Effective Date: 20 February 2026  |  Last Updated: 20 February 2026

1. Introduction

1.1. Hyperscout ("we," "us," or "our") operates the website at https://www.hyperscout.io and the associated platform (collectively, the "Website"). The present Cookie Policy explains what cookies and similar tracking technologies are used on the Website, the purposes they serve, and the choices available to visitors regarding their deployment.

1.2. The storage of information on, or the retrieval of information from, a visitor's terminal equipment is governed by Article 5(3) of Directive 2002/58/EC of the European Parliament and of the Council of 12 July 2002 concerning the processing of personal data and the protection of privacy in the electronic communications sector (the "ePrivacy Directive"), as amended by Directive 2009/136/EC. In the Netherlands, Article 11.7a of the Telecommunicatiewet (Telecommunications Act) transposes those requirements into national law; in Italy, Article 122 of the Codice in materia di protezione dei dati personali (Decreto legislativo 30 giugno 2003, n. 196, the "Italian Privacy Code") fulfils the same transposition function, supplemented by the Guidelines on cookies and other tracking tools issued by the Garante per la protezione dei dati personali in its Decision No. 231 of 10 June 2021 ("Garante Cookie Guidelines").

1.3. To the extent that cookies or similar technologies process personal data, such processing falls within the scope of Regulation (EU) 2016/679 (the "GDPR"). The interplay between the ePrivacy Directive and the GDPR is addressed in Article 95 GDPR, which confirms that the ePrivacy Directive provides the specific rules governing the storage and access of information on terminal equipment. Accordingly, the consent requirements described herein reflect both frameworks.

1.4. The present Policy should be read in conjunction with our Privacy Policy, available at https://www.hyperscout.io/privacy, which provides comprehensive information on data controller identity, legal bases, data subject rights, and contact details.

2. What Are Cookies and Similar Technologies

2.1. A cookie is a small text file placed on a visitor's device (computer, smartphone, tablet, or other terminal equipment) by a web server when the visitor accesses a website. Cookies enable the website to recognise the visitor's device on subsequent visits, to store preferences, and to collect information about browsing activity. Cookies may be classified according to several criteria, including their origin, duration, and purpose.

2.2. In addition to cookies, the Website may employ similar technologies such as web beacons (also known as pixel tags or clear GIFs), local storage mechanisms, and JavaScript-based identifiers. Although technically distinct from cookies, these technologies perform analogous functions and are subject to the same legal requirements regarding informed consent and transparency. All references to "cookies" in this Policy shall, unless the context dictates otherwise, be understood to encompass such similar technologies.

3. Categories of Cookies by Origin and Duration

3.1. First-Party Cookies: These are set directly by the Hyperscout domain (https://www.hyperscout.io). Only Hyperscout can read and modify these cookies. First-party cookies are typically used for session management, authentication, and preference storage.

3.2. Third-Party Cookies: These are set by domains other than https://www.hyperscout.io, through content or scripts embedded in our pages. Third-party cookies are commonly associated with analytics and advertising services provided by external operators. Where third-party cookies are used, the external operator acts as an independent data controller for the personal data collected through those cookies, and visitors should consult the privacy and cookie policies of the relevant third party.

3.3. Session Cookies: Temporary cookies that are stored in the visitor's browser memory only for the duration of the browsing session and are automatically deleted when the browser is closed.

3.4. Persistent Cookies: Cookies that remain on the visitor's device for a defined period or until manually deleted. Persistent cookies allow the Website to recognise a returning visitor and to recall previously expressed preferences.

4. Categories of Cookies by Purpose

4.1. Strictly Necessary (Technical) Cookies

Strictly necessary cookies are indispensable for the basic operation of the Website. They enable essential functions such as page navigation, access to secure areas, session management, and load balancing. Without these cookies, the Website cannot function as intended.

In accordance with Article 5(3) of the ePrivacy Directive and its national transpositions, strictly necessary cookies do not require the visitor's prior consent. Consistent with the Garante Cookie Guidelines, we are nonetheless obligated to inform visitors of their existence and purpose through this Policy. The legal basis for the processing of any personal data associated with strictly necessary cookies is Article 6(1)(f) GDPR (legitimate interest in maintaining website functionality).

Representative strictly necessary cookies deployed on the Website include:

Session identifier cookies: Enable the server to associate sequential page requests with the same visitor session. These are first-party session cookies that expire upon closure of the browser.

Authentication state cookies: Maintain the logged-in status of registered users navigating between Platform pages. These are first-party persistent cookies with a duration aligned to the session timeout configured for the user's account tier.

Security cookies: Assist in the detection and prevention of cross-site request forgery and other security threats. These are first-party cookies with a duration not exceeding twenty-four (24) hours.

4.2. Functional (Preference) Cookies

Functional cookies allow the Website to remember choices made by the visitor, such as language selection, display settings, or regional preferences. While they enhance the browsing experience, the Website would remain operable without them, albeit with reduced personalisation.

Functional cookies require the visitor's prior consent before being placed on the terminal equipment. Such consent is obtained through the cookie banner mechanism described in Section 6. The legal basis for any associated personal data processing is Article 6(1)(a) GDPR (consent).

4.3. Analytics Cookies

Analytics cookies collect aggregate and, in some cases, pseudonymous information about how visitors interact with the Website, including pages visited, time spent on each page, referral sources, and error occurrences. The data gathered through analytics cookies is used to understand usage patterns and to improve the Website's structure and content.

