ScanBeforeOpen
Privacy Policy
ScanBeforeOpen processes files locally in the browser. Files are not uploaded, stored in a database, or sent to a file-processing API.
Controller/operator: Tom Silas Helmke, c/o Online-Impressum #4746, Europaring 90, 53757 St Augustin, Germany, email: tshfm78@gmail.com.
The MVP has no user accounts, no analytics, no trackers, and no active advertising scripts. Cookies are not used in the launch MVP.
File checks use browser features such as File API, ArrayBuffer, and Web Workers. This processing happens on the user's device.
LocalStorage is used only for local UI preferences such as theme/language if the user changes them. No cookies are required for that.
Hosting is provided by Vercel. When the website is accessed, technically necessary server logs may be created, such as IP address, timestamp, requested URL, user agent, and technical status information. These logs support operation, troubleshooting, and security.
This website may include clearly marked affiliate links or advertising links. If users click such a link and then buy something or enter into a contract with the respective provider, the operator of this website may receive a commission.
Merely visiting ScanBeforeOpen does not set affiliate cookies, affiliate pixels, or affiliate scripts on this website through simple affiliate text links. Only when an external link is clicked is the user forwarded to the website of the respective provider.
On partner websites, personal data such as IP address, browser data, referrer, or destination page may be processed by the provider. The privacy policy of the respective provider applies. Scan results, file contents, and file names are not transmitted to affiliate partners.
Depending on the processing activity, legal bases may include Art. 6(1)(f) GDPR for secure website operation and Art. 6(1)(a) GDPR for optional consent.
Data subjects may have rights to access, rectification, erasure, restriction, portability, and objection, depending on the circumstances. They may also complain to a competent data protection authority.
AdSense is disabled by default. Before activation, a Google-certified consent/CMP solution, this privacy policy, and CSP rules must be updated.
This privacy policy reflects the current MVP technical state and should be legally reviewed before broader public marketing.