What happens if the hardware fails?

Every appliance ships with enterprise-grade components rated for 24/7 operation. We offer optional maintenance contracts with next-business-day hardware replacement.

How long does deployment take?

From order to a fully running AI system: typically 2–4 weeks. On-site setup usually takes less than a day.

How does this help with EU AI Act compliance?

With on-premise AI, your data never leaves your building — eliminating cross-border data transfer risks.

How does the pricing compare to cloud AI long-term?

The WerkHub AI appliance is a one-time investment starting at €5,900 (from €2,950 with Digitalbonus). Most customers see full ROI within 12–18 months.

Is the appliance air-gapped? Does it need internet?

The appliance runs completely offline — no internet connection required for AI inference.

Privacy Policy

Last updated: May 2026

1. Controller

The controller responsible for data processing on this website is:

3DBerg Ltd.
ul. Ivan Vazov 9
6300 Haskovo, Bulgaria
Email: [email protected]

2. Overview of Data Processing

We take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with the statutory data protection regulations, in particular the EU General Data Protection Regulation (GDPR) and the Bulgarian Personal Data Protection Act (LPDP).

3. Data We Collect

3.1 Contact Form

When you submit our contact form, we collect:

Full name (required)
Company name (required)
Email address (required)
Team size (optional)
Message content (optional)

3.2 ROI Calculator Access Form

When you request access to the ROI calculator, we collect:

Full name (required)
Work email address (required)
Company name (required)
Job title (required)
Company address (optional)
Team size (optional)

3.3 Landing Page Lead Forms (EU AI Act, TCO, Digitalbonus)

When you submit a form on one of our dedicated landing pages, we collect: full name, work email, company, role, marketing-attribution parameters (UTM source / medium / campaign), and page-specific inputs (e.g., team size for TCO; eligibility-quiz answers for Digitalbonus). These are processed identically to contact-form submissions and subject to the same retention rule below.

3.4 Server Log Files

Our hosting provider automatically collects and stores information in server log files that your browser transmits to us. These include: browser type/version, operating system, referrer URL, hostname of the accessing device, and time of the server request. This data cannot be assigned to specific persons and is not merged with other data sources.

4. Legal Basis for Processing

We process your personal data on the following legal bases:

Art. 6(1)(b) GDPR— Processing is necessary for the performance of a contract or for pre-contractual measures taken at your request (e.g., responding to your inquiry, preparing a quote).
Art. 6(1)(f) GDPR— Processing is necessary for the purposes of our legitimate interests (e.g., improving our services, preventing spam), provided your interests do not override ours.

5. How We Use Your Data

We use the data collected through our forms to:

Respond to your inquiry and provide requested information
Prepare personalized quotes and cost analyses
Communicate about our products and services
Improve our website and offerings

6. Data Storage and Security

Your form submissions are stored in our headless content-management system (PayloadCMS), hosted on EU servers. Data is stored in an encrypted database and is not transferred to third-party cloud services outside the EU for storage or processing.

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction.

7. Data Retention

Personal data submitted through any of our forms (contact, ROI calculator, landing-page lead forms, case-study, job application) is retained on EU servers for a maximum of 6 months, after which it is deleted. You may request earlier deletion at any time by emailing [email protected]. Where commercial or tax law requires longer retention of specific records (e.g., concluded contracts, invoices), the underlying business record is kept for the legally required period but is not used for marketing purposes.

8. Data Transfer to Third Parties

We do not sell, trade, or transfer your personal data to third parties for marketing purposes. Data may only be disclosed if required by law or if necessary for the performance of a contract (e.g., to our hosting provider, payment processor, or transactional email provider, each bound by a data processing agreement under Art. 28 GDPR).

Current processors:

PayloadCMS— lead-data storage, hosted on EU infrastructure.
Brevo (formerly Sendinblue)— transactional and marketing email delivery; EU-based; DPA on file. Used only after marketing consent.
Cal.com— consultation booking; processes name, email, and meeting time. Used only when you explicitly book a consultation.
Umami Cloud— privacy-focused, cookieless analytics. Activated only with your analytics consent.
Google Tag Manager— tag orchestration with Consent Mode v2. Underlying tags (analytics, marketing) fire only after the corresponding consent.
LinkedIn Insight Tag— conversion attribution for B2B campaigns. Activated only with your marketing consent.

9. Cookies and Tracking

On first visit you are presented with a cookie banner offering three categories: Essential (always on), Analytics, and Marketing. No third-party scripts load before you give the corresponding consent. Google Tag Manager runs in Consent Mode v2: all signals (analytics_storage, ad_storage, ad_user_data, ad_personalization) are denied by default and updated only when you grant consent.

You can change your cookie preferences at any time via the “Cookie preferences” link in the footer.

10. Your Rights Under GDPR

You have the following rights regarding your personal data:

Right of access (Art. 15 GDPR) — You can request information about your stored personal data.
Right to rectification (Art. 16 GDPR) — You can request correction of inaccurate data.
Right to erasure (Art. 17 GDPR) — You can request deletion of your data, subject to legal retention obligations.
Right to restriction (Art. 18 GDPR) — You can request restriction of processing under certain conditions.
Right to data portability (Art. 20 GDPR) — You can request your data in a structured, machine-readable format.
Right to object (Art. 21 GDPR) — You can object to processing based on legitimate interests at any time.

To exercise any of these rights, please contact us at [email protected].

11. Right to Lodge a Complaint

If you believe that the processing of your personal data violates data protection law, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or the place of the alleged infringement (Art. 77 GDPR).

The competent supervisory authority for Bulgaria is:
Commission for Personal Data Protection (CPDP)
2 Prof. Tsvetan Lazarov Blvd., 1592 Sofia, Bulgaria
www.cpdp.bg

12. Changes to This Policy

We may update this privacy policy from time to time to reflect changes in our practices or applicable law. The “Last updated” date at the top of this page indicates when the policy was last revised.