itXcel Internet Limited Privacy And Security Policy
1.1 This is the privacy and security policy of itXcel Internet Limited. Its purpose is to tell you how we process your Personal Data (ie data about any identified or identifiable living person). In particular:
a) what Personal Data we collect;
b) how we use it;
c) how we protect it;
d) to whom we disclose it;
e) how you can access and rectify it.
1.2 We agree not to process your Personal Data other than in accordance with this policy.
1.3 The following words have particular meanings in this policy:ICANN
Internet Corporation for Assigned Names and Numbers
(1) ICANN or any equivalent body; and (2) the registries responsible for particular types of domain names (3) the registry gateway provider responsible for particular types of domain names
all applicable laws, statutes, regulations, standards or codes of conduct, whether or not compulsory
1.4 We may vary this policy as explained in our terms and conditions
1.5 If you have any queries concerning this policy, please email us or submit a support ticket.
2.1 When you place an order, we collect basic information such as your name, address and other contact details, payment and technical information. All such information is mandatory unless otherwise stated at the time.
2.2 You may provide additional Personal Data to us in the course of communicating with us about our services.
2.3 In compliance with obligations to ICANN and as required by Naming Authorities we collect certain mandatory data (Whois Data) in relation to domain names including:
a) the domain name;
b) the original creation date;
c) the expiration date;
d) the names of the primary and secondary nameservers for the domain together with IP addresses;
e) the name and postal address of the domain name holder; and
f) the name, postal and email addresses, telephone and (where available:) fax numbers of the technical and administrative contacts.
2.4 We store on our computers certain data which may include Personal Data such as websites, message boards and email messages in the course of providing our services to you.
2.5 Our computer automatically logs your IP address (your unique internet Internet address) and browser type when you visit our website.
3.1 We use your Personal Data to properly:
a) perform our services;
b) administer your account; and
c) bill you.
3.2 We use your Personal Data to send you important notices concerning our services and, unless you have opted out, to provide information about similar products and services that may be of interest to you.
3.3 We retain Whois Data as well as communications with domain name holders and payment records in accordance with the requirements of Naming Authorities and we disclose it as explained below.
3.4 We do not routinely access websites, message boards, emails and similar data on our servers. We may however do so in Exceptional Circumstances, meaning where:
a) we consider in our discretion that:
i) it breaches or may breach our Acceptable Use Policy
ii) it is necessary to protect us or our other customers or the public and/or to minimize our exposure to breach of Regulation or the risk of civil or criminal proceedings and/or to respond to claims of violation of third party rights; or
b) we are required to by Regulation or competent authority.
3.5 We occasionally use IP addresses for customer profiling purposes.
3.7 Where we collect Personal Data on your behalf (ie we are a data processor and you are a data controller within the meaning of the Data Protection Act 1988 we shall act only on your instructions
4.1 Security is a high priority for us. We take reasonable precautions to protect Personal Data from loss, misuse, unauthorised access or disclosure, alteration or destruction.
4.2 We use industry-standard Secure Sockets Layer (SSL) technology (128 bit) to encrypt sensitive information.
5.1 In accordance with the requirements of Naming Authorities:
a) we make Whois Data available to the public for free query-based access;
b) we allow third parties access to Whois Data in bulk provided they agree, amongst other things, not to use them improperly eg for transmission of unsolicited commercial email ;
c) we provide certain of the Whois Data to the relevant Naming Authorities;
d) if required, we deposit copy Whois Data with a reputable escrow agent; and
e) if required, we disclose communications with domain name holders and payment records to Naming Authorities.
5.2 The previous paragraph may necessarily involve transfer of Personal Data to entities located outside the European Economic Area (EEA).
5.3 We may disclose Personal Data so far as reasonably necessary:
a) to provide our services (which may involve transfer outside the EEA in the case of US customers);
b) when there are Exceptional Circumstances (explained above);
c) in the context of a sale or merger of all or part of our business.
5.4 We may disclose Personal Data to organizations with which we have a business relationship for the sole purpose of their validating sums due to them under agreements with us. Such disclosure will be on condition that the Personal Data is not used for marketing purposes and is not disclosed by them to third parties.
6.1 You can access and rectify your Personal Data by logging into your account or by contacting us using the details provided on our website.
6.2 For information about your rights under UK data protection laws, see the website of the UK Data Protection Commissioner [http://www.dataprotection.gov.uk/]