Privacy Policy - Decasix

Effective Date: January 13, 2024

Company Name: Decasix

1. Introduction

Welcome to Decasix. We provide high-performance WordPress hosting services to individuals and businesses globally. This Hosting Policy (“Policy”) governs your use of our hosting services and outlines your rights, responsibilities, and obligations. By signing up for any services Decasix offers, you agree to this Policy, our Terms of Service, Privacy Policy, and applicable agreements.

2. Definitions

Client/User: Any individual or entity using Decasix’s hosting services.
Service: WordPress hosting and related support services offered by Decasix.
Data Controller: The entity determining the purposes and means of personal data processing.
Data Processor: Decasix, acting on behalf of the Data Controller.
Personal Data: Any data relating to an identified or identifiable person.
GDPR: General Data Protection Regulation (EU) 2016/679.

3. Terms of Service

3.1. Eligibility

You must be at least 18 or the age of majority in your jurisdiction to use Decasix services. By registering, you confirm the legal authority to enter into this agreement.

3.2. Account Registration

You must provide accurate, current, and complete information. Failure to do so may result in suspension or termination.

3.3. Use of Services

Services may only be used for lawful purposes. You may not:

Host or transmit spam, malware, phishing schemes, or illegal content.
Infringe on copyrights, trademarks, or other intellectual property.
Use excessive server resources beyond plan limits.

3.4. Suspension & Termination

We reserve the right to suspend or terminate your service without notice for violations of this policy or applicable laws.

4. Privacy Policy

Decasix is committed to protecting your data. This section describes how we collect, use, and protect your data under the GDPR.

4.1. Data Collection

We collect data when you:

Sign up for services.
Contact our support.
Use our platform.

Data Collected:

Name, email, and contact info.
Billing details.
Server logs (IP address, browser type, access times).
Website activity for analytics.

4.2. Legal Basis for Processing

We process data based on:

Performance of contract (Art. 6(1)(b) GDPR).
Legal obligations (Art. 6(1)(c) GDPR).
Legitimate interest (Art. 6(1)(f) GDPR).
Consent where required (Art. 6(1)(a) GDPR).

4.3. Data Usage

We use data to:

Deliver hosting services.
Provide customer support.
Improve service performance.
Fulfill legal requirements.

4.4. Data Retention

Personal data is retained only for as long as necessary to fulfill the purposes outlined in this policy unless otherwise required by law.

4.5. Data Subject Rights

Under the GDPR, you have the following rights:

Right of Access (Art. 15): Request access to your data.
Right to Rectification (Art. 16): Correct inaccurate data.
Right to Erasure (Art. 17): Request deletion of your data.
Right to Restriction (Art. 18): Limit processing under certain conditions.
Right to Data Portability (Art. 20): Obtain your data in a structured format.
Right to Object (Art. 21): Object to data processing.
Right to Withdraw Consent: Withdraw consent at any time, where applicable.

To exercise these rights, contact: [email protected]. We respond within one month as required by GDPR.

4.6. Data Sharing & International Transfers

We do not sell personal data. We may share your data with:

Payment processors for billing.
Support platforms for customer service.
Legal authorities when required by law.

Some partners are located outside the EU. When data is transferred internationally, we ensure compliance via:

EU Standard Contractual Clauses (SCCs)
Adequacy decisions by the EU Commission
Binding corporate rules

4.7. Cookies & Tracking Technologies

We use cookies to:

Authenticate sessions
Monitor performance
Analyze usage patterns

You can control cookie settings via your browser. For more, see our Cookie Policy.

5. Data Processing Agreement (DPA)

This section outlines how Decasix, as a Data Processor, processes personal data on behalf of Clients (Data Controllers).

5.1. Scope and Roles

Decasix processes personal data strictly under the instruction of the Client to provide hosting services.

