Check visibility

Updated: 2026-05-15

Privacy notice

This page explains, without legal padding, which personal data I receive when you write through this site, what I do with it, and the rights the law gives you. Berlin Signal is a one-person AI visibility practice. There is no sales pipeline and no newsletter waiting to catch your address.

Who handles your data

This site is run by Jonah Feld as Berlin Signal, a solo AI visibility advisory based in Berlin. Under the General Data Protection Regulation (GDPR), the controller for the personal data described here is the operator of aiseoberlin.com. For any privacy question, or to act on a right, write to jonah@aiseoberlin.com.

What is collected

When you send the form, what reaches me is:

  • Your name and email — so I can reply to you directly.
  • Whatever you decide to describe: your category and district, the language mix of your customers, the profiles or reviews you point me to, and the AI answers you care about. Beyond name and email, nothing is mandatory.

This data serves one purpose: answering what you wrote. You join no list, and your details are neither sold nor passed on (apart from the payment processor noted below, where one is involved). The submission's date and time are kept alongside a salted SHA-256 hash of your IP address, purely to keep automated traffic from abusing the form. The raw IP is never stored, and neither are browser fingerprints or device metadata.

What is not collected

  • No tracking cookies. The analytics runs cookie-free and keeps no per-visitor identifier.
  • No remarketing pixels, ad-network tags, or marketing-automation trackers.
  • No automated profiling, and no automated decision with a legal effect on you.
  • Personal data is never sold or handed to commercial partners — that is simply not how this practice earns.

Why the law allows this

Messages from the form are processed under Article 6(1)(b) of the GDPR (steps taken at your request before any agreement). The IP hash that guards the form rests on Article 6(1)(f) (legitimate interest). Payment-status data, where it exists, rests on the contractual basis.

How long it is kept

  • Form messages: kept for the duration of any engaged work plus 24 months, so the context of the exchange survives, then deleted. A message that leads nowhere is kept 12 months, then deleted.
  • Payment records: kept for the period tax and accounting law require, then deleted.
  • IP hashes: kept 90 days — enough for abuse protection — then deleted.
  • Email threads: kept while the work is active, or for 24 months after the last contact, whichever runs longer.

Your rights

Under the GDPR you can request access to your data, its correction, deletion, or portability, ask for processing to be restricted, or object to it. For any of these, write to jonah@aiseoberlin.com; a reply follows within one month. If you believe the handling breaks the law, you can lodge a complaint with the data-protection supervisory authority where you live.

Where the data is held

The infrastructure serving this site sits in European Union (Germany). Where further processors (email provider) operate outside the European Union, those transfers rely on standard contractual clauses and on the safeguards each recipient publishes.

Changes to this notice

This notice is updated whenever the handling of data changes in a meaningful way. The "Updated" date at the top marks the version in force. A substantive change stays flagged on the home page for 30 days, so returning visitors can see it.