Privacy Policy

1. Introduction

Kinsta ("we," "us," "our," or "Company") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our web hosting service and website.

2. Information We Collect

Information You Provide Directly

• Account Information: Name, email address, company name, and billing address
• Payment Information: Credit card details (processed securely through Stripe)
• Website Content: Files, databases, and content hosted on your website
• Support Communications: Messages, tickets, and communications with our support team

Information Collected Automatically

• IP addresses (for security and access logs)
• Browser and device information
• Website performance metrics and analytics
• Server access logs (for 30 days)
• Security and DDoS protection logs

3. Data We Protect

We take your data security seriously:

• Your Website Files: Protected with encryption and multiple backups
• Database Data: Encrypted at rest and in transit
• Customer Data: Stored securely with restricted access
• No Unauthorized Access: We never access your website content without permission
• GDPR Compliant: We comply with all data protection regulations

4. How We Use Your Information

We use information for the following purposes:

• Providing and maintaining hosting services
• Processing payments and managing accounts
• Sending service updates and security notifications
• Customer support and technical assistance
• Security monitoring and DDoS protection
• Improving service quality and infrastructure
• Complying with legal obligations

5. Data Security

We implement enterprise-grade security measures:

• SSL/TLS Encryption: All data in transit is encrypted
• AES-256 Encryption: Data at rest is encrypted with military-grade encryption
• Firewalls & DDoS Protection: Multi-layer security infrastructure
• Regular Backups: Daily automated backups with multiple redundancy
• SOC 2 Type II Certified: Third-party audited security standards
• Restricted Access: Only authorized personnel can access your data

6. Data Retention

We retain your data for the following periods:

• Account data is retained while your account is active
• Backups are retained for 30 days (configurable)
• Payment records are retained for accounting (7 years)
• Server access logs are retained for 30 days
• Support tickets are retained for 1 year
• After account deletion, data is securely wiped within 30 days

7. Third-Party Sharing

We DO NOT sell your personal data. We only share information with:

• Payment Processors: Stripe (PCI DSS compliant)
• Infrastructure Providers: Google Cloud Platform (covered by DPA)
• Legal Requirements: Law enforcement with valid legal process
• Service Providers: Only vendors necessary to operate our service

8. Cookies and Tracking

We use cookies for legitimate purposes:

• Essential Cookies: Authentication and session management
• Analytics Cookies: Anonymous usage statistics to improve service
• No Third-Party Tracking: We do not sell tracking data
• No Retargeting Ads: We respect your privacy across the web

9. Your Rights

You have the right to:

• Access your personal data
• Correct inaccurate information
• Delete your account and associated data
• Request a data portability report
• Object to data processing
• Withdraw consent at any time

10. International Data Transfers

Kinsta uses Google Cloud Platform with data centers worldwide. We have Data Processing Agreements in place to ensure your data is protected under the same standards regardless of location.

11. Children's Privacy

Kinsta is designed for business use and is not intended for users under 18. If we become aware of data collection from minors, we will delete it immediately.

12. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or on our website. Your continued use of Kinsta constitutes acceptance of updated policies.

13. Contact Us

If you have questions about this Privacy Policy or our privacy practices:

• Email: support@kinsta.com
• Support: support.kinsta.com
• Dashboard: Available 24/7
• Response Time: We respond to privacy inquiries within 10 business days

14. Jurisdiction and Compliance

This Privacy Policy is governed by applicable laws. Kinsta complies with:

• General Data Protection Regulation (GDPR)
• California Consumer Privacy Act (CCPA)
• SOC 2 Type II Standards
• International data protection best practices

Your website and data are safe with Kinsta. We're committed to protecting your privacy and security.