5.2. Categories of Data Processed

Website visitor logs
User account information
Contact form submissions
E-commerce data (if applicable)

5.3. Security Measures

We implement appropriate technical and organizational measures including:

Data encryption (at rest and in transit)
Daily backups
Secure access controls
Firewalls and malware scanning

5.4. Confidentiality

All personnel involved in the processing are under confidentiality obligations.

5.5. Subprocessors

A list of subprocessors (e.g., data centers, support software) is published on our website. We ensure GDPR-compliant agreements with each subprocessor.

5.6. Data Breach Notification

In the event of a breach affecting personal data, Decasix will notify the Client within 72 hours, as required by GDPR Article 33.

5.7. Deletion and Return of Data

Upon service termination or Client request, Decasix will delete or return all personal data, unless retention is required by law.

6. Acceptable Use Policy

This Acceptable Use Policy (AUP) outlines prohibited activities and guidelines for using Decasix’s hosting services. The Client agrees not to engage in the following activities:

6.1. Prohibited Content

You are prohibited from using Decasix’s services to host, transmit, or distribute any of the following:

Illegal content: Content that violates local, state, national, or international law.
Harmful content: Content containing viruses, malware, spyware, or any code designed to disrupt or damage networks or systems.
Spam: Unsolicited bulk emails or other unsolicited communications.
Infringing content: Content that infringes on intellectual property rights (e.g., copyrighted materials without permission).
Hate speech: Content that promotes violence, hatred, or discrimination against individuals or groups based on race, religion, gender, nationality, etc.

6.2. Network Abuse

Clients must refrain from:

Excessive resource usage: Causing excessive strain on Decasix’s infrastructure or network (e.g., through Distributed Denial of Service (DDoS) attacks).
Unauthorized access: Attempting to gain unauthorized access to Decasix’s services or other users’ data.
Interference with services: Interfering with Decasix’s services or network performance through malicious activity or negligence.

6.3. Compliance with Laws

Clients must comply with all applicable laws and regulations related to data protection, intellectual property, and content distribution in their region and globally.

6.4. Monitoring and Enforcement

Decasix may monitor its network for violations of this policy and reserves the right to suspend or terminate service for any violation.

7. Client Responsibilities

As a client of Decasix, you are responsible for the following:

7.1. Accurate Information

Providing accurate, current, and complete registration information. You must promptly update your details as necessary to ensure accuracy.

7.2. Security

You are responsible for maintaining the security of your hosting environment, including:

Securely configuring WordPress, plugins, and themes.
Keeping software up to date (e.g., WordPress, themes, plugins).
Enabling two-factor authentication (2FA) for your account when possible.
Monitoring for suspicious activity.

7.3. Backup Responsibility

While Decasix takes necessary measures to back up data, you are responsible for maintaining backups of your website, content, and data. We recommend regular backups to avoid data loss.

7.4. Legal Compliance

You are responsible for ensuring that all content you upload or distribute complies with applicable laws, including data protection regulations (such as GDPR), and that you have the necessary rights to use that content.

7.5. Email & Spam Policy

Clients are prohibited from using Decasix’s services to send unsolicited commercial emails (spam). Decasix has the right to monitor email traffic and suspend services if spam activities are detected.

8. Service Limitations

While Decasix strives to provide the highest level of service, there are certain limitations and exceptions to the availability and performance of our hosting services.

8.1. Uptime Guarantee

Decasix aims to provide a 99.9% uptime guarantee, excluding scheduled maintenance. Downtime beyond this threshold may be eligible for service credits as outlined in our Service Level Agreement (SLA).

8.2. Network Performance

Decasix ensures high-speed network access, but we are not responsible for issues arising from external network providers or internet performance outside of our control.

8.3. Maintenance Windows

Scheduled maintenance may occur periodically. We will inform clients in advance of any significant maintenance affecting services. Routine maintenance may occur without prior notice if it does not disrupt service availability.

