Privacy Statement

Last updated 2026-01-09

Scope

This Privacy Statement explains how PulseForge Embedded processes personal data when you browse asset-station.digital, request information, or engage our services. It applies to visitors worldwide, with additional rights for persons in the European Economic Area and the United Kingdom where referenced. We act as a controller for website analytics and inbound inquiries. For deliverables produced under contract, processing roles are described in the relevant data processing terms when we handle personal data on your instructions.

Use of data

We use contact details to respond to requests, schedule conversations, and maintain client relationships. We use technical logs to secure the site and diagnose errors. Where permitted, we use analytics to understand which articles and service descriptions are read most often so we can improve clarity. We do not sell personal data. We do not use automated decision-making that produces legal effects concerning individuals based solely on automated processing for website visitors.

Third parties

We rely on infrastructure providers for hosting, email delivery, and analytics where enabled. These providers process data under agreements that require security measures and limited purposes. If we change subprocessors materially for an active client engagement, we will notify the client contact according to the applicable contract. Public links may reference professional social profiles; clicking them is governed by those platforms’ policies.

Contact

For questions about this document, write to contact@asset-station.digital with the policy name in the subject line. We respond within a reasonable period that reflects request complexity and internal review steps. If you are exercising a statutory right, include enough detail for us to verify your request without collecting excessive personal data.

Your rights

Depending on your location, you may have rights to access, rectify, erase, restrict, or object to certain processing, and to lodge a complaint with a supervisory authority. For Hungarian residents, the National Authority for Data Protection and Freedom of Information is the relevant supervisory authority for many matters. We verify requests to prevent unauthorized disclosure. We will explain any limitations, such as legal retention obligations, when they apply.

Retention

Contact form submissions are retained for up to twenty-four months unless a longer period is required for legitimate business correspondence or legal holds. Security logs rotate on a shorter schedule. Client project archives follow the retention schedule in the relevant agreement. When retention ends, we delete or irreversibly anonymize data where feasible.

Data collected

We may collect name, email address, company, phone number, message content, IP address, user agent string, timestamps, and cookie identifiers where cookies are used. Media inquiries may include publication affiliation. We avoid collecting health data through this website; if you voluntarily include sensitive information in a message, we will restrict access and delete it when retention allows unless law requires otherwise.

Security measures

We apply administrative, technical, and organizational measures appropriate to the risk, including access controls, transport encryption for modern browsers, and vendor diligence for subprocessors. No method of transmission is perfectly secure; you should use organizational email and avoid sharing credentials in plain text. Report suspected incidents promptly so we can coordinate containment steps.

International transfers

If personal data is transferred outside the EEA, we rely on appropriate safeguards such as Standard Contractual Clauses where required, unless an adequacy decision applies. We document transfer impact considerations for client engagements when we act as a processor. Website hosting locations are selected to minimize unnecessary transfers while maintaining reliability.

Children

This website is not directed to children, and we do not knowingly collect data from children for marketing purposes. If you believe a child submitted personal data without parental authority, contact us and we will delete it where deletion is consistent with law and legitimate interests.