Privacy Policy

Last Updated: 30/03/2026

1. Introduction & Data Controller

Metaneering SARL ("we", "us", or "our") is committed to protecting your personal data and respecting your privacy. This policy outlines how we collect, use, store, and protect your information in compliance with the General Data Protection Regulation (GDPR).

Data Controller Contact Details:

Metaneering SARL

14-16, Av. Pasteur

L-2310 Luxembourg

Grand Duchy of Luxembourg

Email: privacy@metaneering.com

2. Data Collection & Processing Activities

Contact Forms

  • Data Collected: Name, email address, phone number, company name, message content.
  • Purpose: To respond to inquiries, provide quotes, and communicate regarding our services.
  • Legal Basis (GDPR Art. 6): Art. 6(1)(b) - Performance of a contract or steps prior to entering into a contract; Art. 6(1)(f) - Legitimate interest in business communication.
  • Retention Period: Stored for the duration of the business relationship or up to 3 years after the last interaction.
  • Processors: Email hosting provider (e.g., Hostinger), CRM systems (if applicable).

Analytics Tracking

  • Data Collected: Anonymized IP address, browser type, device type, pages visited, time spent on site, referral source.
  • Purpose: To analyze website performance, user behavior, and improve user experience.
  • Legal Basis (GDPR Art. 6): Art. 6(1)(a) - Consent (via Cookie Banner).
  • Retention Period: Aggregate data is retained for 14 months (standard Google Analytics retention) or until consent is withdrawn.
  • Processors: Google Analytics (Google Ireland Ltd).

Server Logs & IP Logging

  • Data Collected: IP address, timestamp, request type, HTTP status code, user agent.
  • Purpose: To ensure network security, prevent fraud, and diagnose technical issues.
  • Legal Basis (GDPR Art. 6): Art. 6(1)(f) - Legitimate interest in ensuring the security and stability of our IT systems.
  • Retention Period: Logs are typically overwritten after 30 days unless required for security investigation.
  • Processors: Hosting Provider (Hostinger).

External Embeds (Calendly, Brevo)

  • Data Collected: Appointment details (Calendly), newsletter subscription data (Brevo).
  • Purpose: Scheduling meetings and managing newsletter subscriptions.
  • Legal Basis (GDPR Art. 6): Art. 6(1)(a) - Consent (when user interacts with the embed).
  • Retention Period: Determined by the respective third-party policies; we retain reference data as long as necessary for the business purpose.
  • Processors: Calendly LLC, Brevo (formerly Sendinblue).

Cookies & Session Data

  • Data Collected: Session IDs, preference settings, authentication tokens.
  • Purpose: To maintain user sessions, remember preferences, and ensure site functionality.
  • Legal Basis (GDPR Art. 6): Art. 6(1)(f) for essential cookies (Legitimate Interest); Art. 6(1)(a) for non-essential cookies (Consent).
  • Retention Period: Session cookies expire when the browser is closed. Persistent cookies have varying lifespans (e.g., 30 days to 1 year).

3. Your Rights Under GDPR

As a data subject, you have the following rights regarding your personal data:

  • Right to Access (Art. 15): You can request a copy of the personal data we hold about you.
  • Right to Rectification (Art. 16): You can request correction of inaccurate or incomplete data.
  • Right to Erasure ("Right to be Forgotten") (Art. 17): You can request deletion of your data under certain conditions.
  • Right to Restriction of Processing (Art. 18): You can request that we limit how we use your data.
  • Right to Data Portability (Art. 20): You can request to receive your data in a structured, machine-readable format.
  • Right to Object (Art. 21): You can object to processing based on legitimate interests or for direct marketing.
  • Right to Withdraw Consent (Art. 7): Where processing is based on consent, you may withdraw it at any time.

Data Subject Access Request (DSAR) Procedure

To exercise any of these rights, please contact us at privacy@metaneering.com.

We will respond to your request within one month. This period may be extended by two further months where necessary, taking into account the complexity and number of requests.

4. Cookie Notice & Opt-Out

We use cookies to enhance your browsing experience. You can control and manage cookies in various ways. Please note that removing or blocking cookies can impact your user experience and parts of this website may no longer be fully accessible.

How to Manage Cookies:

  • Browser Settings: Most browsers allow you to refuse to accept cookies and to delete cookies. The methods for doing so vary from browser to browser, and from version to version.
  • Analytics Opt-Out: To opt out of being tracked by Google Analytics across all websites, visit http://tools.google.com/dlpage/gaoptout.

5. International Data Transfers

Some of our third-party service providers (e.g., Google, Calendly) may process data outside the European Economic Area (EEA). In such cases, we ensure that appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission, to protect your data.

6. Changes to This Policy

We may update this Privacy Policy from time to time. The updated version will be indicated by an updated "Revised" date and the updated version will be effective as soon as it is accessible. We encourage you to review this Privacy Policy frequently to be informed of how we are protecting your information.