8.4. Traffic and Resource Limitations

If your traffic or resource usage exceeds the allocated limits of your chosen hosting plan, we may:

Notify you of the excess usage.
Offer recommendations to mitigate excessive resource use.
Request you upgrade your hosting plan.

9. Service Level Agreement (SLA)

This Service Level Agreement outlines Decasix’s commitment to service uptime and support. It sets forth the expectations for service delivery, response times, and remedies available for any service failures.

9.1. Uptime Guarantee

Decasix guarantees a monthly uptime of 99.5%, excluding planned maintenance or force majeure events.

9.2. Response Time

We commit to the following support response times based on the priority of the issue:

Critical (System down): 1 hour
High (Service degradation): 4 hours
Medium (General Inquiries): 1 business day
Low (Non-urgent): 2 business days

10. Backup Policy

10.1. Backup Frequency

Decasix performs daily backups of your WordPress environment, including your files and databases. However, we highly recommend that clients maintain independent backups, as Decasix’s backups are only intended for disaster recovery.

10.2. Backup Retention

Decasix retains backups for 7 days. Clients should download backups regularly to avoid losing critical data after this period.

10.3. Restoring Backups

Clients can request a restoration of backups within the 7-day retention period. Restoration requests outside this period may not be applicable.

10.4. Client Responsibility

Clients are ultimately responsible for maintaining copies of their data. Decasix does not guarantee the recovery of data if backups fail or are not available.

11. Data Security

Decasix is committed to safeguarding your personal and website data. We employ a combination of technical, physical, and administrative security measures to protect against unauthorized access, loss, or disclosure.

11.1. Encryption

All data transmitted between clients and Decasix is encrypted using SSL/TLS protocols. Sensitive data at rest, including backups, is encrypted using industry-standard encryption algorithms.

11.2. Server Security

Decasix uses firewalls, malware scanning, and intrusion detection systems (IDS) to protect servers and network resources from external threats. Regular security patches are applied to all software components.

11.3. Access Controls

Access to client data is restricted to authorized personnel only. Administrative access to servers and client accounts is secured with multi-factor authentication (MFA).

11.4. Monitoring

We continuously monitor server performance, security vulnerabilities, and suspicious activities. Any detected security incident is reported to the client as per our incident response protocol.

12. Customer Support

Decasix provides 24/7 customer support via:

Live chat (available through the customer portal)
Email support: [email protected]

12.1. Support Availability

Support is available around the clock for all hosting clients. Response times may vary depending on the severity of the issue and the time of day.

12.2. Escalation Procedure

For critical issues that require urgent resolution, clients can escalate their requests to senior support agents. The escalation process is as follows:

Tier 1 (General Inquiries): Resolved by front-line support.
Tier 2 (Complex issues): Escalated to technical specialists.
Tier 3 (Critical incidents): Escalated to system administrators or security experts.

13. Payment Terms

Decasix provides flexible payment options for its hosting services. By purchasing our services, you agree to the following payment terms.

13.1. Pricing

The prices for Decasix’s hosting services are listed on our website and are subject to change. Any pricing changes will be communicated in advance. Pricing may vary depending on the hosting plan, billing cycle, and any additional features or add-ons chosen by the client.

13.2. Billing Cycle

Decasix offers a pay-as-you-go basis, as we don’t want the customers to have vendor lock-ins or contract-based pricing. The payment term begins on the day your hosting service is activated and will automatically renew unless canceled by you.

13.3. Payment Methods

We accept payments via credit/debit cards, PayPal, and other payment methods specified on our website. Clients are responsible for keeping their payment information up to date.

13.4. Payment Due Date and Late Fees

Payments are due at the start of the billing cycle. If payment is not received by the due date, Decasix reserves the right to suspend or terminate services until the outstanding balance is paid. A late fee may be applied to overdue accounts.

14. Refund Policy

Decasix does not offer any money-back guarantee on all hosting plans.

15. Service Termination

Decasix reserves the right to suspend or terminate your hosting account if you breach the terms of this policy, including the Acceptable Use Policy, or if payments are not made under the payment terms.

