Privacy Policy

Effective Date: 01 January 2025
We take the protection of your personal data seriously. This Privacy Policy explains how we collect, use, and protect your personal information when you visit our website and provide your data in connection with our product – a digital health application designed to support people living with Type 1 Diabetes.

1. Responsible Entity 
The entity responsible for the processing of your personal data on this website is:
Alessandro Dani
Yorckstraße 16
40476 Düsseldorf
Germany
alessandro.dani@hexosense.com

2. Collection and Storage of Personal Data 
We collect, store, and use personal data only to the extent necessary to provide a functional website and our services, in compliance with the General Data Protection Regulation (GDPR). In particular, when you interact with our website, we may collect the following personal data:

  • Email address (if you submit it via our contact or interest form)

  • IP address (for technical and security purposes)

  • Device and browser information (to improve website performance)

  • Date and time of your interaction

We do not collect any sensitive health-related data via this website.

3. Data Processing 
We process your data for the following purposes:

  • To contact you if you express interest in our app;

  • To provide you with information or updates about the product;

  • To ensure the technical functionality and security of our website;

  • To analyze usage and improve the user experience.

If you contact us via the contact form, the information you provide, including your contact details, will be stored by us for the purpose of processing your inquiry and for potential follow-up questions, in particular to offer you a participation in our free pre-trial option. This data will not be shared without your consent.

4. Legal Basis
We process your personal data on the following legal bases:

  • Your consent (Art. 6(1)(a) GDPR) – for example, when you submit your email address.

  • Our legitimate interest (Art. 6(1)(f) GDPR) – for ensuring website security and functionality.

5. Data Sharing
We do not sell or rent your data. Personal data may be shared with trusted service providers (e.g. for email communication or website hosting) strictly for the purposes mentioned above and only under data processing agreements that ensure GDPR compliance.

6. Data Retention
We retain your data only as long as necessary for the purposes described in this policy or as required by applicable law. You may request deletion of your data at any time.

7. Your Rights 

Under the GDPR, you have the right to:

  • Access your personal data

  • Request rectification of inaccurate data

  • Request deletion of your data

  • Withdraw consent at any time (with future effect)

  • Object to processing in certain cases

  • Data portability (under certain conditions)

  • Lodge a complaint with a supervisory authority

To exercise these rights, please contact us at alessandro.dani@hexosense.com.

Supervisory Authority in North Rhine-Westphalia (Düsseldorf):

Landesbeauftragte für Datenschutz und Informationsfreiheit Nordrhein-Westfalen (LDI NRW)
 Kavalleriestraße 2–4
40213 Düsseldorf, Germany
📞 Tel.: +49 (0)211 38424-0
📧 Email: poststelle@ldi.nrw.de
🌐 https://www.ldi.nrw.de

8. Cookies and Tracking Technologies
Our website uses cookies and similar technologies.
Cookies are small files stored on your device to support core website functions, improve performance, or enable analytics and marketing.

We may use:

  • Essential cookies – required for basic site functionality

  • Analytics cookies – to analyze visitor behavior and improve the site

  • Marketing cookies – to deliver relevant ads (e.g., via Meta Pixel or similar services)

You can manage your cookie preferences via our cookie banner or through your browser settings. Consent for non-essential cookies can be withdrawn at any time.

9. Data Security
We implement appropriate technical and organizational measures to protect your data against unauthorized access, loss, or misuse. This includes secure data transmission (e.g. SSL encryption) and restricted access to personal data.

10. Changes to this Privacy Policy
We may update this Privacy Policy to reflect changes in legal requirements or in our services. The current version is always available on our website.