Privacy Policy

Data we collect

Account data: name, email address, password hash, portal role, login state, verification and password reset tokens.

Service data: orders, pack, region, access URL, workspace username, service status, version, update state, connection health, support tickets and activity records.

Billing data: invoices, payment status, provider references, tax profile details, company name, billing email, address, tax ID, payment method label, and transaction history.

Security data: IP address, browser information, failed login attempts, audit records, support access records, webhook events, and operational logs.

How we use data

To create accounts, process orders, prepare hosted services, send service emails, provide support, handle billing, prevent fraud, and secure the platform.

To investigate abuse, enforce acceptable use rules, detect service failures, verify webhooks, apply updates, and maintain backups.

To comply with legal, accounting, tax, payment processor, chargeback, anti-fraud, and security obligations.

Payments and processors

We do not store full card numbers on this website. Card and wallet payments are handled by payment providers or a merchant of record shown during checkout.

Payment providers may process billing identity, tax data, transaction data, device data, and fraud signals under their own privacy policies.

When Lemon Squeezy is used, Lemon Squeezy may act as merchant of record and handle checkout, tax, fraud, receipts, subscription payment records, refunds, and customer payment events.

Cookies and local storage

We use necessary session cookies to keep you signed in, protect forms with CSRF tokens, and operate your account area.

We may use browser local storage to remember interface choices, such as whether the cookie notice was acknowledged.

We do not currently run third-party advertising cookies. If analytics, ads, or embedded third-party tools are added later, this policy will be updated.

Sharing

We share data only with providers needed to run the service, such as hosting, DNS, email, payment, fraud prevention, support, logging, and infrastructure providers.

We may disclose data if required by law, court order, payment dispute, fraud investigation, abuse report, or security incident response.

We do not sell customer personal information.

Retention

Account, order, invoice, support, security, and audit records are kept as long as needed for service operation, accounting, dispute handling, fraud prevention, and legal compliance.

Operational logs may be rotated according to the plan or system retention policy.

Customers may request account review or deletion, but some records may be retained when legally or operationally necessary.

Your choices

You can update account, billing, and service information in your account area where available.

You can contact support to request access, correction, export, restriction, or deletion of personal data.

Some requests may require identity verification and may be limited by payment, tax, security, accounting, or legal retention requirements.

Security

We use HTTPS, access controls, hashed passwords, CSRF protection, security headers, webhook signatures, audit logs, and limited admin access to protect the platform.

No online service is risk free. Customers must use strong passwords and keep their service credentials private.