Quick summary
- HostNodex collects the account, billing, and technical data needed to operate the service and protect the platform.
- Registration acceptance data may be retained as contract evidence.
- HostNodex shares data only with processors and partners needed to deliver payments, email, infrastructure, customer support, or legal compliance.
- You can request access, correction, deletion, or other GDPR rights subject to legal and contractual retention requirements.
- Optional analytics and replay technologies remain disabled unless you enable them through the cookie settings flow.
1. Data we collect
HostNodex collects personal data that you provide directly, data created when you use the service, and technical data needed for security and operations.
You can download a copy of the personal data HostNodex holds directly from the Data and privacy section of your account settings (see Your rights).
- Account data such as name, email address, password hash, and support communications.
- Billing and subscription data such as invoices, payment status, customer identifiers, and limited payment metadata returned by processors.
- Technical and operational data such as IP addresses, request logs, device or browser metadata, VPS configuration details, and service event history.
- Legal acceptance evidence such as the accepted legal-bundle version, acceptance timestamp, IP address, and user-agent string during signup.
2. Why we use personal data
HostNodex uses personal data to create and secure accounts, deliver services, provision and manage subscriptions, prevent abuse, respond to support requests, send required notices, and comply with legal obligations.
The legal bases for processing normally include contract performance, legitimate interests in running and defending the platform, compliance with legal obligations, and consent where consent is specifically requested.
5. Retention and security
HostNodex keeps data only for as long as reasonably necessary for the purposes described here, including service delivery, fraud prevention, accounting, dispute handling, and legal compliance.
We apply reasonable technical and organizational safeguards, but no service can guarantee absolute security. You also play a critical role by protecting your own credentials and server access.
6. Your rights
Subject to applicable law, you may request access, correction, deletion, restriction, objection, or data portability regarding your personal data.
You can exercise access and portability yourself from the Data and privacy section of your account settings, which lets you download a machine-readable copy of the personal data HostNodex holds directly. From the same place you can submit an account erasure request; our team reviews each request and, once it is fulfilled, your personal account data is anonymized in place and your active sessions are ended.
Erasure is not unconditional. Records we must keep for legal, accounting, or financial retention, including invoices, payment records, and dispute and fraud-prevention evidence, are retained even after an erasure request is fulfilled and are anonymized or removed only once their retention period allows.
The self-service export and erasure flow covers the data HostNodex holds directly. Personal data held by our external processors on our behalf, such as support conversations handled by our customer-support messaging processor and email-delivery logs handled by our mail provider, is outside that self-service flow; contact us if you need it addressed and we will coordinate with the relevant processor subject to the same retention limits.
7. Location and transfers
HostNodex aims to keep service data within the EU or under safeguards appropriate for GDPR-compliant processing. When a processor transfers data outside the EEA, HostNodex expects appropriate transfer mechanisms such as standard contractual clauses or equivalent safeguards.