X
X
USD

Personal Data and General Confidentiality Agreement

HomepagePersonal Data and General Confidentiality Agreement

ForHamster Systems, protecting your personal data is a priority. We comply with all relevant data protection legislation and the following privacy notice is intended to provide transparency about how we handle your personal data.

Personal Data and the provision of services

When you order one of our products, we only ask for information that is essential to deliver our products and services to you or for invoicing reasons, or to ensure the security of our systems.

Invoicing data

On the Hamster Systems web pages, we offer prospective and actual customers practical tools and services, for example, to check if a site has a license to use the software provided by us.

Sign up
Upon ordering our products, we ask for the data we need to provide the services and to ensure the security of our services. Your data is stored securely on our systems and you are able to access and change your data in our control panel. Information on how you access the control panel will usually be sent by email.

Billing
In order to provide you with transparent and correct billing, it is necessary to temporarily store certain usage data. Examples include your configurations of the service we are providing you if those are the basis for billing. Whether your product usage data is recorded, will be in the respective product chapter in this privacy notice.

Usage and content data

Usage Data
We aim to provide quality and reliability but on occasion, issues may arise. In order to react quickly, it may be necessary to temporarily record usage and traffic data to provide to our team. We do this to ensure we fulfill our obligations to you and to design products and services that are personalized to your needs.

Content data
We offer certain products, for example, online storage or email accounts, where personal files may be stored. These files are automatically encrypted and may only be viewed by individuals with access rights. In order to protect your data and for maintenance purposes, we create and file encrypted backups. The file contents of these backups cannot be decrypted or viewed by us.

Usage of your data

The usage of your personal data
Some of your personal data we need for processing your order and for providing customer-focused services.

Data processing upon receiving your order
Our commitment to you is to provide top products and services to our customers. In order to ensure smooth and trouble-free order processes, your order is thoroughly vetted and sent to our fraud prevention partner FraudLabs Pro before confirming your order.

Customer information
You will receive the order confirmation and information by email. We use the email address you have provided to order the product. You will also receive your invoices, information about your service, and helpful information in the same manner.

Product information
In order to fully capture the benefits of our products, we send you tips, tricks, and useful complementing product solutions by email and control panel. If you wish to stop receiving information of this kind, you can always revoke your consent in the control panel.

Usage data as part of our services and products
Certain data is recorded during the use of our products and services to enable us to identify issues with our products and to continuously improve our products and services. We implement a range of technological and organizational measures to protect your privacy and ensure the safety of your personal data.

Personal data managed by you
Our customers use our services to host, transmit or process data on our hosting platforms, which may include personal data of their own customers.
In this scenario, it is our customers who stipulate the process for collecting their customer’s data. Most importantly, we do not have knowledge of or view, share, or collect this specific customer data.

In accordance with our Privacy Notice, it is our customers who are responsible for managing the security of their customers’ data which they upload onto our platforms. Customers are responsible for encrypting data that is uploaded to our network and ensuring access to our platforms are secure.

Our relationship is with our customers directly and there is no agreement in place between us and our customers’ customers.

Additionally:
We merely process such data on your behalf, subject to our Terms and Conditions and you are responsible for any applicable legal requirements in respect of your content. Therefore, any video, image, or other content posted, uploaded, or otherwise made available by you on your website, whether published content or not, is not subject to our Privacy Notice.

Opinion polls
In order to offer you the best possible products and services, we do need your opinions. Therefore, we display surveys to our customers from time to time in the client area. Participation in these surveys is optional and you may revoke your consent to receiving opinion polls from us after the first popup or any time after that.

Improving our products and services
We have an interest in analyzing the data we collect to improve our products and services. As described in this policy, we collect data that relates to you; your usage of our products and services; and your interactions with us, for example when we send you correspondence, you contact any of our teams or complete an opinions survey. We protect your privacy through a range of technical and organizational measures tailored to each situation and respect your choices about how we use your data.

Transferring data to third parties

Hamster Systems. has other subsidiaries under it that are all part of Hamster Systems therefore sometimes data from Hamster Systems may be sent to these subsidiaries in order to prevent duplicate data such as on email block lists or spam lists.

