Effective Date: July 28, 2025
This Privacy Policy explains how Inflamed Hosting collects, uses, and shares personal information when you visit our sites, join our Discord, create an account, or use our services. We operate primarily in the United States and may process limited data of users in the EU/EEA and other regions.
We do not sell personal information. We do not share personal information for cross‑context behavioral advertising. If that ever changes, we will update this Policy and provide a "Do Not Sell or Share My Personal Information" link.
Controller: Inflamed Hosting
Contact: [email protected]
We have no public office address and accept electronic notice only.
We collect information you provide directly and information generated by your use of the service.
Processed by our payment processor. We use tokenized gateways (for example Stripe). However, the system will initially store credit card details encrypted in the database until the client completes a payment via a token-type gateway; after that payment, WHMCS fetches the token and replaces the stored card details with the token, retaining the last four digits and expiry for reference.
We do not intentionally retain full card numbers after tokenization.
We use data to:
We share personal information with:
We generally describe categories of recipients rather than publishing a full vendor list. Contact us if you need additional detail for your compliance assessment.
We use essential cookies for login and session security. We may use limited analytics. You can control cookies through your browser settings.
We keep personal information as long as needed to provide the service and meet legal and accounting obligations. Account records, invoices, and security logs may be kept after closure where required or to defend our rights. When no longer needed, we delete or de‑identify data.
We use reasonable technical and organizational measures to protect data. No system is perfectly secure. You are responsible for choosing strong passwords, enabling MFA where available, and protecting your keys.
We host in the United States and also operate infrastructure in other regions, including Finland. When we transfer personal data internationally, we rely on appropriate safeguards such as Standard Contractual Clauses or other lawful mechanisms, and we apply additional protections where needed.
You have rights to access, correct, delete, restrict or object to processing, and to data portability. You may withdraw consent at any time where processing is based on consent. You may lodge a complaint with your local Supervisory Authority.
You have the right to request access to the personal information we hold about you, request deletion, request correction, and to be free from discrimination for exercising your rights. If we begin selling or sharing personal information, you will have the right to opt out and we will provide a clear method to do so. We currently do not sell or share personal information for cross‑context advertising.
Email [email protected] or open a ticket in the billing portal. We may need to verify your identity. You can use an authorized agent where permitted by law, but we may require proof of authority and your verification. We aim to respond within 45 days where required.
Our services are not directed to children under 13 and we do not knowingly collect personal information from them. If you believe a child has provided personal information, contact us and we will delete it.
At this time we have not appointed an EU representative. Based on our current operations, we believe our processing of EU/EEA residents' data is occasional, not large‑scale, and low risk. If our activities change, we will appoint a representative and update this Policy.
We may update this Policy. We will post the new version with a new effective date. Material changes will be highlighted for a reasonable time.