Privacy Policy

Effective date: 28 September 2025
Last updated: 28 September 2025

This Privacy Notice explains how Samuylov data services and solutions GmbH ("we", "us", the "Operator") collects and processes personal data in connection with the GenAI Enterprise Hub (the "Hub"), including our website(s), events (virtual and in‑person), community spaces, and materials (together, the "Services"). It is designed to comply with the Swiss Federal Act on Data Protection (FADP) and, where applicable, the EU/UK General Data Protection Regulation (GDPR/UK GDPR).

If anything here conflicts with event‑specific terms or consents presented to you at registration, those specific terms prevail for that event.


1. Data Controller & Contact

Controller: Samuylov data services and solutions GmbH, Zürich, Switzerland.
Email: contact@genaienterprisehub.com
Postal address: c/o Denis Samuylov, Schwamendingenstrasse 1, Zürich 8050, Switzerland.
Data Protection Contact: Same as above (no separate DPO appointed).


2. What Data We Collect

We collect and process the following categories of personal data:

  • Identity & Professional data: name, role/title, seniority, employer/organisation, department, country, languages.

  • Contact data: business email, business phone (optional), LinkedIn (optional).

  • Registration & participation data: event registrations, attendance, cohort placement, session preferences, dietary requirements (optional), accessibility needs (optional).

  • Interaction data: questions submitted, poll responses, feedback forms, community posts/messages (if we host a forum/Slack/Discord).

  • Operational & device data: IP address, device/browser type, activity logs, page events, timestamps, cookie identifiers (see Cookie Policy).

  • Media: event photography and (where explicitly announced) audio/video recordings.

  • Vendor selection context (optional): use cases, constraints, rough budgets, deployment preferences (kept high‑level and non‑confidential).

We generally avoid collecting special categories of personal data. If you choose to share such data (e.g., accessibility needs, dietary requirements with religious implications), we process it only for the purpose you provided and with appropriate safeguards.


3. Purposes & Legal Bases

We use personal data for:

  1. Membership curation & event operations (eligibility review, invitations, registration, waitlists, cohort placement, access management).

    • Legal bases: legitimate interests; contract performance; consent where required.

  2. Running sessions & community spaces (facilitating roundtables, open‑floor Q&A, moderation, anti‑abuse/anti‑solicitation enforcement).

    • Legal bases: legitimate interests; contract performance.

  3. Producing and distributing materials (session artefacts, templates, follow‑up notes).

    • Legal bases: legitimate interests; contract performance.

  4. Communications (transactional emails, event logistics; optional newsletters/updates).

    • Legal bases: legitimate interests; contract performance; consent for marketing.

  5. Photography and recordings (where announced) for recap and future‑event marketing; we will provide notice and reasonable opt‑out options where feasible.

    • Legal bases: legitimate interests; consent where required by venue rules or local law.

  6. Security, fraud prevention & compliance (access controls, incident handling, legal obligations).

    • Legal bases: legitimate interests; legal obligation.

  7. Analytics & service improvement (aggregated statistics, engagement metrics, product/content planning).

    • Legal bases: legitimate interests; consent for non‑essential cookies.


4. Cookies & Similar Technologies

We use cookies and similar technologies for functionality, analytics, and (if enabled) marketing. Non‑essential cookies run only with your consent. For details, including the list of cookies and how to withdraw consent, see our Cookie Policy.


5. Disclosures & Processors

We share personal data with:

  • Service providers/processors who support the Services (e.g., hosting, email, video conferencing, forms/surveys, analytics, payment for paid events). Processors act on our instructions and are subject to confidentiality and data protection agreements.

  • Event co‑organisers/venue operators (limited to what’s necessary for access, logistics, and safety).

  • Professional advisors (legal, accounting) and authorities where legally required.

We do not sell personal data, and we do not permit third parties to use it for their independent marketing without your consent.


6. Data Retention

We retain personal data only as long as necessary for the purposes above:

  • Membership & event records: up to 3 years after your last interaction (to preserve cohort continuity and invite history), unless a longer retention is required by law.

  • Transactional data (invoices, if any): as required by accounting/tax laws.

  • Media: for the life of our channels unless you request removal or we commit to a shorter period in event‑specific notices.

  • Cookies/analytics: per the Cookie Policy and your consent settings.

We may anonymise data for research/benchmarking; anonymised data is not subject to retention limits.


7. Your Rights

Subject to applicable law, you may have the right to access, rectify, erase, restrict processing, object to processing, and port your data. Where we rely on consent, you can withdraw it at any time (this does not affect processing prior to withdrawal). You can also object to processing based on legitimate interests where we do not have compelling grounds to continue.

How to exercise your rights: email contact@genaienterprisehub.com. We may need to verify your identity and scope your request. You also have the right to lodge a complaint with a supervisory authority (in Switzerland, the Federal Data Protection and Information Commissioner; in the EEA/UK, your local authority).


8. Children

The Services are intended for adults. We do not knowingly collect data from children under 16.


9. Security

We implement appropriate technical and organisational measures to protect personal data, proportionate to risk (access controls, encryption in transit, least‑privilege, audit logging where relevant). No method of transmission or storage is 100% secure.


10. Changes to this Notice

We may update this Notice to reflect changes in our practices or legal requirements. Material changes will be notified by reasonable means (e.g., website notice or email). The “Last updated” date indicates the current version.


11. Contact

Questions or requests? Contact contact@genaienterprisehub.com.