Privacy Policy

1. Who We Are

EaglerNodes is the data controller responsible for your personal data. We are based in England and Wales and operate under the domain eagler.cc.

Contact us at privacy@eagler.cc or via our Discord server for any data protection queries.

2. What Data We Collect

Account Information

• Name and username
• Email address
• Password (stored in hashed, encrypted form - never in plain text)
• IP address at time of registration and subsequent logins
• Discord user ID (if you link your Discord account)

Billing Information

• Transaction records and payment history
• Billing address
• Payment method details (processed and stored by our third-party payment providers; we do not store raw card data)

Technical Data

• Server logs including IP addresses and timestamps
• Browser type and operating system
• Pages visited and actions taken on our website
• Service usage data and resource consumption metrics

Communications

• Support tickets and messages you send to us
• Email correspondence

3. How We Use Your Data

• Contractual necessity (Article 6(1)(b)): To create and manage your account, provision and deliver hosting services, and process billing and payments.
• Legal obligation (Article 6(1)(c)): To comply with applicable UK laws, including tax obligations, fraud prevention, and responding to lawful requests from competent authorities.
• Legitimate interests (Article 6(1)(f)): To maintain the security and integrity of our infrastructure, detect and prevent abuse, improve our services, and communicate service-related updates.
• Consent (Article 6(1)(a)): For any marketing communications, where you have explicitly opted in. You may withdraw consent at any time.

4. Data Retention

• Account data is retained for the duration of your account and for up to 90 days following closure, unless a longer retention period is required by law.
• Billing records are retained for a minimum of 6 years in accordance with HMRC requirements under the Taxes Management Act 1970.
• Server logs are retained for up to 30 days for security and abuse prevention purposes.
• Support communications are retained for up to 2 years.

5. Sharing of Personal Data

We do not sell your personal data. We may share your data with:

• Payment processors (e.g., Stripe, PayPal) to process transactions securely.
• Infrastructure providers who provide the underlying server and network infrastructure.
• Law enforcement or regulatory authorities where required by law, including under the Investigatory Powers Act 2016 or pursuant to a valid court order.

All third-party processors are contractually required to handle your data securely and in accordance with UK GDPR.

6. International Data Transfers

Our primary infrastructure is based within the United Kingdom. Where any third-party service providers process your data outside the UK, we ensure appropriate safeguards are in place in accordance with UK GDPR, such as the UK International Data Transfer Agreement or equivalent mechanisms.

7. Your Rights Under UK GDPR

• Right of access (Article 15): Request a copy of the personal data we hold about you.
• Right to rectification (Article 16): Request that inaccurate or incomplete data is corrected.
• Right to erasure (Article 17): Request deletion of your personal data where it is no longer necessary, subject to our legal retention obligations.
• Right to restriction of processing (Article 18): Request that we restrict processing of your data in certain circumstances.
• Right to data portability (Article 20): Request a copy of your data in a structured, machine-readable format.
• Right to object (Article 21): Object to processing based on legitimate interests or for direct marketing purposes.
• Rights related to automated decision-making (Article 22): We do not make decisions about you based solely on automated processing.

To exercise any of these rights, contact us at privacy@eagler.cc. We will respond within 30 days as required by UK GDPR.

8. Cookies and Tracking

Our website uses essential cookies only, such as session management cookies. We do not use third-party advertising or tracking cookies. Where we use non-essential cookies, we will seek your consent in accordance with the Privacy and Electronic Communications Regulations 2003 (PECR).

9. Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These include encrypted data storage, HTTPS transmission, access controls, and regular security reviews.

In the event of a personal data breach likely to result in a risk to your rights and freedoms, we will notify the Information Commissioner's Office (ICO) within 72 hours and inform affected individuals without undue delay, per Articles 33 and 34 of UK GDPR.

10. Children's Privacy

Our services are not directed at children under the age of 13. We do not knowingly collect personal data from children under 13. If we become aware that we have inadvertently collected such data, we will delete it promptly. Users aged 13 to 17 must have parental or guardian consent.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be noted by revising the "Last updated" date above. We encourage you to review this policy periodically.

12. Right to Complain

You have the right to lodge a complaint with the Information Commissioner's Office (ICO):

• Website: ico.org.uk
• Helpline: 0303 123 1113

We would appreciate the opportunity to address your concerns first - please contact us before approaching the ICO.

13. Contact Us

• Privacy: privacy@eagler.cc
• Legal: legal@eagler.cc
• Abuse: abuse@eagler.cc
• Support: support@eagler.cc
• Discord: discord.gg/pe7qYjnZN6