Privacy Policy

Last Updated: 21.11.2025

This Privacy Policy explains how VirtuaHost (“we”, “us”, “our”) collects, uses, discloses, and protects your personal data under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

1. Who We Are

VirtuaHost is a hosting provider operated in the United Kingdom. For the purposes of data protection law, we are the “data controller” of your personal information.

2. Data We Collect

We may collect the following categories of personal data:

2.1 Information You Provide

• Full name
• Email address
• Billing details
• Account login credentials
• Support communications & submitted materials

2.2 Information Collected Automatically

• IP address
• Device and browser information
• Access timestamps
• Service usage logs
• Cookies and session tokens

2.3 Third-Party Data

• Payment confirmations from payment processors
• Fraud-prevention signals
• Domain registration details (if applicable)

3. How We Use Your Data

We use your personal data for the following purposes:

• To create and manage your VirtuaHost account
• To provide and maintain hosting services
• To issue invoices and process payments
• To respond to support requests and technical issues
• To maintain infrastructure security and detect abuse
• To comply with legal and regulatory obligations

4. Legal Bases for Processing

Under UK GDPR, we rely on the following lawful bases:

• Contractual necessity – providing services you requested
• Legitimate interests – security, fraud prevention, service improvement
• Legal obligation – tax, accounting, compliance
• Consent – when required for non-essential cookies or marketing

5. Cookies & Tracking Technologies

We use cookies for authentication, security, analytics, and preferences. Non-essential cookies require your consent under UK GDPR and PECR. Details are available in our Cookie Policy.

6. Data Sharing

We do not sell personal data. We may share limited information with:

• Payment processors (for billing)
• Infrastructure providers (for hosting)
• Security & anti-abuse vendors
• Law enforcement when legally required

7. International Transfers

Some service providers may operate outside the UK. When data is transferred internationally, we use:

• UK-approved adequacy decisions
• Standard Contractual Clauses (SCCs)
• Equivalent lawful mechanisms

8. Data Retention

We keep personal data only as long as necessary to:

• Provide services
• Comply with legal obligations
• Resolve disputes

Data is securely deleted or anonymised when no longer required.

9. Your Rights

Under UK GDPR, you have the right to:

• Access your personal data
• Correct incorrect or incomplete data
• Request deletion (“right to be forgotten”)
• Restrict or object to processing
• Request data portability
• Withdraw consent for optional processing

To exercise these rights, contact us at: info@virtua-host.com

10. Security Measures

VirtuaHost implements technical and organisational measures such as:

• Encrypted communications (HTTPS)
• Access controls & authentication protections
• Firewalling & DDoS mitigation
• Server monitoring
• Regular system patching

However, no online service can guarantee absolute security.

11. Contact & Complaints

For privacy-related questions, contact:
Email: info@virtua-host.com

You may also lodge a complaint with the UK’s regulator:
Information Commissioner’s Office (ICO)
Website: https://ico.org.uk