Privacy policy of Schröter Keynoby
Last updated: 26 July 2025
1. Introduction
This notice describes how Schröter Keynoby, a sole proprietorship, Leuengasse 24, 8142 Uitikon (ZH) (hereinafter "Keynoby", "we") processes your personal data under the revised Swiss Data Protection Act (revDSG) and—if you are resident in the EU/EEA—under the GDPR.
2. Controller
Schröter Keynoby · Leuengasse 24 · 8142 Uitikon · Switzerland
Email:support@keynoby.com
3. Categories, purposes and legal bases
| Purpose | Data categories | Legal basis |
|---|---|---|
| Registration and contact | Name, mobile number, email, password hash | Contract performance (Art. 6(1)(b) GDPR / Art. 31 revDSG) |
| Temporary address search (locksmith finder) | Entered address, geo coordinates | Legitimate interest – matching · deletion after 24 h |
| Referral and order handling | Name, address, phone, order details | Contract performance |
| Communication via Stream Chat IO | Chat messages, file attachments | Contract performance · legitimate interest (support/evidence) |
| Quality assurance / fraud prevention (mystery calls) | Phone or email notes, order ID | Legitimate interest (Art. 6(1)(f) GDPR / Art. 31 revDSG) |
| Web analytics (Google Analytics) | Anonymized IP, GA cookie ID, usage behavior | Consent via cookie banner (Art. 6(1)(a) GDPR) |
4. Stream Chat IO
- Storage: Chat histories remain for 12 months on Stream's EU servers (Dublin) and are then deleted or irreversibly anonymized.
5. Quality assurance (mystery calls / customer surveys)
- Contact is made exclusively by phone or email after order completion.
- No recording: Only conversation or email notes are created.
- Retention period: 12 months, then deletion or statistical aggregation.
- Objection: At any time informally to support@keynoby.com.
6. Cookies and Google Analytics
Google Analytics cookies are set only after your consent via the cookie banner; raw data is stored for 14 months.
7. Storage and deletion periods
| Data type | Period |
|---|---|
| Contract and booking data | 10 years (Art. 958f OR) |
| Chat histories (Stream) | 12 months |
| Quality notes | 12 months |
| GA raw data | 14 months |
| Support tickets | 24 months |
| Server log files | 30 days |
8. Recipients and cross-border transfers
- Locksmith partners – independent controllers; receive only order-related data.
- Stream.io, Inc. (USA) – appropriate safeguards (e.g. EU standard contractual clauses).
- Google LLC (USA) – appropriate safeguards (e.g. EU standard contractual clauses).
- No disclosure to third parties for advertising purposes.
9. Your rights
Access · rectification · erasure · restriction · data portability · objection · withdrawal of consent.
Requests to support@keynoby.com.
Complaint: Swiss Federal Data Protection and Information Commissioner (FDPIC) or—if you reside in the EU—your local supervisory authority.
10. Data security
- TLS 1.3 encryption of all connections between your browser and our platform.
- Hosting on Google Cloud / Firebase in EU or CH region with DDoS protection, automatic security patches and encryption at rest (AES‑256).
- Regular security updates of all server and framework libraries.
Note: Two‑factor authentication for the admin dashboard and external penetration tests are planned but not yet active.
11. Changes to this notice
We update this privacy policy when laws or services change. The current version is available at keynoby.com/de/datenschutz.