Privacy policy of Schröter Keynoby

Last updated: 26 July 2025

1. Introduction

This notice describes how Schröter Keynoby, a sole proprietorship, Leuengasse 24, 8142 Uitikon (ZH) (hereinafter "Keynoby", "we") processes your personal data under the revised Swiss Data Protection Act (revDSG) and—if you are resident in the EU/EEA—under the GDPR.

2. Controller

Schröter Keynoby · Leuengasse 24 · 8142 Uitikon · Switzerland
Email:support@keynoby.com

3. Categories, purposes and legal bases

PurposeData categoriesLegal basis
Registration and contactName, mobile number, email, password hashContract performance (Art. 6(1)(b) GDPR / Art. 31 revDSG)
Temporary address search (locksmith finder)Entered address, geo coordinatesLegitimate interest – matching · deletion after 24 h
Referral and order handlingName, address, phone, order detailsContract performance
Communication via Stream Chat IOChat messages, file attachmentsContract performance · legitimate interest (support/evidence)
Quality assurance / fraud prevention (mystery calls)Phone or email notes, order IDLegitimate interest (Art. 6(1)(f) GDPR / Art. 31 revDSG)
Web analytics (Google Analytics)Anonymized IP, GA cookie ID, usage behaviorConsent via cookie banner (Art. 6(1)(a) GDPR)

4. Stream Chat IO

  • Storage:  Chat histories remain for 12 months on Stream's EU servers (Dublin) and are then deleted or irreversibly anonymized.

5. Quality assurance (mystery calls / customer surveys)

  • Contact is made exclusively by phone or email after order completion.
  • No recording:  Only conversation or email notes are created.
  • Retention period:  12 months, then deletion or statistical aggregation.
  • Objection:  At any time informally to  support@keynoby.com.

6. Cookies and Google Analytics

Google Analytics cookies are set only after your consent via the cookie banner; raw data is stored for 14 months.

7. Storage and deletion periods

Data typePeriod
Contract and booking data10 years (Art. 958f OR)
Chat histories (Stream)12 months
Quality notes12 months
GA raw data14 months
Support tickets24 months
Server log files30 days

8. Recipients and cross-border transfers

  • Locksmith partners  – independent controllers; receive only order-related data.
  • Stream.io, Inc.  (USA) – appropriate safeguards (e.g. EU standard contractual clauses).
  • Google LLC  (USA) – appropriate safeguards (e.g. EU standard contractual clauses).
  • No disclosure to third parties for advertising purposes.

9. Your rights

Access · rectification · erasure · restriction · data portability · objection · withdrawal of consent.
Requests to  support@keynoby.com.
Complaint: Swiss Federal Data Protection and Information Commissioner (FDPIC) or—if you reside in the EU—your local supervisory authority.

10. Data security

  • TLS 1.3 encryption  of all connections between your browser and our platform.
  • Hosting on Google Cloud / Firebase  in EU or CH region with DDoS protection, automatic security patches and encryption at rest (AES‑256).
  • Regular security updates  of all server and framework libraries.

Note:  Two‑factor authentication for the admin dashboard and external penetration tests are planned but not yet active.

11. Changes to this notice

We update this privacy policy when laws or services change. The current version is available at keynoby.com/de/datenschutz.