This Privacy Policy describes how Internetivo.com ("we", "us", or "our") collects, uses, processes, and discloses your information when you use our website and services (collectively, the "Services"). We are committed to protecting your privacy and handling your data transparently, in compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679 and local data protection laws in the Republic of Cyprus.
1. Data Controller Information
The data controller responsible for the processing of your personal data is:
Internetivo LTD - dpo@internetivo.com
2. Information We Collect
We collect several types of information for various purposes to provide and improve our Services to you.
A. Personal Data Provided by You
When you use our Services (e.g., signing up for an account, purchasing hosting, registering a domain, or contacting support), you may provide us with the following Personal Data:
Identity Data: Name, surname, company name, professional title.
Contact Data: Billing address, email address, telephone number.
Financial Data: Payment card details (processed securely by third-party payment processors, we do not store full card details), bank account information for refunds.
Account Data: Username, password (encrypted), security questions, and preferences.
Communication Data: Records of communications with us (e.g., support tickets, chat transcripts).
B. Data We Collect Automatically (Usage Data)
When you access the Services, we may automatically collect certain information:
Technical Data: Internet Protocol (IP) address, login data, browser type and version, time zone setting and location, operating system and platform, and other technology on the devices you use to access this website.
Usage Data: Information about how you use our Services, such as the pages you view, the time and date of your visit, and the amount of time spent on those pages.
Server and Service Logs: Data logs related to your hosted service, including bandwidth usage, disk space utilization, access times, and email activity.
3. How We Use Your Data (Purposes and Legal Basis)
We use the collected data for the following purposes, relying on specific legal bases as required by GDPR:
| Purpose of Processing | Type of Data Used | Legal Basis for Processing (GDPR) |
| Service Provision & Contract Fulfillment | Identity, Contact, Financial, Account, Usage | Performance of a Contract (to provide the services you purchased). |
| Billing and Accounting | Financial, Identity, Contact | Performance of a Contract and Legal Obligation (for tax and accounting requirements). |
| Service Improvement & Security | Technical, Usage, Server Logs | Legitimate Interests (to ensure network security, detect fraud, and improve service stability). |
| Customer Support & Communication | Identity, Contact, Communication | Performance of a Contract and Legitimate Interests (responding to inquiries). |
| Marketing (where consent is given) | Contact, Usage | Consent (for sending promotional emails about our services). |
| Compliance & Law Enforcement | All data types | Legal Obligation (to comply with laws, court orders, or requests from regulatory bodies). |
4. Disclosure of Your Data
We may share your personal data with the following parties when necessary and legally permissible:
Service Providers: Third-party companies that help us run our business, such as payment processors, domain registrars (for domain registration), SSL certificate authorities (for SSL provision), and external IT support. These providers are obligated to protect your data.
Domain Registrars and ICANN: When you register a domain name, certain information (Identity and Contact Data) must be provided to the respective Domain Registry and/or the Internet Corporation for Assigned Names and Numbers (ICANN) via the WHOIS database, as required by their policies.
Legal and Regulatory Authorities: If required by law, court order, or governmental request, we may disclose your data to comply with our legal obligations.
Business Transfers: If we sell or transfer all or a portion of our assets (e.g., merger or acquisition), your data may be transferred to the new owner, provided they adhere to this policy.
5. Data Security
We implement appropriate technical and organizational measures to prevent your personal data from being accidentally lost, used, accessed, altered, or disclosed in an unauthorized way. This includes data encryption, access controls, firewalls, and regular security audits.
However, no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security. You acknowledge that providing your Personal Data is at your own risk.
6. Data Retention
We will only retain your Personal Data for as long as necessary to fulfill the purposes for which we collected it, including for the purpose of satisfying any legal, accounting, or reporting requirements.
Generally, we will retain customer data for the duration of the contract plus a period required by Cypriot tax and accounting law (typically seven years) after the termination of the service.
7. Your Data Protection Rights (GDPR)
Under the GDPR, you have the following rights concerning your personal data:
The right to access (Article 15): You have the right to request copies of your Personal Data.
The right to rectification (Article 16): You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.
The right to erasure (Article 17) ("Right to be Forgotten"): You have the right to request that we erase your Personal Data, under certain conditions.
The right to restrict processing (Article 18): You have the right to request that we restrict the processing of your Personal Data, under certain conditions.
The right to object to processing (Article 21): You have the right to object to our processing of your Personal Data, under certain conditions (e.g., direct marketing).
The right to data portability (Article 20): You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.
To exercise any of these rights, please contact us using the information provided in Section 1.
8. Right to Complain to a Supervisory Authority
If you are a resident in the European Economic Area (EEA) and believe we have not adequately addressed your data privacy concerns, you have the right to lodge a complaint with the relevant Data Protection Authority (DPA).
The supervisory authority for the Republic of Cyprus is the:
Office of the Commissioner for Personal Data Protection
dpo@internetivo.com
9. Changes to This Privacy Policy
We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Effective Date" at the top of this policy.
