Last updated 2 July 2026
VeloxMedia provides cloud infrastructure and hosting services. For personal data you give us when creating an account or ordering, VeloxMedia is the data controller. Contact: [email protected].
Account data: name, email address, company name, billing address, phone number. Service data: hostnames, IP allocations, configuration, resource usage, and support conversations. Technical data: portal access logs (IP address, user agent, timestamps) kept for security and troubleshooting. Payment card details are collected and stored by our payment processor (Stripe) — full card numbers never touch our systems.
To provide and bill the Services you order (performance of contract); to secure the platform, prevent abuse, and meet legal obligations (legitimate interest / legal obligation); and to send transactional messages about your Services — invoices, renewal notices, maintenance and abuse notifications (performance of contract). We do not sell personal data, and we do not send marketing email without consent.
Data you store or process on your own server is yours. We treat it as your confidential information: we do not access guest data except where you ask us to (support), where strictly necessary to protect the platform (abuse response), or where required by law.
We use a small number of processors to run the business: payment processing (Stripe), transactional email delivery (SMTP2GO), and our own infrastructure providers for data-centre capacity in the regions we advertise. Each processes only what its role requires, under contract. Where data crosses borders we rely on appropriate safeguards such as standard contractual clauses.
Account and billing records are retained while your account is active and thereafter as required for tax and accounting law (typically 6–7 years for invoices). Server data is deleted after service termination following the recovery window described in the Terms. Support tickets and their history are retained to maintain service quality and continuity.
We apply industry-standard controls: encryption in transit, segregated tenant environments, role-restricted administrative access, audit logging, and DDoS mitigation. No system is perfectly secure; we will notify you and the applicable authority of a personal-data breach where the law requires it.
Depending on your jurisdiction (including UK/EU GDPR), you may have rights of access, rectification, erasure, restriction, portability, and objection. Exercise them by contacting [email protected]; we respond within the statutory timescale. You may also complain to your supervisory authority.
The portal uses strictly-necessary cookies and browser storage for sign-in sessions and your cart. We do not run third-party advertising trackers in the portal.
We will post updates to this policy here and, for material changes, notify you by email or portal notice.