Privacy Policy

Information on how personal data is processed when using the HeidelBridge website.

1. Controller

The controller responsible for the processing of personal data on this website is:

Volkan Samur
Formanekgasse 12-14/1/4
1190 Vienna
Austria

Email: contact@heidelbridge.com

2. Project and Company Status

HeidelBridge is currently a company in formation.

A separate legal entity has not yet been incorporated. Until such incorporation is completed, this website and the processing of personal data through this website are operated under the responsibility of Volkan Samur.

Future company, register, representative, and tax information will be added once the intended Austrian legal entity has been formally established.

3. Scope of This Privacy Policy

This Privacy Policy explains how personal data is processed when users visit this website, use the contact or concept brief request form, communicate with HeidelBridge, or interact with cookies, analytics, and similar technologies used on this website.

This Privacy Policy applies only to this website and related website-based communication. It does not apply to external websites that may be linked from this website.

4. Website Purpose and Audience

This website provides general information about the HeidelBridge concept and its intended development as a non-medical, non-clinical coordination and infrastructure model for clinics, advisors, strategic partners, funding bodies, investors, and institutional pilot partners.

The website is intended for informational and business-development purposes only.

This website is not directed at patients or consumers.

5. No Patient Services and No Health Data Submission

This website does not offer patient-facing medical coordination services.

Users are not able to upload medical documents, submit patient records, request medical assessment, request diagnosis, request treatment recommendations, or request emergency support through this website.

Please do not submit medical records, patient data, health information, diagnosis details, treatment information, emergency information, or other special-category personal data through this website or through the message field of any form.

If such information is submitted despite this notice, it may be deleted or not processed further unless there is a legal obligation to retain or handle it.

6. Categories of Personal Data Processed

Depending on how users interact with the website, the following categories of personal data may be processed:

first name and last name;
email address;
organization or affiliation;
website;
professional role or relevant perspective;
region;
main reason for request;
area of relevance;
message content submitted through the form;
consent confirmation related to the request and processing of submitted information;
technical data such as IP address, browser type, device information, operating system, access time, referring pages, and website usage data;
cookie preferences and consent settings;
analytics and interaction data, where users have given consent.

7. Purposes of Processing

Personal data may be processed for the following purposes:

operating and securing the website;
responding to contact requests and concept brief requests;
assessing whether an inquiry is relevant to the HeidelBridge concept;
communicating with clinics, advisors, strategic partners, funding bodies, investors, and institutional pilot partners;
documenting consent and user preferences;
improving website usability, content, and performance;
measuring website traffic and engagement, where consent has been given;
complying with legal obligations;
protecting legal rights and preventing misuse of the website.

8. Legal Bases for Processing

Personal data is processed only where there is a lawful basis under applicable data protection law.

Depending on the context, processing may be based on:

Consent, where users consent to cookies, analytics, tracking technologies, or submit information through a form;
Pre-contractual or contractual necessity, where processing is required to respond to a request or take steps before entering into a possible cooperation, pilot project, advisory relationship, or service engagement;
Legitimate interests, including operating a secure website, responding to business inquiries, protecting the website from misuse, and improving website functionality;
Legal obligations, where processing is necessary to comply with applicable legal requirements.

Where processing is based on consent, users may withdraw their consent at any time with effect for the future.

9. Contact and Concept Brief Requests

The website may include a contact or concept brief request form.

When users submit the form, the following information may be collected:

first name;
last name;
email address;
organization or affiliation;
website;
professional role or relevant perspective;
region;
main reason for request;
area of relevance;
message field content;
confirmation that the user consents to the request and to the processing of information submitted through the form.

The purpose of collecting this information is to understand the request, assess relevance, respond appropriately, and manage business-development communication.

Submitting a form does not create a client relationship, advisory relationship, medical relationship, agency relationship, contractual relationship, or obligation to respond.

Form submissions are processed through Wix, the website platform used to operate this website.

10. Email Communication

If users contact HeidelBridge by email or through a website form, the information provided may be processed to respond to the inquiry and manage related communication.

HeidelBridge does not currently operate a newsletter or automated email marketing program.

Business follow-up may occur where it is related to a user’s request, professional inquiry, or expressed interest in the HeidelBridge concept.

11. Hosting and Website Infrastructure

This website is created and hosted using Wix.

Wix may process technical data necessary to provide, secure, maintain, and improve the website. This may include IP addresses, browser information, device information, access times, error logs, security logs, and similar technical data.

Wix may also process form submissions, website usage data, cookie consent settings, and related website interaction data as part of the website infrastructure.

12. Domain Registrar

The domain used for this website may be registered and managed through IONOS.

IONOS may process domain-related technical and administrative data where necessary for domain registration, domain management, DNS configuration, and related services.