External partner companies
As we work with selected partners to offer you a wide range of products and sometimes act as an intermediary for our partners, it is necessary to transfer certain personal data to third parties, for example, registering domain names or issuing SSL certificates.

Law enforcement
Occasionally, we are obliged to disclose personal data to prosecution authorities and courts for law enforcement purposes. We always ask for the correct paperwork before disclosing any information.

Reporting of faulty products and fraud
In case of faulty products or disagreements and we are committed to seeking solutions. If is this not possible, we evaluate the situation carefully, when and to whom we report faulty products or fraudulent usage.

Cookies

For more information on the cookies we use, please click here.

Product-specific data protection information

With some of our products, we rely on the expertise of specialized partner companies to ensure that we provide the best possible products and services experience. In the event you cease to use our products and services, we will delete your personal data within a given timeframe.

SSL certificate DigiCert

Purpose of processing
Registering, transfer, configuration, maintenance, and deletion of SSL certificates. Automatic processing in Web Hosting products when connecting the domain with the website project.

Categories of personal data
Subscriber data

Legal basis
Performance of a contract, Art. 6 (1) lit. b GDPR

Subprocessors
DigiCert, Lehi UT, USA

Note
In the process of acquisition and maintenance of SSL certificates, Hamster Systems is only an intermediary between the customer and the respective issuer of the SSL certificate. Hamster Systems has no influence on the issuance of certificates and does not accept any liability that the certificate is assigned to the customer and that it will permanently exist.

Transparency is our aim

All data we receive from you during the lifetime of your using our services are used primarily to provide the level of service you would expect. We carry out statistical analyses to improve products and services. These analyses are conducted in compliance with data protection legislation and our internal privacy policies and processes.

Your rights

In respect of Art. 15 GDPR you have the right to obtain information as to whether or not your personal data are being processed. You also have the right to have your personal data rectified if it is inaccurate in accordance with Art. 16 GDPR, a right to be forgotten (Art. 17 GDPR), a right to obtain restriction of processing under given circumstances (Art. 18 GDPR)  and the right to data portability stated in Art. 20 GDPR. You have the right to object to the processing of your personal data, as to where the processing is based on Art. 6(1) lit f GDPR.

If you wish to exercise one of these rights, please use the following link:

https://hamster-sys.com/myaccount/myinfo?tab=gdpr

If the right you are looking to exercise is not available on this page or won't work then please email:

privacy@hamster-sys.com

Supervisory authorities

By law, you have the right to file a complaint with any supervisory regulator.

Below is the contact details for the UK ICO:

Information Commissioner's Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF

Tel: 0303 123 1113

These details are correct as of 6/10/22

Service-specific data protection information

Website Live-chat

Purpose of processing
Quality Assurance

Categories of personal data
Content data, usage data, traffic data

Legal basis
Legitimate Interests, Art 6(1) lit. f GDPR

Retention period
Up to 90 days

Domain Check

Purpose of processing
Domain name requests are stored and processed to improve the domain name suggestion and products. These requests will never be used by Hamster Systems to register domains on its own behalf.

Categories of personal data
Processed domain name data are not linked to any customer or order.

Website Privacy Policy Hamster-sys.com
We want to inform you about what personal data is collected when you use both our website and products, how your data is processed, and the rights you have regarding your data. We have summarised this information for you in the privacy policy below.

The controller is:

Hamster Systems

privacy@hamster-sys.com

Your rights as a data subject

Right of access

You have the right to obtain information from us about the categories of data stored, the purpose of processing, the recipients of the data, the planned storage period and your rights regarding data protection. For personal data not collected directly from you, you have the right to be informed about the source of the data.


Right to rectification

If the personal data we process is inaccurate or incomplete, you have the right to have your data rectified.


Right to erasure

You have the right to request that we delete your personal data. In certain cases, however, your data cannot be deleted. For example, if your data is required for an active service or for our accounting and statutory responsibilities.


