Privacy Policy — DHCP Shield Pro

Version: 1.0 · Last updated: 2026-06-12

Accurate as of today. This policy describes what the website actually does now. The customer relationship (licensing, support) is covered separately and clearly labelled as forward-looking in §6.

1. Who we are

The DHCP Shield Pro website is operated by the entity disclosed at /company/contact. That page lists our registered legal entity, registration number, address, and authorised representative. For any privacy question, contact sales@dhcpshield.com.

2. What data we collect, and how the forms work

This website collects only what you choose to send us through its contact, demo, and sales forms. Those forms are live today and are handled by our own backend service (“shield-api”) running on our infrastructure. We collect:

Name
Email address
Company name (optional)
The free-text message you send us
For sales contacts: device count, deployment type, and vertical (free-form, optional)

When you submit a form, the data flows as follows:

Anti-bot check (Cloudflare Turnstile). Each submission is verified by Cloudflare Turnstile to block automated abuse. Turnstile is privacy-preserving and does not track you across sites; Cloudflare receives the challenge token and the request metadata necessary to validate it. See Cloudflare’s privacy policy.
Storage (SQLite). The validated submission is stored by shield-api in a local SQLite database on our server.
Delivery (SMTP email). shield-api also delivers the submission to our sales inbox over SMTP so we can respond.

We load no third-party analytics (no Google Analytics, no Plausible) and use no cookies on this site today.

3. Why we process it (legal basis)

We rely on Article 6(1)(f) GDPR — our legitimate interest in responding to inbound sales contact and operating a B2B sales pipeline. You can object at any time by emailing sales@dhcpshield.com, and we will erase your data unless we are required by law to retain it.

4. How long we retain it

Inbound form submissions are retained for 24 months from the date of submission, unless a customer relationship begins — in which case retention is governed by the contract and the customer-data terms described in §6 below. You can request earlier erasure at any time.

5. Where your data lives, and who else receives it

This website and the shield-api backend run on our own infrastructure in the European Union — there is no third-party hosting provider. The providers that may receive personal data submitted through this site are:

Cloudflare — Turnstile anti-bot validation on form submissions. See https://www.cloudflare.com/privacypolicy/.
Google Workspace (Google Ireland Limited) — hosts our company mailboxes; the email notification of your form submission is delivered to and stored in our sales inbox there. See https://policies.google.com/privacy.

If this list changes, we update this page (see §9).

6. When you become a customer (forward-looking)

This section describes what changes if and when you license DHCP Shield Pro — it does not apply to using this website. The product itself runs on your infrastructure, not ours, so the data it processes about your network (MAC/IP addresses, hostnames, DHCP option content, and derived analytics — “Operational Data”) stays on your appliance. For that data you are the sole controller and we have no access to it; no Article 28 processing agreement is needed for ordinary operation.

The one context in which personal data may reach us is the support channel: if you open a support session and approve it, the diagnostic content you share (“Support Data”) and any in-product feedback (“Feedback Data”) is processed by us as your Article 28 processor, on your documented instructions, and retained for a maximum of 90 days after the session. Those processor terms are set out in our Data Processing Agreement, which mirrors the EULA’s data-protection chapter. We do not operate any commercial billing, license-portal, or payment data flow on this site today; those are described here only as forward-looking, not as live processing.

7. Your rights

Under the GDPR you have the right to:

Access your personal data
Request correction or deletion
Request portability of the data you provided
Object to processing based on legitimate interest
Lodge a complaint with your supervisory authority

To exercise any of these rights, email sales@dhcpshield.com; our privacy contact is reachable at the same address. We have not designated a Data Protection Officer: our processing does not meet the Article 37(1) GDPR thresholds that make one mandatory. If that changes, the DPO will be named here.

8. Cookies and tracking

This site uses no cookies and no third-party analytics. The Starlight theme toggle stores a single key in localStorage (starlight-theme) under the same origin; this is not a cookie and is not transmitted off-device.

If we introduce analytics or cookies in the future, we will update this policy before they go live, and where consent is required — for any cookie that is not strictly necessary — we will ask for it before anything is set. Our preference is for privacy-preserving, self-hosted measurement that needs neither cookies nor consent.

9. Changes to this policy

Material changes are announced on this page with an updated Last updated date.

10. Contact

Privacy questions: sales@dhcpshield.com. Legal entity and authorised representative: /company/contact. Customer-data processor terms: /legal/dpa.