Legal
Last updated: March 2026
Mario Sanciu, based in Olbia (OT), Sardinia, Italy. For privacy-related inquiries: hello@groceryai.ai.
We collect personal data on the following legal bases (Art. 6 GDPR):
Demo booking (consent, Art. 6.1.a): When you schedule a demo via our scheduling provider, we collect your name, email, and any information you voluntarily provide. You may withdraw consent at any time by contacting us.
Website usage (legitimate interest, Art. 6.1.f): Standard anonymized usage data (page views, device type, geographic region) to improve our website and service.
Business communications (pre-contractual measures, Art. 6.1.b): When you contact us to discuss our services, we process your data to respond and evaluate potential collaboration.
Your data is used exclusively to schedule and conduct meetings, respond to inquiries, and improve our service. We do not sell, share, or transfer your personal data to third parties for marketing purposes.
We use the following third-party service providers who may process your data on our behalf:
Cal.com Inc. — Scheduling and calendar management (USA, with EU Standard Contractual Clauses)
Vercel Inc. — Website hosting and delivery (EU edge network)
Google LLC — Video meetings via Google Meet (USA, with EU Standard Contractual Clauses)
All data is processed in compliance with GDPR (Regulation EU 2016/679). Where data is transferred outside the EU (e.g., to US-based providers), appropriate safeguards are in place including EU Standard Contractual Clauses.
Demo booking data is retained for 12 months after the last interaction, or until you request deletion. Website analytics data is anonymized and retained for 26 months. Business communications are retained for the duration of the business relationship plus any legally required retention period.
When GroceryAI is deployed for a retail client, the client is the data controller for their customers’ personal data. GroceryAI acts as a data processor under the terms of a Data Processing Agreement (DPA). Customer conversation data is encrypted, stored securely within the EU, and never used for purposes other than providing the ordering service.
Under GDPR, you have the right to:
Access your personal data, request its rectification or deletion, restrict or object to its processing, and request data portability. To exercise any of these rights, contact hello@groceryai.ai. We will respond within 30 days.
You also have the right to lodge a complaint with the Italian Data Protection Authority (Garante per la protezione dei dati personali) at www.garanteprivacy.it.
This website uses only technically necessary cookies for basic functionality (scheduling widget, session management). No profiling, tracking, or advertising cookies are used. In accordance with Art. 5(3) of the ePrivacy Directive, no consent is required for technically necessary cookies.
Our platform includes a dedicated security layer with semantic analysis of every interaction, encryption in transit (TLS 1.3) and at rest, identity verification, and data isolation between different client deployments.