15.1. Client-initiated Termination

Clients may terminate their accounts at any time through the Decasix customer portal or by contacting support. Upon termination, clients must ensure that all data is backed up, as Decasix will not retain data after account closure, except as required by law.

15.2. Decasix-initiated Termination

Decasix may suspend or terminate services for the following reasons:

Violation of this policy or terms of service.
Non-payment after repeated attempts to collect.
Failure to resolve technical issues or security concerns within a reasonable timeframe.
A breach of our Acceptable Use Policy.

Clients will be notified of termination or suspension in advance unless immediate action is required for security reasons.

15.3. Data Retention after Termination

Following termination, Decasix will retain client data for a period of 30 days. After this period, all data associated with the terminated account will be deleted. Clients are responsible for backing up their data before termination.

16. Intellectual Property Rights

Decasix respects the intellectual property rights of others and expects clients to do the same. This section outlines the ownership and usage rights of intellectual property.

16.1. Ownership of Content

Clients retain ownership of all content, files, and data uploaded to Decasix’s hosting services, including but not limited to WordPress content, images, databases, and code. Decasix does not claim ownership over client content, except as required for the performance of the services.

16.2. License to Use Services

By using Decasix’s services, clients grant Decasix a non-exclusive, worldwide, royalty-free license to access, store, and process content as necessary to provide hosting services. This license is limited to the duration of the client’s subscription.

16.3. Copyright and Trademark Infringement

Clients agree not to upload, store, or distribute content that infringes the intellectual property rights of third parties. Decasix may suspend or terminate services if we receive a valid notice of infringement.

16.4. Software Ownership

All software, tools, and technologies used by Decasix to provide hosting services (including server management software, control panels, and monitoring tools) are owned by Decasix or its licensors. Clients are granted a limited, non-exclusive license to use such software during the term of their subscription.

17. Indemnity

By using Decasix’s services, you agree to indemnify, defend, and hold harmless Decasix, its affiliates, directors, employees, agents, and subcontractors from any claim, loss, liability, or expense, including legal fees, arising from:

Your breach of this policy or the terms of service.
Any third-party claims related to content you upload or distribute.
Your use of Decasix’s services violates applicable laws, including data protection laws.

18. Liability Limitations

To the maximum extent permitted by law, Decasix’s liability under any circumstances will be limited to the amount paid by the client for the service during the preceding 12-month period. In no event will Decasix be liable for any indirect, incidental, special, or consequential damages, including but not limited to lost profits, business interruption, or loss of data.

Decasix is not responsible for:

Loss of data or failure to back up data.
Downtime or service disruptions caused by third-party services or external factors.
Failure to perform services due to force majeure events.

19. Force Majeure

Decasix will not be held responsible for failure to perform services if such failure is caused by circumstances beyond our reasonable control, including but not limited to:

Acts of God (e.g., natural disasters).
Wars, strikes, or civil disturbances.
Technical failures in telecommunications or power infrastructure.
Delays or failures caused by third-party vendors or partners.

In the event of a force majeure event, Decasix will notify clients as soon as possible and take all reasonable steps to mitigate the impact.

20. Client Obligations Regarding Data Protection, Security, and Compliance

As a client of Decasix, you are responsible for ensuring that your website and content comply with all applicable data protection and security laws. This section outlines your responsibilities in relation to data protection, website security, and compliance.

20.1. Data Protection Obligations

You agree to:

Comply with the GDPR (General Data Protection Regulation): If your website processes the personal data of EU citizens, you must ensure compliance with GDPR and implement appropriate measures to protect that data.
Obtain Consent for Data Collection: You must ensure that your website collects, processes, and stores personal data only with explicit consent from users, and you must provide users with clear information about how their data will be used.
Implement Data Security: You are responsible for securing any personal data that you collect from users, including encryption, access controls, and secure storage.

