# Privacy *Last updated: 2026-05-28* Aktionariat AI is the MCP (Model Context Protocol) server operated by Aktionariat AG that lets you use AI assistants such as Claude, ChatGPT, and Cursor to query and act on the Aktionariat platform. This page summarises how that channel handles personal data. It is a focused restatement of the Aktionariat AI-specific clauses of the main [Aktionariat Privacy Policy](https://www.aktionariat.com/privacy-policy), which is the authoritative document and which governs all data Aktionariat AG holds about you. ## Who we are Aktionariat AG, Weinbergstrasse 18, 8703 Erlenbach, Switzerland, is the data controller. Contact: info@aktionariat.com. ## What data the AI channel touches - **Public data:** tokenized share metadata, market data, and — where issuers have chosen to publish them — order books. No authentication required. - **Your platform data, when you sign in:** data we already hold about you — for example, holdings, profile information, orders, or tax-related records. For company administrators, it also includes data about companies you manage: the same data exposed through the [Aktionariat Issuer Portal](https://portal.aktionariat.com/), with careful filtering to omit sensitive, personal, or otherwise unnecessary information that does not need to flow through an AI client. The available toolset evolves over time; your AI client's tool list and descriptions are the authoritative reference for what is currently exposed. - **Sign-in data:** depending on the method you choose, either your email address (plus a one-time PIN we send to it) or a signature from a wallet you control (Aktionariat App, an EIP-6963 browser wallet, or WalletConnect) along with the connected wallet address. Used only to authenticate you and issue an OAuth token to the connecting AI client. ## What the AI channel does not touch - We do not read or store your AI conversation history, prior chat messages, or files you have uploaded to the AI client. - We do not query the AI client's memory or summaries of past conversations. - We do not use any data accessed through this channel to train, fine-tune, or evaluate machine-learning models. ## How sign-in works Aktionariat AI supports two sign-in methods. - **By email.** Enter your email and the one-time PIN we send to it. - **By wallet.** Connect a wallet — the Aktionariat App, an EIP-6963 browser wallet, or WalletConnect — and sign a short authentication challenge with it. We never receive your private key or seed phrase; only the resulting signature and the connected wallet address. In both cases, we create a short-lived login session (encrypted, auto-expiring within minutes) for the duration of the sign-in flow. On success, we issue an OAuth token to your AI client. The client stores it and presents it on subsequent tool calls. You can revoke the token at any time from your Aktionariat account or by disconnecting the connector in your AI client. ## Read tools and tools that act on your behalf Some tools simply return information; others write data or sign something on your behalf — for example, casting a vote, updating profile details, or placing or cancelling an order. Any tool that has effects beyond reading is flagged as such in its description, and your AI client will ask for explicit confirmation before invoking it. You are responsible for reviewing what the AI proposes before approving any such action. **The MCP server does not transfer money, cryptocurrency, or tokenized shares on your behalf.** ## Third parties - **Cloudflare** hosts the MCP server (Workers) and the transient session store (KV). - **The AI client provider** (Anthropic for Claude, OpenAI for ChatGPT, etc.) operates the conversational layer under its own terms. Aktionariat does not control how the AI provider processes your prompts or generates responses. Review your AI provider's privacy policy separately. - All other processing continues to use the providers described in the main [Aktionariat Privacy Policy](https://www.aktionariat.com/privacy-policy). ## Logging and retention We log what we need to operate and secure the service: timestamps, the tool invoked, the authenticated user identifier where applicable, and error information. We do not retain a copy of tool inputs or outputs as conversational records. Operational logs are kept for as long as needed for security, debugging, and compliance, after which they are deleted. The retention rules in the main [Aktionariat Privacy Policy](https://www.aktionariat.com/privacy-policy) (including the 10-year Swiss-law retention for shareholder registry data) continue to apply to the underlying platform data. ## Not investment advice Information returned by Aktionariat AI, and any narrative your AI client generates from it, is provided for informational purposes only. It is not investment, legal, tax, or accounting advice and is not a solicitation to buy or sell securities. You are responsible for your decisions; consult a licensed adviser where appropriate. ## Your rights Your subject rights — access, correction, deletion, restriction, portability, objection, complaint to the Swiss Federal Data Protection and Information Commissioner — are described in the main [Aktionariat Privacy Policy](https://www.aktionariat.com/privacy-policy) and apply equally to data processed through Aktionariat AI. ## Contact Questions about how Aktionariat AI handles your data: info@aktionariat.com. --- Human version: https://ai.aktionariat.com/privacy