Where analytics cookies are configured to collect data that is not fully anonymised, or where they enable the identification or re-identification of individual visitors, prior consent is required. We have configured our analytics tools to minimise the collection of personal data and to anonymise IP addresses where technically feasible.

The analytics service currently in use on the Website is:

Vercel Analytics: Vercel Web Analytics provides aggregated, privacy-focused traffic data. Vercel Analytics does not use cookies by default and does not collect personally identifiable information. Where no cookie is set and no personal data is collected, prior consent is not required. Should our analytics configuration change to employ cookies or to process personal data, this Policy shall be updated accordingly, and consent shall be obtained before any such cookies are deployed.

4.4. Marketing and Profiling Cookies

Marketing cookies track visitors across websites in order to display advertisements that are relevant to the individual user. Profiling cookies create a detailed profile of the visitor's interests and browsing behaviour, enabling targeted advertising and content personalisation.

As of the Effective Date, the Website does not deploy marketing or profiling cookies. Should this change, the following conditions shall apply: (a) prior, specific, informed, and freely given consent shall be obtained before any marketing or profiling cookies are placed; (b) the consent mechanism shall allow visitors to accept or reject each category of non-essential cookies independently, in accordance with the Garante Cookie Guidelines and EDPB Guidelines 05/2020 on consent; and (c) this Policy shall be updated to identify each marketing or profiling cookie by name, provider, purpose, and duration.

5. Cookie Consent Banner and Management

5.1. Upon a visitor's first access to the Website, a cookie consent banner is displayed. The banner provides a brief summary of the cookie categories used, together with clear options to: (a) accept all cookies; (b) reject all non-essential cookies; and (c) access granular settings to accept or reject individual categories. In conformity with the Garante Cookie Guidelines, the "reject" option is presented with equal prominence to the "accept" option, and neither scrolling, continued browsing, nor closure of the banner constitutes valid consent.

5.2. Consent, once given, is recorded and stored by means of a first-party preference cookie. Visitors may withdraw or modify their consent at any time by accessing the cookie management panel, which remains accessible through a link labelled "Cookie Settings" displayed in the Website footer on every page. Withdrawal of consent does not affect the lawfulness of processing carried out prior to withdrawal; it takes effect from the point of revocation onward.

5.3. Where a visitor declines non-essential cookies, only strictly necessary cookies shall be deployed. The visitor's browsing experience may be affected insofar as functional and analytics features are concerned, yet core Website functionality shall remain available.

5.4. Re-consent shall be requested periodically. In line with the Garante Cookie Guidelines, cookie consent preferences shall be re-presented to the visitor no sooner than six (6) months from the date of the most recent consent expression, unless a material change to our cookie deployment requires earlier re-presentation.

6. Browser-Level Cookie Controls

6.1. In addition to the Website-level consent mechanism described in Section 5, visitors may manage cookies through their browser settings. Most modern browsers allow visitors to block or delete cookies, to receive a notification when a cookie is set, and to configure exceptions for specific websites or cookie types. Instructions for managing cookies vary by browser; visitors are encouraged to consult the help documentation of their respective browser. Commonly used browsers include:

• Google Chrome: https://support.google.com/chrome/answer/95647
• Mozilla Firefox: https://support.mozilla.org/en-US/kb/cookies-information-websites-store-on-your-computer
• Apple Safari: https://support.apple.com/guide/safari/manage-cookies-sfri11471
• Microsoft Edge: https://support.microsoft.com/en-gb/windows/manage-cookies-in-microsoft-edge

6.2. Visitors should be aware that disabling or deleting cookies at the browser level may affect the functionality of the Website and may require the visitor to re-authenticate or to re-express cookie preferences.

7. Third-Party Responsibilities

7.1. Where cookies are set by third-party operators via the Website, each such operator acts as an independent data controller with respect to the personal data it collects. Hyperscout does not control the data processing practices of third-party cookie providers and is not responsible for the content of their privacy or cookie policies. Visitors who wish to exercise data protection rights in respect of third-party cookies should direct their requests to the relevant third-party operator.

7.2. Before integrating any third-party service that deploys non-essential cookies on the Website, Hyperscout conducts a proportionality assessment to evaluate the necessity and intrusiveness of the cookies concerned. Integration is contingent upon the third-party provider offering adequate transparency documentation and a lawful data processing framework consistent with the GDPR.

8. International Considerations

8.1. Visitors accessing the Website from jurisdictions within the European Economic Area ("EEA") benefit from the consent and transparency protections set forth in the ePrivacy Directive and its national transpositions. Visitors from jurisdictions outside the EEA may be subject to different or additional requirements under their local privacy laws. Hyperscout endeavours to apply a uniform, high standard of cookie transparency and consent management to all visitors, irrespective of location.

8.2. Where analytics or other cookie-related services involve the transfer of data to servers located outside the EEA, such transfers shall be carried out in accordance with the safeguards described in Section 9 of our Privacy Policy, including, where applicable, Standard Contractual Clauses adopted under Commission Implementing Decision (EU) 2021/914.

9. Changes to this Cookie Policy

9.1. We reserve the right to amend this Cookie Policy to reflect changes in our cookie deployment, changes in applicable legislation, or updated guidance from supervisory authorities. Substantial changes shall be communicated to returning visitors through the re-presentation of the cookie consent banner. The "Last Updated" date at the top of this document indicates the most recent revision.

10. Contact

10.1. For any questions or concerns regarding this Cookie Policy, including the exercise of your rights in relation to cookies and similar technologies, please contact:

Hyperscout

Bazarstraat 44, The Hague, the Netherlands

Email: privacy@hyperscout.io

Website: https://www.hyperscout.io