Binnion Consulting
← Back to home

Privacy

Privacy policy

Last updated 28 April 2026 — demo content.

This policy describes how Binnion Consulting S.L. ("Binnion", "we", "us") collects, uses, and protects personal data when you visit our site, register for one of our courses, or otherwise interact with us. We act as the data controller for the personal data described below within the meaning of the EU General Data Protection Regulation (GDPR).

1. Controller and contact

Binnion Consulting S.L., Passeig de Gràcia 100, 08008 Barcelona, Spain. For privacy-related queries, write to privacy@binnionpharma.com.

2. What data we collect

  • Account data: the email address you provide when requesting a magic link.
  • Booking data: the tier you select, the number of attendees, and the timestamp of your booking.
  • Payment data: handled directly by our payment provider (Stripe). We receive a confirmation that the payment succeeded along with the last four digits of the card and the country of issue, but we do not store full card details on our systems.
  • Communications: any messages you send us by email or through the site.
  • Technical data: server logs (IP address, user agent, request path) retained for 14 days for security and diagnostic purposes.

3. Why we use your data

  • To verify your identity and keep you signed in (magic-link authentication).
  • To process your booking and provide the course.
  • To send you essential information about the course you booked (calendar invite, reading list, logistics).
  • To meet our legal obligations, in particular accounting and tax record-keeping.
  • To defend our legitimate interests, including fraud prevention and the security of our systems.

4. Legal bases

We rely on the following lawful bases under Article 6(1) GDPR: contract for delivering the course you booked; legal obligation for tax and accounting records; legitimate interests for site security and fraud prevention; and consent for any optional analytics or marketing cookies, where applicable.

5. Who has access to your data

We share personal data only with processors who help us run the service, under written data-processing agreements:

  • Stripe Payments Europe Ltd. (Ireland) — payment processing.
  • Our hosting provider — application hosting in the EU.
  • Our email infrastructure — transactional email delivery (magic links, course communications).

We do not sell personal data and we do not transfer it to advertisers.

6. International transfers

Our processors operate primarily within the European Economic Area. Where any transfer outside the EEA is necessary, we rely on the Standard Contractual Clauses adopted by the European Commission and on adequacy decisions where they apply.

7. Retention

Account and booking records are kept for as long as needed to provide the course and to meet our legal obligations (typically six years for accounting purposes). Server logs are deleted after 14 days. You can ask us to delete your account at any time, subject to retention required by law.

8. Your rights

Under the GDPR you have the right to access, rectify, erase, restrict, or port your personal data, and to object to certain processing. To exercise any of these rights, write to privacy@binnionpharma.com. You also have the right to lodge a complaint with your supervisory authority — in Spain, the Spanish Data Protection Agency (AEPD).

9. Cookies

We use a small set of strictly-necessary cookies for authentication and a consent record. We do not currently set analytics or marketing cookies. Full details are in our cookie policy.

10. Changes to this policy

We may update this policy to reflect changes in our service or in applicable law. The "Last updated" date at the top will indicate the most recent change; for material changes we will notify booked attendees by email.