PRIVACY POLICY — NERO STUDIO

1.1. This Privacy Policy ('Policy') describes the principles of personal data processing by Nero Studio ('we', 'us', 'the Studio') in connection with the operation of the website and the provision of services related to video production, editing, post-production, digital avatars, AI-based solutions, and other related creative services.

1.2. This Policy is for informational purposes and fulfills the informational obligation arising from applicable data protection regulations, in particular: the GDPR (EU) Regulation, the Swiss Federal Act on Data Protection (nFADP), and the national regulations applicable to the user.

1.3. The Policy applies to all forms of contact and interaction with Nero Studio, in particular through: the website, contact and brief forms, email communication, cloud services, online tools, and materials submitted by users.

1.4. Regardless of the user's country of residence, Nero Studio applies uniform, high standards of personal data protection based on the principles of GDPR as a global point of reference.

2.1. The controller of personal data is Nero Studio.

2.2. For matters related to personal data protection, including the exercise of the rights of data subjects, you can contact us via the contact form available under the 'Contact' link in the service menu or in the site footer.

2.3. Nero Studio is not obliged to appoint a Data Protection Officer (DPO) and does not currently designate a separate officer in this regard.

Depending on the type of relationship and interaction, we may process the following categories of personal data:

Identification and contact data: name, surname, email address, phone number,

Company data (if applicable): company name, billing data,

Media and project data: video files, audio, graphics, scripts, metadata,

Communication data: content of correspondence, comments, corrections,

Technical data: IP address, device type, operating system, browser, server logs,

Analytical and cookie data: session identifiers and information described in detail in the Cookies Policy.

We do not process special categories of personal data unless it is necessary and results directly from the nature of the service and applicable regulations.

We process personal data only for clearly defined purposes and on appropriate legal bases:

performance of a contract or pre-contractual actions,

handling inquiries and communication with the user,

implementation of projects and creative services,

analysis and development of service quality and UX (legitimate interest),

marketing of own services – only within the limits permitted by law or based on consent,

accounting and tax obligations,

ensuring security and preventing abuse.

5.1. We process data for a period no longer than necessary to achieve the purposes for which they were collected.

5.2. Data related to settlements and accounting documentation are stored for the period required by law.

5.3. Communication and project data are stored for the duration of the cooperation and for a reasonable archival period for evidentiary purposes.

5.4. Analytical and cookie data are stored in accordance with the principles described in the Cookies Policy.

Personal data may be transferred only to the extent necessary to:

providers of technical services (hosting, cloud, backup),

analytical and technological tools,

subcontractors performing specific services (on a data processing basis),

public authorities, if required by law.

We do not sell personal data.

Due to the nature of the services, data may be processed outside the user's country. In such cases, we apply appropriate safeguards, in particular:

Standard Contractual Clauses (SCCs),

transfer risk assessment,

technical measures, such as encryption.

Every data subject has the right to:

access their data,

rectify them,

erase them (if permitted by law),

restrict processing,

data portability (if applicable),

object to processing,

withdraw consent at any time.

Rights can be exercised via the contact form on the service.

The service uses cookies and similar technologies. The rules for their use, purposes, and consent management options are described in detail in the Cookies Policy available on the service.

As part of Nero Studio's services, tools based on artificial intelligence may be used, in particular for material processing and support of creative processes.

This processing does not lead to decisions being made about the user solely by automated means that produce legal effects. Upon the user's request, human verification is possible.

We apply adequate technical and organizational measures to protect personal data, including:

connection encryption,

limited access to data,

regular backups,

measures to prevent unauthorized access.

In the event of a personal data breach, we take action in accordance with applicable law, including – if required – informing the data subjects and the competent supervisory authority.

The Policy may be periodically updated. The current version is always published on the service with the effective date.

This Privacy Policy is an integral part of the legal information of the Nero Studio service and is applied in conjunction with the Terms of Service and the Cookies Policy.