HPC-SCANNERS

Privacy Policy (EU/EEA)

This Privacy Policy explains how HPC-SCANNERS, a division of CA-CHARTS ("we", "us", or "our"), collects and processes personal data when you visit our website, use our contact form, or otherwise interact with us. It is intended to comply with the EU General Data Protection Regulation (GDPR).

1. Data controller

The data controller responsible for processing your personal data is:

HPC-SCANNERS, a division of CA-CHARTS
Contact email: hello@hpc-scanners.com

2. Personal data we collect

We may process the following categories of personal data:

  • Contact and enquiry data — such as your name, company name, business email address, product of interest and the contents of your message when you contact us by email or through the website consultation form.
  • Communication data — records of correspondence with you and follow-up communications relating to your enquiry.
  • Technical data — such as IP address, browser language, browser and device information, request metadata, and server log data generated when you use the website or submit the contact form.
  • Security and anti-abuse data — data processed to protect the website and the contact form against spam, abuse and automated misuse, including reCAPTCHA verification data and rate-limiting related request data.
  • Cookie and similar technologies data — information stored or accessed through cookies or similar browser technologies, including third-party technologies such as Google reCAPTCHA and, on the Beefusion page, a local browser storage entry used to remember the selected theme (see Section 5).
  • Analytics data — if you accept analytics, data about website usage, interactions and device/browser identifiers collected through Google Analytics for statistical analysis (see Section 5).

3. Purposes and legal bases of processing

We process your personal data for the following purposes and on the following legal bases under Article 6 GDPR:

  • Providing and operating our website — to display the website, ensure its stability and security, and prevent abuse. Legal basis: our legitimate interests (Art. 6(1)(f) GDPR) in operating a secure and reliable service.
  • Responding to enquiries — to handle your requests, questions or support enquiries. Legal basis: performance of a contract or taking steps at your request prior to entering into a contract (Art. 6(1)(b) GDPR), and our legitimate interests (Art. 6(1)(f) GDPR) in providing customer support.
  • Spam prevention and security — to protect the contact form and website from automated abuse, fraudulent submissions and other malicious activity, including through Google reCAPTCHA and rate limiting. Legal basis: our legitimate interests (Art. 6(1)(f) GDPR) in maintaining the security and integrity of our services.
  • Remembering website preferences — on the Beefusion and Detective pages we use local browser storage to remember the selected light/dark theme. Legal basis: our legitimate interests (Art. 6(1)(f) GDPR) in providing a consistent user experience, or your consent where required by applicable law.
  • Analytics and improvement — if you accept analytics, we use Google Analytics to understand how the website is used and to improve content, navigation and performance. Where required by law, we rely on your consent for non-essential analytics cookies and identifiers (Art. 6(1)(a) GDPR). If you reject analytics, Google Analytics is not loaded through our consent flow.
  • Compliance and protection — to comply with legal obligations, enforce our rights, and protect us against legal claims. Legal bases: compliance with legal obligations (Art. 6(1)(c) GDPR) and our legitimate interests (Art. 6(1)(f) GDPR).

4. Recipients of personal data

We may share personal data with trusted third parties, including:

  • IT and hosting service providers that help us operate and secure the website and backend infrastructure.
  • Google, as provider of reCAPTCHA v2, which we use to protect the contact form against spam and abuse.
  • Google, as provider of Google Fonts and Material Symbols, which are loaded by the website from Google servers.
  • Proton, as provider of our email infrastructure used to receive website enquiries submitted through the contact form.
  • Google, as provider of Google Analytics, which we load only after you accept analytics.
  • Professional advisers (such as legal and accounting firms) where necessary.
  • Public authorities or courts, where required by applicable law or to protect our legal rights.

We require all such recipients to process personal data only according to our instructions and to implement appropriate technical and organisational measures to protect it.

5. Cookies and similar technologies

We do not currently set our own first-party cookies through custom website code for login, advertising or analytics purposes. However, the website uses certain third-party technologies and browser storage mechanisms described below.

Google reCAPTCHA. When you open a consultation form that contains reCAPTCHA, the website loads Google reCAPTCHA v2 to protect the form from spam and abuse. According to Google's documentation, reCAPTCHA sets a necessary cookie named _GRECAPTCHA. Because the widget is loaded from Google services, Google may also receive technical request data such as your IP address, browser information and interaction signals needed for fraud prevention.

Local browser storage. On the Beefusion and Detective pages, we store a local browser storage entry named hpc-theme to remember the selected light/dark theme. We also store your analytics preference in a local browser storage entry named hpc-analytics-consent so that the analytics banner does not reappear on every visit once you have made a choice. These values are stored in localStorage, not in cookies.

Google Analytics. If you accept analytics in our consent banner, the website loads Google Analytics 4 via the Google tag (gtag.js). In that case, analytics cookies and identifiers may be set or accessed, including first-party Google Analytics cookies such as _ga and _ga_<container-id>. Where required by law, we obtain your consent before activating these non-essential analytics technologies, and the website stores your choice in localStorage. If you reject analytics, Google Analytics is not loaded through our consent flow.

You can configure your browser to block or delete cookies and local storage entries. Please note that if you block reCAPTCHA-related technologies, the contact form may not function properly.

6. International data transfers

Your personal data may be processed in countries outside the European Economic Area (EEA). This may occur, for example, when we use service providers such as Google services or email/hosting providers whose infrastructure may involve processing outside your country of residence. Where such transfers occur, we ensure an adequate level of protection for your personal data, for example by relying on an adequacy decision of the European Commission or by using the European Commission's Standard Contractual Clauses with recipients in third countries.

7. Data retention

We retain personal data only for as long as necessary to fulfil the purposes described in this Privacy Policy, including handling enquiries, maintaining business records, protecting the website, and complying with legal obligations, unless a longer retention period is required or permitted by law (for example, statutory retention obligations).

When personal data is no longer needed, we will delete or anonymise it in accordance with our data retention procedures.

8. Your rights under the GDPR

If you are located in the EU/EEA, you have the following rights in relation to your personal data, subject to the conditions and limitations set out in the GDPR:

  • Right of access — to obtain confirmation as to whether we process your personal data and to receive a copy of it.
  • Right to rectification — to have inaccurate or incomplete personal data corrected.
  • Right to erasure ("right to be forgotten") — to request deletion of your personal data in certain circumstances.
  • Right to restriction of processing — to request that we restrict processing of your data under certain conditions.
  • Right to data portability — to receive personal data you provided to us in a structured, commonly used and machine-readable format and to transmit it to another controller where technically feasible.
  • Right to object — to object, on grounds relating to your particular situation, to our processing of your personal data where we rely on legitimate interests (Art. 6(1)(f) GDPR). We will stop processing unless we can demonstrate compelling legitimate grounds.
  • Right to withdraw consent — where processing is based on your consent, you may withdraw it at any time. This will not affect the lawfulness of processing prior to withdrawal.

To exercise your rights, please contact us at hello@hpc-scanners.com.

9. Right to lodge a complaint

If you believe that our processing of your personal data infringes data protection law, you have the right to lodge a complaint with your local data protection authority, in particular in the EU/EEA member state of your habitual residence, place of work or place of the alleged infringement.

10. Security

We implement appropriate technical and organisational measures designed to protect personal data against unauthorised access, loss, destruction or alteration. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security of your data.

11. Changes to this Privacy Policy

We may update this Privacy Policy from time to time, for example to reflect changes in our processing activities or applicable law. We will publish the updated version on this page and indicate the date of the latest revision.

This Privacy Policy was last updated on 17 March 2026.