Privacy Policy

1. Data Controller

The controller of your personal data is:

CONSERIT Krakow, Poland Email: This email address is being protected from spambots. You need JavaScript enabled to view it.

---

2. Data We Collect

2.1 Account Registration Data

When you create an account, we collect:

  • Username
  • Email address
  • Password (stored in hashed form)
  • First and last name
  • Address (for domain registration services)
  • Phone number (optional)
  • VAT number (for business accounts)

2.2 Service Usage Data

During use of our services, we automatically collect:

  • IP addresses (for DNS record updates)
  • Timestamps of DNS updates
  • Browser type and version (for web panel access)
  • Login history

2.3 Payment Data

For paid services, we collect:

  • Transaction history
  • Payment method (processed by third-party payment providers)
  • Invoice data
---

3. Legal Basis for Processing

We process your personal data based on:

  • Contract performance (Article 6(1)(b) GDPR) - to provide Dynamic DNS and domain registration services
  • Legal obligation (Article 6(1)(c) GDPR) - for accounting, tax purposes, and domain registration requirements
  • Legitimate interests (Article 6(1)(f) GDPR) - for service security, fraud prevention, and service improvement
  • Consent (Article 6(1)(a) GDPR) - for marketing communications (where applicable)

4. How We Use Your Data

We use your personal data to:

  • Provide and maintain the Dynamic DNS service
  • Process domain registrations with relevant registries
  • Send service-related communications (account confirmations, password resets)
  • Process payments and issue invoices
  • Ensure security and prevent abuse
  • Comply with legal requirements
  • Improve our services

5. Data Sharing

We may share your data with:

5.1 Domain Registries

For domain registration, we must share your data with:

  • NASK (for .pl domains)
  • EURid (for .eu domains)
  • ICANN-accredited registries (for gTLDs)
This sharing is required for domain registration and is governed by registry policies.

5.2 Payment Processors

We use third-party payment processors who process payment data according to their own privacy policies.

5.3 Legal Requirements

We may disclose data when required by law or to respond to valid legal requests from authorities.

---

6. International Data Transfers

Your data is primarily stored and processed within the European Economic Area (EEA).

When international transfer is necessary (e.g., for domain registration in registries outside EEA), we ensure appropriate safeguards through:

  • Standard Contractual Clauses approved by the European Commission
  • Adequacy decisions
  • Other mechanisms compliant with GDPR
---

7. Data Retention

We retain your data for:

  • Active accounts: For the duration of the account plus 5 years after deletion
  • Financial records: 5 years (legal requirement)
  • Domain registration data: As required by registry policies
  • Server logs: Up to 12 months

8. Your Rights

Under GDPR, you have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Erase your data ("right to be forgotten")
  • Restrict processing
  • Data portability - receive your data in a structured format
  • Object to processing based on legitimate interests
  • Withdraw consent at any time (where processing is based on consent)
  • Lodge a complaint with a supervisory authority
To exercise these rights, contact us at: This email address is being protected from spambots. You need JavaScript enabled to view it.

---

9. Data Security

We implement appropriate technical and organizational measures to protect your data:

  • SSL/TLS encryption for data in transit
  • Password hashing
  • Access controls and authentication
  • Regular security updates
  • Backup systems
  • Security monitoring

10. Cookies

Our website uses cookies for:

  • Essential cookies: Required for website functionality
  • Session cookies: Maintaining your login session
  • Preference cookies: Remembering your settings
You can manage cookies through your browser settings. Note that disabling essential cookies may affect website functionality.

---

11. Automated Decision-Making

We do not use automated decision-making or profiling that produces legal effects concerning you.

---

12. Children's Privacy

Our services are not directed at individuals under 16 years of age. We do not knowingly collect data from children.

---

13. Changes to This Policy

We may update this Privacy Policy periodically. We will notify registered users of significant changes via email and update the "Last modified" date.

---

14. Contact

For privacy-related inquiries:

CONSERIT Email: This email address is being protected from spambots. You need JavaScript enabled to view it. Address: Krakow, Poland

---

Last modified: January 2026

---

This Privacy Policy is provided in English for international users. The Polish version (Polityka Prywatności) is the legally binding version for services provided under Polish law.