Privacy Policy

Your privacy is important to us. This policy explains how we collect, use, and protect your personal information.

Table of Contents

1. Data Controller Information2. Types of Data Processed3. Processing Purposes4. Legal Basis5. Data Sharing6. Data Retention7. Data Security8. Your Rights9. International Transfers10. Contact Information

1. Data Controller Information

AlfaHost LLC (Technical Data Controller)

  • Company: AlfaHost LLC
  • Registration: Georgia, ID: 400433090
  • Address: Tbilisi, Georgia
  • Email: support@alfahost.io
  • Data Protection Officer: dpo@alfahost.io

Jurisdiction: European Union GDPR and Georgian legislation

LLC "Strategy of Success" (Payment Data Controller for Russian Citizens)

  • Company: LLC "STRATEGIYA USPEKHA"
  • OGRN: 1257700232844
  • INN: 9731150960
  • Address: 121353, Russia, Moscow, Vyazemskaya str., 26A, room 3/1
  • Email: privacy@alfahost.io

Jurisdiction: Russian Federation Federal Law-152 "On Personal Data"

2. Types of Data Processed

2.1. Technical Data (AlfaHost LLC)

  • Account Information: username, email address, encrypted passwords
  • Server Configuration: IP addresses, server specifications, software configurations
  • Usage Data: bandwidth consumption, resource utilization, access logs
  • Support Communications: ticket conversations, technical queries
  • Security Logs: login attempts, security events, system monitoring data

2.2. Payment Data (LLC "Strategy of Success" for Russian Citizens)

  • Billing Information: name, address, payment method details
  • Transaction Records: payment history, invoices, receipts
  • Tax Information: tax identification numbers when required
  • Communication: sales inquiries, billing support

Important: Payment data of Russian citizens is processed separately and does not have access to technical server data.

3. Processing Purposes

3.1. Service Provision

  • Server deployment and management
  • Technical support and troubleshooting
  • Network monitoring and optimization
  • Security incident response

3.2. Billing and Payments

  • Invoice generation and payment processing
  • Fraud prevention and financial compliance
  • Tax reporting and accounting
  • Billing dispute resolution

3.3. Legal Compliance

  • Compliance with Georgian and Russian legislation
  • Response to lawful requests from authorities
  • Anti-money laundering (AML) and Know Your Customer (KYC) procedures
  • Data localization requirements

5. Data Sharing and Third Parties

5.1. Service Providers (Technical)

  • Data Centers: Infrastructure providers in EU/EEA jurisdictions
  • Network Providers: Internet connectivity and routing services
  • Security Services: DDoS protection and security monitoring
  • Backup Services: Data backup and disaster recovery providers

5.2. Payment Processors (Russian Citizens)

  • Russian Banks: Payment processing within Russian Federation
  • Payment Systems: Local payment methods and processors
  • Tax Authorities: As required by Russian tax legislation

5.3. Data Separation Policy

Important: Technical data processed by AlfaHost LLC is never shared with Russian entities. Payment data of Russian citizens processed by LLC "Strategy of Success" is never shared with technical service providers. This ensures compliance with both GDPR and Russian data localization requirements.

6. Data Retention

Technical Data

  • Account Data: Until account deletion + 30 days
  • Server Logs: 90 days maximum
  • Support Tickets: 2 years for quality assurance
  • Security Logs: 1 year for security analysis

Payment Data (Russian Citizens)

  • Transaction Records: 5 years (tax requirements)
  • Customer Communications: 3 years
  • KYC Documents: 5 years (AML requirements)
  • Billing Information: Until account closure + 1 year

7. Data Security Measures

Technical Safeguards

  • AES-256 encryption for data at rest
  • TLS 1.3 for data in transit
  • Multi-factor authentication for administrative access
  • Regular security audits and penetration testing
  • Network segmentation and firewall protection

Organizational Measures

  • Access control on need-to-know basis
  • Regular staff security training
  • Data breach response procedures
  • Vendor security assessments
  • Regular backup and disaster recovery testing

8. Your Rights

8.1. Rights under GDPR (Technical Data)

  • Right of Access: Request copy of your personal data
  • Right to Rectification: Correct inaccurate information
  • Right to Erasure: Request deletion of your data
  • Right to Restrict Processing: Limit how we use your data
  • Right to Data Portability: Receive your data in machine-readable format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Where processing is based on consent
  • Right to Lodge Complaint: With relevant supervisory authority

8.2. Rights under Federal Law-152 (Payment Data - Russian Citizens)

  • Right to Information: Know what personal data is processed and why
  • Right to Access: Obtain confirmation of processing and access to data
  • Right to Correction: Request correction of inaccurate data
  • Right to Deletion: Request deletion when no longer necessary
  • Right to Complaint: File complaints with Roskomnadzor

How to Exercise Your Rights

To exercise any of these rights, please contact:

  • Technical Data: dpo@alfahost.io (AlfaHost LLC)
  • Payment Data (Russian citizens): privacy@alfahost.io (LLC "Strategy of Success")

We will respond to your request within 30 days (GDPR) or 10 days (Russian law).

9. International Data Transfers

Technical Data (AlfaHost LLC)

Technical data is processed within EU/EEA jurisdictions and Georgia. Any transfers outside these areas are protected by:

  • European Commission adequacy decisions
  • Standard Contractual Clauses (SCCs)
  • Additional safeguards as required by GDPR

Payment Data (Russian Citizens)

Payment data of Russian citizens is processed exclusively within the Russian Federation in compliance with Federal Law-152 data localization requirements. This data is never transferred outside Russia.

10. Contact Information

AlfaHost LLC (Technical Data)

  • Data Protection Officer: dpo@alfahost.io
  • Technical Support: support@alfahost.io
  • Address: Tbilisi, Georgia
  • Registration: ID 400433090

LLC "Strategy of Success" (Payment Data)

  • Privacy Officer: privacy@alfahost.io
  • Sales Support: sales@alfahost.io
  • Address: 121353, Moscow, Russia
  • OGRN: 1257700232844

Supervisory Authorities

For Technical Data (GDPR):

Data Protection Agency of Georgia or relevant EU supervisory authority

For Payment Data (Russian Citizens):

Federal Service for Supervision of Communications, Information Technology and Mass Media (Roskomnadzor)

Last updated: 12/8/2025

© 2025 AlfaHost LLC (Technical Support) | LLC "Strategy of Success" (Reseller Services in Russia)

Privacy Policy | AlfaHost Hosting | AlfaHost