GB HOST ("we", "us", "our") is committed to protecting your privacy and personal data in compliance with applicable Indian laws including the Information Technology Act, 2000, Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011, and the Digital Personal Data Protection Act, 2023 (when enforced).

1. Information We Collect

1.1 Personal Information

We collect the following personal information when you register or use our services:

  • Identity Information: Name, username, customer ID
  • Contact Information: Email address, phone number, postal address
  • Financial Information: Payment card details, bank account information, billing address
  • Government Identifiers: PAN, Aadhaar (only when legally required), GST number
  • Business Information: Company name, designation, business address

1.2 Sensitive Personal Data

As defined under Indian law, we may collect:

  • Password and security credentials
  • Financial information (credit/debit card, bank details)
  • Any other information categorized as sensitive under applicable laws

1.3 Technical Information

We automatically collect:

  • IP address and location data
  • Browser type and version
  • Operating system
  • Device information
  • Cookies and similar tracking technologies
  • Server logs and usage data
  • Website traffic and interaction data

2. Legal Basis for Processing

We process your personal data based on:

  • Consent: Your explicit consent for processing personal data
  • Contract: Performance of services contract with you
  • Legal Obligation: Compliance with Indian laws and regulations
  • Legitimate Interests: Our legitimate business interests

3. How We Use Your Information

3.1 Primary Purposes

  • Provide, maintain, and improve our hosting services
  • Process transactions and billing
  • Verify identity and prevent fraud
  • Communicate service updates and notifications
  • Provide customer support
  • Comply with legal obligations

3.2 Secondary Purposes

With your consent, we may use information for:

  • Marketing communications about our services
  • Personalized recommendations
  • Research and analytics
  • Service improvement and development

4. Information Sharing and Disclosure

4.1 We Share Information With:

  • Service Providers: Third-party vendors who assist in service delivery
  • Payment Processors: Banks and payment gateways for transaction processing
  • Domain Registrars: ICANN-accredited registrars for domain services
  • Law Enforcement: When required by law or court order
  • Business Transfers: In case of merger, acquisition, or asset sale

4.2 We Do NOT:

  • Sell your personal information to third parties
  • Share sensitive personal data without explicit consent
  • Transfer data outside India without adequate safeguards

5. Data Storage and Retention

5.1 Data Localization

In compliance with Indian data localization requirements:

  • All personal data is stored on servers located in India
  • Payment data is processed and stored per RBI guidelines
  • Critical personal data remains within Indian territory

5.2 Retention Period

  • Account Data: Duration of service + 7 years (per legal requirements)
  • Transaction Records: 8 years from transaction date
  • Communication Logs: 2 years
  • Technical Logs: 180 days
  • Marketing Data: Until consent withdrawn

6. Data Security

6.1 Security Measures

We implement reasonable security practices including:

  • ISO 27001 compliant security framework
  • 256-bit SSL encryption for data transmission
  • Encrypted storage for sensitive data
  • Regular security audits and penetration testing
  • Access controls and authentication mechanisms
  • 24/7 security monitoring
  • Incident response procedures

6.2 Data Breach Response

In case of a data breach:

  • We will notify affected users within 72 hours
  • Report to CERT-In as required by law
  • Take immediate remedial measures
  • Cooperate with regulatory authorities

7. Your Rights

Under Indian data protection laws, you have the right to:

  • Access: Request copies of your personal data
  • Correction: Request correction of inaccurate data
  • Deletion: Request deletion of your data (subject to legal obligations)
  • Portability: Receive your data in a structured format
  • Objection: Object to certain processing activities
  • Withdraw Consent: Withdraw previously given consent
  • Grievance: File complaints with our Grievance Officer

8. Cookies Policy

8.1 Types of Cookies We Use

  • Essential Cookies: Required for service functionality
  • Performance Cookies: Help improve service performance
  • Functional Cookies: Remember your preferences
  • Marketing Cookies: Used with consent for targeted advertising

8.2 Managing Cookies

You can control cookies through browser settings. Disabling essential cookies may affect service functionality.

9. Third-Party Services

Our services may integrate with third-party services including:

  • Google Analytics (anonymized IP)
  • Payment gateways (Razorpay, PayU, CCAvenue)
  • CDN services (Cloudflare)
  • Support systems (ticket system)

These services have their own privacy policies and data practices.

10. Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal data from children. Parental consent is required for users under 18.

11. International Data Transfers

We primarily store data in India. Any international transfer will be done in compliance with Indian law and with appropriate safeguards including:

  • Standard contractual clauses
  • Adequate data protection agreements
  • Your explicit consent where required

12. Marketing Communications

We comply with TRAI regulations for commercial communications:

  • Opt-in consent for marketing emails
  • Clear unsubscribe options in all communications
  • Compliance with DND (Do Not Disturb) registry
  • No unsolicited commercial communications

13. Grievance Officer

Grievance Officer Details

Name: [Grievance Officer Name]

Designation: Chief Grievance Officer

Email: grievance@gbhost.in

Address: GB HOST, Sy.No. 129, 3rd Cross Road, Nrupathunga Nagar, Navodaya Nagar, 8th Phase, J. P. Nagar, Kothnur, Bengaluru, Karnataka 560062

Working Hours: Monday to Friday, 9:00 AM to 6:00 PM IST

Grievances will be addressed within 30 days of receipt.

14. Changes to Privacy Policy

We may update this Privacy Policy periodically. Significant changes will be notified via:

  • Email notification to registered users
  • Prominent notice on our website
  • In-account notifications

15. Compliance and Audits

We maintain compliance with:

  • Information Technology Act, 2000 and Rules
  • Digital Personal Data Protection Act, 2023
  • RBI guidelines for payment data
  • CERT-In cybersecurity directives
  • Industry best practices and standards

16. Contact Information

GB HOST

Registered Office: Sy.No. 129, 3rd Cross Road, Nrupathunga Nagar, Navodaya Nagar, 8th Phase, J. P. Nagar, Kothnur, Bengaluru, Karnataka 560062

Email: privacy@gbhost.in

Support: support@gbhost.in

GST Number: 29AAXCA1097M1ZR