AGI.MLBack to Home
EU Regulation

GDPR Compliance

General Data Protection Regulation - Last updated: April 25, 2026

1. Our Commitment to GDPR

AGI.ML, operated by Simon Wilby, is fully committed to complying with the General Data Protection Regulation (GDPR) (EU) 2016/679. We respect the privacy rights of all individuals in the European Economic Area (EEA) and the United Kingdom, ensuring that personal data is processed lawfully, fairly, and transparently.

2. Data Controller Information

Data Controller: Simon Wilby
Website: agi.ml
Contact: SimonWilby.com/contact

3. Your Rights Under GDPR

As an EU/EEA resident, you have the following rights:

Right to Access (Article 15)

You can request a copy of all personal data we hold about you, free of charge. We will respond within 30 days.

Right to Rectification (Article 16)

You can request correction of any inaccurate personal data or completion of incomplete data.

Right to Erasure (Article 17)

Also known as the "right to be forgotten," you can request deletion of your personal data under certain circumstances.

Right to Restrict Processing (Article 18)

You can request that we limit how we use your data while disputes are resolved.

Right to Data Portability (Article 20)

You can request your data in a structured, machine-readable format to transfer to another service.

Right to Object (Article 21)

You can object to processing based on legitimate interests, including profiling and direct marketing.

Right to Withdraw Consent (Article 7)

Where processing is based on consent, you can withdraw that consent at any time.

4. Legal Bases for Processing

We process personal data under the following legal bases:

  • Consent (Article 6(1)(a)): Newsletter subscriptions, optional cookies
  • Legitimate Interests (Article 6(1)(f)): Website analytics, security measures
  • Legal Obligation (Article 6(1)(c)): Compliance with applicable laws

5. Data Protection Measures

We implement appropriate technical and organizational measures including:

  • Encryption of data in transit (TLS/SSL)
  • Secure hosting infrastructure
  • Access controls and authentication
  • Regular security assessments
  • Staff training on data protection
  • Data minimization practices

6. International Transfers

When transferring personal data outside the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) approved by the European Commission, or transfers to countries with adequate data protection as determined by the Commission.

7. Data Retention

We retain personal data only as long as necessary:

  • Newsletter subscribers: Until unsubscription
  • Contact inquiries: 2 years from last contact
  • Analytics data: 26 months
  • Legal records: As required by law

8. How to Exercise Your Rights

To exercise any of your GDPR rights, please contact our Data Protection point of contact:

Contact Form: SimonWilby.com/contact

We will respond to your request within 30 days. In complex cases, we may extend this by an additional 60 days, and we will inform you of any such extension.

9. Right to Lodge a Complaint

If you believe your data protection rights have been violated, you have the right to lodge a complaint with a supervisory authority in your country of residence. A list of EU supervisory authorities can be found on the European Data Protection Board website.