Privacy Policy

Effective Date: March 23, 2026

At Eini., we are committed to protecting your privacy and ensuring transparency in how we handle your personal data. This Privacy Policy explains what personal data we collect, how we use it, and your rights under Swiss law, including the Federal Act on Data Protection (nDSG).

1. Controller of Your Data

Eini. is the controller of your personal data. We are based in Switzerland and are responsible for ensuring that your data is processed in compliance with applicable Swiss data protection laws, including nDSG.

2. What Personal Data We Collect

We collect minimal personal data necessary to operate our service:

• Email Address: Collected when you join our waitlist to keep you updated about product launches and key announcements.
• Usage Information: We may collect basic information about how you interact with our service for internal improvement purposes.

What We Do NOT Collect:

• We do not use tracking cookies or analytics tools.
• We do not collect sensitive personal data such as biometric data, health information, or financial account details.
• We do not process sensitive categories of personal data as defined under nDSG.

3. How We Use Your Data

We use your personal data only for the following purposes:

• Waitlist Management: To maintain our product waitlist and send you updates about Eini. features and launches.
• Communication: To respond to your inquiries and provide customer support.
• Service Improvement: To enhance and optimize our service based on user feedback and usage patterns.
• Legal Compliance: To comply with applicable Swiss laws and regulations.

We will never sell, rent, or share your personal data with third parties without your explicit consent, except where required by law.

4. Legal Basis for Processing

Under nDSG, we process your personal data on the following legal bases:

• Consent: When you provide your email address to join our waitlist, you consent to us processing that data for the purposes outlined in this policy.
• Legitimate Interests: We may process certain data to improve our service and protect our security.
• Legal Obligation: Where Swiss law requires us to process or retain your data.

5. Data Storage and Security

Where Your Data is Stored

Your personal data is stored securely with Supabase, a modern backend service with servers hosted in the EU (eu-west-1 region). This ensures your data remains within the European Economic Area (EEA) and benefits from robust data protection standards.

Security Measures

We implement technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction, including:

• Encryption of data in transit and at rest
• Access controls and authentication mechanisms
• Regular security reviews and updates
• Compliance with industry best practices for data protection

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy:

• Email addresses are retained while you remain on our waitlist and for a reasonable period after unless you request deletion.
• You can request removal from our waitlist at any time by contacting us.
• We delete data when it is no longer necessary, unless Swiss law requires us to retain it for longer periods.

7. Your Rights Under nDSG

Under Swiss data protection law (nDSG), you have the following rights:

Right of Access

You have the right to request information about what personal data we hold about you and how we process it.

Right to Rectification

You can request that we correct or update any inaccurate or incomplete personal data we hold about you.

Right to Deletion

You can request that we delete your personal data, subject to certain legal limitations. For example, if you wish to be removed from our waitlist, we will delete your email address upon request.

Right to Data Portability

You have the right to request your data in a structured, commonly used, and machine-readable format and to transmit it to another service provider.

Right to Object

You can object to certain processing of your personal data, particularly for marketing purposes or where we rely on legitimate interests.

Right to Restriction

You can request that we restrict the processing of your personal data in certain circumstances.

To exercise any of these rights, please contact us at:

8. Third-Party Service Providers

We work with limited third-party service providers who process personal data on our behalf:

• Supabase (Backend Infrastructure): Hosts our database and application infrastructure. Data is processed in compliance with their data protection agreements.

All third-party providers are contractually bound to process your data only as instructed and to maintain appropriate security measures. We do not share your personal data with any other third parties without your explicit consent, except where required by law.

9. International Data Transfers

Your personal data is stored in the EU (via Supabase, eu-west-1 region), which ensures a high level of data protection consistent with Swiss standards. No transfers to countries with inadequate data protection occur without appropriate safeguards as required by nDSG.

10. Cookies and Tracking

We do not use cookies or tracking technologies at this time. Our service operates without analytics cookies, advertising cookies, or third-party tracking mechanisms. If we introduce cookies in the future, we will update this policy and obtain your consent as required by law.

11. Children's Privacy

Our service is not directed to individuals under the age of 16. We do not knowingly collect personal data from children under 16. If we become aware that we have collected data from a child under 16, we will take steps to delete it promptly. Parents or guardians who believe we have collected data from a child should contact us immediately.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes by updating the effective date at the top of this policy and, where appropriate, by sending you a notification email.

Your continued use of Eini. following changes to this policy constitutes your acceptance of the updated Privacy Policy.

13. Contact Us

If you have any questions about this Privacy Policy, our data protection practices, or wish to exercise your rights under nDSG, please don't hesitate to contact us: