← Back to home

Privacy Policy

Last updated: 28 May 2026 · GDPR / EU Regulation 2016/679

This Privacy Policy explains how Gianluca Di Mauro (“I”, “me”, “the Controller”) processes personal data when you visit gianlucadimauro.com or contact me about freelance AI engineering services.

1. Data Controller

Gianluca Di Mauro
Freelance AI engineer
Email: hello@gianlucadimauro.com
Website: https://gianlucadimauro.com

2. Scope

This policy applies to this website. If we enter into a professional engagement, a separate agreement or statement of work may define additional data processing terms for project work.

3. What data I process

3.1 Website visit (analytics — only if you consent)

If you accept analytics cookies, I use Plausible Analytics, a privacy-oriented analytics service. Plausible does not use cookies for tracking and does not build personal profiles. Processed data may include:

• Page URL visited
• Referrer URL
• Browser and device type (aggregated)
• Country / region (derived from IP, not stored as raw IP by Plausible on their cloud product)

If you decline analytics, this data is not collected via Plausible on your device.

3.2 Cookie consent preference

I store your analytics choice in your browser’s localStorage under the key gdm_cookie_consent. This is necessary to remember your preference and avoid asking on every visit.

3.3 Contact by email or scheduling tool

If you email me or book a call, I receive the information you choose to provide (for example: name, email address, company, message content, meeting time). I do not operate a contact form on this website.

3.4 Server and security logs

My hosting provider (Cloudflare) may process technical connection data (such as IP address, timestamp, user agent) in server logs for security, performance, and abuse prevention. Retention is limited by the provider’s policies.

4. Purposes and legal bases (GDPR Art. 6)

Processing	Purpose	Legal basis
Analytics (Plausible)	Understand aggregate website usage and improve the site	Consent (Art. 6(1)(a)) — only after you click “Accept analytics”
Consent storage (localStorage)	Record and honour your cookie choice	Legitimate interest / strictly necessary for requested service (Art. 6(1)(f) or exemption for technical storage of consent)
Email / scheduling communications	Respond to enquiries and arrange conversations	Pre-contractual steps and legitimate interest (Art. 6(1)(b) and 6(1)(f))
Hosting security logs	Security, reliability, fraud prevention	Legitimate interest (Art. 6(1)(f))

5. Recipients and processors

Personal data may be processed by the following categories of recipients, only as needed:

• Cloudflare, Inc. — website hosting, CDN, DNS, and email routing
• Plausible Insights OÜ — analytics (if consented)
• Cal.com, Inc. (or equivalent scheduling provider) — if you book a meeting via the scheduling link
• Your email provider / mine — if you contact me by email

Where processors are used, I rely on appropriate data processing terms offered by those providers. Some providers may process data outside the EU/EEA; in those cases transfers rely on adequacy decisions or Standard Contractual Clauses.

6. Retention

• Analytics: according to Plausible’s retention settings (typically up to 24 months for aggregated stats).
• Consent preference: until you clear site data or change your choice via Cookie settings.
• Enquiry emails: retained as long as needed to handle the conversation and any resulting engagement, then deleted or archived according to professional and legal requirements.
• Server logs: retained per Cloudflare’s default periods.

7. Your rights

Under GDPR, if you are in the EU/EEA (or where applicable law grants these rights), you may:

• Access your personal data
• Rectify inaccurate data
• Erase data (“right to be forgotten”) where applicable
• Restrict or object to processing
• Data portability, where applicable
• Withdraw consent at any time (for analytics) via Cookie settings — without affecting prior lawful processing
• Lodge a complaint with a supervisory authority

In Italy, the supervisory authority is the Garante per la protezione dei dati personali (garanteprivacy.it).

To exercise your rights, email hello@gianlucadimauro.com.

8. Children

This website is directed at business professionals. I do not knowingly collect data from children under 16.

9. Changes

I may update this policy when the website, tools, or legal requirements change. The “Last updated” date at the top will reflect the latest version.