Privacy Policy

1Introduction

ExoticNodes ("we", "our", "us") operates a Minecraft hosting service. We are committed to protecting your privacy and handling your personal data in a transparent and lawful way, in accordance with the General Data Protection Regulation (GDPR) and other applicable data protection laws.

2Who We Are

Service name: ExoticNodes
Type of service: Minecraft hosting
Based in: South Africa
Contact: [email protected]

Although we are based outside the EU, GDPR applies when we offer services to individuals in the EU.

3Personal Data We Collect

3.1 Information You Provide

• Email address and username
• Legal name and account credentials (stored securely and hashed)
• Support tickets and messages

3.2 Automatically Collected Data

• IP addresses
• Cookies (authentication, session, and analytics)
• Usage data and service logs

3.3 Payment Information

Payments are processed by third-party providers. We do not store full payment card details ourselves, but may receive payment confirmation details, transaction IDs, and billing name/email.

4How We Use Your Data

• To create and manage user accounts
• To provide and maintain hosting services
• To process payments and prevent fraud
• To provide customer support
• To communicate important service or account updates
• To monitor performance, security, and abuse
• To improve our website and services through analytics
• To comply with legal obligations

5Legal Basis for Processing (GDPR)

Under GDPR, we process personal data based on:

• Contractual necessity — to provide our hosting services
• Legal obligation — compliance with applicable laws
• Legitimate interests — security, fraud prevention, analytics
• Consent — where required (e.g. non-essential cookies)

6Cookies & Analytics

We use cookies for user authentication and sessions, security and abuse prevention, and analytics and service improvement. We use Google Analytics to collect anonymized usage statistics. You may control or disable cookies through your browser settings.

7Third-Party Services

We share limited data with trusted third parties only when necessary:

• Cloudflare — security, DDoS protection, content delivery
• Google Analytics — website usage analytics
• Discord — community interaction and optional support communication

These providers may process data outside your country of residence and use appropriate safeguards as required by GDPR.

8Data Retention

We retain personal data only for as long as necessary: account data while your account is active, support tickets for operational and legal purposes, and logs for security and performance monitoring. You may request deletion of your data where legally permitted.

9Data Security

We take reasonable technical and organizational measures to protect your data, including secure servers, access controls, encryption where applicable, and limited staff access. However, no method of transmission over the internet is 100% secure.

10Minors

Our services may be used by minors. If you are under the age required by your local laws to provide consent, you must have permission from a parent or legal guardian to use our services.

11Your GDPR Rights

If you are located in the EU/EEA, you have the right to:

• Access your personal data
• Correct inaccurate data
• Request deletion ("right to be forgotten")
• Restrict or object to processing
• Request data portability
• Withdraw consent at any time
• Lodge a complaint with a data protection authority

To exercise your rights, contact us at [email protected].

12International Data Transfers

Your data may be processed outside your country, including outside the EU. We ensure appropriate safeguards are in place when transferring data internationally.

13Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated "Last updated" date.

14Contact

If you have any questions about this Privacy Policy or your data, contact us at: [email protected]