Right to restriction of processing

You can request that we restrict the processing of your data in the following cases:

You have disputed the accuracy of the data and you want us to stop using it pending final verification
The processing is unlawful, but you would prefer to restrict processing rather than have the data erased
We no longer need and would otherwise delete the data, but you still need it for the assertion, exercise, or defense of legal claims
You have lodged an objection to the data processing, which is still under review
In the event of a restriction, we will ensure that the personal data cannot be further processed or changed by us. If processing has been restricted in accordance with the above conditions, the controller will inform you before lifting the restriction.


Right to data portability

You have the right to receive the personal data that you provided to us in a structured, commonly used, and machine-readable format and, if necessary, to have it transferred to third parties.

The right to data portability shall not apply to processing that is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.


Right to object

You have the right to object at any time to the processing of personal data that we process on the basis of a "legitimate interest"; this also applies to profiling based on these provisions.

We will then no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or unless the processing serves to assert, exercise, or defend legal claims.

You can object to data processing for the purpose of direct advertising at any time without providing a reason. If you object to processing for direct marketing purposes, your personal data will no longer be processed for these purposes.

To exercise your right to object, you must submit an objection to us, the data controller. In some cases, you can do this directly online (e.g. in the case of cookies) or in the Hamster Systems Control Panel (e.g. for advertising). You are also welcome to address your data protection concerns (e.g. your objection) directly to the responsible contact person at privacy@hamster-sys.com

Right to withdraw

You have the right to withdraw your consent to future processing (e.g. to be contacted for advertising purposes) at any time.

Please send your notification of withdrawal to us at privacy@hamster-sys.com

If you are already a customer, you can also withdraw your consent yourself in the Control Panel.

Personal data managed by you

Our customers use our services to host, transmit or process data on our hosting platforms, which may include the personal data of their own customers.

In this scenario, it is our customers who stipulate the process for collecting their customers' data. Most importantly, we do not have knowledge of or view, share, or collect this specific customer data.

In accordance with our Privacy Notice, it is our customers who are responsible for managing the security of their customers’ data which they upload to our platforms. Customers are responsible for encrypting data that is uploaded to our network and ensuring access to our platforms is secure.

Our relationship is with our customers directly and there is no agreement in place between us and our customers’ customers.

Additionally:

We merely process such data on your behalf, subject to our Terms and Conditions and you are responsible for any applicable legal requirements in respect of your content. Therefore, any video, image, or other content posted, uploaded, or otherwise made available by you on your website, whether published or not, is not subject to our Privacy Notice.

Visiting our website

We also collect personal data when you visit our website. We collect data when you order something from us, as well as when you view our websites or our profiles on social media. The details are explained below.


Cookies

We use cookies to optimize the design of our websites, to improve our products for you, and to show you advertisements tailored to your interests in cooperation with third-party providers.

 

Social media

In order to optimise our corporate presence, we maintain company pages on various social media platforms. We use these pages to inform prospective customers about our services and also to communicate with you via these channels.

We use these channels for the following purposes:

  • To provide information about our company and products
  • To conduct statistical evaluations to analyze and improve our products, services, and business processes
  • To communicate with customers and prospective customers

Legal basis

The legal basis for this processing of your personal data is our legitimate interest in communicating with our customers and prospective customers, as well as analyzing and improving our products, services, and business processes. We also make direct contact with customers as part of our Social Media Support service; this processing is based on our relationship with customers or pre-order actions with prospective customers.

Social media links

Links to social media platforms are integrated in such a way that data is not directly transmitted to the social media operator. Social media services are integrated on our website using links. Data is transferred only if you have clicked on the link.

ReCAPTCHA

Purpose and legal basis

We use the reCAPTCHA service from Google. With reCaptcha, a JavaScript element is embedded in the source code that causes the software to load in the background and analyze your user behavior. The data is already being used and analyzed before you have ticked the “I am not a robot” box. Google uses the data to calculate a score, which is used to determine whether the visitor is a human being or whether the input is being manipulated by automated processes (e.g. bots). It also serves to prevent fraudulent bulk orders, which can pose risks to the company’s infrastructure. ReCAPTCHA also helps protect our customers against cybercrime.

