Privacy Policy

HistoGate
Last Updated: September 1, 2025
Effective Date: September 1, 2025

1. INTRODUCTION

HistoGate (“we,” “us,” “our,” or the “Company”) operates the website histogate.com (the “Service”). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our Service. Please read this Privacy Policy carefully. By using our Service, you agree to the collection and use of information in accordance with this policy.

2. CONTACT INFORMATION

Data Controller:
HistoGate
Ferran Muñoz 14
Begues, Barcelona
Spain
Email: contact@histogate.com

Data Protection Officer:
Email: contact@histogate.com

3. CATEGORIES OF DATA COLLECTED

3.1 Personal Data We Collect

We collect minimal personal data, specifically:

• Contact Information: Name and email address (only from users who voluntarily subscribe to our mailing list)
• Technical Data: IP addresses, browser type, device information, and usage data through cookies and similar technologies

3.2 How We Collect Data

• Directly from You: When you voluntarily subscribe to our newsletter
• Automatically: Through cookies and similar tracking technologies when you interact with our Service

4. LEGAL BASIS FOR PROCESSING

We process your personal data based on the following legal grounds:

4.1 Consent (GDPR Article 6(1)(a))

• For newsletter subscriptions and marketing communications

4.2 Legitimate Interests (GDPR Article 6(1)(f))

• For website analytics and improvement
• For security and fraud prevention

4.3 Legal Obligations (GDPR Article 6(1)(c))

• To comply with applicable laws and regulations

5. COOKIE POLICY

5.1 Types of Cookies We Use

• Essential Cookies: Required for basic site functionality
• Analytics Cookies: To understand how visitors interact with our Service
• Preference Cookies: To remember your settings and preferences

5.2 Cookie Management

You can control cookies through your browser settings. Note that disabling certain cookies may impact Service functionality.

6. USE OF INFORMATION

We use collected information to:

• Send newsletters and promotional materials (with your consent)
• Improve and optimize our Service
• Ensure security and prevent fraud
• Comply with legal obligations
• Respond to user inquiries

7. THIRD-PARTY SHARING

7.1 We may share your information with:

• Service Providers: Who assist in operating our Service (e.g., email service providers)
• Legal Authorities: When required by law or to protect rights
• Business Transfers: In connection with mergers, acquisitions, or asset sales

7.2 We do NOT:

• Sell your personal data
• Share your data for third-party marketing purposes

8. USER RIGHTS

8.1 Under GDPR (for EU/EEA residents):

• Right to Access: Request copies of your personal data
• Right to Rectification: Request correction of inaccurate data
• Right to Erasure: Request deletion of your data (“right to be forgotten”)
• Right to Restrict Processing: Request limitation of processing
• Right to Data Portability: Receive your data in a structured format
• Right to Object: Object to certain processing activities
• Right to Withdraw Consent: At any time, without affecting prior processing

8.2 Under CCPA (for California residents):

• Right to Know: About personal information collected, used, disclosed, or sold
• Right to Delete: Request deletion of personal information
• Right to Opt-Out: Of the sale of personal information (we do not sell personal data)
• Right to Non-Discrimination: For exercising privacy rights

8.3 Exercising Your Rights

To exercise any rights, contact us at: contact@histogate.com

We will respond within 30 days (GDPR) or 45 days (CCPA), subject to applicable extensions.

9. DATA RETENTION

• Newsletter Subscribers: Until you unsubscribe or request deletion
• Technical Data: Maximum 24 months from collection
• Legal Compliance: As required by applicable laws

10. SECURITY MEASURES

We implement appropriate technical and organizational measures, including:

• Encryption of data in transit and at rest
• Access controls and authentication
• Regular security assessments
• Employee training on data protection
• Incident response procedures

11. DATA BREACH NOTIFICATION

In the event of a data breach:

• Regulatory Notification: Within 72 hours to relevant authorities (where required)
• User Notification: Without undue delay if high risk to your rights and freedoms
• Documentation: We maintain records of all data breaches

12. INTERNATIONAL DATA TRANSFERS

12.1 Safeguards

When transferring data outside the EU/EEA, we ensure:

• Adequacy decisions are in place, or
• Appropriate safeguards (e.g., Standard Contractual Clauses) are implemented

12.2 Your Rights

You may request information about safeguards for international transfers.

13. CHILDREN’S PRIVACY

Our Service is not directed to individuals under 16. We do not knowingly collect personal data from children under 16. If you become aware that a child has provided us with personal data, please contact us.

14. SEVERABILITY

If any provision of this Privacy Policy is found unenforceable, the remaining provisions shall continue in full force and effect.

15. GOVERNING LAW AND JURISDICTION

This Privacy Policy is governed by the laws of Spain. Any disputes shall be subject to the exclusive jurisdiction of the courts in Barcelona, Spain, without prejudice to your rights under applicable data protection laws.

16. CHANGES TO THIS POLICY

We may update this Privacy Policy periodically. We will notify you of material changes by:

• Posting the new Privacy Policy on this page
• Updating the “Last Updated” date
• Sending an email notification (for subscribers)

17. REVISION HISTORY

Version	Date	Changes
1.0	September 1, 2025	Initial Privacy Policy

18. ADDITIONAL RIGHTS AND INFORMATION

18.1 Supervisory Authority

You have the right to lodge a complaint with a supervisory authority, in particular:

• Spanish Data Protection Agency (Agencia Española de Protección de Datos – AEPD)
• Your local data protection authority

18.2 Automated Decision-Making

We do not engage in automated decision-making or profiling that produces legal effects.

18.3 Language

This Privacy Policy may be translated into other languages. In case of conflict, the English version prevails.

---

By using our Service, you acknowledge that you have read and understood this Privacy Policy.