data Collection

We collect personal data that you provide to us directly and information that is collected automatically when you use our website. The data we collect includes:

  • Contact Information: Name, email address, phone number, and company details when you contact us or request our services
  • Communication Data: Messages, enquiries, and correspondence you send to us
  • Website Usage Data: IP address, browser type, device information, pages visited, and time spent on our website
  • Technical Data: Cookies and similar tracking technologies as described in our Cookie Policy

How We Use Your Information

We use of your data for the following purposes based on legitimate business interests and your consent:

  • To respond to your enquiries and provide customer support
  • To deliver our digital finance transformation services
  • To communicate with you about our services and business updates
  • To improve our website functionality and user experience
  • To comply with legal obligations and regulatory requirements
  • To protect our business interests and prevent fraud

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner.

For detailed information about our use of cookies, please see our Cookie Policy.

Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

  • Consent: When you provide explicit consent for specific processing activities
  • Contract Performance: When processing is necessary to fulfil our contractual obligations
  • Legitimate Interests: For business operations, website improvement, and fraud prevention
  • Legal Compliance: When required by applicable laws and regulations

Data Sharing and Third Parties

We do not sell your personal data. We may share your information with trusted third parties in the following circumstances:

  • Service providers who assist us in operating our website and delivering services
  • Analytics providers (such as Google Analytics) to understand website usage
  • Legal authorities when required by law or to protect our legal rights
  • Business partners when necessary to provide requested services

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. Contact information is typically retained for 3 years after our last interaction, unless you request earlier deletion or we have a legal obligation to retain it longer.

Your Rights

Under GDPR, you have the following rights regarding your personal data:

  • Right of Access: Request information about the personal data we hold about you
  • Right to Rectification: Request correction of inaccurate or incomplete data
  • Right to Erasure: Request deletion of your personal data under certain circumstances
  • Right to Restrict Processing: Request limitation of how we process your data
  • Right to Data Portability: Request a copy of your data in a structured, machine-readable format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent for processing where consent is the legal basis

International Data Transfers

Your personal data may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data internationally, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission or transfers to countries with adequacy decisions.

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption, access controls, regular security assessments, and staff training on data protection practices.

Contact Information

If you have questions about this Privacy Policy, wish to exercise your rights, or need to contact us regarding data protection matters, please reach out to us:

Email: privacy@kynvoria.top

Phone: +43 7324154536

Address: Kynvoria AG, Ottakringer Straße 10, 4095 Linz, Upper Austria, Austria

Supervisory Authority

If you believe we have not addressed your concerns adequately, you have the right to lodge a complaint with the Austrian Data Protection Authority (Datenschutzbehörde) or your local supervisory authority.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website and updating the "Last updated" date. We encourage you to review this policy periodically.

Governing Law

This Privacy Policy is governed by Austrian law and the General Data Protection Regulation (GDPR). Any disputes arising from this policy shall be subject to the exclusive jurisdiction of Austrian courts.