Privacy Policy

1. Controller

Controller within the meaning of the GDPR is Dirk Mischke, operating OctoBot Labs as a sole proprietor in Germany.

Dirk Mischke
Auf der Burg 22
45359 Essen
Germany
Email: hello@octo-bot.io

2. Hosting and server logs

This website is a static site hosted through GitHub Pages. When you visit the website, the hosting provider may process technical server log data such as IP address, date and time of access, requested URL, referrer, browser, and operating system information.

Processing is based on Art. 6(1)(f) GDPR. Our legitimate interest is operating a stable, secure, and abuse-resistant website.

3. Scorecard data

The AI Workflow Risk Scorecard runs in your browser. Your answers, score, email, company name, and workflow name are not automatically submitted to OctoBot Labs.

If you click the mini-audit email link or otherwise send us your result, your email client creates a message to OctoBot Labs. We then process the information you choose to send in order to respond to your request.

4. Contact and mini-audit requests

If you contact us by email, we process the information you provide to answer your inquiry, discuss a potential service engagement, or deliver agreed services. The legal basis is Art. 6(1)(b) GDPR for contract initiation or performance, and Art. 6(1)(f) GDPR for general business communication.

Please do not send passwords, API keys, private customer records, confidential payloads, or other secrets unless a separate secure exchange process has been agreed.

5. B2B outreach

OctoBot Labs may research public business information and contact relevant companies about AI workflow risk, scorecard testing, or related services. We use public company websites, partner directories, and public business contact paths where possible.

The legal basis is Art. 6(1)(f) GDPR. Our legitimate interest is targeted B2B communication about services relevant to the recipient's professional role or company. You can object at any time by replying to the message or emailing hello@octo-bot.io.

6. Cookies and analytics

This website does not use tracking cookies or analytics tools. If this changes, this policy will be updated before such tools are used.

7. Data retention

Email inquiries are retained as long as needed to handle the request and maintain business records. Contract-related records may be retained according to German tax and commercial law. Outreach notes are removed or suppressed when a recipient objects.

8. Your rights

Under the GDPR, you may request access, correction, deletion, restriction of processing, and data portability where applicable. You may also object to processing based on legitimate interests and lodge a complaint with a supervisory authority.

Contact: hello@octo-bot.io