Privacy Policy

About the Gianluca Mauro's privacy disclaimer

As an AI expert, I practice what I preach. I believe that data applications should be privacy-first and that people should be empowered to know how their data is used and why.

This is why I wrote our privacy policy in two sections:
•The first section explains *all* the data we collect and what I do with it in extremely simple terms and in a few, simple words.
•The second section says basically the same thing, but it's written by a lawyer :)

Read whichever version you want! If you have any questions, you can write directly to me at [email protected].

A simple explanation of why I collect data, and what I do with it
I collect two kinds of data (if you want and allow me): Anonymous data and personal data.

Let's see what I mean by each

Anonymous data

When you use our website, if you accept cookies, we'll anonymously track how you're using the website. For instance, we may log if you clicked on a button to know more about our services, but we won't know that that click came from you: we just know that someone clicked there. We'd also keep track of the country you're visiting us from, and look at the data always aggregated (this means we'll never be able to know that the person that looked at our website on day X from place Y is you!).
The reason why we do it is to look at the analytics and find out what people are interested in, and if there are areas of the website that we can improve. For instance, if a button that says "Know more about service A" gets 10 times more clicks than "Know more about service B" we'd understand that service A is more interesting than B, or if we see that people leave a page after 2 seconds, it probably means that the page needs some work...We do all of this using a tool called "Google Analytics".
There's also some data that we send to Facebook using something called the "Facebook pixel". Of course, we do it just if you accept. The Facebook Pixel is an interesting tool because it allows us to do something called "retargeting".
Here's how retargeting works: let's suppose you accept our cookies, surf our website, and then forget about us. We can then ask Facebook to show everyone that saw our website an ad about some new service we released, and you may see our ad.
The interesting thing is that we still don't know who you are, so this data is anonymous for us! We simply ask Facebook to show an ad to people that interacted with the website, and Facebook will do it without us knowing who they are. Pretty interesting, right?
That's about everything we collect in terms of anonymous data.
There are some personal data that we may collect (if you want and give it to us).
Let's talk about it now.

Personal data

Let's say you subscribe to our newsletter. We obviously need to have your email address to do so, and if you give it to us, that's personal data.
To collect and process emails, we use a tool called Beehiiv. Basically, it helps us manage emails, and set up some automations (for instance, we can ask it to send you a welcome email as soon as you subscribe).
Obviously, you can always unsubscribe from all our emails by clicking on the unsubscribe link at the bottom of every email.
If you buy one of our online courses, you may add some more personal information like your name, surname, and the company you work for.
We want to make this clear: we won't ever sell this data to anyone else. We'll use it to personalize communications (for instance calling you by name in emails) and for segmentation (for instance if we want to send an email just to people working for large organizations), nothing more.
This data is collected by the course provider that we use. Right now we are using a website called Webflow.
That's about it! We hope that this very simple explanation of everything we do with the data we collect was illuminating for you. If there's anything you don't like, you can talk directly to me at the link [email protected].
Now, we need to add some more legally compliant descriptions.


This page covers our website’s management procedures concerning the processing of personal data of users consulting it. This policy also refers to EU Regulation 679/2016 and D. Lgs. 196/2003 - Rules regarding data protection and subsequent amendments and additions of users who interact with web services provided by AI Academy S.r.l. for protecting personal data, available electronically from the following web address:, corresponding to the home page of this site.
The policy is only effective for the address and not for other websites potentially visited by the user via link. The policy also builds upon the Recommendation n. 2/2001 and subsequent amendments and additions that European Authorities for the protection of personal data, gathered in the Group imposed by the art. 29 of the guideline 95/46/CE, adopted on May 17th, 2001 in order to identify minimum requirements about the collection of on-line personal data and, specifically, the procedures, the timing and the nature of the information that the owners of the data processing have to provide to users when they connect to web pages, no matter the aim of the connection.


As a result of consulting this website, data concerning identified or identifiable people can be used. The “owner” of their processing is AI Academy ApS, having a Registered Office in 1651 Copenhagen, Reventlowsgade 10, VAT: DK42262129, (in the person of its legal representative).


Mr. Mauro Gianluca was nominated in charge of internal processing under Article 29 of the Code in the matter of personal data protection since he is also in charge of the technological aspect of the website.


