How nele.ai protects your data at
the use of AI
The use of ChatGPT and other AI services may result in the transmission of personal data to the AI systems.
This is usually a breach of data protection and can occur quickly, for example when employees send an email or contract details to the AI provider for checking.
By using nele.ai, this problem can be effectively avoided. Nele.ai acts as an intermediary, which means that your data is not sent directly to the AI provider, is not used for training purposes, and is also pseudonymized.
The diagram and comparison below illustrate how nele.ai helps you and your employees comply with data protection and compliance requirements:
Functionality
The nele.ai cloud servers are hosted in the EU according to European law.
Comparison
ChatGPT - nele.ai
Comparison
Direct use of ChatGPT functions
Use of ChatGPT functions with nele.ai*.
Protection of your data:
Your input, including IP address, is passed directly to AI providers.
When using nele.ai, your input is transmitted to nele.ai servers - in the process, your IP address and location data are not passed on to the AI provider.
Privacy filter:
High risk of data privacy breaches due to the transfer of personal data (e.g., first names and surnames, email addresses) to the AI provider.
In addition to existing contracts, we also filter out personal data, such as first and last names, email addresses, etc., as far as recognizable, before these are transmitted to the AI. Even with the filter switched off, nele.ai is GDPR-compliant.
Location EU:
Storage of input directly with the ChatGPT provider (usually on US servers).
Storage of input on servers of nele.ai within the EU.
Processing exclusively for you:
Processing of inputs by AI providers for their own purposes (which may give rise to joint responsibility for their processing under Ar. 4 No. 7, 26 GDPR).
No use of input by nele.ai or AI providers for their own purposes, processing solely on behalf of customers.
No AI training:
Your input can be used to train the AI.
Your input will be processed exclusively for the purpose of responding to your inquiries.
Order processing contract:
There is no binding obligation for data protection according to Art. 26 (joint responsibility) or 28 DSGVO (commissioned processing).
Use of nele.ai takes place on the basis of a commission processing contract in the sense of Art. 28 between you, with obligation to follow personal data only according to your instructions. There is also a corresponding order processing agreement between nele.ai and Open-AI.
Protection of professional secrecy holders:
No special obligation for professional secrecy holders (doctors, lawyers, etc.) according to § 203 StGB.
In the order processing contract, nele.ai guarantees compliance with the requirements for professional secrecy holders.
Contact person in Germany:
In case of technical problems or questions regarding data protection, the contact persons are located in the USA.
nele.ai offers a contact person based in Germany.
* Notes on the privacy filter and how it works: User input is processed by means of filtering software while still on nele.ai's server before being transmitted to AI providers, in order to filter out personal data and thus increase legal certainty when using AI services. It should be noted, however, that although this filter provides enhanced protection, it cannot guarantee complete anonymization in all scenarios (e.g., pure numbers, such as customer or ID numbers, may have a personal reference). Furthermore, the filter can be deactivated by users if necessary (e.g., searching for details of prominent persons would not work if their name was removed). For the rest, our terms of use apply.