Last updated: February 2026

Company CLOUD HIVE DC LTD takes your data privacy seriously.

We operate in strict compliance with UK Data Protection Act 2018, UK GDPR and Data Use and Access Act 2025.

To correctly understand responsibilities, we divide data into two categories:

• Account Data (We are Controller): Your name, email, address, and payment information.
• Server Data (We are Processor): Websites, databases, and files you host with us.

We collect the following types of data:

• Personal information: First name, last name, email, phone number, address.
• Payment information: We do not store full credit card details.
• Technical Data: IP address, control panel access logs, hardware MAC addresses.
• Communication: Support ticket history and email correspondence.

• To provide hosting services and activate servers.
• To process payments and issue invoices.
• To prevent fraud (Fraud Check) during registration.
• To ensure network security and provide DDoS protection.
• To notify about technical maintenance.

We use automated systems for decision-making (Fraud Check, Network Security).

• Fraud Check: New orders are checked for fraud risk upon registration.
• Network Security: Automatic IP blocking upon detection of malicious traffic or DDoS attacks.
• Billing: Automatic suspension of services upon non-payment of invoices.

You have the right to request a manual review of any automated decision (Human Intervention) by contacting our support.

We process data based on contract performance, legal obligations and legitimate interest.

• Contract Performance: Providing purchased services.
• Legal Obligation: Tax reporting (HMRC).
• Legitimate Interest: Network monitoring to prevent attacks, service improvement.

We do not sell data. Transfers are made only to partners for service provision.

International data transfers:

• UK <-> EU: Free transfer based on Adequacy Decision.
• UK -> USA/Other Countries: Transfers are based on Standard Contractual Clauses (SCC) and the UK International Data Transfer Agreement (IDTA).

• Google Analytics: Anonymous statistics collection.
• Yandex Metrica: User behavior analysis (Webvisor). Data is processed in anonymized form.

You can disable Cookies in your browser settings.

All connections are encrypted (SSL). We analyze traffic for DDoS protection.

• Account data: Duration of contract + 6 years.
• Server Data: Deleted 30 days after service cancellation.
• Logs (Access logs): Up to 12 months.

Under UK GDPR you have rights to access, rectify, erase, and port your personal data.

Our services are intended for persons over 13 years of age.

For privacy questions, use our contact page.

You can also file a complaint with the ICO.