AI Pirates
DE | EN
AI Pirates
DE | EN
← Back
Home / Privacy Policy

// Legal

Privacy Policy

GDPR
GDPR Compliant

Privacy Policy

The protection of your personal data is of particular concern to us. We therefore process your data exclusively on the basis of legal provisions (GDPR, DDG). In this privacy policy, we inform you about the most important aspects of data processing on our website.

Data Controller

Pirates World GmbH
Kapellenweg 6, 81371 Munich
Email: hi@ai-pirates.com

Hosting & Technical Operations

Our website is hosted by ALL-INKL.COM - Neue Medien Münnich, Hauptstraße 68, 02742 Friedersdorf, Germany. Our hoster processes the data described below on our behalf. A Data Processing Agreement (DPA) exists in accordance with Art. 28 GDPR.

When you visit our website, your browser automatically transmits certain data to our server:

  • IP address (anonymized)
  • Date and time of access
  • Requested URL
  • Browser and operating system used
  • Referrer URL (previously visited page)

This data is processed exclusively to ensure technical operations and to defend against attacks. The legal basis is Art. 6 (1) lit. f GDPR (legitimate interest).

Contact Form & Email Contact

When you contact us via our contact form or by email, we store the data you provide (name, email address, message) for processing your inquiry. No disclosure to third parties takes place.

Legal basis: Art. 6 (1) lit. b GDPR (pre-contractual measures) or Art. 6 (1) lit. f GDPR (legitimate interest in responding to inquiries). The data will be deleted once the inquiry has been fully processed and no statutory retention obligations exist.

Cookies

Our website uses only technically necessary cookies that are required for the operation of the website. We do not use tracking or marketing cookies. Consent is not required pursuant to § 25 (2) TTDSG.

External Services & Fonts

Google Fonts

We use Google Fonts (fonts from Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA). When the page loads, requests are sent to Google servers, during which your IP address may be transmitted. Google Fonts is used to ensure a consistent presentation. Legal basis: Art. 6 (1) lit. f GDPR.

Google Material Symbols

We use Material Symbols from Google for icon display. The same data protection conditions apply as for Google Fonts.

Your Rights

Under the GDPR, you have the following rights regarding your personal data:

  • Right of Access (Art. 15 GDPR): Right to information about your stored data
  • Right to Rectification (Art. 16 GDPR): Right to correct inaccurate data
  • Right to Erasure (Art. 17 GDPR): Right to deletion of your data ("right to be forgotten")
  • Right to Restriction (Art. 18 GDPR): Right to restrict processing
  • Right to Object (Art. 21 GDPR): Right to object to processing
  • Right to Data Portability (Art. 20 GDPR): Right to data portability

To exercise your rights, please contact: hi@ai-pirates.com

Right to Lodge a Complaint

You have the right to lodge a complaint with a data protection authority. The competent supervisory authority for Bavaria is the Bavarian State Office for Data Protection Supervision (BayLDA), Promenade 18, 91522 Ansbach.

Data Security

We employ technical and organizational security measures to protect your data from unauthorized access, loss, or manipulation. Data transmission is encrypted via HTTPS/TLS.

AI Chat Assistant

Our website uses an AI-powered chat assistant to answer your questions. When using the chat widget, the following data is processed:

  • Chat inputs: Your messages are transmitted in real-time to the OpenAI API (OpenAI, L.L.C., San Francisco, USA) to generate a response. The data is used exclusively to answer your inquiry and is not used to train AI models. A Data Processing Agreement (DPA) is in place with OpenAI.
  • No permanent storage: Chat histories are not stored on our server. The conversation exists only in your browser's temporary session storage (sessionStorage) and is automatically deleted when you close the browser tab.
  • Rate limiting: To prevent misuse, a pseudonymized hash of your IP address (MD5) is temporarily stored for a maximum of 2 hours. This does not allow identification of your person.
  • Contact details (optional): If you voluntarily provide your name and email address in the chat, these are forwarded to our team via email. Legal basis: Art. 6 (1) a GDPR (consent).
  • Voice output (ElevenLabs): The chat assistant can read responses aloud. For this purpose, the generated response text is transmitted to the ElevenLabs API (ElevenLabs, Inc., New York, USA) for text-to-speech conversion. No personal data (such as your name or chat input) is transmitted to ElevenLabs — only the generated response text. A Data Processing Agreement (DPA) is in place with ElevenLabs. Legal basis: Art. 6 (1) f GDPR.
  • AI-generated portrait (DALL-E): When voluntarily providing your name and email address, a personalized pirate portrait is generated via the DALL-E API (OpenAI). Only a generic prompt (pirate character) is transmitted — no personal data such as name, photo, or identifying features. The portrait is delivered by email and is not stored on our server. Legal basis: Art. 6 (1) a GDPR (consent).

Legal basis for data processing by the chat assistant: Art. 6 (1) f GDPR (legitimate interest in efficiently answering customer inquiries).

Double Opt-In Procedure

When you provide your email address (e.g., in the chat or for the LLM report), you will receive a confirmation email. Only after clicking the confirmation link will your data be forwarded to us. This procedure ensures that no third party can register with your email address. Unconfirmed data is automatically deleted after 24 hours. Legal basis: Art. 6 (1) a GDPR (consent).

LLM Visibility Checker

Our website offers a free LLM Visibility Check. When using this tool, the following data is processed:

  • Domain input: The entered domain is checked server-side for technical SEO characteristics (llms.txt, robots.txt, meta tags, Schema.org). Additionally, the domain is sent to the OpenAI API (OpenAI, L.L.C., San Francisco, USA) for an AI-powered visibility analysis. A Data Processing Agreement (DPA) exists with OpenAI.
  • IP address: For abuse prevention (rate limiting), a cryptographic hash (SHA-256 with salt) of your IP address is temporarily stored. The original IP address is not stored and cannot be reconstructed from the hash.
  • Email address (optional): If you request the full report, your email address is used exclusively for the one-time delivery of the report. Storage only occurs with your explicit consent (checkbox). Legal basis: Art. 6 (1) a GDPR (consent).
  • No profiling: No user profiles are created. Analysis data is not linked with other data sources.
  • Data minimization: Only data necessary for the analysis is processed. No cookies, no tracking.

Legal basis for the technical analysis: Art. 6 (1) f GDPR (legitimate interest in providing the tool). For email delivery: Art. 6 (1) a GDPR (consent).

AI Transparency Notice (EU AI Act)

In accordance with the EU AI Act (Regulation (EU) 2024/1689), we inform you that the following AI systems are used on this website:

  • Chat Assistant (Captain Byte): AI-powered chatbot based on GPT-4o-mini (OpenAI) for answering questions about our services. All responses are machine-generated and do not constitute legally binding advice.
  • LLM Visibility Check: Automated analysis of websites for AI visibility, powered by GPT-4o-mini (OpenAI).
  • Voice Output: Text-to-speech synthesis via ElevenLabs for optional voice playback of chat responses.
  • Image Generation: AI-generated pirate portraits via DALL-E 3 (OpenAI), created upon voluntary consent only.

All AI systems are used as auxiliary tools and do not make automated decisions with legal effect within the meaning of Art. 22 GDPR. No high-risk AI system within the meaning of the EU AI Act is employed.

Updates to this Privacy Policy

Last updated: March 2026. We reserve the right to update this privacy policy as needed to adapt it to changed legal requirements or changes in data processing.