The processing connected to the web services of this website is only supervised by the technical personnel of the Office in charge of the processing. Personal data provided by users who submit service requests (info, newsletter, registration, ecc.) are only used in order to provide the service itself and are not disclosed to third parties, with the exception of the following potential cases:
commercial partners of the Company to whom it communicates data with the only purpose to evade requests;
individual companies or professional offices providing assistance or consultancy to AI Academy S.r.l. in book-keeping, administrative, legal, fiscal and financial matters;
entities whose data access permission is recognized by legal rules or instances from law enforcement.


This statement's aim is to summarise, in accordance with UE’s Regulation 679/2016 (specifically Articles 12, 13 and following), terms and conditions for acquisition, treatment, preservation, modification, and cancellation (“Treatment”) of personal data released by the interested parties (or whom may represent them or is in any other way authorized) to the Owner.

Navigation data

Information systems and software procedures responsible for the operation of this website acquire, in their normal functioning, some personal data which transmission is implicit in the use of Internet communication protocols.
These kinds of data are not collected in order to be associated with specific interests, but due to their own nature could, through processing and combination with data owned by third parties, allow to identify users.
The kind of data that is monitored includes IP addresses or domain names of devices used by users to connect to the website, the URI notation addresses (Uniform Resource Identifier) of requested resources, the request’s timing, the methodology used to submit the request to the server (successful, error, etc.) and other parameters related to the operating system and the user’s information environment.
These data are only employed with the purpose of getting anonymous statistical information about the website’s use and to check its correct functioning and are deleted right after being processed. Data could be used in case of verification of responsibilities in a hypothetical computer crime scenario against the website itself: except for this specific circumstance is not kept for more than seven days.
Data provided or obtained in any other way will be treated in accordance with the provisions of UE’s Regulation 679/2016 (which original text can be found on According to UE’s Regulation 679/2016, the processing carried out by the Owner will be inspired by the principles of proportionality, fairness, lawfulness, transparency, protection of confidentiality, and protection of the rights of the parties involved and are also configured in accordance to legal provisions, on the basis of criteria commonly referred to as “data protection by default and by design” (namely pursuing the protection of the rights and freedom of interested parties including from the beginning the indispensable warranties in order to meet UE’s Regulation 679/2016) and accountability which takes into account potential risks and drives the Owners in establishing the reduction the processing to those essential and adopting organizational and technical arrangements capable of mitigating the risk of a negative impact on rights and freedom of the interested parties. Unless otherwise specified, all requested data are compulsory. If the user refuses to communicate them, it can result not be possible to provide the Service. In those cases in which some data are marked as optional, users are free to refrain from communicating them, without any consequence on the Service’s availability and operativity.

Voluntary provided data by the user

The optional, explicit, and voluntary transmission of e-mail to specified addresses on this website implies the acquisition of the sender’s address, needed for replying to the requests submitted, as well as any further data (included in the email). Data will be stored only for requested services, the required subscription to the newsletter and/or other special offers and won’t be disclosed to anyone. Specific information will progressively be reported and visualized in the arranged for particular services on demand. Personal information related to whom may visit the website is neither collected nor used. Visitors remain anonymous. The only exception concerns information necessary for personal identification in order to comply with potential contractual obligations toward the user.

Curriculum Vitae Personal Data Management

The company accepts Curriculum Vitae sent by potential candidates either by post or e-mail. The act itself to send spontaneously and voluntarily will be implicitly considered as informed consent of this policy released by the interested party in order to receive and process personal data listed on it, exclusively following the aim of selecting potential candidates. Data processed in order to select candidates are personal, and useful for the purpose of identifying a particular profile. In general, the nature of data is general, exceptions made in possible cases where sensitive data can be used to identify particular requirements required by rules in force, like the indication to particular protected categories, in compliance with limits imposed by “Autorizzazioni Generali del Garante” n. 1 e 2 of December 12th, 2013 (Published on “Gazzetta Ufficiale” n. 302 of December 27th, 2013) and the following provisions adopted and/or deducted from UE’s Regulation 679/2016;
The provision of data related to the candidates' selection is optional. The potential denial of providing such data involves the impossibility to conduct a proper selection process and the potential hiring. Data at hand won’t be disclosed to anyone.

General Rules to the submission of the Curriculum Vitae

The eventual Curricula spontaneously received, replying to an announcement or request of ourselves will be directly stored by specific figures in charge of the processing of personal data in accordance with personal data safety minimum requirements established in attachment “B” of the Code. These will only be printed in the event of a meeting or an interview with the interesting part. After the job interview, if the candidate is not selected, the CV will be deleted and/or destroyed. In any other case, after a short period of time and after the interviews and the overcoming of the trial period of 60 days, CVs are deleted by any electronic device and if printed are physically destroyed.


