Imprint

This is an English translation. Only the German original is legally binding.

Name and Address

Karl-Heinz Meisters
Diplom-Psychologe
Jahnstraße 20
53225 Bonn
Phone: +49-228-38757676

Please use this phone number for organisational matters – for example, to initiate contact or for general questions.

For confidential content I am available via secure communication channels.

Email

kontakt@k-meisters.de

Responsible for content according to § 55 (2) RStV

Karl-Heinz Meisters (contact details as above)

---

Disclaimer

This is an English translation. Only the German original is legally binding.

General Information

The content published on this website is provided for information purposes only and to support your personal and professional development. The information provided does not constitute medical, therapeutic, or psychotherapeutic advice. It is not intended to replace an individual, professional diagnosis or treatment.

Services

I, Karl‑Heinz Meisters, am a graduate psychologist. My work is limited to conversations intended for personal development and clarification. I am not a physician, alternative practitioner, or psychotherapist, and I do not practise medicine as defined by applicable health‑care laws. I do not provide diagnoses, treat or alleviate illnesses, or offer medical services. My work does not include legal advice and is neither to be understood in the legal sense nor as a legal service.

No Substitute

The content published on this website and the techniques discussed in sessions must never be understood as a substitute for professional medical, therapeutic, or psychotherapeutic treatment. In the case of specific health problems or medical questions, it is essential to consult a qualified physician, Heilpraktiker, or psychotherapist.

Definition of “Mandate”

Within the scope of my psychological advisory services, the term “mandate” refers to a formal advisory assignment. This also applies to derived terms such as “advisory client.” My services do not include legal advice and are not to be understood as legal services.

Liability Disclaimer

Despite the greatest possible care in compiling and checking the content, no guarantee can be given for the completeness, accuracy, or timeliness of the information provided. Use of the content of this website is at your own risk. No liability is assumed for direct or indirect damages resulting from reliance on or disregard of the information presented.

External Links

Where this website provides links to external sites, this is solely as a service to the user. I have no influence on the content of those sites and therefore accept no responsibility for them. Responsibility for the content of linked sites lies exclusively with their operators.

---

Zero Data Retention

Zero Data Retention (ZDR) means that content exists only within the moment of the conversation. It comes into being only within the exchange and dissolves entirely once the moment is over. There is no storage, no archiving, no secondary use. Everything we discuss remains with you — and only with you.

In‑Person Meetings

In personal meetings, everything rests within the spoken word. If the complexity of a topic makes a brief note helpful, it can — by mutual agreement — be created in your presence, solely on a dedicated device that remains in your possession at all times. This note can be opened only by the two of us together and remains entirely unreadable outside those moments.

Once the note is no longer required, the process concludes. The device is physically destroyed. It never leaves your environment, and no data exists beyond the conversation itself.

Digital Sessions

The same principle applies online. If a session requires notes, a temporary file is created that exists only for the duration of the conversation. After the session, you receive this file in strongly encrypted form for your own records; on my system it is then fully and securely deleted. At the beginning of a new session, you may provide this file again — full continuity remains entirely in your hands.

An Architecture Designed to Prevent Risk

Zero Data Retention is not a technical feature but a structural principle. It enables advisory work in sensitive contexts without any data existing beyond the moment. As a result, the possibility of misinterpretation or misuse is eliminated entirely. For individuals with exceptional confidentiality needs, this approach creates a space in which conversations become possible that could not take place elsewhere.

Privacy Policy

This is an English translation. Only the German original is legally binding.

Version: 22.2.2026 - en

A Preliminary Note

The following privacy notice describes the processing of personal data solely in the context of using this website and during the organisational phase of an initial contact. These processes are technically and legally required in order to receive enquiries and provide communication channels.

The processing of personal data within the actual advisory work is subject to separate organisational principles, in particular my Zero‑Data‑Retention Model (ZDR). This model applies exclusively to the substantive advisory process and will be explained to you separately and transparently. The following privacy notice is not affected by this.

