Privacy Policy
Last updated: June 1, 2025
1 Overview
RDPDatabase ("we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at rdpdatabase.com or use any of our services.
Please read this policy carefully. If you disagree with its terms, please discontinue use of our site and services.
Plain language summary: We collect only the information necessary to run your account and provide you with servers. We do not sell your data, log your traffic, or share your personal information with advertisers.
2 Information We Collect
Information You Provide Directly
When you create an account, place an order, or contact us, we may collect:
- Full name and email address
- Billing address and payment information (processed securely via third-party payment processors — we never store full card numbers)
- Username and password (stored as a salted hash)
- Support tickets, messages, and communications with our team
Information Collected Automatically
When you use our website, we automatically collect certain technical information, including:
- Browser type and version
- Browser type and version
- Pages visited and time spent on each page
- Referring website URLs
- Device type and operating system
Server Usage Data
For the purpose of capacity planning and billing, we collect aggregate server resource metrics (CPU usage, RAM usage, bandwidth consumed). We do not log, inspect, or store the content of your server sessions, traffic, or files.
3 How We Use Your Data
We use the information we collect to:
- Provision and manage your server(s) and account
- Process payments and send billing receipts
- Respond to support requests and communicate with you about your account
- Send service-critical emails (e.g., renewal notices, security alerts)
- Monitor for abuse, fraud, and violations of our Terms of Service
- Improve the performance and reliability of our infrastructure
- Comply with applicable laws and legal obligations
We will only send you marketing emails if you have explicitly opted in to receive them. You may unsubscribe at any time via the link in any marketing email.
4 Sharing of Information
We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following limited circumstances:
- Payment processors: Stripe, PayPal, and our cryptocurrency payment providers receive billing information necessary to complete transactions
- Infrastructure providers: Our datacenter partners may process data as part of service delivery, subject to strict data processing agreements
- Legal requirements: We may disclose information when required by law, court order, or governmental authority
- Business transfers: In the event of a merger, acquisition, or sale of assets, user data may be transferred as part of that transaction, with appropriate notice to you
We will never voluntarily hand over your information to law enforcement without a valid court order or legal compulsion under applicable jurisdiction.
5 Cookies
We use cookies and similar tracking technologies to maintain your session and improve your experience on our website. The cookies we use fall into these categories:
- Essential cookies: Required for the website to function. These include session cookies and authentication tokens. You cannot opt out of these.
- Analytics cookies: Help us understand how visitors interact with our site (e.g., which pages are visited most). We use anonymized, self-hosted analytics — no data is sent to Google Analytics or Facebook.
- Preference cookies: Remember your settings such as language and display preferences.
You may disable cookies in your browser settings, but this may affect site functionality. We do not use cookies for advertising or behavioral tracking.
6 Data Retention
We retain your personal data for as long as your account is active or as needed to provide you with services. Specifically:
- Account data is retained for the duration of your account plus 90 days after closure
- Billing records are retained for 7 years to comply with financial regulations
- Support communications are retained for 2 years
- Server logs (resource metrics only, not content) are retained for 30 days
You may request deletion of your personal data at any time by contacting us, subject to the legal retention requirements above.
7 Security
We implement industry-standard technical and organizational measures to protect your personal data, including:
- TLS 1.3 encryption for all data in transit
- AES-256 encryption for sensitive data at rest
- Bcrypt password hashing with per-user salts
- Role-based access control limiting employee access to customer data
- Regular third-party security audits
- Two-factor authentication available for all accounts
No method of transmission over the internet is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. In the event of a data breach affecting your personal information, we will notify you promptly in accordance with applicable law.
8 Your Rights
Depending on your jurisdiction, you may have the following rights regarding your personal data:
- Right of access: Request a copy of the personal data we hold about you
- Right to rectification: Request correction of inaccurate or incomplete data
- Right to erasure: Request deletion of your personal data ("right to be forgotten")
- Right to data portability: Request your data in a machine-readable format
- Right to object: Object to processing of your data for direct marketing
- Right to restrict processing: Request that we limit how we use your data
To exercise any of these rights, contact us at privacy@rdpdatabase.com. We will respond within 30 days.
9 Children's Privacy
Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from minors. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at privacy@rdpdatabase.com and we will delete such information from our systems.
10 Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. When we make material changes, we will:
- Update the "Last updated" date at the top of this page
- Send an email notification to all active account holders
- Display a prominent notice on our website for 30 days
Your continued use of our services after the effective date of any update constitutes your acceptance of the revised policy.
11 Contact Us
If you have questions, concerns, or requests related to this Privacy Policy or our handling of your personal data, please reach out:
RDPDatabase — Privacy Team
Email: privacy@rdpdatabase.com
Support portal: rdpdatabase.com/contact
Response time: Within 5 business days
