How this site handles your data.

In plain language: nothing on this site is sold, traded, or shared beyond the people and tools listed below. Forms collect what they say they collect; AI sees what it needs to do its job; you can ask for any of it back.

Who runs this site

This site is operated by Eduardo de la Espriella ("Eddie Espriella"), based in Paris, France. Under the EU General Data Protection Regulation (GDPR), Eduardo is the data controller for any personal data submitted through this site.

Reach the data controller at contact@eddieespriella.com for any privacy-related question, including access, correction, deletion, or portability requests.

What gets collected

Two surfaces on this site collect personal data, and only when you actively submit something. Visiting any page does not collect personal data.

Contact form

• Your name
• Your email
• Optional company / context
• The message you wrote

AI Marketing Audit at /audit/

• First and last name
• Work email
• Industry
• Your answers to the audit questions (team size, marketing goal, AI maturity, biggest time sink, biggest blocker)
• Your answers to the two AI-generated follow-up questions

That's it. No tracking pixels, no behavioural profiling, no third-party advertising tags.

Where the data goes

Notion

All form submissions are written to a private Notion database used as Eduardo's lightweight CRM. Only Eduardo and his designated tools can read this database. Notion's own privacy policy applies in transit and at rest: notion.com/privacy.

OpenRouter (audit only)

The AI Marketing Audit sends a subset of your audit answers to OpenRouter, which proxies the request to a Llama 3.3 70B language model running on a third-party inference provider. What gets sent: your audit answers, the ranked opportunity list, and your industry. What does NOT get sent: your name, email, or any contact details. The model returns the personalised opportunity rationales and the take-this-to-your-AI prompt. OpenRouter's privacy policy: openrouter.ai/privacy.

Cloudflare

The site is hosted on Cloudflare Workers. Cloudflare processes IP addresses and request metadata for the standard purposes of delivering and securing the site. Cloudflare Web Analytics (when enabled) is cookie-free and does not track individual users. Cloudflare Turnstile is used as an anti-spam check on forms; it does not set tracking cookies. Cloudflare's privacy policy: cloudflare.com/privacypolicy.

How long it stays

Form submissions live in Notion until Eduardo deletes them. Practically: leads that don't convert into a conversation are deleted within 12 months. Leads that become clients move into a separate, longer-lived record. Email me any time to be removed sooner.

OpenRouter and the underlying inference provider may briefly cache request data for abuse prevention and billing reconciliation; refer to OpenRouter's privacy policy for specifics.

What gets stored in your browser

Two pieces of state are stored in your browser's localStorage, never sent anywhere:

• Theme preference ("light" or "dark") so the site remembers your choice.
• Cloudflare Turnstile may set a short-lived security cookie on form pages to verify you are not a bot. This is a strictly necessary security cookie and does not require consent under GDPR.

No analytics cookies. No advertising cookies. No third-party trackers.

AI usage disclosure

The AI Marketing Audit at /audit/ uses an AI language model to generate two parts of the experience:

• Two follow-up questions generated after you answer the five base questions, based on your named blocker and time sink.
• Personalised commentary on each ranked opportunity, plus a take-this-to-your-AI prompt you can copy.

The opportunity ranking itself is rule-based, not AI-generated. The AI writes the prose that explains why each opportunity matters for your situation.

The model used is Meta Llama 3.3 70B Instruct via OpenRouter's free tier. Your name, email, and any contact details are NOT sent to the model. Only your audit answers and the opportunity list are sent.

If the AI call fails or rate-limits, the audit silently falls back to a rule-based version. Your output is generated either way; the AI just makes it more personal when available.

The Eduardo-de-la-Espriella system prompt that frames the AI's role is part of the operating logic of this site. It is not a substitute for talking to Eduardo directly.

Your rights under GDPR

If you are an EU data subject (and this is offered to everyone regardless of jurisdiction):

• Right of access: ask for a copy of any data held about you.
• Right of rectification: ask for incorrect data to be fixed.
• Right of erasure: ask for data to be deleted.
• Right of portability: ask for your data in a machine-readable format.
• Right to object: ask for processing to stop.
• Right to lodge a complaint with your local data protection authority. In France, that's the CNIL.

For any of the above, email contact@eddieespriella.com. Requests are handled within 30 days.

Children

This site is not directed at children under 16 and does not knowingly collect data from minors. If you believe a minor has submitted data here, email contact@eddieespriella.com to request immediate deletion.

Changes to this policy

This policy may be updated as the site changes. Material changes will be reflected in the "Last updated" date below. Continued use of the site after a change constitutes acceptance.

Last updated: May 2026