Privacy Policy

DIGIHOSTAPP ("we," "us," or "our") is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, store, and safeguard personal and business information when you visit our website at digihostapp.com, use our services, or interact with us in any way.

This policy applies to all visitors, registered users, and clients of DIGIHOSTAPP. By using our services, you acknowledge that you have read and understood this Privacy Policy and consent to the data practices described herein.

We operate in compliance with applicable data protection laws, including but not limited to the General Data Protection Regulation (GDPR) where applicable, and other regional privacy regulations. If you have questions about our data practices, please contact us at [email protected].

We collect information in several ways — directly from you, automatically when you use our services, and from third-party sources. The categories of information we collect include:

Personal Information

• Identity data: full name, company name, job title
• Contact data: email address, phone number, mailing address
• Account credentials: username and encrypted password
• Billing information: billing address and payment method details (processed securely via third-party processors)
• Communication records: emails, support tickets, and chat transcripts

Technical and Usage Data

• IP address, browser type and version, operating system, device identifiers
• Pages visited, links clicked, features accessed, and time spent on our platform
• Referral URLs and search queries that led to our website
• Server logs, error reports, and diagnostic information related to service performance
• Cookies, web beacons, and similar tracking technology data (see Section 04)

Hosted Infrastructure Data

For clients using our hosting and infrastructure services, we may process data that you upload, store, transmit, or otherwise introduce into our systems. You retain ownership of this data; DIGIHOSTAPP acts as a data processor in relation to it.

We use the information we collect for the following purposes, always limited to what is necessary and proportionate for each purpose:

Legal Basis (GDPR)

For users in the European Economic Area (EEA), our legal bases for processing personal data include: the performance of a contract (delivering services you have engaged us for), compliance with legal obligations, our legitimate interests (such as fraud prevention and service improvement), and your explicit consent where required.

We use cookies and similar technologies (such as local storage and web beacons) to operate our website and services, understand usage patterns, and deliver a personalized experience.

Types of Cookies We Use

• Essential cookies: Required for core functionality such as authentication, session management, and security. These cannot be disabled.
• Functional cookies: Remember your preferences and settings to enhance your experience.
• Analytics cookies: Collect anonymized data about how visitors use our website to help us improve performance and content.
• Marketing cookies: Used to track visits across websites and deliver relevant advertising (only with your consent).

Managing Cookies

You can control and manage cookies through your browser settings. Most browsers allow you to refuse or delete cookies. However, disabling essential cookies may affect the functionality of our services. Where required by law, we will obtain your consent before placing non-essential cookies via our cookie consent mechanism.

For more detailed guidance on managing cookies, please refer to your browser's help documentation or visit allaboutcookies.org.

In providing our hosting and infrastructure services, our systems necessarily process technical data related to the operation of your hosted environments. This includes server access logs, resource utilization metrics (CPU, memory, bandwidth), error logs, and performance diagnostics.

This technical data is used exclusively to: maintain service performance and reliability, diagnose and resolve technical issues, detect security threats and unauthorized access, and fulfill our contractual obligations to you.

We do not access, analyze, or use the content of your hosted applications or databases for any purpose other than delivering the services agreed upon, unless required by law or with your explicit instruction.

DIGIHOSTAPP uses reputable, PCI-DSS-compliant third-party payment processors to handle payment transactions. We do not store, process, or transmit full credit or debit card numbers, CVV codes, or bank account details on our own systems.

The payment information you provide is transmitted directly to our payment processors using industry-standard encryption. We receive only a tokenized reference and basic billing details (such as the last four digits of your card and expiry date) necessary to manage your account.

We retain invoice records, transaction references, and billing histories as required by applicable accounting and tax regulations. These records are stored securely and access is limited to authorized personnel.

We engage carefully selected third-party service providers to assist us in operating our business and delivering our services. These providers may process your personal data on our behalf as data processors, strictly in accordance with our instructions and applicable data protection law.