Legal basis

The legal basis for this processing is therefore our legitimate interest.

Type of data

  • Previous web pages (referrer URL) 
  • IP address 
  • Operating system 
  • Cookies 
  • Scrolling and mouse clicks on the page 
  • Date and language settings 
  • Screen resolution

The IP address transmitted to Google is truncated and not merged with other Google data.

Provider of the ReCAPTCHA service

Google Limited. You can find more information about Google’s privacy policy here: 
https://www.google.com/policies/privacy/.

To have your data deleted directly by Google, contact Google Support at
https://support.google.com/?hl=de&tid=331578294933

 Order data

When you order one of our products, we ask you to provide personal data that we need to prosses the order. We store this  data for the duration of the use of Hamster Systems Services, as we need it to fulfill the service and keep it secure. If you terminate your survice, we will continue to store your data if there are objections or claims that have yet to be resolved. We also store your data for a longer period if there are statutory retention obligations. In the latter case, processing of your data is limited to compliance with the statutory retention periods and will not be processed for any other purposes.

You can make changes to this data yourself at any time via our Control Panel. Once your order has been verified, you will receive information about creating your personal login credentials by email.

Type of data

  • Title
  • First and last name
  • E-mail address
  • Telephone number
  • Company name (for trade customers)
  • Address
  • Product 
  • Payment details
  • Tax number

Storage period

We will keep your personal data for the duration of the period you are a customer of Hamster Systems. We shall retain your data only for as long as necessary in accordance with applicable laws.

On the closure of your account, we may keep your data for up to 7 years after you have canceled your services with us. We may not be able to delete your data before this time due to our legal and/or accountancy obligations or as reasonably necessary to prevent fraud, and abuse, enforce our terms, and protect our legitimate interests. We assure you that your personal data shall only be used for the purposes stated.

Chat

When you use the chat function on our websites, various cookies are set by our internal chat system. Some of the cookies are necessary for the technical implementation of the chat function. Some are used for analysis purposes. You can find out more about these cookies on our cookies page.

In addition, we store the chat history for 90 days for quality purposes. Evaluating stored chat histories allows us to continuously improve our customer support. This processing is based on our legitimate interest. Customers are informed about this storage at the beginning of the chat and have the option to object to the storage, both at that moment and throughout the entire chat. Should you wish to object at a later date, you are welcome to send your objection at any time to privacy@hamster-sys.com 

The chat history is also saved if it leads to a sales conversation and the conclusion of an order. In this case, only the sales part of the call is stored for the duration of the use of the service. The quality part will still be deleted after 90 days. We need this data to document the conclusion of the service. The legal basis in this context is the fulfillment of the service.

Purposes and legal basis

When you place an online order with us, we check whether there are any indications of misuse of our web service or of attempted fraud from the device you are using.

Your device data is also compared with data for devices from which fraudulent activities were carried out in the past or where there was such suspicion. Employees of the Hamster Systems Abuse Team or another service provider may manually review the results of such checks in individual cases. The legal basis for data processing for the purpose of device fingerprinting is our legitimate interest as Hamster Systems has a legitimate interest in protecting itself against fraud and/or misuse.

For the purpose of fraud prevention, we process usage data such as IP addresses, information about the web pages accessed, and information about the time and duration of such access. For the purpose of device fingerprinting, we process device and browser data such as language and country settings, browser type, screen information, plug-ins, and software versions. Transaction data are also processed, such as the item purchased, contents of the shopping basket, name, postal address, e-mail address, delivery address, payment method, and bank details. These data are processed exclusively to prevent fraud and misuse.

device ID is created based on the above-mentioned device data, which can be used to recognize devices when they visit the website again. We set a cookie so that we can recognize these IDs. The cookie contains a cookie ID but no personal usage or transaction data. This allows us to identify the device without knowing the person behind it by name or linking it to the device ID.

