1. Introduction
Ginete Healthcare Consulting Group ("we," "our," or "us") respects your privacy and is committed to protecting it through our compliance with this policy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website ginete.co (the "Website"), in accordance with applicable data protection laws including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other relevant privacy regulations.
By using our Website, you agree to the collection and use of information in accordance with this policy. If you do not agree with the terms of this Privacy Policy, please do not access the Website.
2. Information We Collect
We collect information that you voluntarily provide to us and information that is automatically collected when you visit our Website.
Information You Provide Directly:
- Contact Form: Name, email address, phone number (optional), organization name (optional), and message content when you submit our contact form.
- Resource Downloads: Name, email address, and organization name when you request gated eBook or guide downloads.
Information Collected Automatically:
- Server Logs: Our hosting provider (Cloudflare) automatically collects standard server log data, including your IP address, browser type, operating system, referring URLs, and pages visited. This data is collected and retained by Cloudflare in accordance with their privacy policy.
- Local Storage: We use browser localStorage (not cookies) to remember your cookie consent preferences and form interaction states. This data remains on your device and is not transmitted to our servers.
We do not use tracking cookies, advertising pixels, analytics services, or any third-party tracking technologies on this Website.
3. Cookies and Similar Technologies
Our Website uses browser localStorage rather than traditional cookies. LocalStorage items are stored only on your device and are never transmitted to third parties.
| Item | Purpose | Category |
| cookie-consent | Stores your cookie/consent preferences and version | Essential |
We do not use any advertising or tracking cookies. No data is shared with advertising networks. Our hosting provider (Cloudflare) may set essential security cookies as part of their DDoS protection and CDN services.
4. Legal Basis for Processing (GDPR)
If you are located in the European Economic Area (EEA), we process your personal data under the following legal bases:
- Consent: When you voluntarily submit your information through our contact form or resource download forms, you consent to our processing of that data for the stated purpose.
- Legitimate Interests: We process server log data (via Cloudflare) for website security, performance optimization, and protection against malicious activity. These interests do not override your fundamental rights and freedoms.
- Contractual Necessity: When you engage our consulting services, we process information as necessary to fulfill our contractual obligations.
5. How We Use Your Information
We use the information we collect for the following purposes:
- To respond to your inquiries submitted through our contact form.
- To deliver requested eBooks, guides, and other resources to your email address.
- To send administrative notifications related to your requests (e.g., confirmation of form submission).
- To maintain the security and proper functioning of our Website.
- To comply with legal obligations.
We do not use your information for marketing purposes unless you have separately opted in. We do not engage in automated decision-making or profiling.
6. Data Sharing and Third Parties
We share your personal information only with the following third-party service providers, solely for the purposes described:
- Resend (email delivery): We use Resend to send transactional emails, including contact form responses and resource download deliveries. Resend processes your name and email address on our behalf. Resend Privacy Policy.
- Cloudflare (hosting and CDN): Our Website is hosted on Cloudflare Pages. Cloudflare processes server logs and provides security services. Cloudflare Privacy Policy.
We do not sell, rent, or trade your personal information to any third parties. We do not share your data with advertising networks, data brokers, or social media platforms.
7. Data Retention
- Contact form submissions: Email records of contact form submissions are retained for the duration of any resulting business relationship plus two (2) years, after which they are deleted.
- Resource download records: Records of resource download requests (name, email, resource requested) are retained for two (2) years.
- Server logs: Cloudflare retains server logs in accordance with their data retention policy (typically up to 72 hours for free plans).
- Local storage data: Data stored in your browser's localStorage persists until you clear your browser data or revoke consent through our Cookie Settings.
8. Data Security
We implement appropriate technical and organizational measures to protect your personal information, including:
- All data transmitted to and from our Website is encrypted using TLS/SSL (HTTPS).
- API keys and credentials are stored securely in environment variables, never in client-side code.
- Our hosting provider (Cloudflare) provides enterprise-grade DDoS protection and Web Application Firewall (WAF) services.
While we strive to use commercially acceptable means to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure.
9. Your Rights Under GDPR
If you are a resident of the European Economic Area (EEA) or the United Kingdom, you have the following data protection rights:
- Right of Access: You can request a copy of the personal data we hold about you.
- Right to Rectification: You can request that we correct any inaccurate or incomplete personal data.
- Right to Erasure: You can request that we delete your personal data, subject to certain legal exceptions.
- Right to Data Portability: You can request a machine-readable copy of the personal data you provided to us.
- Right to Object: You can object to the processing of your personal data based on legitimate interests.
- Right to Withdraw Consent: Where processing is based on consent, you can withdraw consent at any time without affecting the lawfulness of prior processing.
- Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority in your country of residence.
To exercise any of these rights, please contact us at privacy@ginete.co or hello@ginete.co. We will respond to your request within 30 days.
10. California Privacy Rights (CCPA)
If you are a California resident, the California Consumer Privacy Act (CCPA) provides you with additional rights regarding your personal information:
- Right to Know: You have the right to request disclosure of the categories and specific pieces of personal information we have collected about you.
- Right to Delete: You have the right to request deletion of your personal information, subject to certain exceptions.
- Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights.
- Right to Opt-Out of Sale: We do not sell your personal information. No opt-out is necessary.
To exercise your California privacy rights, contact us at privacy@ginete.co.
11. International Data Transfers
Our Website is hosted in the United States via Cloudflare's global CDN network. If you are accessing our Website from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States, where data protection laws may differ from those in your jurisdiction.
By submitting your information through our Website, you consent to this transfer. We take steps to ensure that your data is treated securely and in accordance with this Privacy Policy.
12. Children's Privacy
Our Website is not directed to individuals under the age of 16. We do not knowingly collect personal information from children. If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@ginete.co, and we will take steps to delete such information.
13. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated "Last Updated" date. If we make material changes, we may notify you through our cookie consent banner by incrementing the consent version, which will prompt you to review and re-consent.
We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.
14. Contact Information
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: