Privacy policy
Last updated: 12 June 2026
1. Who we are (data controller)
Giulio Maria Cappellano (CIF ESY1343975F)
Calle Benito Pérez Galdós 31, 35650 El Cotillo (Las Palmas), Spain —
operator of Agentize Your Web at agentizeyourweb.com.
Contact for all privacy matters: noreply@agentizeyourweb.com
2. What data we process, and why
| Data | Purpose | Legal basis (GDPR art. 6) |
|---|---|---|
| Account data: email address, name, hashed password, plan, activity timestamps | Providing your account, scans, AgentCredits and profile management | Contract (6.1.b) |
| Lead requests: name, email, optional phone, your message | Forwarding your request to the business you chose to contact | Consent / pre-contractual steps you request (6.1.a, 6.1.b) |
| Public business information collected by our crawler from websites that were submitted for scanning (business name, services, public contact details, published prices, FAQs) | Building the public agent-readiness profile and score of the business | Legitimate interest (6.1.f): making already-public business information structured and machine-readable. See section 5 for removal. |
| Technical logs: IP address in rate-limiting records and server logs | Security, abuse and spam prevention | Legitimate interest (6.1.f) |
| Analytics (Google Analytics 4) — only after you accept the cookie banner | Understanding how visitors use the site | Consent (6.1.a) — see the cookie policy |
3. What we never do
- We do not sell personal data.
- We do not send marketing email without separate consent.
- We do not use paid AI APIs on your data by default; profile generation is deterministic software running on our own server.
4. Sharing and processors
- Hosting: MisterDomain (misterdomain.eu, EU-hosted servers) stores all platform data.
- Lead forwarding: when you send a quote/booking request through a profile, your name, contact details and message are delivered to that business.
- Google Analytics: only with your consent; IP anonymisation is enabled. Google LLC may process data outside the EU under the EU–US Data Privacy Framework.
5. Business profiles and right to removal
Profiles in our directory are generated from information that businesses already publish on their own websites. If you represent a business you can:
- Claim the profile (button on the profile page) to correct or manage it;
- Request removal or hiding by emailing noreply@agentizeyourweb.com from an address at the business domain — we hide the profile within a reasonable time, normally a few working days.
6. Retention
- Account data: while the account exists; deleted on verified request.
- Leads: up to 24 months, then deleted or anonymised.
- Scan results and profiles: while the website remains listed.
- Rate-limit/log records: short rotation (days to weeks).
7. Your rights
Under the GDPR you can request access, rectification, erasure, restriction, portability, and object to legitimate-interest processing. Write to noreply@agentizeyourweb.com. You may also lodge a complaint with your supervisory authority — in Spain the AEPD (Agencia Española de Protección de Datos, www.aepd.es).
8. Security
Passwords are stored only as modern salted hashes. The application database is not reachable over the web. Access to administrative functions is restricted and session-protected. Transport is encrypted (HTTPS).