Who we are
The data controller is SC Delta Communications Network SRL, with registered office at Calea Văcărești 207, Sector 4, Bucharest, Romania, registered at the Trade Register under no. J40/…/…, VAT ID …, hereinafter referred to as "ServerHost", "we" or the "controller".
You can reach us at: contact@serverhost.ro.
What data we collect and why
We collect only the data strictly necessary to provide our services:
- Contact details (first name, last name, email address, phone number, company) — provided voluntarily via the contact form or within the contractual relationship. Purpose: communication, invoicing, technical support.
- Technical data (IP address, browser, operating system, pages visited, session duration) — collected automatically via server logs and cookies. Purpose: security, abuse prevention, service improvement.
- Billing data (name/company name, address, VAT/tax ID, bank details) — required for contract performance and legal accounting/tax obligations.
- Correspondence (emails, support messages) — retained to document the contractual relationship and resolve disputes.
Legal basis for processing
We process your data on the following legal grounds (pursuant to Art. 6 GDPR):
- Contract performance (Art. 6(1)(b)) — to provide the services you have purchased.
- Legal obligation (Art. 6(1)(c)) — to comply with accounting, tax and archiving requirements under Romanian law.
- Legitimate interest (Art. 6(1)(f)) — for infrastructure security, fraud prevention and service improvement.
- Consent (Art. 6(1)(a)) — for marketing communications, if you have explicitly opted in.
How long we keep your data
- Contractual and billing data — 10 years from contract termination, in accordance with Romanian tax legislation.
- Correspondence and support — 3 years from the last interaction.
- Server logs and technical data — maximum 90 days.
- Contact form data — 1 year from last communication, if no contract was concluded.
Upon expiry of the retention period, data is deleted or irreversibly anonymised.
Data transfers to third parties
We do not sell or rent your data. We may share it with:
- Accounting/legal service providers — strictly for legal obligations, under confidentiality agreements.
- Public authorities — upon explicit legal request (courts, tax authorities, police).
We do not transfer data outside the European Union. All our infrastructure is physically located in Romania. We do not use American cloud services (AWS, Azure, Google Cloud) to store client data, and therefore there is no exposure to US legislation (CLOUD Act).
Cookies
Our website uses a minimal number of cookies:
- Strictly necessary cookies — for site functionality (session, CSRF security). No consent required.
- Analytics cookies — if enabled, to understand how the site is used. Only activated with your consent.
We do not use advertising or third-party tracking cookies (Google Ads, Facebook Pixel, etc.).
You can control and delete cookies through your browser settings.
Your rights
Under GDPR, you have the following rights:
- Right of access — you may request a copy of the data we hold about you.
- Right to rectification — you may request correction of inaccurate or incomplete data.
- Right to erasure ("right to be forgotten") — you may request deletion of your data, subject to legal retention obligations.
- Right to restriction of processing — you may request temporary suspension of processing.
- Right to data portability — you may receive the data you provided in a structured, commonly used, machine-readable format.
- Right to object — you may object to processing based on legitimate interest or for direct marketing purposes.
- Right to withdraw consent — at any time, without affecting the lawfulness of prior processing.
To exercise any of these rights, send an email to contact@serverhost.ro. We respond within 30 days.
Data security
We take appropriate technical and organisational measures to protect your data:
- Encrypted communications via TLS/HTTPS across all services.
- Access to data restricted on a need-to-know basis.
- Own physical infrastructure located in Romania — no third-party cloud providers for client data.
- Regular, encrypted backups with controlled access.
- Continuous infrastructure monitoring for detection of unauthorised access attempts.
In the event of a security incident affecting your data, we will notify you in accordance with GDPR requirements (Art. 34) within 72 hours of becoming aware.
Contact and supervisory authority
For any questions or requests regarding your personal data, you can contact us:
- Email: contact@serverhost.ro
- Postal address: SC Delta Communications Network SRL, Calea Văcărești 207, Sector 4, Bucharest, Romania
If you believe your rights have been infringed, you have the right to lodge a complaint with the Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP):