Privacy Policy

This Privacy Policy explains how we collect, use, and protect your personal data when you use our DCS server hosting services. We are committed to protecting your personal data in accordance with the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG).

For information about the data controller and contact details, please see our Legal Notice page.

Data Protection Contact: privacy@nimbuspulse.com

We process your personal data based on the following legal bases under Article 6 GDPR:

Contract Performance (Art. 6(1)(b) GDPR): Processing necessary for the performance of our hosting services contract with you, including account management, service delivery, and billing.

Legitimate Interests (Art. 6(1)(f) GDPR): For analytics, service improvement, and security measures. Our legitimate interest is to improve our services and ensure platform security.

Legal Obligation (Art. 6(1)(c) GDPR): Where required by German or EU law, such as tax record keeping or anti-money laundering requirements.

Consent (Art. 6(1)(a) GDPR): For analytics cookies and optional marketing communications (where you have opted in).

Account Information: When you create an account, we collect your name, email address, company name (if applicable), and billing address.

Usage Analytics: We use PostHog (a third-party analytics service) to collect analytics data about how you use our platform. This includes feature usage, performance metrics, and user interactions. PostHog is configured to collect only event-based data with your user ID, and no additional personal information. Legal basis: Legitimate interests (service improvement) and consent for cookies.

Payment Information: Payment details are processed by third-party payment processors and are not stored on our servers.

Technical Information: We may collect IP addresses, browser type, device information, and server logs for security and service improvement purposes.

Service Delivery: To provide, maintain, and improve our DCS server hosting services, including user authentication, server provisioning, and customer support.

Billing and Payments: To process payments, send invoices, and manage your account billing.

Analytics and Improvement: To understand how our services are used and to improve platform performance and features.

Communications: To send important service notifications, security alerts, and respond to your inquiries.

Legal Compliance: To comply with applicable laws, regulations, and legal processes.

We use minimal cookies and tracking technologies. Our primary use of cookies is through PostHog for analytics purposes. We do not use advertising cookies or third-party tracking cookies.

You can opt out of PostHog analytics by adding posthog_disable=1 to your browser's local storage, by contacting our support team, or by adjusting your browser settings to block cookies.

No Sale of Personal Data: We do not sell, rent, or trade your personal information to third parties.

Third-Party Processors: We may share information with trusted service providers who assist us in operating our platform, such as payment processors, cloud hosting providers, and analytics services (PostHog). All processors are bound by data processing agreements and GDPR compliance requirements.

Legal Requirements: We may disclose information when required by law, court order, or to protect our rights, property, or safety, or that of our users or others.

Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction.

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include encryption, access controls, secure data transmission, and regular security assessments.

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee absolute security.

Some of our service providers (such as PostHog) may be located outside the European Economic Area (EEA). When we transfer personal data outside the EEA, we ensure adequate protection through:

• EU Commission adequacy decisions for certain countries
• Standard Contractual Clauses (SCCs) approved by the EU Commission
• Other appropriate safeguards under GDPR Article 46

You can request information about the specific safeguards used for transfers by contacting privacy@nimbuspulse.com.

Under the GDPR, you have the following rights regarding your personal data:

To exercise these rights, contact us at privacy@nimbuspulse.com. We will respond within one month of receiving your request. You also have the right to lodge a complaint with your local data protection authority.

We retain your personal data only as long as necessary for the purposes outlined in this policy:

• Account data: For the duration of your account plus 3 years after termination for legal and business purposes
• Billing data: As required by German tax law (typically 10 years)
• Analytics data: Maximum 25 months
• Server logs: Maximum 7 days for security purposes

After these periods, personal data will be securely deleted or anonymized.

Our services are not intended for individuals under the age of 16. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal information from a child under 16, we will take steps to delete such information.

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new Privacy Policy on this page and updating the "Last updated" date. For significant changes, we may also notify you via email or through our platform.

If you have any questions about this Privacy Policy or our privacy practices, please contact us:

Email: privacy@nimbuspulse.com

General Support: support@nimbuspulse.com

Postal Address:
Timm Ortloff
Von-Borries-Straße 2
26127 Oldenburg
Germany