Privacy Policy

1. Our Privacy Commitment

At AbollyHost, privacy is not a checkbox — it is a core part of our business philosophy. This Privacy Policy governs how Abolly Digital Solutions ("AbollyHost," "we," "us," or "our") collects, processes, and protects personal data in connection with the services available at abollyhost.com.

This policy complies with Nigeria's Nigeria Data Protection Act (NDPA) 2023 and, where applicable, aligns with the principles of the EU General Data Protection Regulation (GDPR) for customers in the European Economic Area.

2. Data We Collect

2.1 Account Registration Data

• Full name or company name;
• Email address;
• Phone number (optional);
• Billing address;
• Payment information (processed by our payment processor — we do not store raw card data).

2.2 Service-Related Technical Data

• IP address at time of account creation and login;
• Service configuration data (domain names, nameservers, server settings);
• Support ticket content and communication history;
• Server access logs (retained for 30 days for security and troubleshooting).

2.3 Website Usage Data

• Browser type and version;
• Referring URL;
• Pages visited and time spent;
• General geographic region (country/city level).

3. How We Use Your Data

• Service Delivery: To provision, manage, and maintain your hosting services;
• Billing & Invoicing: To process payments, issue invoices, and manage renewals;
• Customer Support: To respond to support requests, tickets, and inquiries;
• Security: To detect, investigate, and prevent fraud, abuse, and security threats;
• Legal Compliance: To comply with valid legal orders issued by courts of competent jurisdiction;
• Service Communications: To send essential service notifications (renewal reminders, maintenance alerts, policy updates).

We will send you marketing communications only if you have explicitly opted in. You may opt out at any time via the unsubscribe link in any such email.

4. Data Sharing & Disclosure

We may share your data only in the following limited circumstances:

Service Providers

Trusted third-party service providers who assist us in operating our business (e.g., payment processors, email delivery services, data centre operators). These parties are contractually bound to handle your data securely and only as instructed by us.

Legal Disclosure

We may disclose personal data to law enforcement or government bodies only when compelled by a valid court order issued by a jurisdiction with authority over our business or servers, required to prevent imminent harm to life or safety, or required to respond to CSAM reports to authorised child protection authorities. We will notify you of any such legal demand unless legally prohibited.

Business Transfers

In the event of a merger, acquisition, or sale of all or part of our business, your data may be transferred to the new entity, subject to the same privacy protections described in this policy.

5. Data Retention

• Active account data: Retained for the lifetime of your account plus 90 days after closure;
• Billing records: Retained for 7 years in compliance with Nigerian financial regulations;
• Server access logs: Retained for 30 days, then automatically purged;
• Support tickets: Retained for 2 years after last activity;
• Marketing consent records: Retained until opt-out plus 1 year for compliance evidence.

6. Data Security

• TLS/SSL encryption for all data in transit between your browser and our systems;
• Encrypted storage for sensitive account data;
• Access controls limiting personal data access to authorised personnel only;
• Regular security audits and vulnerability assessments of our systems;
• Two-factor authentication available for all client portal accounts.

In the event of a personal data breach likely to result in high risk to your rights, we will notify you within 72 hours of becoming aware of the breach.

7. Cookies & Tracking Technologies

• Essential Cookies: Required for the website and client portal to function. Cannot be disabled;
• Analytical Cookies: Help us understand how visitors use our site (e.g., Google Analytics with IP anonymisation). Can be opted out;
• Preference Cookies: Remember your language and display preferences.

We do not use third-party advertising cookies or tracking pixels for retargeting purposes.

8. Your Privacy Rights

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days.

9. Children's Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have inadvertently collected data from a minor, we will delete that information immediately. Contact [email protected] if you believe we have collected data from a child.

10. International Data Transfers

Given our nature as an offshore hosting provider with servers in multiple jurisdictions, your data may be processed and stored outside Nigeria. In such cases, we ensure appropriate safeguards are in place, including contractual data processing agreements with all sub-processors and use of standard contractual clauses where required.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes via email to your registered address at least 7 days before the changes take effect. Your continued use of our services following notification constitutes your acceptance of the revised policy.

12. Contact & Data Protection

• Privacy Email: [email protected]
• General Contact: [email protected]
• Company: Abolly Digital Solutions, 11 Road 3, Kobaope Area, Iwo, Osun State, Nigeria

If you are unsatisfied with our response to a privacy complaint, you have the right to lodge a complaint with the Nigeria Data Protection Commission (NDPC) at ndpc.gov.ng.