This Privacy Policy describes how KikiHost, a brand of Zaidan GROUP OÜ ("we", "us", "our"), collects, uses, and protects personal data when you use our website kikihost.com and our hosting, domain, email, and related services (the “Services”).
Plain‑English summary: We only collect what we need to provide services, we keep it safe, we don’t sell it, and you can request access or deletion of your data at any time.
1) Data we collect
- Account data: Name, company, billing address, email, phone number.
- Payment data: Payment method, billing records (we do not store full credit card numbers; payments are handled by PCI‑compliant processors).
- Service data: Domain registration details, hosting account usage, support interactions.
- Technical data: IP address, browser type, logs, cookies.
2) How we use data
- To provide and manage hosting, domains, email, and related Services.
- To process payments, billing, and renewals.
- To send important service notifications (e.g., expiry, outages, security alerts).
- To improve Services, prevent fraud, and ensure security.
- To comply with legal obligations (e.g., ICANN domain rules, tax laws).
3) Legal basis (GDPR)
We process data under the following legal bases:
- Contract: To deliver the Services you ordered.
- Legal obligation: To comply with laws (e.g., accounting, domain registration).
- Legitimate interest: To secure our platform and improve services.
- Consent: For optional marketing emails (you may withdraw anytime).
4) Sharing of data
- We share domain registration data with registries/ICANN as required.
- We use third‑party providers for payment processing, email delivery, and infrastructure.
- We do not sell personal data to advertisers or third parties.
5) Data retention
We keep your data only as long as necessary:
- Account and billing records: retained for up to 7 years (legal requirement).
- Support tickets and communications: retained for operational purposes.
- Backups: temporary and automatically cycled.
6) Cookies
Our website uses cookies for login sessions, preferences, and analytics. You can disable cookies in your browser, but some Services may not function correctly.
7) Security
We implement reasonable technical and organizational measures to protect data, including SSL encryption, firewalls, monitoring, and access controls. No system is 100% secure, but we work to minimize risks.
8) Your rights
If you are in the EU/EEA or applicable jurisdictions, you have rights to:
- Access your data
- Correct inaccuracies
- Request deletion (“right to be forgotten”)
- Restrict or object to processing
- Port your data to another provider
To exercise these rights, contact us at privacy@kikihost.com. We respond within 30 days.
9) International transfers
Your data may be processed in Estonia, the EU, or other countries where our providers operate. We use safeguards such as Standard Contractual Clauses when transferring data outside the EU/EEA.
10) Children’s privacy
Our Services are not directed to children under 16. We do not knowingly collect personal data from minors. If you believe a child has provided data, contact us for deletion.
11) Changes
We may update this Privacy Policy. Significant changes will be notified by email or client portal. The latest version will always be posted here.
12) Contact
Questions about this Privacy Policy?