top of page

Privacy Policy

A legal disclaimer

HealthChain is committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy explains how we collect, process, store, and share personal information in compliance with the European Union General Data Protection Regulation (GDPR) and other applicable European data protection laws.

By visiting our website or using our services, you consent to the practices described in this policy.

Personal Data We Collect

We may collect the following categories of personal data:

  • Contact information: Name, email address, phone number, company name, job title

  • Professional information: Business sector, role, or position relevant to consulting services

  • Website usage data: IP address, browser type, pages visited, time spent on site, referring pages, and device information

  • Communications: Emails, messages, and inquiries sent to us via forms, email, or other channels

  • Marketing preferences: Newsletter subscriptions, event registrations, and consented communication preferences

We only collect data necessary for the purposes outlined below.
 

How We Collect Data

  • Through forms completed on our website (contact requests, newsletter subscriptions)

  • By tracking website usage via cookies and analytics tools

  • Through email or other direct communication with our team

  • Via events, webinars, or professional networking where you voluntarily provide information

Legal Basis for Processing

We process personal data under the following lawful bases in accordance with GDPR (Article 6):

  • Consent: When you explicitly agree to receive newsletters, marketing, or promotional communications

  • Contractual necessity: To provide consulting services, respond to inquiries, or manage client relationships

  • Legitimate interests: For website analytics, operational improvement, service optimization, and marketing communications, provided that such processing does not override your rights

Purpose of Processing

We use your personal data to:

  • Respond to your inquiries and provide consulting services

  • Conduct market research, analysis, and industry insights tailored to your business

  • Manage and improve our website and digital services

  • Send newsletters, updates, and other marketing communications (with consent)

  • Support business operations and comply with legal obligations

Sharing and Disclosure of Data

We do not sell your personal information. Your data may be shared with:

  • Service providers: Hosting, email, analytics, or other third-party service providers acting on our behalf

  • Legal authorities: If required by law, legal proceedings, or regulatory compliance

  • Business partners: Only when necessary to deliver a service you requested, with proper data protection measures in place

All third parties are required to safeguard your data in line with GDPR standards.

International Transfers

If your personal data is transferred outside the European Economic Area  (EEA), we ensure adequate safeguards, including Standard Contractual Clauses (SCCs) or other GDPR-compliant mechanisms, to protect your information.

Data Retention

We retain personal data only as long as necessary to fulfill the purposes for which it was collected or to comply with legal obligations. When data is no longer required, we securely delete or anonymize it.

 

Cookies and Tracking

Our website uses cookies and similar technologies to improve user experience and analyze website traffic. You can manage your cookie preferences through your browser or via our consent banner.

Types of cookies we use:

  • Essential cookies: Required for website functionality

  • Analytics cookies: Collect anonymous data on site usage to optimize our services

  • Marketing cookies: Used only with your consent to personalize communications

 

Your Rights Under GDPR

You have the following rights regarding your personal data:

  • Access: Request a copy of the data we hold about you

  • Rectification: Correct any inaccuracies in your personal data

  • Erasure: Request deletion of your personal data under certain conditions

  • Restriction: Limit how we process your personal data

  • Data portability: Receive your personal data in a structured, machine-readable format

  • Object: Object to the processing of your personal data, including for marketing purposes

  • Withdraw consent: Where processing is based on consent, you can withdraw it at any time

  • Complain: File a complaint with a supervisory authority (e.g., your national Data Protection Authority)

To exercise these rights, contact us at [DPO email / contact email].

 

Security Measures

We implement appropriate technical and organizational measures to protect your personal data against accidental or unlawful loss, access, alteration, disclosure, or destruction. Measures include:

  • Encryption of data in transit (HTTPS)

  • Access controls limiting internal access to personal data

  • Regular security audits and monitoring

While we take all reasonable precautions, no method of transmission or storage is completely secure.

 

Changes to this Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, services, or legal requirements. Updates will be posted on this page, with the latest effective date indicated at the top.

Contact Information

For any questions about this Privacy Policy or how we handle your personal data:


Email: contact@healthchain-consulting.com

bottom of page