Data protection

1. Controller

Schopf Meta Consult GmbH (represented by Dr. Peter Schopf)
Danziger Weg 2, 91052 Erlangen, Germany
Email: info@schopf-meta-consult.de

2. General information

We process personal data only to the extent necessary to provide our website, communicate with you, or operate our MBT AI chat. Any further processing takes place only if you have given consent or if we are legally obliged to do so.

3. Website access / server log files

When you access our website (schopf-meta-consult.de and MBT subdomains), our hosting/platform provider processes server log files. This may include: IP address, date/time of access, requested page/file, referrer URL, browser/device information, and operating system.

Purposes: website operation, technical delivery, troubleshooting, IT security and abuse prevention.
Legal basis: Art. 6(1)(f) GDPR (legitimate interest in secure and stable operation).
Recipients: hosting/platform provider (processor).

4. Contact (email and contact form)

If you contact us by email or via the contact form, we process the data you provide (e.g., name, email address, message content) to handle your request.

Purposes: responding to inquiries, initiating or performing a contract if applicable.
Legal bases:

Art. 6(1)(b) GDPR (pre-contractual steps/contract), or

Art. 6(1)(f) GDPR (general communication/administration).
Recipients: email/IT service providers (processors), if used.

5. Cookies / consent management

We use a consent banner that allows you to enable or disable optional services (e.g., statistics / external media). We only activate non-essential technologies if you allow them via the banner. You can change or withdraw your selection at any time using the privacy settings on the website.

Legal basis (where applicable): Art. 6(1)(a) GDPR (consent).

6. Audience measurement / web analytics (IONOS SiteAnalytics / WebAnalytics)

We use IONOS SiteAnalytics/WebAnalytics to measure and analyse website usage (e.g., page views, technical device information). According to the provider, this processing is performed without cookies and the IP address is anonymised upon transmission.

Purpose: statistics and website optimisation.
Legal basis: Art. 6(1)(a) GDPR (only if enabled via the consent banner).
Recipients: IONOS/platform provider (processor).

7. Embedded videos (YouTube)

Some pages may include embedded YouTube videos. When you play/activate a video, a connection to YouTube (Google) is established and data (e.g., IP address, device information, page accessed) may be transmitted to Google.

Purpose: displaying video content.
Legal basis: Art. 6(1)(a) GDPR (consent via consent banner/external media).
Third-country transfers: Transfers to third countries (e.g., the USA) may occur. Where required, such transfers are based on appropriate safeguards (e.g., adequacy decision/DPF, Standard Contractual Clauses).

8. Website translator

We provide a translation feature (“website translator”). When used, your browser may transmit content/metadata to the relevant translation service to provide the translation.

Purpose: providing the translation feature.
Legal basis: Art. 6(1)(a) GDPR (consent via consent banner/functional or external media, where controlled there).
Recipients/third-country transfers: depending on the provider; third-country transfers may be possible.

9. MBT AI chat

9.1 Public demo

In the public demo, we process your chat inputs to provide the chat functionality. Please do not enter sensitive data unless you explicitly want us to use it for contact/support.

Purpose: providing the demo chat, security and abuse prevention.
Legal basis: Art. 6(1)(f) GDPR (operation/security) and—where you voluntarily provide information for follow-up—Art. 6(1)(a) GDPR (consent by submitting such data).

9.2 Personalised instances (e.g., coaching)

For personalised instances we additionally process account data (e.g., email address, login credentials) and store chat histories to the extent required for coaching and/or contractual services.

Purpose: user account, authentication, delivery of coaching/services, documentation/quality assurance.
Legal basis: Art. 6(1)(b) GDPR (contract/performance).
Recipients: technical service providers/hosting in Microsoft Azure (EU data centres) as processors.

10. Data sharing / recipients

We share personal data only where necessary for operating our website/services (processors), where you have consented, or where we are legally required. Typical recipients are hosting/platform providers, IT and email service providers, and—after consent—providers of external content (e.g., YouTube).

11. Retention / deletion

We generally retain personal data as long as necessary for the respective purposes. We currently do not implement automated deletion in all systems, so data may be deleted through manual processes or upon request. Deletion may be restricted where statutory retention obligations apply or where data must be retained for the establishment, exercise, or defence of legal claims.

12. Your rights

You have the right to access, rectification, erasure, restriction of processing, data portability, and to object to certain processing. Where processing is based on consent, you may withdraw consent at any time with effect for the future (e.g., via the privacy settings or by email).

13. Right to lodge a complaint

You may lodge a complaint with a supervisory authority. For our registered office, the competent authority is in particular:
Bayerisches Landesamt für Datenschutzaufsicht (BayLDA), Promenade 18, 91522 Ansbach, Germany.

14. Security

We implement appropriate technical and organisational measures (e.g., TLS encryption, access controls) to protect data against loss, misuse, and unauthorised access.

15. No automated individual decision-making

We do not conduct automated decision-making within the meaning of Art. 22 GDPR.

16. Changes

We may update this privacy policy from time to time. The current version is always available on this page.

(Version: February 2026)