20.2. Security Measures

You agree to:

Secure Your WordPress Site: You are responsible for configuring your WordPress installation and plugins securely. This includes using strong passwords, enabling two-factor authentication (2FA), and keeping all software up to date.
Regular Backups: While Decasix offers daily backups, you are responsible for regularly downloading and storing backups of your website to avoid data loss.
Monitor for Vulnerabilities: You should regularly monitor your website for security vulnerabilities, and promptly address any discovered weaknesses.
No Unauthorized Access: You must ensure that only authorized individuals have access to your hosting account. You must promptly notify Decasix if you suspect that your account or any services have been compromised.

20.3. Compliance with Laws and Regulations

You agree to comply with all applicable laws and regulations governing your use of Decasix’s services, including:

Data Protection Laws: You must comply with local and international data protection laws, including the GDPR for EU clients or CCPA (California Consumer Privacy Act) for clients in California.
Content Regulations: Your website must comply with laws governing intellectual property, defamation, obscenity, and consumer protection.
E-Commerce Laws: If operating an e-commerce website, you must comply with laws regarding online sales, consumer rights, and taxation.

21. Responsibilities of Decasix

While Decasix provides the infrastructure and technical resources to host your website, we are not responsible for managing the content, security, or compliance of your site. Decasix’s obligations include:

Providing secure hosting services with regular monitoring, updates, and maintenance.
Offering technical support in the event of issues related to hosting or server infrastructure.
Ensuring compliance with data protection laws for the hosting environment and infrastructure.

However, Decasix is not responsible for ensuring that your website complies with applicable laws unless explicitly stated in our Data Processing Agreement (DPA).

22. Privacy and Data Processing

This section further clarifies the role of Decasix in processing client data and the obligations of both parties under data protection laws.

22.1. Client Data Ownership

Clients retain ownership of all personal and non-personal data uploaded to Decasix’s hosting services. Decasix acts as a data processor, processing data only according to the instructions provided by the client.

22.2. Subprocessors

Decasix may engage third-party subprocessors to provide hosting infrastructure, support, and related services. We ensure that subprocessors are contractually obligated to comply with data protection laws and to implement appropriate security measures.

22.3. Data Transfers

For clients in the EU or those processing EU data, Decasix ensures that any transfer of personal data to third countries outside the EU complies with GDPR requirements. We implement safeguards such as Standard Contractual Clauses (SCCs) to ensure the protection of personal data.

23. Communication and Notices

Effective communication is essential for a smooth business relationship. This section outlines how Decasix communicates with clients and how clients are expected to communicate with Decasix.

23.1. Communication Channels

Decasix uses the following channels for communication:

Email: All official notifications, updates, and billing information will be sent via email to the address provided in the client’s account. It is the client’s responsibility to ensure that the email address is correct and regularly monitored.
Customer Portal: Clients can log in to the Decasix customer portal for support requests, service management, and billing inquiries.
Phone Support: Emergency support and urgent issues can be addressed by contacting Decasix’s phone support.

23.2. Notices from Decasix

Decasix may send notifications regarding:

Service updates: Maintenance schedules, feature updates, or changes to terms and conditions.
Billing: Payment reminders, invoice receipts, or issues related to account billing.
Security: Alerts about potential security vulnerabilities or breaches affecting your hosting account.
Termination or Suspension: Notifications about account suspension or termination, if applicable.

All notices will be sent to the client’s registered email address.

23.3. Notices from Clients

Clients should send any notices or communication to Decasix using the contact details provided on the website or within the customer portal.

23.4. Language of Communication

All communications, including contractual notices, will be conducted in English unless otherwise agreed upon.

24. Amendments to This Policy

Decasix reserves the right to amend or update this WordPress Hosting Policy from time to time. Changes may be made to adapt to new legal requirements, improve service offerings, or reflect changes in business operations.

24.1. Notification of Changes

Clients will be notified of material changes to this policy through the email address provided in their account. We will also post updated versions of the policy on our website. Clients should regularly review the policy to stay informed of any modifications.