Categories of third-party providers we work with include:

Data Sharing Limitations

We share your data with third parties only to the extent necessary for the provision of our services or as required by law. We do not sell, rent, or trade your personal information to third parties for their own marketing purposes.

All third-party providers are vetted for their privacy and security practices, and we maintain data processing agreements with those that process personal data on our behalf.

We retain your personal data only for as long as is necessary for the purposes described in this policy, or as required to comply with our legal and contractual obligations.

Data After Account Closure

Following termination or closure of your account, we will provide a reasonable window (typically 14 days) for you to retrieve your data. After this period, your personal data will be securely deleted or anonymized, except where retention is required by law or for the resolution of ongoing disputes.

Automated backups may retain copies of data for up to 90 days beyond deletion requests, after which they are purged in accordance with our backup lifecycle policy.

We implement appropriate technical and organizational security measures designed to protect your personal data against unauthorized access, disclosure, alteration, or destruction. Our security practices include:

Security Limitations

Despite our best efforts, no method of internet transmission or electronic storage is 100% secure. We cannot guarantee absolute security of your data. If you have reason to believe that your interaction with us is no longer secure, please notify us immediately at [email protected].

DIGIHOSTAPP operates internationally and may transfer your personal data to, or process it in, countries other than the country in which you reside. These countries may have different data protection laws than your own.

When we transfer personal data across borders, we ensure that appropriate safeguards are in place to protect your information, in compliance with applicable laws. These safeguards may include:

Your Rights Regarding International Transfers

You have the right to request information about the specific safeguards we apply when transferring your personal data internationally. Please contact us at [email protected] to make such a request.

Depending on your location and applicable law, you may have certain rights with respect to your personal data. These rights may include:

How to Exercise Your Rights

To exercise any of the rights listed above, please submit a written request to [email protected] with the subject line "Data Rights Request." We will respond within thirty (30) days of receiving your request. We may require you to verify your identity before processing your request.

If you are located in the EEA or UK and believe we have not adequately addressed your request, you have the right to lodge a complaint with your local data protection authority.

We will only send you marketing and promotional communications where you have provided your explicit consent, or where we have a legitimate interest in contacting existing clients about similar services (subject to your right to opt out at any time).

Every marketing email we send includes a clear and easy-to-use unsubscribe mechanism. You may also update your communication preferences at any time by contacting us at [email protected].

Please note that even if you opt out of marketing communications, we will continue to send you essential service-related communications, such as account notifications, billing confirmations, security alerts, and policy updates.

Our services are intended for businesses and individuals who are at least 16 years of age. We do not knowingly collect, process, or store personal data from individuals under the age of 16 (or the applicable age of digital consent in your jurisdiction).

If you are a parent or guardian and believe that your child has provided us with personal data without your consent, please contact us immediately at [email protected]. We will take prompt steps to investigate and delete such data from our systems.

We reserve the right to require age verification for account registration if we have reason to believe a user may be under the applicable minimum age.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or business operations. The revised policy will be posted on our website with the updated effective date.

For material changes that significantly affect how we process your personal data, we will notify you via email (at the address associated with your account) or by displaying a prominent notice on our website at least fourteen (14) days before the changes take effect. "Material changes" include changes to the categories of data we collect, the purposes for which we use it, or how we share it with third parties.

Your continued use of our services after the effective date of any updated Privacy Policy constitutes your acceptance of the changes. If you do not agree with the updated policy, you should discontinue use of our services before the changes take effect.

If you have any questions, concerns, or requests regarding this Privacy Policy, your personal data, or our data practices, please do not hesitate to contact us. We are committed to working with you to resolve any privacy-related concerns promptly and transparently.

Response Time

We aim to respond to all privacy-related inquiries within five (5) business days. For formal data subject access requests or complaints, we will acknowledge receipt within 72 hours and provide a substantive response within thirty (30) days, in accordance with applicable data protection regulations.