Privacy Policy
Last updated: July 2026
1. Controller
The controller within the meaning of the General Data Protection Regulation (GDPR) is:
Daniel Steuer, Beyond Prompt AI Studio, Haasestraße 8, 10245 Berlin, Germany, email: [contact email].
2. Hosting
This website is hosted by Vercel Inc., 340 S Lemon Ave #4133, Walnut, CA 91789, USA. Vercel processes technically necessary server log data (e.g. IP address, time of access, page requested) to deliver the website. The legal basis is Art. 6(1)(f) GDPR (legitimate interest in a functioning and secure website). Any transfer of data to the US is based on Standard Contractual Clauses.
3. Contact form
If you use the contact form, the data you enter (name, email, company, project type, short description, preferred timeframe, budget range if provided) is processed to handle your request. The legal basis is Art. 6(1)(b) GDPR (pre-contractual measures) or Art. 6(1)(a) GDPR (consent).
Sending is handled technically via the email provider Resend (Resend Inc., USA). Resend is certified under the EU-US Data Privacy Framework and is contractually bound to comply with GDPR requirements (Data Processing Agreement under Art. 28 GDPR). Data is deleted once your request has been fully processed and no statutory retention obligations apply.
4. Scheduling (Calendly)
If you are redirected via a link on this website to Calendly (Calendly LLC, USA) to book an appointment, Calendly's own privacy policy applies there. This is a plain link, not an embedded widget – no Calendly cookies are set or data transferred on this website unless you follow the link.
5. Cookies and tracking
This website does not use analytics or marketing cookies and no third-party tracking. Only technically necessary data is processed as part of hosting (see section 2).
6. Your rights
You have the right to access (Art. 15 GDPR), rectification (Art. 16 GDPR), erasure (Art. 17 GDPR), restriction of processing (Art. 18 GDPR), data portability (Art. 20 GDPR) and objection to processing (Art. 21 GDPR). You also have the right to lodge a complaint with a data protection supervisory authority (Art. 77 GDPR).
7. Legal notice
This privacy policy is a template and does not replace legal advice. It should be reviewed by a lawyer and adapted to the services actually in use before publication.