1. Controller

Karl-Heinz Meisters

Jahnstraße 20
53225 Bonn
Germany

Email: kontakt@k-meisters.de

2. General Information on Data Processing

This website serves exclusively to provide information about my advisory services and is designed according to the principle of data minimisation. No cookies, tracking tools or external content (e.g. Google Fonts, Google Maps, social media plugins) are used.

Personal data is processed only to the extent technically necessary. No further storage takes place.

3. Server Log Files

When you visit this website, information is automatically collected by the web server and stored in so‑called server log files. This includes:

• Browser type and version
• Operating system
• Referrer URL
• Hostname of the accessing device
• Date and time of the server request
• IP address

The processing of these log files is based on my legitimate interest pursuant to Art. 6(1)(f) GDPR. This interest lies in ensuring the proper and secure operation of the website, detecting security incidents and resolving technical issues. Log data is not merged with other data sources.

Log files are reviewed regularly and deleted manually. Entries that are no longer required for the technical operation of the website are removed after no more than two months, unless legal retention obligations or security‑related reasons require longer storage.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest).

4. Email Communication

If you contact me by email, the data you provide (e.g. email address, message content, metadata) is processed in order to handle and respond to your enquiry. No data is passed on to third parties.

For email communication, I use the services of mailbox (formerly mailbox.org) and Tuta.com. Both providers process personal data exclusively on my behalf in accordance with Art. 28 GDPR. Data processing agreements are in place with both providers, ensuring high standards of security and confidentiality.

Please note that email transmission is generally unencrypted and it cannot be ruled out that unauthorised third parties may gain access to transmitted content. For particularly sensitive information, I recommend using my secure communication channels.

Storage period:

Emails are retained only for as long as necessary for communication or where legal retention obligations apply. Content that is not subject to retention requirements is deleted once communication has concluded.

Legal basis:

Art. 6(1)(b) GDPR (performance or initiation of a contract)
Art. 6(1)(f) GDPR (legitimate interest in responding to enquiries)

5. External Links

This website contains links to external third‑party websites. Responsibility for their content and data protection practices lies solely with the respective operators. When you click an external link, you leave this website; from that moment on, the privacy policies of the respective external site apply.

A permanent review of linked content is not feasible. However, if I become aware of legal violations, such links will be removed immediately.

6. Contact by Telephone

If you contact me by telephone, personal data such as your phone number, the time and duration of the call and, where necessary, conversation details are processed to handle your enquiry.

Processing is carried out exclusively for communication in the context of initiating or conducting an advisory relationship. Telecommunications providers process connection data under their own legal responsibility in accordance with the German Telecommunications Act (TKG).

Legal basis: Art. 6(1)(b) GDPR (contract initiation or performance) and Art. 6(1)(f) GDPR (legitimate interest in communication).

No data is passed on to third parties. Data is deleted once the purpose of processing no longer applies, unless legal retention obligations require otherwise.

7. Contact via the Signal Messenger

Using the Signal messenger provides a privacy‑friendly way to contact me and is carried out solely at your request. Signal uses modern end‑to‑end encryption, meaning messages are readable only on the participating devices. Personal data such as your phone number may be processed; message content itself is not stored on Signal’s servers.

Note on IP data during Signal voice and video calls: Depending on the connection type, the IP addresses of call participants may be transmitted. These are used only temporarily to establish the connection. I do not receive access to this information, nor is it stored.

Please note that the use of the Signal channel is voluntary and there is no contractual entitlement to its permanent availability. Both parties may delete messages manually or activate automatic deletion. Deleted content cannot be restored and will not be available for later advisory work.

Further information on Signal’s data protection measures can be found in the Signal Privacy Policy.

Legal basis: Art. 6(1)(a) GDPR (consent) and Art. 6(1)(b) GDPR (communication in the context of contract initiation).

8. Notice Regarding Special Categories of Data (Art. 9 GDPR)

During any form of contact—whether initial or ongoing—you may voluntarily provide information that falls under the special categories of personal data pursuant to Art. 9 GDPR (e.g. information relating to health, sexuality, religion, beliefs or psychological stress). I process such data only if it is necessary to handle your enquiry or provide my services, and only if you have explicitly consented to this processing (Art. 9(2)(a) GDPR). You may withdraw your consent at any time.

