Privacy Policy
Clear, plain-English privacy information for readers in the EU and beyond.
1) Who we are
WhyTF Health is an independent medical-education project based in the European Union. We publish plain-English explainers about human biology. This website is statically hosted on GitHub Pages.
Contact (single channel): admin@whytfhealth.com
2) Scope
This policy describes what personal data we process when you visit whytfhealth.com, read content, or email us. We don’t run user accounts, comments, or in-page messaging. We do not sell personal data.
3) What we collect (minimal by design)
- Email you send us: If you write to admin@whytfhealth.com, we’ll receive your email address, message content, and any headers/attachments you include.
- Basic visit data: As with most websites, standard server-level logs may be generated by our hosting provider (GitHub Pages). These typically include IP address, user-agent, date/time, and requested URLs. We don’t attempt to identify you from this data.
- Cookies: We do not set tracking cookies. Any cookies delivered by the browser or underlying hosting infrastructure are strictly necessary for basic site delivery.
4) Why we process your data (GDPR legal bases)
- Site delivery (Art. 6(1)(f) Legitimate Interests): Operating a fast, secure, static site for the public. Hosting infrastructure may transiently process IP addresses to serve pages and ensure reliability/security.
- Responding to your email (Art. 6(1)(b)/(f)): If you contact us, we process your email to reply and keep a record of the conversation for follow-up and quality control.
- Security & integrity (Art. 6(1)(f)): Detecting abuse, debugging issues, and protecting the site and readers.
- Compliance (Art. 6(1)(c)): Where required by EU or Member State law (e.g., retention for legal defense).
5) No unnecessary tracking
We don’t run third-party tracking pixels or ad networks. We do not profile readers, and we don’t buy or sell data.
6) Data sharing & recipients
- Hosting: The site is served by GitHub Pages (a service provided by GitHub, Inc.). In order to deliver the site globally, GitHub’s infrastructure may process data (e.g., IP addresses) in multiple regions. We do not control GitHub’s internal routing. See GitHub’s public documentation for their privacy and security practices.
- Email: When you email us, your message will be processed by the email providers involved in sending/receiving mail on the public internet. We keep your email in our mailbox as correspondence.
- Legal & safety: We may disclose information if required by law or to protect the rights, safety, and integrity of our readers and services.
7) International transfers
Because GitHub Pages is a global hosting service, technical processing may occur outside the EU/EEA (e.g., in the United States). Where applicable, we rely on the hosting provider’s contractual and organizational safeguards for international transfers, such as Standard Contractual Clauses adopted by the European Commission.
8) Retention
- Server-level logs: Retained by the hosting provider for a limited period for security and reliability, then purged per their policies. We don’t extend this retention.
- Email correspondence: Kept for as long as reasonably necessary to handle your request and maintain a record for quality, audit, or legal defense, then deleted or archived securely.
9) Security
We publish a static site (no server-side dynamic code) and use HTTPS by default. Even so, no website can guarantee absolute security. If you discover a vulnerability or data concern, please email admin@whytfhealth.com.
10) Your rights (GDPR)
If you are in the EU/EEA, you can request to:
- Access your personal data we process;
- Rectify inaccurate data;
- Erase data, where applicable;
- Restrict or object to processing, where applicable;
- Port data you provided to us (where technically feasible).
To exercise your rights, contact admin@whytfhealth.com. We may need to verify your identity before responding.
11) Complaints
You have the right to lodge a complaint with your local EU/EEA data protection authority. We’d appreciate the chance to resolve issues directly — email us at admin@whytfhealth.com.
12) Children’s privacy
Our content is written for a general audience. We do not knowingly collect personal data from children. If you believe a child has provided us personal data, please contact us so we can delete it.
13) Third-party links
We sometimes link to research papers or reputable health resources. We do not control those sites. Their privacy practices are their own.
14) Changes to this policy
We’ll update this page if our practices change. The “Last updated” date above reflects the most recent revision. Material changes will be explained in clear language.
15) Contact
For any privacy questions or rights requests, email admin@whytfhealth.com.