Limited Offer: Get 65% OFF on all hosting plans! Claim Now
Hostzera
Legal

GDPR Compliance

Last updated: March 10, 2026

Hostzera is committed to complying with the General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679) and applicable data protection laws. This page explains how we meet our obligations and how you can exercise your rights.

This document supplements our Privacy Policy and provides additional transparency for individuals in the European Economic Area (EEA) and beyond.

1. Data Controller

The data controller responsible for your personal data is:

2. Legal Basis for Processing

We process personal data only when we have a valid legal basis under GDPR Article 6:

  • Contract: Processing necessary to perform our contract with you (e.g., providing hosting services).
  • Legitimate interest: Processing necessary for our legitimate business interests (e.g., fraud prevention, security, service improvement), where such interests are not overridden by your rights.
  • Legal obligation: Processing necessary to comply with applicable laws (e.g., tax, anti-money laundering).
  • Consent: Where you have given clear consent for specific processing (e.g., marketing emails, non-essential cookies).

3. Principles We Follow

We adhere to the core GDPR principles:

  • Lawfulness, fairness, transparency: We process data in a lawful, fair, and transparent manner.
  • Purpose limitation: Data is collected for specified, explicit, and legitimate purposes.
  • Data minimisation: We collect only data that is adequate, relevant, and necessary.
  • Accuracy: We take steps to keep personal data accurate and up to date.
  • Storage limitation: Data is kept only as long as necessary for the purposes for which it was collected.
  • Integrity and confidentiality: We implement appropriate technical and organisational measures to protect data.
  • Accountability: We are responsible for compliance and can demonstrate it.

4. Your Rights Under GDPR

As a data subject, you have the following rights. To exercise them, contact us at support@hostzera.com.

  • Right of access (Article 15): You may request a copy of the personal data we hold about you.
  • Right to rectification (Article 16): You may request correction of inaccurate or incomplete data.
  • Right to erasure (Article 17): You may request deletion of your data in certain circumstances (e.g., where it is no longer necessary, or you withdraw consent).
  • Right to restrict processing (Article 18): You may request that we limit how we use your data in specific situations.
  • Right to data portability (Article 20): Where processing is based on contract or consent, you may receive your data in a structured, machine-readable format.
  • Right to object (Article 21): You may object to processing based on legitimate interests or for direct marketing.
  • Right to withdraw consent: Where processing is based on consent, you may withdraw it at any time.
  • Right not to be subject to automated decision-making: We do not use solely automated decision-making that produces legal effects or similarly significantly affects you.

We will respond to your request without undue delay and in any event within one month. We may extend this period by up to two further months where necessary. There is no fee for the first request; we may charge a reasonable fee for manifestly unfounded or excessive requests.

5. Data We Process and Purposes

We process personal data for the purposes described in our Privacy Policy. In summary:

  • Account creation, authentication, and service delivery.
  • Order processing, billing, and payment.
  • Technical support and customer service.
  • Security, fraud prevention, and abuse handling.
  • Legal and regulatory compliance.
  • Marketing (only with your consent or where legally permitted).

6. Data Retention

We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including contractual, legal, and regulatory requirements. When data is no longer needed, we delete or anonymise it in accordance with our retention policies.

7. Data Security

We implement appropriate technical and organisational measures to ensure a level of security appropriate to the risk, including encryption, access controls, and regular security assessments. In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority and, where required, affected individuals without undue delay.

8. International Transfers

Where we transfer personal data outside the EEA, we ensure appropriate safeguards are in place, such as adequacy decisions, Standard Contractual Clauses (SCCs), or other mechanisms approved under GDPR. Our infrastructure and partners are selected with data protection in mind.

9. Cookies and Similar Technologies

Our use of cookies and similar technologies is described in our Cookie Policy. Where cookies are not strictly necessary, we obtain your consent before placing them on your device.

10. Right to Lodge a Complaint

You have the right to lodge a complaint with a supervisory authority in the EU/EEA country of your residence, place of work, or place of the alleged infringement. For the Netherlands, the supervisory authority is:

Autoriteit Persoonsgegevens (Dutch Data Protection Authority)
Website: autoriteitpersoonsgegevens.nl

We encourage you to contact us first so we can try to resolve any concerns.

11. Changes to This Page

We may update this GDPR compliance page from time to time to reflect changes in our practices or in the law. The updated version will be published on our website with the revised date.

12. Contact Us

For any questions about our GDPR compliance or to exercise your rights:

Privacy Policy Terms & Conditions Cookie Policy Refund Policy Report Abuse