24.2. Client Consent

By continuing to use Decasix’s services after the changes to the policy, clients acknowledge and accept the updated terms. If a client does not agree to the changes, they must discontinue the use of the services and may request account termination.

25. Data Processing Agreement (DPA)

As part of our commitment to data protection and GDPR compliance, Decasix enters into Data Processing Agreements (DPAs) with clients who process the personal data of EU citizens.

25.1. Purpose of the DPA

The DPA outlines the terms under which Decasix processes personal data on behalf of the client. It covers security measures, data retention, data subject rights, and the responsibilities of both parties regarding the processing of personal data.

25.2. Roles and Responsibilities

Data Controller (Client): The client determines the purposes and means of processing personal data.
Data Processor (Decasix): Decasix processes personal data solely on behalf of the client and follows their instructions.

25.3. Data Protection Measures

Decasix implements appropriate technical and organizational measures to protect personal data, including encryption, access controls, and secure processing environments. We also require subprocessors to adhere to similar data protection standards.

25.4. Data Subject Rights

Decasix assists clients in complying with the rights of data subjects, including access, correction, deletion, and objection to processing. Clients are responsible for responding to data subject requests related to their website’s data processing activities.

25.5. Subprocessing

Decasix may use subprocessors to assist in providing hosting services. We ensure that subprocessors comply with data protection requirements and provide similar contractual guarantees.

26. Legal Compliance

Decasix is committed to compliance with applicable local, national, and international laws, including data protection laws like the GDPR, CCPA, and others, based on the client’s jurisdiction.

26.1. Compliance with GDPR

For clients processing the personal data of EU citizens, Decasix ensures that all hosting services comply with the General Data Protection Regulation (GDPR). This includes the implementation of data protection by design and by default, as well as ensuring appropriate safeguards for data transfer outside the EU.

26.2. Compliance with CCPA

For clients in California, Decasix complies with the California Consumer Privacy Act (CCPA), providing the necessary measures for consumers to exercise their rights to access, delete, or opt out of the sale of personal data.

26.3. Compliance with Other Laws

Clients who operate in other jurisdictions (e.g., Canada, Australia) must ensure compliance with relevant data protection and privacy laws specific to their country or region. Decasix will cooperate with clients to meet legal and regulatory obligations.

27. Final Provisions

This section outlines various miscellaneous terms that govern the overall relationship between Decasix and its clients.

27.1. Entire Agreement

This WordPress Hosting Policy, along with any associated agreements (e.g., Terms of Service, Data Processing Agreement, Service Level Agreement), constitutes the entire agreement between Decasix and the client concerning the services provided. It supersedes all prior agreements, communications, or understandings, whether written or oral.

27.2. Severability

If any provision of this policy is found to be invalid, illegal, or unenforceable under applicable law, the remaining provisions will remain in full force and effect. The invalid provision will be modified to the extent necessary to make it enforceable, or, if that is not possible, it will be removed.

27.3. Waivers

No waiver of any provision of this policy will be deemed a further or continuing waiver of such provision or any other provision, and Decasix’s failure to enforce any right or provision under this policy will not constitute a waiver of such right or provision.

27.4. Force Majeure (Final Clause)

As previously outlined, Decasix shall not be held liable for any failure or delay in the performance of its obligations under this policy due to any cause beyond its reasonable control, including but not limited to natural disasters, technical failures, or any other unforeseeable events that make performance impossible.

28. Contact Information

If you have any questions or concerns about this policy or our services, please feel free to contact Decasix customer support using the details below:

Email: [email protected]
Address: 123 Decasix Ave, Suite 456, City, State, ZIP

29. Acceptance of Terms

By using Decasix’s hosting services, clients acknowledge that they have read, understood, and agree to abide by this WordPress Hosting Policy, including any updates or amendments made to it. This agreement is effective upon activation of the client’s hosting account.