Our commitment
Healthcall addresses healthcare professionals who handle sensitive data daily. We cannot, in all consistency, ask our visitors to tolerate on our showcase site the advertising tracking we refuse in our products. Our cookie policy boils down to three principles: a minimum of cookies, no advertising tracker, full transparency.
You will not see a cookie banner on healthcall.be. Not out of carelessness, but because our technical choices — Matomo without cookies, Cal.com loaded only on interaction, Clarity delayed with personal data masking — allow anonymous audience measurement which, under European and Belgian law, does not require prior consent collection.
What is a cookie?
A cookie is a small text file deposited by a website on your browser, which can be re-read on a subsequent visit. Cookies can be strictly necessary (authentication, basket, session), technical (language preferences), audience measurement (anonymous statistics) or tracking (advertising, remarketing, profiling).
Two related technologies deserve to be distinguished:
localStorage/sessionStorage: key-value storage in the browser, not automatically transmitted to the server. Legally subject to the same regime as cookies when used for tracking.- Third-party pixels and trackers: 1×1 images or scripts loaded from an external domain, often used for advertising remarketing (Facebook Pixel, LinkedIn Insight Tag, Google Ads tag). We use none.
Cookies we do not use
What you will never find on healthcall.be — and which is the reason we can do without a consent banner:
- No Google Analytics (neither GA4 nor Universal Analytics).
- No Facebook Pixel / Meta Pixel.
- No LinkedIn Insight Tag.
- No Google Ads conversion tag or remarketing tags.
- No third-party advertising trackers (Criteo, Taboola, Outbrain, RTB House, etc.).
- No remarketing cookies or advertising profiling.
- No browser fingerprinting for advertising purposes.
- No audience sharing with social networks or advertising agencies.
Cookies we use
The exhaustive list of third-party services loaded by healthcall.be and the cookies or technical identifiers they may deposit:
| Service | Cookie type | Purpose | Duration | Consent required |
|---|---|---|---|---|
| Caddy session | Technical (HTTP) | HTTP session, reverse-proxy security | Session (deleted on browser close) | No — strictly necessary |
Matomo analytics (self-hosted stats.healthcall.be) | No cookie | Anonymous audience measurement, anonymised IP, no cross-site profile | — | No — cookieless mode |
| Microsoft Clarity | _clck, _clsk, CLID | Anonymised heatmaps and session recordings, aggressive PII masking, delayed loading > 10 s after interaction | 1 year (max) | No — exempted anonymous audience measurement |
| Cal.com (iframe embed) | iframe session cookies deposited by cal.com | Appointment booking on explicit visitor interaction | Session | Implicit consent — iframe loaded after click |
| Cloudflare Turnstile | No tracking cookie | Invisible anti-spam protection of contact and demo forms | — | No |
| TLS / HSTS | No cookie — HTTP headers only | HTTPS security, HSTS preloading | — | No |
This table is kept up to date with each evolution of the site’s technical stack. Any addition of a new third-party service depositing cookies or identifiers will be the subject of a prior update of this page, and — if necessary — the implementation of a dedicated consent mechanism.
Our “no cookie banner” strategy
The ePrivacy Directive requires prior consent collection for any deposit or reading of information on a user’s equipment, except exceptions. Two exceptions exist: strictly necessary cookies for the provision of an expressly requested service, and — under conditions — anonymous audience measurement cookies. We have organised ourselves to keep our entire analytics stack within these two exemptions.
Concretely:
- Technical cookies (Caddy session, TLS) are exempted from consent under article 129, §1, 2° of the Belgian Law of 13 June 2005 — they are strictly necessary for the provision of the service you request (consulting the site).
- Matomo is configured without cookie (cookieless mode), with IP anonymisation and no cross-site profile. Audience measurement is anonymous by construction: no consent is legally required.
- Microsoft Clarity is loaded with delay (> 10 s after the visitor’s first significant interaction) with aggressive masking of personal information (form inputs, names, email addresses). This setup falls under the “anonymous audience measurement” exemption.
- Cal.com deposits session cookies only after an explicit visitor action (click on “View slots”). This action constitutes implicit consent to the use of the booking service it triggers.
- Turnstile and TLS/HSTS headers deposit no tracking cookie.
Consequence: no consent banner is necessary — and we clearly prefer this sober ergonomics to an intrusive pop-up that 85% of visitors would close without reading.
Reversibility clause — if European jurisprudence, a DPA recommendation or a contentious decision modified this interpretation, we would deploy in less than one working day a minimalist consent banner, with conditional loading of the concerned tools. This switch has been technically anticipated in our architecture.
Configure your browser
You retain in all circumstances the hand on cookies deposited by websites you visit, Healthcall included. Each browser allows blocking, deleting or limiting cookies:
- Google Chrome — Manage site cookies and data
- Mozilla Firefox — Clear cookies and site data
- Apple Safari — Manage cookies and website data
- Microsoft Edge — Delete cookies in Microsoft Edge
- Brave, Vivaldi, Arc — consult the official documentation of your browser.
Most modern browsers also offer a private browsing mode that isolates and then automatically deletes cookies on window close.
Your rights
To the extent that some processing (anonymous audience measurement, anti-spam) may residually involve personal data — for example a truncated IP address —, you have the rights guaranteed by GDPR: access, rectification, erasure, restriction, opposition, portability.
To exercise your rights or ask a question about specific processing, consult our privacy policy or write to us at contact@healthcall.be.
You can also, at any time, lodge a complaint with the Data Protection Authority (DPA), Rue de la Presse 35, 1000 Brussels, contact@apd-gba.be, autoriteprotectiondonnees.be.
Update of this policy
This cookie policy is liable to evolve based on changes to our technical stack, evolution of the European and Belgian legal framework, and DPA recommendations. Any substantial modification — adding a third-party service, modifying a retention period, implementing a consent banner — is dated in the header of this page and notified, for major updates, by a temporary information banner in the footer.
Last update: 25 April 2026.