I therefore ask you to submit sensitive personal data only in the intended context—either in response to a specific request from me or after providing your explicit prior consent. If I unexpectedly receive sensitive data without such context, I reserve the right to delete this information immediately and irreversibly, unless it is required to process a concrete enquiry.

Note: Transmission of sensitive data via unencrypted email is strongly discouraged. Please use secure communication channels if you wish to share sensitive information.

9. Processing of Organisational Client Data

To manage organisational processes such as scheduling, secure communication and access control, I process certain personal data that is not part of the actual advisory work. This includes, in particular, appointment details, pseudonyms, technical identifiers, one‑time password lists and security‑related event logs.

This data is used exclusively to manage the communication and security infrastructure and is necessary to ensure confidential, secure and structured collaboration. No advisory content is processed.

Processing takes place exclusively within the infrastructure of Tuta.com, with servers located in Germany. Due to Tuta’s zero‑knowledge architecture and full end‑to‑end encryption, Tuta has no technical access to content or personal data. Disclosure or transmission to third parties—including entities in third countries—is therefore technically excluded.

Data is deleted once it is no longer required for organisational purposes or once legal retention obligations have been fulfilled.

Legal basis: Art. 6(1)(b) GDPR (performance of pre‑contractual measures and organisational preparation of advisory work) and Art. 6(1)(f) GDPR (legitimate interest in secure and structured communication).

10. Processing of Data from Private Offices and Referrers

In the context of communication with referrers, cooperation partners or requesting institutions, I process personal data such as names, contact details and organisational information. This data is used solely to handle the respective enquiry and coordinate cooperation.

No advisory content is processed. Data is stored only for as long as necessary for communication or where legal requirements apply.

Legal basis: Art. 6(1)(f) GDPR (legitimate interest in efficient and secure communication).

11. Technical and Organisational Measures (TOMs)

To protect personal data, I implement appropriate technical and organisational measures in accordance with Art. 32 GDPR. These measures follow the state of the art and are reviewed regularly.

For email communication, I use the service Tuta (Germany). Tuta operates a zero‑knowledge architecture: content is encrypted on the end device before reaching the server. The provider therefore has no technical access to message content or encryption keys. Storage takes place exclusively in data centres located in Germany.

Key principles of my security architecture include:

• Access protection through strong authentication
• Processing only the data required for organisational purposes
• Deletion of organisational data once no longer needed or when legal requirements are met
• No disclosure of personal data to third parties

12. Storage Periods and Deletion

Personal data is stored only for as long as required for the respective organisational purposes. Longer storage occurs solely where legal retention obligations exist or where legitimate interests make this necessary. Once the purpose ceases to apply and no legal obligations prevent deletion, the data is erased.

Server log data is reviewed monthly. During this review, all entries older than one month are deleted. Log data therefore remains in the system for a maximum of two months, unless longer storage is required to investigate security‑relevant incidents or due to legal requirements.

Data from contact enquiries (e.g. via email, telephone or Signal) is deleted once organisational communication has concluded and no further storage is required. Advisory content is not stored.

Longer storage may be required in exceptional cases if:

• legal retention obligations apply (e.g. tax regulations),
• the data is needed to assert or defend legal claims, or
• legal documentation or proof obligations exist.

13. Your Rights

Within the scope of the legal provisions, you have the following rights:

• Right of access (Art. 15 GDPR)
• Right to rectification (Art. 16 GDPR)
• Right to erasure (Art. 17 GDPR)
• Right to restriction of processing (Art. 18 GDPR)
• Right to data portability (Art. 20 GDPR)
• Right to object (Art. 21 GDPR)

To exercise your rights, you may contact the controller named above at any time.

14. Right to Lodge a Complaint with a Supervisory Authority

You have the right to lodge a complaint with a data protection supervisory authority regarding the processing of your personal data.

15. Changes to This Privacy Notice

This privacy notice may be amended at any time due to legal requirements or internal adjustments. The current version is available on this page.

Copy link Share by email

---