13. Cookies and Similar Technologies

This website uses cookies and similar technologies.

Some cookies are technically necessary to operate the website, ensure security, remember cookie preferences, and provide basic website functionality. These essential cookies may be used without separate consent where legally permitted.

Non-essential cookies, including analytics and tracking cookies, are used only where users have given consent.

Users can accept or reject non-essential cookies. Users can also change or withdraw their cookie consent at any time through the Cookie Settings link in the website footer.

14. Cookie Settings

The website includes a cookie consent mechanism.

Non-essential cookies are blocked until consent is given. Users can reject non-essential cookies as easily as accepting them. Users can later change or withdraw their consent through the Cookie Settings link in the footer.

Withdrawing consent does not affect the lawfulness of processing based on consent before withdrawal.

15. Wix Analytics

This website may use Wix Analytics to understand website traffic, performance, and user interaction.

Wix Analytics may process technical and usage-related information such as page visits, traffic sources, device type, browser type, approximate location, and interaction data.

Where Wix Analytics uses non-essential cookies or similar technologies, such processing is based on user consent.

16. Google Analytics

This website may use Google Analytics to understand how visitors use the website and to improve website content, structure, and performance.

Google Analytics may process usage data, technical information, cookie identifiers, device information, browser information, approximate location, and interaction data.

Google Analytics is used only where users have given consent through the cookie banner or cookie settings.

Users may withdraw consent at any time through the Cookie Settings link in the website footer.

17. Google Search Console

This website may use Google Search Console to monitor website visibility, indexing, search performance, technical issues, and search-related website performance.

Google Search Console generally provides aggregated website performance and search visibility information to the website operator. It is used to improve technical website quality and search accessibility.

18. LinkedIn Insight Tag

This website may use the LinkedIn Insight Tag to understand professional audience engagement, measure website interactions, and evaluate the performance of LinkedIn-related communication or campaigns.

The LinkedIn Insight Tag may process technical data, cookie identifiers, device information, browser information, page visits, interaction data, and professional audience-related analytics.

The LinkedIn Insight Tag is used only where users have given consent through the cookie banner or cookie settings.

Users may withdraw consent at any time through the Cookie Settings link in the website footer.

19. Service Providers and Recipients

Personal data may be processed by external service providers where necessary to operate the website and related services.

Such providers may include:

Wix, as website platform, hosting provider, form processing provider, and analytics provider;
IONOS, as domain registrar and domain-related service provider;
Google, where Google Analytics or Google Search Console are used;
LinkedIn, where the LinkedIn Insight Tag is used;
email and communication service providers used to receive and respond to inquiries.

Service providers process data only for the relevant service purposes and subject to applicable data protection requirements.

20. International Data Transfers

Some service providers may process personal data outside the European Economic Area.

Where this occurs, appropriate safeguards such as adequacy decisions, standard contractual clauses, contractual safeguards, or other legally recognized transfer mechanisms are used where required by applicable law.

Users should note that third-country data transfers may involve legal risks depending on the country, provider, and type of processing.

21. Retention Periods

Personal data is stored only for as long as necessary for the purposes for which it was collected, unless longer retention is required or permitted by law.

In general:

contact and concept brief requests may be stored for up to 12 months after the last communication;
business communication may be stored for as long as necessary to manage the relationship or potential relationship;
records relevant to legal claims or compliance may be stored for the applicable legal limitation period;
consent records may be stored for as long as necessary to demonstrate consent and compliance;
technical logs and hosting data are stored according to the retention practices of the relevant service providers;
cookie preferences are stored for the duration configured in the cookie consent mechanism.

22. Data Security

Appropriate technical and organizational measures are used to protect personal data against unauthorized access, loss, misuse, alteration, or disclosure.

However, no website, online transmission, or digital storage system can be guaranteed to be completely secure.

Users should avoid submitting sensitive, confidential, medical, patient-related, or special-category personal data through this website.

23. User Rights

Subject to applicable legal requirements, users may have the following rights regarding their personal data:

the right of access;
the right to rectification;
the right to erasure;
the right to restriction of processing;
the right to data portability;
the right to object to processing;
the right to withdraw consent at any time where processing is based on consent;
the right to lodge a complaint with a supervisory authority.

To exercise these rights, users may contact:

contact@heidelbridge.com

24. Right to Lodge a Complaint

Users have the right to lodge a complaint with a data protection supervisory authority if they believe that the processing of their personal data violates applicable data protection law.

For Austria, the competent supervisory authority is generally:

Austrian Data Protection Authority
Datenschutzbehörde

25. No Automated Decision-Making

This website does not use automated decision-making that produces legal effects concerning users or similarly significantly affects them.

26. No Sale of Personal Data

Personal data collected through this website is not sold.

