Privacy Policy
Last updated: June 2026
1. Who we are
This website is operated by MedImpact Advisory, an independent medical-humanitarian consultancy registered in Abidjan, Côte d’Ivoire. Our website address is: https://mi-advisory.org. Data controller contact: [email protected].
2. What personal data we collect and why
We collect personal data only through the proposal-request form on our Contact page. The fields collected are:
- Full name (required)
- Organisation name (required)
- Organisation type (optional)
- Email address (required)
- Phone number (optional)
- Country / region of intervention (optional)
- Service line of interest (optional)
- Message describing your programme or need (required)
- Preferred language (optional)
- Consent acknowledgement (required)
Purpose: To respond to your enquiry and, where relevant, prepare a tailored service proposal. We do not use this data for marketing, profiling, or any purpose other than responding to your request.
Legal basis:
- For contacts based in the European Union or France: Article 6(1)(b) GDPR — processing necessary to take steps at your request prior to entering into a contract, and Article 6(1)(a) GDPR — your explicit consent given via the consent checkbox.
- For contacts based in Côte d’Ivoire or other jurisdictions: processing is based on your consent and on our legitimate interest in responding to professional enquiries, in accordance with loi n°2013-450 du 19 juin 2013 relative à la protection des données à caractère personnel (République de Côte d’Ivoire).
3. How long we keep your data
Form submissions are transmitted to us by email and retained in our mailbox for up to 24 months from the date of receipt, or until the conclusion of the engagement or our decision not to proceed, whichever is earlier. We do not store form submissions in the WordPress database beyond the transient email notification.
4. Who we share your data with
We do not sell, rent, or trade your personal data. We share it only with the following processors in the course of operating this website:
- Hosting provider (WebHostLB / webhostlb.net): Our website and email infrastructure is hosted on servers operated by WebHostLB. Your form submissions are transmitted via wp_mail through this infrastructure. WebHostLB acts as a data processor. Their servers are located in Lebanon.
- Cloudflare: Our website uses Cloudflare for DNS resolution and network performance. Cloudflare may process your IP address and browser metadata as a network intermediary. See Cloudflare’s privacy policy at https://www.cloudflare.com/privacypolicy/.
- Yoast SEO (Automattic Inc.): We use the Yoast SEO plugin for search-engine optimisation of this website. Yoast does not collect visitor personal data directly; it operates on the server side. No data from your form submission is shared with Yoast.
- No analytics platform is currently active on this website. We do not use Google Analytics, Meta Pixel, or any third-party tracking script.
5. Cookies and similar technologies
We use only functional cookies that are strictly necessary for the site to work correctly:
| Cookie name | Set by | Purpose | Expires |
|---|---|---|---|
pll_language | Polylang (our site) | Stores your language preference (EN or FR) so the correct language is shown on return visits. | 1 year |
mia_consent | This site (theme) | Records your cookie-consent choice so the banner is not shown again. | 1 year |
We do not use analytics, advertising, or social-media tracking cookies. If we introduce such cookies in the future, we will update this policy and display a new consent prompt before setting them.
6. Your rights
Depending on your location, you may have the following rights regarding your personal data:
- Right of access — to request a copy of the data we hold about you.
- Right to rectification — to correct inaccurate data.
- Right to erasure — to request deletion of your data.
- Right to restriction — to limit our processing in certain circumstances.
- Right to object — to object to processing based on legitimate interests.
- Right to data portability — to receive your data in a structured, machine-readable format (where applicable).
To exercise any of these rights, contact us at: [email protected]. We will respond within 30 days. EU-based individuals also have the right to lodge a complaint with the supervisory authority in their member state (in France: CNIL — https://www.cnil.fr). Ivorian individuals may contact the ARTCI (Autorité de Régulation des Télécommunications/TIC de Côte d’Ivoire).
7. Data security
We apply reasonable technical and organisational measures to protect your personal data, including HTTPS encryption for all data in transit. Email transmissions are subject to the security practices of WebHostLB.
8. International transfers
Your data may be processed by Cloudflare and WebHostLB on servers outside your country of residence. When data is transferred outside the European Economic Area, we rely on Standard Contractual Clauses or equivalent safeguards where required.
9. Changes to this policy
We may update this policy from time to time. The current version is always available at https://mi-advisory.org/privacy-policy. Material changes will be noted at the top of this page with the revision date.
10. Contact
MedImpact Advisory · Abidjan, Côte d’Ivoire
Email: [email protected]
Website: https://mi-advisory.org