Privacy Policy for dplooy Drag-and-Drop Web Hosting

We protect your privacy in our secure web hosting platform for instant website deployment.

Learn how we handle data in static site hosting, multi file hosting, and custom subdomain hosting services.

Last updated: December 27, 2024•Effective: January 1, 2025

Privacy at a Glance for Web Hosting Users

We Minimize Data Collection

We only collect essential information needed to provide our hosting service.

Your Hosting Files Are Secure

All files are encrypted and stored securely in Firebase Storage with SSL included hosting.

You Control Your Hosting Data

Access, export, or delete your data anytime from your account settings.

GDPR & CCPA Compliant Hosting

We comply with major privacy regulations worldwide.

Information We Collect for Web Hosting Services

Account Information for Hosting Platform

•Email address - Required for account creation and authentication
•Display name - Optional, for personalizing your hosting experience
•Profile photo - Optional, if you choose to upload one or sign in with Google
•Authentication data - Encrypted passwords or OAuth tokens

Usage Information for Multi File Hosting

•Files you upload - HTML hosting, CSS, JavaScript, images, PDF sharing, and ZIP file hosting
•Project metadata - File names, sizes, upload dates, and custom subdomain names
•Analytics data - Page views, visitor counts (anonymous, no personal data)
•Storage usage - Amount of storage used by your hosting projects

Automatically Collected Information

•IP address - For security and abuse prevention (not stored with personal data)
•Browser information - User agent string for compatibility
•Authentication cookies - Secure HTTP-only cookies for maintaining hosting sessions

We do not collect: Social Security numbers, financial information (payment processing is handled by Stripe), health information, or any special categories of personal data under GDPR.

How We Use Your Information for Hosting Services

To Provide Our Web Hosting Service

• Host and serve your uploaded files with instant website deployment
• Create and manage your custom subdomain hosting
• Process multi file hosting uploads and generate live links
• Enforce storage and bandwidth limits based on your hosting plan

To Improve Our Hosting Platform

• Analyze usage patterns to optimize 60-second deploy performance
• Debug issues and improve hosting reliability
• Develop new features for static site hosting based on user needs
• Prevent abuse and maintain hosting service quality

To Communicate With Hosting Users

• Send service-related emails (password resets, security alerts)
• Notify about expiring files (free hosting tier)
• Respond to hosting support requests
• Send product updates for new hosting features (only if you opt-in)

Data Sharing & Third Parties for Hosting Infrastructure

We believe in data minimization and only share your information when necessary.

Our sharing is limited to essential hosting service providers:

Infrastructure Providers for Web Hosting

Firebase (Google Cloud) - Authentication and secure file storage
Vercel - Frontend hosting and edge functions
Railway - Backend API hosting

Payment Processing for Hosting Plans

Stripe - Secure payment processing (we never see your card details)
PayPal - Alternative payment method (future implementation)

We never sell, rent, or share your personal information with third parties for marketing purposes.

Legal Requirements

We may disclose your information if required by law, such as:

• To comply with a legal obligation or court order
• To protect our rights, property, or safety
• To prevent fraud or cybersecurity incidents
• To enforce our Terms of Service

Data Security for SSL Included Hosting

We implement industry-standard security measures to protect your hosting data.

Our SSL included hosting ensures all data is protected:

Encryption for Secure Hosting

• All data transmitted via HTTPS/TLS
• Passwords hashed with bcrypt
• Files encrypted at rest in storage

Access Controls

• Two-factor authentication available
• Secure session management
• Regular security audits

While we use best practices to secure your hosting data, no method of transmission over the internet is 100% secure. We encourage you to use strong passwords and enable two-factor authentication when available.

Cookies & Tracking for Web Hosting Platform

We use minimal cookies necessary for the hosting service to function:

Authentication Cookies for Hosting

Name: token | Type: HTTP-only | Duration: 7 days

Used to maintain your hosting account login session securely.

Theme Preference

Name: theme | Type: Local Storage | Duration: Persistent

Remembers your light/dark mode preference.

We do not use tracking cookies, advertising cookies, or third-party analytics that track individual users. For more details, see our Cookie Policy.

Your Privacy Rights for Hosting Services

Depending on your location, you have the following rights regarding your hosting data:

For All Hosting Users

✓Access - Download your hosting data from account settings
✓Correction - Update your profile information anytime
✓Deletion - Delete your hosting account and all associated data
✓Portability - Export your hosting data in a standard format

Additional Rights Under GDPR (EU/UK)

✓Object to processing - Opt out of certain data uses
✓Restrict processing - Limit how we use your data
✓Lodge a complaint - With your local data protection authority

Additional Rights Under CCPA (California)

✓Know what personal information we collect and how we use it
✓Non-discrimination for exercising your privacy rights
✓Opt-out of sale (Note: We do not sell personal information)

How to Exercise Your Rights

Most rights can be exercised directly from your hosting account settings. For other requests:

privacy@dplooy.com

Data Retention & Deletion for Hosting Accounts

Active Hosting Accounts

We retain your hosting data as long as your account is active or as needed to provide services.

Free Tier Hosting Files

Files are automatically deleted after 5 days. You'll receive an email notification before deletion.

Hosting Account Deletion

When you delete your hosting account, we immediately remove all your personal data and files. Some anonymized analytics data may be retained for up to 90 days.

Legal Obligations

We may retain certain data longer if required by law or for legitimate business purposes (e.g., fraud prevention, resolving disputes).

International Data Transfers for Global Hosting

dplooy operates globally for worldwide hosting services.

Your data may be transferred to and processed in countries other than your own, including the United States.

We ensure appropriate safeguards are in place for international transfers, including:

• Standard Contractual Clauses approved by the European Commission
• Ensuring recipients are in countries with adequate data protection laws
• Technical and organizational measures to protect your hosting data

Children's Privacy for Hosting Services

dplooy hosting services are not intended for children under 13 years of age (or 16 in the EU).

We do not knowingly collect personal information from children.

If you believe we have collected information from a child, please contact us immediately at privacy@dplooy.com and we will delete the information.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make significant changes:

• We'll update the "Last updated" date at the top
• We'll notify you by email for material changes
• We'll provide a summary of key changes
• We'll give you time to review changes before they take effect

Continued use of dplooy hosting after changes means you accept the updated policy.

Contact Us About Privacy

If you have questions about this Privacy Policy or how we handle your hosting data:

privacy@dplooy.com

Data Protection Officer

dpo@dplooy.com

Response Time

We aim to respond to all privacy inquiries within 30 days.