HostEngine
Start free trial
Legal · Last updated April 2026

Privacy Policy

This Privacy Policy explains what personal data HostEngine Cloud Inc. collects, how we use it, with whom we share it, and the rights you have. We aim to write this in plain English; if anything's unclear, email privacy@hostengine.com and we'll explain.

Section 01

Scope of this policy

This Policy applies to personal data processed when you visit our websites, sign up for an account, communicate with us, or use the HostEngine platform. It does not cover content you upload to the Service ("Customer Content") — that is governed by the Terms of Service and our DPA.

Section 02

Data controller

The data controller is HostEngine Cloud Inc., 1208 Marlin Drive, Suite 240, Wilmington, DE 19801, USA. For EU/UK users, our representative is HostEngine GmbH, Friedrichstraße 68, 10117 Berlin, Germany.

Section 03

What we collect

We collect three categories of personal data:

  • Account data — name, work email, organization, billing address, payment method tokens, and any tax identifiers required for invoicing.
  • Usage data — service logs, API call metadata, IP addresses, region preferences, console actions, and aggregated metrics that help us operate the Service.
  • Communications — messages you send to support, sales or community channels, and recordings of demo calls (with consent).

We do not collect special categories of personal data (race, religion, health, etc.) and request that you avoid placing such data into Customer Content unless required by your application.

Section 04

How we use it

We process personal data to: (a) provide and operate the Service; (b) send transactional and security notices; (c) bill you and enforce payments; (d) detect, investigate and prevent fraud or abuse; (e) improve the Service; and (f) communicate product updates, with the ability to opt out of marketing emails at any time.

We rely on the following legal bases under the GDPR: contract, legitimate interests, consent (where required), and compliance with legal obligations.

Section 05

When we share data

We share personal data only with sub-processors that help us operate the Service (payment processors, email delivery, fraud detection, observability) and only to the extent necessary. Our current sub-processor list is published in the Trust Center and updated on change.

We do not sell, rent or trade personal data to third parties for advertising purposes.

Section 06

Retention

Account data is retained for the life of your account plus 24 months for tax and audit purposes. Usage logs are retained for 12 months. Customer support records are retained for 36 months. Billing records are retained for 7 years to comply with tax law.

Section 07

Your rights

Depending on your jurisdiction you have rights to access, correct, port, restrict, or delete personal data we hold about you, and to object to certain processing or withdraw consent. To exercise any of these rights, email privacy@hostengine.com — we'll respond within 30 days.

You may also lodge a complaint with your local data protection authority. We hope you'll talk to us first.

Section 08

Security measures

We maintain administrative, technical and physical safeguards designed to protect personal data, including encryption in transit and at rest, role-based access controls, audit logging, sealed access reviews, and an annual penetration test. Our SOC 2 Type II report is available on request.

Section 09

International transfers

Personal data may be transferred to, or accessed from, the United States and other jurisdictions. Where required, we rely on Standard Contractual Clauses approved by the European Commission and conduct transfer impact assessments before relying on them.

Section 10

Contact us

For privacy questions, email privacy@hostengine.com. Our Data Protection Officer is Jordan Lee (DPO@hostengine.com).