DreshVPS ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our VPS hosting services and visit dreshvps.com.
Summary: We collect only what's necessary to provide you with reliable VPS hosting services. We never sell your personal data to third parties. Your server data belongs to you.
Table of Contents
- Information We Collect
- How We Use Your Information
- Legal Basis (GDPR)
- Your Server Data
- Data Location
- Information Sharing
- Subprocessors
- Data Security
- Breach Notification
- Data Retention
- Backup Policy
- Account Termination
- Your Rights
- California Rights (CCPA)
- Abuse Complaints
- Cookies & Tracking
- International Transfers
- Children's Privacy
- Third-Party Links
- Policy Changes
1. Information We Collect
1.1 Account Information
When you create an account or purchase services, we collect full name, email address, phone number (optional), billing address, and company name (if applicable).
1.2 Payment Information
We use Stripe and PayPal to handle transactions. We do not store full credit card numbers or sensitive payment data on our servers.
1.3 Server and Usage Data
We collect server resource usage (CPU, RAM, bandwidth, storage), assigned IP addresses, control panel access logs, and technical logs for troubleshooting and security monitoring.
1.4 Communications
We retain support ticket conversations, email correspondence, and live chat transcripts.
1.5 Website Analytics
We may collect browser type, OS, referring website, pages viewed, IP address, and device identifiers when you visit our website.
2. How We Use Your Information
| Purpose | Data Used |
|---|---|
| Provide VPS hosting services | Account info, server data |
| Process payments and billing | Account info, payment data |
| Customer support | Account info, communications, server data |
| Security and fraud prevention | IP addresses, access logs, usage patterns |
| Service improvements | Usage data, analytics |
| Legal compliance | All data as required by law |
| Marketing communications | Email (with your consent) |
3. Legal Basis for Processing (GDPR)
| Processing Activity | Legal Basis |
|---|---|
| Providing VPS services | Contract performance |
| Processing payments | Contract performance |
| Customer support | Contract performance / Legitimate interest |
| Security monitoring | Legitimate interest |
| Marketing emails | Consent |
| Legal compliance | Legal obligation |
| Website analytics | Legitimate interest / Consent |
4. Your Server Data
Your Data, Your Property: Any data you store on your VPS belongs entirely to you. We do not access, monitor, analyze, or sell server contents unless required by law or necessary to maintain service integrity.
We may access your server data only with your explicit consent for technical support, to investigate Terms violations, to respond to valid legal requests, or to protect our infrastructure.
5. Server & Data Location
| Data Type | Location |
|---|---|
| VPS instances | United States (East Coast) |
| Account & billing data | United States |
| Backups | United States |
| Support tickets | United States |
6. Information Sharing
We do not sell, trade, or rent your personal information to third parties. We may share your information with trusted service providers, as required by law, or in connection with a business transfer (merger, acquisition, etc.).
7. Subprocessors
| Provider | Purpose | Location |
|---|---|---|
| Stripe | Payment processing | United States |
| PayPal | Payment processing | United States |
| Cloudflare | CDN, DDoS protection, DNS | Global |
| Virtualizor | VPS management panel | India (Softaculous) |
| Google Analytics | Website analytics | United States |
8. Data Security
We implement TLS/SSL encryption in transit, encrypted storage at rest, enterprise firewalls, regular security audits, multi-factor authentication, access controls, 24/7 monitoring, and physical datacenter security. No method of transmission over the Internet is 100% secure.
9. Data Breach Notification
Our Commitment: In the event of a data breach affecting your personal information, we will notify you promptly and take immediate action to mitigate any harm.
If we become aware of a security breach, we will investigate immediately, contain the breach, notify affected users within 72 hours via email (description of breach, data affected, steps taken, recommended actions), and report to relevant authorities as required by law.
10. Data Retention
| Data Type | Retention Period |
|---|---|
| Account information | Duration of account + 2 years |
| Billing records | 7 years (legal requirement) |
| Server logs | 90 days |
| Support tickets | 3 years after resolution |
| Website analytics | 26 months |
| Marketing consent records | Duration of consent + 3 years |
11. Backup Policy
| Backup Type | Frequency | Retention |
|---|---|---|
| VPS snapshots (if enabled) | Per your configuration | Per your plan |
| System configuration | Daily | 30 days |
| Account/billing data | Daily | 90 days |
Important: VPS backups are your responsibility unless you have purchased a backup add-on. We strongly recommend maintaining your own backup strategy.
12. Account Termination
12.1 Voluntary Termination
- VPS data deleted within 24 hours
- Backups deleted within 7 days
- Account information retained 2 years for legal/tax purposes
- Billing records retained 7 years as required by law
12.2 Data Export
Before terminating, you may request a data export at [email protected] at least 14 days before planned termination.
13. Your Rights
Depending on your location, you may have the right to access, correct, delete, or port your personal data; restrict or object to processing; withdraw consent; and lodge complaints with a supervisory authority. Contact [email protected] to exercise these rights. We respond within 30 days.
14. California Privacy Rights (CCPA)
California residents have the right to know what personal information we collect, request deletion, and be free from discrimination for exercising these rights.
We do not sell your personal information. DreshVPS has never sold personal information and has no plans to do so.
To exercise CCPA rights, email [email protected] with subject "CCPA Request".
15. Abuse Complaints
To report spam, attacks, or abuse from our network, email [email protected] with the IP address, date/time, description, and relevant logs. We investigate within 24–48 hours. For law enforcement requests, contact [email protected] with proper legal documentation.
16. Cookies and Tracking
| Cookie Type | Purpose | Duration |
|---|---|---|
| Essential | Authentication, security | Session |
| Functional | Preferences, settings | 1 year |
| Analytics | Usage statistics | 26 months |
You can control cookies through your browser settings. Disabling cookies may affect website functionality.
17. International Data Transfers
Your data may be transferred to and processed in the United States. For EEA, UK, and Swiss users, we rely on Standard Contractual Clauses (SCCs) and data processing agreements with all processors.
18. Children's Privacy
Our services are not intended for individuals under 18. We do not knowingly collect data from children. Contact [email protected] immediately if you believe we have collected a child's information.
19. Third-Party Links
Our website may link to third-party sites. We are not responsible for their privacy practices. Review their policies before providing personal information.
20. Changes to This Policy
We may update this policy at any time. Material changes will be posted on our website and communicated via email. Continued use of our services after changes constitutes acceptance.
Questions About Privacy?
If you have any questions, concerns, or requests regarding this Privacy Policy, please contact us:
For abuse reports: [email protected]
For legal requests: [email protected]