yaan Logoyaan
Get started

Privacy Policy

Last updated on the 24th January 2026

If you're an end user visiting a site protected by yaan, see End User Privacy instead.
For privacy questions or to exercise your rights contact us here

Introduction

This Privacy Policy explains how Zenith Hosting KLG ("Company," "we," "us," or "our") collects, uses, shares, and protects your personal data when you use our services ("Services").

This document sets out the purposes of processing, our legal obligations, and your rights under the Swiss Federal Act on Data Protection (FADP) and the EU General Data Protection Regulation (GDPR).

By using our Services, you acknowledge that you have read and understood this Privacy Policy.

What Data We Collect

Directly from you:

  • Your email address (shared with our email provider Brevo upon account signup)
  • Messages and support requests

Automatically collected:

  • IP address, browser and OS details
  • Last login and activity times
  • Approximate location (from IP)
  • Payment info (via Stripe)
  • Generated IDs (cookies, user IDs)

How We Use Your Data

PurposeData Used
Account setup and managementIdentity, technical data
Providing our servicesIdentity, usage, technical
Processing paymentsIdentity, payment info
Customer supportIdentity, communications
Website improvement/analyticsUsage, technical data
Security and fraud preventionUsage, technical data

Sharing Your Data

View our complete subprocessor list

Data Retention

Data TypeRetention Period
Account dataAs long as your account is active
Payment data10 years (legal compliance)
Support dataAs long as necessary
Auth cookies7 days
Why 10 years for payment data? Payment processing is handled by Stripe. We retain payment data for 10 years to meet Swiss legal obligations under Swiss Code of Obligations Art. 958f.

When you delete your account, associated data is erased unless we're legally required to retain it (e.g., payment records). In some cases, basic identifiers may be kept for up to 10 years if required for legal, tax, or contractual purposes.

Your Rights

Under GDPR, you have the following rights:

  • Access: Ask what data we hold and receive a copy
  • Correction: Fix incorrect or incomplete data
  • Deletion: Request deletion ("right to be forgotten")
  • Restriction: Limit or object to how we use your data
  • Portability: Get your data in a readable format
  • Withdraw Consent: Anytime for analytics/cookies/marketing

Cookies & Tracking

Essential (required for the site to function):

  • Login/session cookies (expire after 7 days)
  • Bunny security cookies

Functional (enhance your experience):

  • Brevo Live Chat (support chats, up to 1 year)

Third-Party (external services):

  • Stripe (payment processing)

On your first visit, you'll see a cookie banner to accept or reject non-essential cookies.

Data Security

We use industry-standard safeguards to protect your data:

  • Encryption: HTTPS encryption for all data in transit
  • Access Controls: Strict access controls
  • Data Minimization: We only collect what's strictly necessary

Data Breach Response

If there's a data breach risking your rights, we'll notify both you and the Swiss Federal Data Protection and Information Commissioner (FDPIC) within 72 hours.

Privacy by Design

We follow privacy by design principles:

  • Collect only what's needed
  • Limit data use to stated purposes
  • Update and delete data as required
  • Regular privacy impact assessments

Children's Privacy

Children under 13 need parental consent to use our services.

If you're under 13, please get permission from a parent or guardian first.

If you believe we have data from a child under 13 without consent, contact us immediately so we can delete it.

Policy Updates

This policy is subject to change without prior notice.