In order to optimize fraud prevention processes, your data will be transferred to FraudLabs Pro (see below for information and contact details of the service provider/sub-service provider used). FraudLabs Pro stores personal data in a pool containing the pseudonymized data from other FraudLabs Pro Customers. In particular, this storage facilitates the advanced prevention of coordinated device-based attacks from abroad or mass attempts at fraud or abuse. FraudLabs Pro will only check your data to determine whether there might be any suspicion of fraud or abuse.

We only request this consent if you wish to place your order online. If you do not wish to give such consent to data processing for the purpose of risk assessment and fraud prevention, online order is unfortunately not possible. However, you can still place your order with us by email.

Your data will be transmitted to the following service providers for the purpose of fraud prevention:

In order to carry out the measures described above, we use FraudLabs Pro as our service provider

FraudLabs Pro

Hexasoft Development Sdn. Bhd.
Attn: Data Protection Officer
70-3-30A D'Piazza Mall
11950 Bayan Baru
Pulau Pinang
Malaysia

Storage period/criteria for determining the storage period:

The data collected for fraud prevention are kept for a maximum of six months for the purposes of ensuring traceability, optimizing processes, and responding to customer inquiries, after which time they are deleted.

During the use of our services

Service information and invoices

We require your personal data for the performance of the service.
We need this data to enable the communication necessary for an orderly procedure, to disseminate information through process communication, and to bill services. We also use this data for controlling our company and to improve our products. We have a legitimate interest in analyzing the data we collect in order to improve our products and services. We protect your privacy through a range of appropriate technical and organizational measures, and we respect your choices about how we use your data.

Data stored and used

  • Title
  • First and last name
  • E-mail address
  • Telephone number
  • Company name (for trade customers)
  • Address
  • Product and use
  • Service data
  • Payment details
  • Tax number
  • If power of attorney is given, the master data of the authorised agent

 

Legal basis

The legal basis for this processing is consent.

Storage period

We process your data until the termination of your order. We continue to store your data if there are objections or claims that are still under review. We also store your data for a longer period if there are statutory retention obligations. In the latter case, processing of your data is limited to compliance with the statutory retention periods and will not be processed for any other purposes.

Customer communication

Newsletter and product advertising

We will send you useful and complementary product solutions by email to help you make full use of the benefits of our products. We will also provide you with interesting news by phone and email from time to time. In each case, you can grant us the legally required consent to contact you when you place your order online or in the Control Panel. If you no longer wish to receive such information, you can withdraw your consent at any time in the Control Panel or by contacting privacy@hamster-systems.com

Legal basis

The legal basis for this processing is consent.

Storage period:

Your consent will be deleted upon termination of your order at the latest.

Advertising our own similar goods and services

In addition, we regularly provide you with offers for our own similar goods and services by email.

Communication regarding customer concerns

The satisfaction of our customers is important to us, which is why you can contact our customer support at any time. We need your data in order to review your concerns.
We, therefore, process the following personal data about you:

  • Contact details
  • Data for identification and authentication
  • Service data
  • Contents of your enquiries
  • Payment details


We store communications with you until the end of the service term; beyond that, we store communications only until open enquiries have been finally concluded or insofar as required by statutory retention obligations. 

Legal basis

The legal basis for this processing is the fulfillment of our service agreement with you.

Customer information

We will send you information about the function and use of your products or new additions to your order. In particular, we will provide you with tips and tricks for your products and information about their functions.

The legal basis for this processing is consent.

Usage data 

Usage data in our services and products

Usage data includes information about how, how much and when you use our websites. this data, some of which are stored on your device (e.g. as log files), directly identifies you or your device.

Some usage data are collected when you use our products and services. We use this data to quickly identify and rectify any errors that occur and to continuously improve our services for you.

Storage period

Your data will be deleted after 24 months at the latest.co

Legal basis

The legal basis for this processing is the fulfillment of the order, specifically for use in troubleshooting.

Transferring data to third parties

Hamster Systems. has other subsidiaries under it that are all part of Hamster Systems therefore sometimes data from Hamster Systems may be sent to these subsidiaries in order to prevent duplicate data such as on email block lists or spam lists.

