Privacy.

R&R Holding UG (haftungsbeschränkt)

Emeranstraße 23, 85622 Feldkirchen, Germany

[email protected]

This website is hosted with Cloudflare Inc., delivered via Cloudflare's European infrastructure. Cloudflare processes technically necessary connection data (IP address, timestamp, browser type) to deliver the page and to compile aggregated, server-side page-view statistics (count of views per path, approximate region) — no cookies, no JavaScript beacon, no persistent identifiers. No linkage to a person occurs. Legal basis: Art. 6 (1)(f) GDPR (legitimate interest).

A data processing agreement per Art. 28 GDPR is in place with Cloudflare. Standard contractual clauses per Art. 46 GDPR.

The qualification at /diagnose consists of ten yes/no questions. Your answers are processed exclusively in your browser. There is no upload, no server request carrying your answers, and no storage. If you leave or reload the page, the answers are gone.

On the result page the recognised patterns are rendered locally. When you click "Book a call", only aggregated tags (e.g. ar_aging, manual_reports) and the count of yes-answers are passed as URL parameters to Cal.com — never the answers in plain text, never any personal data.

Legal basis: Art. 6 (1)(f) GDPR (legitimate interest in providing the function without data collection).

Optionally, during a scheduled call, token-gated tools at /tools/[token]/… may be used — for example to analyse a bank statement export or a sample PDF invoice. These tools also run entirely in your browser. There is no model inference, no cloud processing, no upload. Tokens are generated per scheduled call and remain valid for 24 hours.

Analysis data is shared with Roux only if you actively click "Share this analysis with Roux". Without that explicit click, nothing leaves the browser apart from what you displayed live during a screen-share — and that ends when the screen-share ends.

Legal basis: Art. 6 (1)(b) GDPR (pre-contractual measure) and Art. 6 (1)(a) GDPR (explicit consent on share).

No AI models, cloud inference, or language models are used in the customer flow (qualification and call tools). The entire logic runs as static JavaScript in your browser.

Tools in solution development: when developing customer-specific automation solutions, Roux uses Claude (Anthropic) and Codex (OpenAI) as code tools. These do not process customer data — they write code that subsequently runs on your infrastructure.

Automations delivered within an engagement: if the specific problem requires it (e.g. email classification, document extraction), the delivered solution may include a language model. In that case the model runs on your infrastructure or against a provider you choose — you retain ownership, keys, and control.

EU Artificial Intelligence Act (Regulation (EU) 2024/1689): the customer flow uses no AI system. If you commission an engagement that includes a model, the legal classification (general-purpose AI vs. high-risk per Annex III) is documented jointly within the engagement.

You have the right to access (Art. 15 GDPR), rectification (Art. 16), erasure (Art. 17), restriction of processing (Art. 18), data portability (Art. 20), and objection (Art. 21).

Send requests to [email protected].

The right to lodge a complaint with the competent supervisory authority per Art. 77 GDPR remains unaffected.