Legal

Privacy Policy

Last updated: 2026-04-08

1. Who we are

This Privacy Policy explains how Juhas Digital Services s.r.o.("we", "us", "our") processes personal data in connection with the AI with Michal website and related services (workshops, mentoring, training content, and communications), available at aiwithmichal.com.

For the purposes of the EU General Data Protection Regulation (GDPR), we are the data controller for personal data described in this policy (unless we state otherwise for a specific processing activity).

Contact: hello@aiwithmichal.com
Address: Sukennicka 1, Bratislava 82109, Slovakia

2. What data we collect

Depending on how you use our services, we may process:

Account and identity data — for example name, email address, and profile details when you register or sign in. Authentication and user accounts are provided by Clerk (and may include session cookies as described in our Cookie Policy).
Transactional and customer data — details about orders, workshop or mentoring purchases, payment status, and related records. Payments are processed by Stripe; we receive payment-related information from Stripe but do not store your full card number on our own servers.
Data we maintain in our systems — for example registration, attendance, access to member areas, and service delivery records, typically stored in Supabase (hosted database) and linked to your account or email.
Communications — messages you send us (for example via contact forms or email), and emails we send such as confirmations and reminders, often delivered through SendGrid or comparable providers.
Usage and analytics data — information about how the site is used (pages viewed, events, approximate location derived from IP where applicable), via PostHog and similar analytics tools.
Advertising and measurement data — where we or our partners use tags or pixels (for example Meta and LinkedIn), cookies or similar identifiers may be used to measure campaigns and conversions. If Google Tag Manager is enabled on the site, it may load additional scripts according to our configuration.
Referral and campaign parameters — for example a first-party ref value or UTM parameters, stored in cookies or browser storage to attribute visits (see our Cookie Policy).

3. Purposes and legal bases

We process personal data for purposes including:

Providing our services — creating and managing accounts, delivering workshops and mentoring, granting access to member content, and customer support (performance of a contract and steps prior to entering a contract).
Processing payments — facilitating checkout and refunds through Stripe (performance of a contract; legitimate interests in secure payment processing and fraud prevention).
Communicating with you — service emails, reminders, and responses to inquiries (performance of a contract or legitimate interests in running our business).
Analytics and product improvement — understanding how the site and offers are used (legitimate interests, and where required by law, consent for non-essential cookies — see our Cookie Policy).
Marketing and advertising measurement — measuring ad performance and retargeting where applicable (consent where required, or legitimate interests where permitted by law).
Compliance and security — meeting legal obligations, enforcing our Terms of Use, and protecting users and systems (legal obligation or legitimate interests).

Where we rely on legitimate interests, we balance those interests against your rights. You may object to certain processing as described below.

4. Sharing and subprocessors

We share personal data with trusted service providers who process it on our behalf under appropriate agreements, including categories such as:

Authentication — Clerk
Payments — Stripe
Database / infrastructure — Supabase
Email delivery — SendGrid (or comparable)
Analytics — PostHog
Advertising / tags — Meta, LinkedIn, and optionally Google Tag Manager

These providers may process data in the European Economic Area and/or other countries. Where personal data is transferred outside the EEA, we use appropriate safeguards (such as Standard Contractual Clauses approved by the European Commission) or other lawful transfer mechanisms as described in the relevant provider's documentation.

5. Retention

We keep personal data only as long as necessary for the purposes above, including legal, accounting, and tax requirements. For example, we may retain order and invoice records for the period required by law, and marketing data until you object or withdraw consent where applicable. Analytics logs may be retained for shorter periods according to tool settings.

6. Your rights

Under applicable law (including the GDPR where it applies), you may have the right to:

Access the personal data we hold about you
Rectify inaccurate data
Request erasure ("right to be forgotten") in certain cases
Restrict processing in certain cases
Data portability, where applicable
Object to processing based on legitimate interests or for direct marketing
Withdraw consent at any time, where processing is based on consent
Lodge a complaint with a supervisory authority

In Slovakia, the supervisory authority is the Office for Personal Data Protection of the Slovak Republic (Úrad na ochranu osobných údajov Slovenskej republiky — ÚOOÚ).

Account deletion: Signed-in users can delete their account from the profile section of the site. Deletion removes or disconnects your account according to our technical and legal retention needs.

Other requests: Contact us at hello@aiwithmichal.com. We will respond within the time limits set by law.

7. Security

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, loss, or misuse. No method of transmission over the internet is completely secure; we strive to follow industry practices appropriate to our services.

8. Children

Our services are aimed at adults and professionals. We do not knowingly collect personal data from children under 16. If you believe we have collected such data, please contact us and we will take steps to delete it.

9. Changes

We may update this Privacy Policy from time to time. We will post the revised version on this page and adjust the "Last updated" date. Material changes may be communicated by email or a notice on the site where appropriate.