Privacy Policy

1. Data controller

The data controller for personal data collected through agi-one.ai (the “Site”) is the legal entity operating the AGI-ONE brand (“we”, “us”). For privacy-related requests, use the secure contact form on this Site.

If you need the full company name, registered office, or VAT number for contractual or regulatory purposes, request them through the same contact form; we will provide the identifiers applicable to your relationship with us.

2. Scope

This Policy applies to visitors of the Site, including users who join the beta waitlist or request information. It does not govern processing performed inside customer-deployed instances of the AGI-ONE platform, which are covered by separate agreements and policies.

3. Categories of personal data

Depending on how you interact with us, we may process:

• Identity and contact data — e.g. name, work email, company, areas of interest, free-text messages you submit.
• Technical data — e.g. IP address, browser type, device information, approximate location derived from IP, timestamps, and security telemetry (e.g. anti-abuse signals).
• Usage data — e.g. pages viewed and interactions, when you have consented to analytics cookies or when similar data is obtained on a cookie-less basis as permitted by Google Consent Mode and applicable law.
• Preference data — e.g. language choice or cookie consent stored locally in your browser (see Cookie Policy).

4. Purposes and legal bases (GDPR Art. 6)

• Operating the Site and security — hosting, delivery of content, rate limiting, abuse prevention. Legal basis: legitimate interests (Art. 6(1)(f)), and where strictly necessary also performance of steps prior to a contract (Art. 6(1)(b)).
• Beta waitlist and commercial follow-up — handling your request, responding by email, planning onboarding. Legal basis: performance of steps at your request prior to entering a contract and/or consent where you tick the privacy checkbox (Art. 6(1)(b) and/or Art. 6(1)(a)).
• Analytics — measuring traffic and improving the Site when you accept analytics cookies. Legal basis: consent (Art. 6(1)(a)). If you refuse, we do not enable analytics storage; limited, aggregated or cookie-less measurements may still occur as configured in Google Consent Mode.
• Compliance and legal claims — retaining records where required by law or to establish/defend legal claims. Legal basis: legal obligation and/or legitimate interests (Art. 6(1)(c) and/or (f)).

5. Recipients and processors

We use trusted service providers as processors where needed to run the Site (e.g. hosting/CDN, email delivery, security). Analytics is provided by Google (Google Ireland Limited for EEA users) when you grant consent. Anti-bot protection may be provided by Cloudflare (Turnstile). Processors are bound by data processing terms and, where applicable, Standard Contractual Clauses for transfers outside the EEA.

6. Transfers outside the EEA

Some providers may process data in countries outside the European Economic Area. Where required, we rely on appropriate safeguards such as Standard Contractual Clauses approved by the European Commission, and supplementary measures where appropriate. You may request more information through our contact form (topic: Privacy policy).

7. Retention

Waitlist and contact requests are kept for the time needed to manage your inquiry and, if relevant, to establish a commercial relationship, unless a longer period is required by law. Server and security logs are retained for a limited period consistent with security and troubleshooting. Analytics data retention follows the settings configured in our analytics tool (e.g. GA4 retention).

8. Your rights

Subject to applicable law, you may have the right to:

• Access your personal data and obtain a copy (Art. 15 GDPR);
• Rectify inaccurate data (Art. 16);
• Erase data (“right to be forgotten”) in certain cases (Art. 17);
• Restrict processing in certain cases (Art. 18);
• Data portability for data you provided, where processing is based on consent or contract and automated (Art. 20);
• Object to processing based on legitimate interests (Art. 21);
• Withdraw consent at any time where processing is based on consent (Art. 7(3)), without affecting prior lawful processing;
• Lodge a complaint with a supervisory authority, in particular in your country of residence or where we operate (Art. 77).

To exercise your rights, use the contact form and select “Privacy policy / GDPR request”. We may need to verify your identity before fulfilling certain requests.

9. Children

The Site is directed at businesses and professionals. We do not knowingly collect personal data from children under 16. If you believe a child has provided us data, reach us via the contact form and we will take appropriate steps.

10. Automated decision-making

We do not use fully automated decision-making, including profiling, which produces legal or similarly significant effects concerning you, solely based on waitlist submissions on this Site.

11. Changes

We may update this Policy to reflect legal, technical, or organisational changes. The “Last updated” date at the top will be revised; for material changes we may provide additional notice on the Site.

12. Contact & privacy requests

For questions about this Policy or to exercise your GDPR rights, use the central contact page (Cloudflare Turnstile, same protections as the beta waitlist). Manage optional analytics via the cookie banner or Cookie settings, and read the Cookie Policy.

Open contact form

Sintesi in italiano