Privacy Policy
1. Privacy at a Glance
This page describes how Delsys e.U. handles your personal data — what we collect, where it goes, and how to exercise your GDPR rights. The short version: we collect only what's needed to talk to you and improve the service, we use a small set of EU-compatible processors, and you can reach a human at any time by replying with the word HUMAN.
2. Data Controller
Delsys e.U.
Untergreith 71
8181 Mitterdorf an der Raab
Austria
Email: leads@delsys.business
The data controller determines the purposes and means of processing personal data. Delsys e.U. is the controller for all data described below.
3. Data Collection on This Website
Cookies
This website stores a single localStorage entry (cookieConsent) to remember whether you accepted or declined cookies. No tracking cookies, no third-party cookies, no analytics cookies. Storage of this preference is processed under Art. 6 (1) lit. a GDPR (consent).
Server Log Files
The web server hosting this site automatically logs requests, including:
- IP address
- Browser type and version
- Operating system
- Referrer URL
- Timestamp of request
This data is retained for up to 30 days for operational and security purposes. The collection is based on Art. 6 (1) lit. f GDPR (legitimate interest).
Email Correspondence
When you send an email to leads@delsys.business, the message — including your address, subject, body, and any attachments — is received and stored by our email processor (see section 4), then passed to our AI agents for classification and reply drafting. Your message is retained as long as operationally relevant (typically up to 12 months) and is deleted on request.
The basis for processing is Art. 6 (1) lit. b GDPR (pre-contractual / contract) when the inquiry relates to a potential engagement, and Art. 6 (1) lit. f GDPR (legitimate interest) otherwise.
4. AI-Automated Operations and Data Processors
Delsys e.U. operates as a transparently AI-automated company. AI-generated content and automated communications are produced by, and personal data is transmitted to, the third-party processors listed below. All processors are bound by data-processing agreements compatible with GDPR.
Anthropic — AI model provider
Anthropic PBC (USA). When you send us an email or interact with our AI agents, the content of the message is transmitted to Anthropic's Claude API for classification and reply drafting. Anthropic does not train models on API inputs. EU data transfers are covered by Standard Contractual Clauses. Reference: anthropic.com/legal/commercial-terms.
Resend — email infrastructure
Resend Inc. (USA). Emails sent to leads@delsys.business are received, parsed, and stored by Resend for processing by our AI agents. Outbound replies are also dispatched via Resend. Reference: resend.com/legal/dpa.
WhatsApp — internal escalation channel
Meta Platforms Ireland Ltd. (Ireland, EU). When a qualified lead or escalation event occurs, our AI agents send a one-line summary to the company operator's WhatsApp number. The summary contains the sender's email, subject line, and a short classification — no full message body. Reference: whatsapp.com/legal/business-policy.
EU AI Act Article 50: we disclose AI involvement in every customer-facing communication. Every AI-generated reply includes an explicit footer identifying itself as such and offers a HUMAN escape hatch (reply with HUMAN as the first word to bypass the AI layer and route the conversation directly to Michael Lodzik).
5. Your Rights
Under GDPR, you have the right to:
- Obtain information about your personal data stored with us (Art. 15)
- Request correction of inaccurate data (Art. 16)
- Request deletion of your personal data (Art. 17)
- Request restriction of processing (Art. 18)
- Request data portability (Art. 20)
- Object to processing based on legitimate interest (Art. 21)
- Withdraw consent at any time (Art. 7)
- Lodge a complaint with the Austrian Data Protection Authority (Datenschutzbehörde) at dsb.gv.at
To exercise any of these rights, email leads@delsys.business with HUMAN as the first word of your message. This bypasses the AI layer and routes directly to Michael Lodzik. We respond within 30 days as required by Art. 12 (3) GDPR.
6. Analytics and Advertising
This website does not use any third-party analytics tools or advertising services. No Google Analytics, no Facebook Pixel, no remarketing tags, no behavioural advertising.
7. SSL/TLS Encryption
This website uses TLS encryption for all traffic. You can verify this by checking that the URL begins with https:// and the lock icon appears in your browser's address bar.
8. Changes to This Privacy Policy
This privacy policy was last revised on 2026-05-11. Material changes — new processors, new data flows, new purposes — will be announced on the homepage at least 14 days in advance, with the previous version kept on the site for reference.