Privacy Policy | Hostfist
Effective Date: 20-Sep-2025 — Last Updated: 20-Sep-2025

1. Introduction

Hostfist ("we", "us", "Provider") provides managed hosting, domain management, webmail services and managed Google Workspace. This Privacy Policy explains what personal data we collect, why we collect it, how we use it, and your rights regarding that data.

2. Information We Collect

We collect the following categories of information when you use our services or communicate with us:

  • Account & Billing Information: name, company name, billing address, email, phone number, payment details (payment processor stores sensitive payment data).
  • Service Data: domain registration details, DNS records, hosting configuration, mailboxes, Google Workspace account identifiers, usage metrics, IP addresses, logs, and related metadata necessary to deliver services.
  • Customer Content: any data, files, emails, applications, code or content you store or transmit using our services. We process this data only to provide, maintain and support the services.
  • Support & Communications: emails, transcripts, call logs, and attachments you provide when interacting with support or sales.
  • Analytics & Usage: telemetry and usage patterns to monitor performance, diagnose problems, and improve Services.

3. How We Use Information

We use collected information to:

  • Provide, operate, and maintain the Services (hosting, DNS, email, Google Workspace management).
  • Process payments and manage billing and renewals.
  • Respond to support requests, troubleshoot, and provide account administration.
  • Detect, prevent, and respond to security incidents, abuse, fraud, or illegal activity.
  • Comply with legal obligations and enforce our Terms & Agreements.
  • Improve, analyze, and optimize our Services and offerings.

4. Sharing & Third Parties

Because we manage services using third-party providers, we share data as necessary with:

  • Infrastructure Providers: hosting platforms, registrars, email providers, and DNS providers to deliver services.
  • Payment Processors: for billing and payment processing.
  • Google: where Google Workspace is provisioned — subject to Google’s privacy policies and terms.
  • Law & Compliance: when required by law, court order, or to protect rights and safety.

We require vendors and partners to maintain appropriate security measures and limit use of data to necessary purposes. We are not responsible for third-party privacy practices; please review third-party privacy policies for details.

5. Cookies & Tracking

We may use cookies, local storage, and similar technologies on our websites and portals for authentication, session management, analytics, and improving user experience. You can control or disable cookies in your browser settings — note that disabling some cookies may affect functionality.

6. Data Security

We implement reasonable technical and organizational measures to protect personal data against unauthorized access, loss, alteration or disclosure. Measures include encrypted communications (TLS), access controls, role-based access, and regular patching. However, no method of transmission or storage is 100% secure; we cannot guarantee absolute security.

7. Data Retention

We retain personal data only as long as necessary to provide Services, comply with legal obligations, and resolve disputes. Retention periods vary by data category (e.g., billing records may be retained longer for accounting/legal reasons).

8. Your Rights

Depending on your jurisdiction, you may have rights including:

  • Access and obtain a copy of your personal data we hold.
  • Request correction or deletion of inaccurate or unnecessary data.
  • Object to or restrict processing in certain circumstances.
  • Request portability of data you provided to us.

To exercise rights, contact us using details in the Contact section. We may require verification before fulfilling requests.

9. Cross-Border Transfers

We and our third-party providers may process and store personal data in jurisdictions outside your country, including India and other locations where our vendors operate. By using our Services you consent to cross-border transfer, storage and processing of your data as described in this Policy.

10. Children

Our Services are not intended for children under 13. We do not knowingly collect personal data from children. If you believe we have collected data from a child, contact us and we will take steps to delete the information as required by law.

11. Changes to Policy

We may update this Policy to reflect changes in our practices or legal requirements. Material changes will be communicated via the website or email where practicable. Continued use after changes indicates acceptance of the updated Policy.

12. Contact

If you have questions or want to exercise your privacy rights, contact:

This Policy is a general template and does not constitute legal advice. Consider review by legal counsel to ensure compliance with applicable privacy laws (e.g., GDPR, Indian DPB rules, etc.).