Privacy policy

We only collect data you voluntarily provide through the contact form or by direct email:

• Name.
• Email address.
• Organisation (optional).
• Content of the message you send us.

Purpose: to reply to your enquiry, manage the proposed collaboration and keep professional contact if you wish. We do not use your data for marketing or share it with third parties for marketing purposes.

The legal basis is your consent when you send the form or an email (GDPR art. 6.1.a), together with the legitimate interest in maintaining the professional communication you started (art. 6.1.f).

We keep your data as long as there is mutual interest in the relationship or until you ask for deletion. As a general rule, we do not keep messages longer than 5 years from the last contact.

Your data is stored and processed on the professional services we use to run the site and email:

• Vercel, Inc. — website hosting (USA, with standard contractual clauses).
• Resend — transactional email sending for the contact form.
• Google (Workspace) — email reception and archiving.
• Squarespace / Google Domains — domain and DNS management.

We do not sell or share your data with third parties for commercial purposes.

You may exercise your rights of access, rectification, erasure, objection, restriction and portability at any time by writing to miguelcaselles@hesalud.com.

If you consider that processing violates the regulations, you may lodge a complaint with the Spanish Data Protection Agency (www.aepd.es).

We apply reasonable technical and organisational measures to protect your data: TLS encryption in all communications, access control and data minimisation.