Cookies are destroyed by pieces of code installed on the browser assisting the Owner in providing the Service based on the purposes described. Some of the Cookie’s installation purposes could, furthermore, need the user’s approval.
When Cookie’s installation happens based on approval, it can be freely revoked at any time following the instructions contained in this file.
No user’s personal data is on purpose acquired by the website. Cookies are not used to transmit any personal info.


This website employs technologies that require the usage of cookies for different kinds of purposes, among which executing computing authentications and monitoring sessions and the storage of specific technical information regarding users that visit the site. Description of cookie’s mechanisms adopted:
Cookies in the user's device (that won't be used for additional goals) like, for instance, auth cookies and personalization cookies (for instance to store the navigation language); these cookies will be active just for the length of the session.
Cookies used to statistically analyze visits and accesses on the website (so-called “analytics cookies”) pursuing statistical purposes, gathering bundled information with no possibility to get back to any user’s device. In these cases, since present rules require analytics cookies to provide to the interested party a clear and adequate indication of the simple methods to reject their installation (any anonymizing cookies methods included), we specify the modality allowing to disable installed cookies. Cookie’s lifetime on an analytics session is ordinarily 30 minutes long.

How to edit cookie settings

Most browsers allow to delete cookies from the computer’s hard disk, block cookies acceptance, or receive a warning before a cookie would be registered. Therefore, in order to remove cookies we encourage the user to follow the instructions reported on pages dedicated to the topic by the most commonly used browsers:
Internet Explorer
Google Chrome
Mozilla Firefox
Apple Safari

Third parties Cookies

“third party” cookies are pieces of code set up by a different website from the one currently visualized. This entails the transmission of cookies from third parties. In this site is used Google Analytics technology for statistical monitoring activities of website’s visits and Adobe scripts.
Technology in play involves the delivery of cookies from a third party and persistent javascript files on a visitor’s computer connected to Google and Adobe servers. This allows to store information such as the kind of Visitor (new or returning), the length, and the source of origin of the Visit. In these cases is possible to track down to the node identification of the user. Privacy policies can also be consulted on the aforementioned websites. Visitors can always disable Google Analytics’ functions present on this website by installing the additional tool of deactivation of the browser in use.
Further info on Google Analytics’ privacy policy mechanism are available at
Further info on Adobe’s privacy policy mechanism are available at

Embedded Content (Third parties Cookies)

AI Academy S.r.l. may sometimes use YouTube videos embedded in other social networks like Twitter, Facebook, Google + and possibly other embeddable content from other platforms. Directions can additionally recover data from Google Maps. The company can not check on this third party and for this matter, we recommend directly contacting those parties involved in order to have better control over these cookies.
However, if a user blocks or deletes a cookie it may not be possible to restore customized preferences or settings previously specified, and our capability to customize the user’s experience will be affected.


Besides what has been specified for browsing data, the user is free to provide personal data reported in any request form or in any other way referred in contact with the Company or to send a CV, solicit the transmission of informational material, or any other communication. Their absence could lead to the impossibility of obtaining what is requested.


Personal data are treated as automatic tools working only for the time closely needed to pursue the goals for which they were gathered in the first place. Specific security measures are observed in order to prevent data loss, illicit or wrong usage of it, and non-authorized access.


Subjects whose personal data are referred to, have the right of obtaining the confirmation of its existence or non-existence of it and to get to know the source and content of the data, verify their accuracy or ask for their integration and updating, or the adjustment (art. 7, Code in matter of personal data protection).
In accordance with the same article, you have the right to request removal, anonymization, or blocking of data processed in violation of the law, as well as to oppose in any case, for legitimate reasons, their processing.
Requests must be sent via mail at the following address: [email protected]


This privacy policy statement is available automatically from up-to-date browsers which implement P3P (“Platform for Privacy Preferences Project”) standards proposed by World Wide Web Consortium ( Every effort will be made in order to make the features of this website as much as possible interoperable with automatic privacy control mechanisms in some products used by visitors. Given that the improved state of automatic control mechanisms does not make it free from mistakes or dysfunctions, also because the latest regulations came into force following UE’s Regulation 679/2016 and related adjustments, it is pointed out that in the present document, published at the address constitutes the “Privacy Policy” of this website, which should be subject to updates.