27. Updates to This Privacy Policy

This Privacy Policy may be updated from time to time to reflect changes in the website, services, technologies, legal requirements, or data processing practices.

The latest version published on this website applies.

28. Last Updated

June 2026

Privacy Policy

Information on how personal data is processed when using the HeidelBridge website.

1. Controller

The controller responsible for the processing of personal data on this website is:

Volkan Samur Formanekgasse 12-14/1/4 1190 Vienna Austria

Email: contact@heidelbridge.com

2. Project and Company Status

HeidelBridge is currently a company in formation.

A separate legal entity has not yet been incorporated. Until such incorporation is completed, this website and the processing of personal data through this website are operated under the responsibility of Volkan Samur.

Future company, register, representative, and tax information will be added once the intended Austrian legal entity has been formally established.

3. Scope of This Privacy Policy

This Privacy Policy explains how personal data is processed when users visit this website, use the contact or concept brief request form, communicate with HeidelBridge, or interact with cookies, analytics, and similar technologies used on this website.

This Privacy Policy applies only to this website and related website-based communication. It does not apply to external websites that may be linked from this website.

4. Website Purpose and Audience

This website provides general information about the HeidelBridge concept and its intended development as a non-medical, non-clinical coordination and infrastructure model for clinics, advisors, strategic partners, funding bodies, investors, and institutional pilot partners.

The website is intended for informational and business-development purposes only.

This website is not directed at patients or consumers.

5. No Patient Services and No Health Data Submission

This website does not offer patient-facing medical coordination services.

Users are not able to upload medical documents, submit patient records, request medical assessment, request diagnosis, request treatment recommendations, or request emergency support through this website.

Please do not submit medical records, patient data, health information, diagnosis details, treatment information, emergency information, or other special-category personal data through this website or through the message field of any form.

If such information is submitted despite this notice, it may be deleted or not processed further unless there is a legal obligation to retain or handle it.

6. Categories of Personal Data Processed

Depending on how users interact with the website, the following categories of personal data may be processed:

first name and last name;

email address;

organization or affiliation;

website;

professional role or relevant perspective;

region;

main reason for request;

area of relevance;

message content submitted through the form;

consent confirmation related to the request and processing of submitted information;

technical data such as IP address, browser type, device information, operating system, access time, referring pages, and website usage data;

cookie preferences and consent settings;

analytics and interaction data, where users have given consent.

7. Purposes of Processing

Personal data may be processed for the following purposes:

operating and securing the website;

responding to contact requests and concept brief requests;

assessing whether an inquiry is relevant to the HeidelBridge concept;

communicating with clinics, advisors, strategic partners, funding bodies, investors, and institutional pilot partners;

documenting consent and user preferences;

improving website usability, content, and performance;

measuring website traffic and engagement, where consent has been given;

complying with legal obligations;

protecting legal rights and preventing misuse of the website.

8. Legal Bases for Processing

Personal data is processed only where there is a lawful basis under applicable data protection law.

Depending on the context, processing may be based on:

Consent, where users consent to cookies, analytics, tracking technologies, or submit information through a form;

Pre-contractual or contractual necessity, where processing is required to respond to a request or take steps before entering into a possible cooperation, pilot project, advisory relationship, or service engagement;

Legitimate interests, including operating a secure website, responding to business inquiries, protecting the website from misuse, and improving website functionality;

Legal obligations, where processing is necessary to comply with applicable legal requirements.

Where processing is based on consent, users may withdraw their consent at any time with effect for the future.

9. Contact and Concept Brief Requests

The website may include a contact or concept brief request form.

When users submit the form, the following information may be collected:

first name;

last name;

email address;

organization or affiliation;

website;

professional role or relevant perspective;

region;

main reason for request;

area of relevance;

message field content;

confirmation that the user consents to the request and to the processing of information submitted through the form.

The purpose of collecting this information is to understand the request, assess relevance, respond appropriately, and manage business-development communication.

Submitting a form does not create a client relationship, advisory relationship, medical relationship, agency relationship, contractual relationship, or obligation to respond.

Form submissions are processed through Wix, the website platform used to operate this website.

10. Email Communication

If users contact HeidelBridge by email or through a website form, the information provided may be processed to respond to the inquiry and manage related communication.

HeidelBridge does not currently operate a newsletter or automated email marketing program.

Business follow-up may occur where it is related to a user’s request, professional inquiry, or expressed interest in the HeidelBridge concept.

11. Hosting and Website Infrastructure

This website is created and hosted using Wix.

Wix may process technical data necessary to provide, secure, maintain, and improve the website. This may include IP addresses, browser information, device information, access times, error logs, security logs, and similar technical data.

Volkan Samur
Formanekgasse 12-14/1/4
1190 Vienna
Austria