1. Object and Duration As a provider of Hosting and Cloud services, we process personal data on behalf of our customers. This agreement remains in effect for the duration of the active subscription.
2. Type of Data and Purpose We host and process data uploaded by the Customer (e.g., email content, website files, cloud storage data) solely for the purpose of providing the purchased service. We do not access, sell, or use this data for marketing purposes.
3. Security Measures We implement appropriate technical and organizational measures (encryption, firewalls, periodic backups) to ensure a level of security appropriate to the risk, in compliance with GDPR.
4. Data Location All data is stored on servers located within the [European Economic Area (EEA) / specify location]. We will notify the Customer of any significant changes to the data storage location.
5. Sub-processors The Customer authorizes us to engage sub-processors (e.g., data center providers) to perform the service. A list of our current sub-processors is available upon request.
6. Data Breach Notification In the event of a personal data breach, we will notify the Customer without undue delay (usually within 48-72 hours) of becoming aware of the breach.