LEGAL NOTICE & PRIVACY POLICY

Last updated: January 14, 2026

Information pursuant to Section 5 DDG (Service Provider)
BOHN AI INC.
4281 Express Lane, Suite L3604
Sarasota, FL 34249
USA

Phone: +1 941 296-7092
Email:
Website: https://www.bohn.ai

Corporate law notice
BOHN AI Inc. is a corporation registered in the United States (State of Florida).

Content of this website
We create the content of this website with care. However, all content is provided for general information purposes only and does not constitute binding advice (e.g., legal, technical, medical, or financial advice). Binding commitments are made exclusively in individual agreements.

Liability for content
We are liable for our own content in accordance with applicable laws. Liability for damages arising from the use of the information provided is excluded to the extent that we have not acted intentionally or with gross negligence and no mandatory legal provisions conflict with this.

Liability for external links
Our website may contain links to external third-party websites. We have no influence over their content. We therefore assume no liability for third-party content. If we become aware of legal violations, we will remove such links where reasonable.

Availability & security
We strive to ensure secure and uninterrupted operation. However, continuous availability cannot be guaranteed. Use is at your own risk.

Copyright
Content, texts, graphics, designs, and other works on this website are protected by copyright. Any use beyond the limits of copyright law requires prior written consent from BOHN AI Inc. Third-party content is marked as such where known.

Trademark rights
BOHN AI, Deep Detective^™, Aquawhisperer^™, Mindwhisperer^™ and Roomwhisperer^™, as well as other product and company identifiers, may be trademarks or protected marks of BOHN AI Inc. or third parties. Mentioning them does not grant any license.

Unsolicited submissions
Please do not send us any confidential information, business ideas, concepts, or other unsolicited materials (“Unsolicited Submissions”). If content is nevertheless submitted, it is provided without any expectation of confidentiality or compensation, to the extent permitted by law.

Security reports (Responsible Disclosure)
If you discover a vulnerability or a security-related issue, please report it responsibly to: (subject: “Security”). Please do not publish details before we have had an opportunity to respond.

Consumer dispute resolution
We are neither obligated nor willing to participate in dispute resolution proceedings before a consumer arbitration board.

PRIVACY POLICY

This Privacy Policy explains how we process personal data when you visit our website or interact with us.

1.) Controller
BOHN AI Inc.
4281 Express Lane, Suite L3604, Sarasota, FL 34249, USA
Email:

2.) Principles (data minimization)
We process personal data in accordance with the principle of data minimization. Please do not submit special categories of personal data (e.g., health data) unless we expressly request them.

3.) Server log files (website operation)
When you visit the website, technically necessary data is processed (e.g., IP address, time of access, pages accessed, technical device/browser information, error data) in order to provide, protect, and stabilize the website.
Purposes: Operation, IT security, abuse and error analysis.
Legal basis: Legitimate interest (Art. 6(1)(f) GDPR), where applicable.

4.) Contacting us
If you contact us, we process the data you provide (e.g., name, email address, message) to handle your request.
Purposes: Communication, handling inquiries, if applicable initiating/performing a contract.
Legal basis: Art. 6(1)(b) GDPR (contract/pre-contract) or Art. 6(1)(f) GDPR (legitimate interest), where applicable.
Retention period: As long as necessary; thereafter only if statutory retention obligations apply.

5.) Newsletter / marketing emails
If you sign up, we process your email address to send you information about BOHN AI Inc.
Legal basis: Consent (Art. 6(1)(a) GDPR), where applicable.
Withdrawal: At any time with effect for the future (e.g., via the unsubscribe link or by emailing ).

6.) Orders & payment processing
For orders and the operation of our online store, we use the e-commerce platform Shopify. Shopify provides the technical infrastructure for product display, shopping cart, checkout, and order management. In this context, the data entered during the ordering process is processed, in particular name, email address, billing and shipping address (where relevant), order information, and transaction and communication data.

Payment processing is carried out - depending on the payment method you choose - via the respective payment service provider integrated into the checkout. Payment data (e.g., card or bank account details) is typically processed directly by the payment service provider; we usually receive only the information required to confirm payment and for billing (e.g., payment status, transaction reference).

Legal basis: Art. 6(1)(b) GDPR (contract performance) and - where necessary - Art. 6(1)(f) GDPR (e.g., IT security, fraud prevention). Where Shopify processes personal data on our behalf, this is based on a data processing agreement (Shopify Data Processing Addendum).

We store order and billing data in accordance with statutory retention obligations and delete or anonymize it thereafter.

7.) Cookies & reach measurement
Our website may use cookies/similar technologies.

• Technically necessary cookies: for core functions and security.
• Statistics/marketing cookies: only if used and, where required, based on your consent.

8.) Web analytics
If we use web analytics, we use it to measure and optimize the website. Where required, it is used only after consent.

9.) Recipients & processors
To provide, maintain, and secure our website and to perform certain functions, we use service providers. These process personal data either (a) as processors on our behalf or (b) depending on the service, as independent controllers (e.g., payment service providers). We share personal data only to the extent necessary to fulfill the respective purposes.

Our website and central technical components are hosted by IONOS. In this context, IONOS processes in particular technically necessary data (e.g., server log files/IP addresses in connection with delivery and IT security) and data generated during website operation. Where required, we have concluded a data processing agreement with IONOS (Art. 28 GDPR).

According to IONOS, the cloud/data center infrastructure used is certified to ISO/IEC 27001.

For orders and the operation of our online store, we use Shopify (see “Orders & payment processing”). Depending on the chosen payment method, payment service providers and additional technical service providers may also be involved.

10.) Data transfers to third countries
We operate the technical systems for our website and central services on servers in Germany. Our latest-generation cloud servers are located exclusively in Germany and are operated in ISO/IEC 27001-certified data centers. This ensures a very high level of information security; the data centers are subject to strict German and European data protection and security standards.

According to the data center operator, the data centers are also powered by electricity from renewable energy sources.

Nevertheless, in individual cases, personal data may be transferred to countries outside the European Economic Area (“third countries”). This may occur in particular:

(a) because BOHN AI Inc. is headquartered in the USA and administrative or support access to systems may be necessary, or

(b) because we use service providers for certain functions who also process data outside the EEA (e.g., Shopify for shop and order processing).

A transfer to a third country also exists if data is accessed from a third country - even if the data is stored in Germany.

Where data protection law requires it, we ensure appropriate safeguards for third-country transfers, in particular by entering into the EU Standard Contractual Clauses (SCC) and - where appropriate - additional technical and organizational measures (e.g., encryption, strict access controls, logging). We limit third-country transfers and access to the necessary minimum.

11.) EU representative under Art. 27 GDPR
If we are required under Art. 27 GDPR to designate an EU representative, we will publish the contact details here.

12.) Retention period
We store personal data only for as long as necessary for the purposes or as required by legal obligations.

13.) Your rights
Depending on applicable law, you may have rights in particular to access, rectification, deletion, restriction of processing, data portability, objection, and withdrawal of consent.
Contact to exercise your rights:

14.) Data security
We use appropriate technical and organizational measures to protect data. Complete security for transmissions over the internet cannot be guaranteed.

15.) Changes
We may update this Privacy Policy. The version published on this page applies in each case.