• Hosting Flash Sale: Starting at ₹ 99/mo
Client Area

Privacy Policy

Last updated: August 10, 2025

Privacy Policy

Privacy Policy for Martical.com
Last updated: August 10, 2025

This Privacy Policy explains how Martical.com (“Martical,” “we,” “us,” or “our”) collects, uses, discloses, and protects personal information when you visit our website, create an account, or use our services, including Shared Hosting, Cloud Hosting, Reseller Hosting, Email Hosting, Cloud VPS, Storage VPS, VDS, Dedicated Servers, Domain Names, and Website Security services. By using our services, you agree to this Policy.

  1. Who we are

  • Martical.com is the controller of personal data for our website and billing portal. For certain services where we process data on your behalf (e.g., hosting customer data), we act as a processor. See Section 10 and our Data Processing Addendum (DPA) for details.

  1. Information we collect

  • Account and contact data: name, company, address, email, phone, country, tax/VAT ID.

  • Billing and payment data: payment method, transaction IDs, partial card details or tokenized references via our payment processors; we do not store full card numbers.

  • Service configuration and usage: IP addresses, server names, domain names, DNS/WHOIS data, resource usage (CPU/RAM/disk/bandwidth), logs necessary to operate and secure the services.

  • Support communications: tickets, chat, emails, call recordings (if applicable), and diagnostics you share.

  • Identity verification and fraud prevention: government ID or other documents where required for high-risk orders, abuse investigations, or regulatory compliance.

  • Website data: device and browser information, cookies, analytics events, referral pages, and similar technologies. See Cookies below.

  • Abuse and security signals: spam complaints, blacklists, malware detections, intrusion alerts.

  1. How we use information

  • Provide and operate services: provisioning, authentication, billing, domain registration, DNS, support, backups, and maintenance.

  • Secure our platform: monitoring, DDoS mitigation, fraud prevention, abuse handling, vulnerability remediation.

  • Improve and develop: troubleshoot, analyze performance, test features, and enhance user experience.

  • Communicate: send service notices, invoices, renewal reminders, security alerts, and product updates. You can manage marketing preferences at any time.

  • Legal and compliance: tax and accounting, contracts, sanctions/export control screening, regulatory requests, and dispute resolution.

  1. Legal bases for processing (EEA/UK and similar jurisdictions)

  • Contract: processing necessary to provide the services you request.

  • Legitimate interests: securing our systems, preventing fraud/abuse, improving services, direct B2B marketing (where permitted), and ensuring network reliability. We balance these against your rights.

  • Consent: for optional cookies/analytics and certain marketing. You can withdraw consent at any time.

  • Legal obligation: tax, accounting, and regulatory requirements.

  1. Sharing and disclosure

    We do not sell personal information. We share data with:

  • Service providers/subprocessors: datacenters, network carriers, CDNs, DNS/SSL providers, domain registrars/registries, email/SMS providers, storage/backup vendors, monitoring and security partners, analytics tools, and payment processors. They process data per our instructions.

  • Payment and fraud partners: to process payments, prevent fraud, and manage chargebacks.

  • Domain registrars/registries and certificate authorities: to fulfill domain and SSL services; some publish limited registrant data per registry/ICANN rules.

  • Corporate transactions: in mergers, acquisitions, financing, or asset sales, subject to confidentiality.

  • Legal and safety: to comply with law, court orders, enforce agreements, or protect rights, security, and network integrity.

 
  1. International transfers

    Your data may be stored or processed in countries other than your own. Where required, we use appropriate safeguards such as Standard Contractual Clauses (SCCs) and enter DPAs with subprocessors. Details are in our DPA and Subprocessor List.

 
  1. Data retention

  • We retain account, billing, and service records for as long as your account is active and for a reasonable period thereafter for legal, tax, and audit purposes.

  • Technical logs and backups are kept for limited periods aligned with security and operational needs.

  • We retain abuse/security records as needed to protect our services and comply with law.

  • When retention ends, we delete or anonymize data.

  1. Your rights

    Depending on your location, you may have rights to:

  • Access, correct, or delete your personal data.

  • Object to or restrict processing, and withdraw consent where processing is based on consent.

  • Portability of certain data.

  • Opt out of marketing communications at any time.

  • For California residents: rights to know, delete, correct, and opt out of “sale”/“sharing” for cross‑context behavioral advertising; we do not sell personal information. A “Do Not Sell or Share My Personal Information” mechanism will be honored where applicable.
    To exercise rights, contact us via your client area or the contact details below. We may need to verify your identity and may deny requests where an exception applies.

  1. Cookies and tracking

  • We use required cookies for authentication, security, and shopping cart/checkout.

  • With consent (where required), we use analytics and performance cookies to understand usage and improve our site.

  • You can manage preferences via our cookie banner and your browser settings. Blocking cookies may affect site functionality.

  1. Roles and customer content

  • Customer as controller: For data you upload or collect via our hosting, you are the controller; we process it as your processor under the DPA. You are responsible for lawful collection and providing necessary notices/consents to your end users.

  • Our access to customer content is limited to what is necessary to provide support, maintain infrastructure, enforce our policies, or comply with law.

  1. Security

    We implement administrative, technical, and physical safeguards appropriate to the risk, including access controls, encryption in transit, network segmentation, logging/monitoring, and vulnerability management. No method of transmission or storage is 100% secure; you are responsible for securing your applications, credentials, and end-user access.

  2. Children’s privacy

    Our services are not directed to children, and we do not knowingly collect personal information from individuals under the age of 16 (or lower age as permitted by local law). Do not create an account for or allow use by minors without appropriate consent where required.

  3. Third-party links and integrations
    Our website and control panels may link to or integrate with third-party services. Their privacy practices are governed by their policies. Review those before enabling integrations.

  4. Communications preferences

  • Service and transactional emails are necessary for your account and cannot generally be opted out of.

  • Marketing: You can opt out via unsubscribe links or in the client portal. We do not send marketing to customers who have opted out.

  1. Changes to this Policy

    We may update this Privacy Policy from time to time. Material changes will be notified through the site or client area. Your continued use after changes take effect constitutes acceptance.

  2. Contact us

    If you have questions, requests, or complaints regarding privacy:

  • Submit a ticket via your Martical.com client area; or

  • Email: privacy@martical.com or support@martical.com
    If you are in the EEA/UK and require contact details for an EU/UK representative or DPO, let us know your target markets and we can provide/add those details.

Annex: California and GDPR summaries (high level)

  • Categories collected: identifiers (name, contact, IP), commercial info (orders, invoices), internet/network activity (logs, analytics), geolocation (coarse IP-based), professional info (company), inferences (limited, for fraud/abuse), sensitive data only if you provide it for verification.

  • Sources: directly from you, your devices, and our service providers/partners.

  • Purposes: as listed in Section 3.

  • Disclosures: to service providers/processors and as legally required; no sale of personal information.

  • Retention: as per Section 7.

  • Rights and requests: Sections 8 and 16. We will not discriminate for exercising your rights.