External partner companies
As we work with selected partners to offer you a wide range of products and sometimes act as an intermediary for our partners, it is necessary to transfer certain personal data to third parties, for example, registering domain names or issuing SSL certificates.

Law enforcement
Occasionally, we are obliged to disclose personal data to prosecution authorities and courts for law enforcement purposes. We always ask for the correct paperwork before disclosing any information.

Reporting of faulty products and fraud
In case of faulty products or disagreements and we are committed to seeking solutions. If is this not possible, we evaluate the situation carefully, when and to whom we report faulty products or fraudulent usage.

Product partners

For some of our products, we cooperate with partner companies and sometimes even act as intermediaries. In some cases it is necessary to forward personal data to our product partners. This is the case, for example, when registering a domain or issuing an SSL certificate. We conclude the necessary services under data protection law with our product partners. We only cooperate with partners who comply with our data protection standards. If data is transferred to third countries, we comply with the statutory requirements for transfers to third countries.

Personal data and the provision of services

When you order one of our products, we only ask for information that is essential to deliver our products and services to you or for invoicing reasons. In most cases, this is limited to name, address, contact data, and bank details.

Cookies

For more information on the cookies we use please see our cookies policy

Service-specific data protection information

Purpose of processing
Domain name requests are stored and processed to improve domain name suggestions and products. These requests will never be used by Hamster Systems to register domains on its own behalf.

Categories of personal data
Processed domain name data is not linked to any customer or service.

Hamster Systems Status Page

Purpose of processing
Information about the products. Announcement of maintenance. Registration for automatic transmission of status information by email or SMS.

Categories of personal data
Service data, traffic data

Legal basis
Performance of a service, legitimate interest Art. 6(1) lit. b,f GDPR


Hamster Systems Customer Support

Purpose of processing
Call center services for customer service.

Categories of personal data
Subscriber data, content data

Legal basis
Performance of a service Art. 6(1) lit. b GDPR

Product-specific data protection

With some of our products, we rely on the expertise of specialized partner companies to ensure that we provide the best possible products and service experience. In the event that you cease to use our products and services, we will delete your personal data within a given timeframe.

SSL certificate

Purpose of processing
Registering, transfer, configuration, maintenance and deletion of SSL certificates. Automatic processing in Plesk products when connecting the domain with the website project.

Categories of personal data
Subscriber data

Legal basis
Performance of a contract, Art. 6 (1) lit. b GDPR

Subprocessors
DigiCert, Lehi UT, USA

Note
In the process of acquisition and maintenance of SSL certificates, Hamster Systems is only an intermediary between the customer and the respective issuer of the SSL certificate. Hamster Systems has no influence on the issuance of certificates and does not accept any liability that the certificate is assigned to the customer and that it will permanently exist.

Hamster Systems Mail Basic / Business

Purpose of processing
Provision of email services, including setting up, configuring and deleting email addresses

Categories of personal data
Subscriber data, content data, traffic data

Legal basis
Performance of a service, Art. 6 (1) lit. b GDPR

Retention period
7 days after deletion of content, all data will be purged 7 days past end of service lifetime
28 days for logfiles

Servers and Hamster Systems Cloud Computing and Hosting

With the listed products, you as our customer solely control which personal data is processed in which way.

Categories of personal data
At your sole discretion

Retention period
At your sole discretion

Legal basis
At your sole discretion

Subprocessors
At your sole discretion

 

Plesk

Purpose of processing
Provisioning and the use of the server administration software.

Categories of personal data
Subscriber data

Legal basis
Performance of a service, Art. 6 (1) lit. b GDPR

Retention period
End of service lifetime

Cloud Backup

Purpose of processing
Provisioning and the use of Cloud Backup.
Customer service and operation of the platform.

Categories of personal data
Subscriber data, content data, usage data

Legal basis
Performance of a service, Art. 6 (1) lit. b GDPR

Retention period
The time that the data was stored according to the settings you assigned.
Latest by the end of the service lifetime.

 

 

Top