🔒 Your Secrets are Safe

Privacy Policy.

We are in the business of hosting websites, not selling data. Here is exactly what we know about you, why we need to know it, and how we protect it.

The "Too Long; Didn't Read" Summary

  • 1. We don't sell data: Your personal info stays with us. We do not sell it to advertisers.
  • 2. ID Verification: We use Stripe to verify you are real. We do NOT store your ID photos.
  • 3. Locations: Our website is in England, our servers are in France. We follow GDPR strictly.
  • 4. You are in control: Want to see your data or delete it? Just email us.

1. Introduction

Welcome to FruityHost. We respect your privacy and are committed to protecting your personal data. This privacy policy will inform you as to how we look after your personal data when you visit our website (regardless of where you visit it from) and tell you about your privacy rights and how the law protects you.

We operate under the General Data Protection Regulation (GDPR) standards.

2. The Data Controller

For the purpose of the GDPR, the Data Controller responsible for your personal data is:

  • Owner: Hadrian Ek (operating as FruityHost)
  • Nature of Business: Zero-Profit / Hobby Project
  • Contact Email for Privacy:
  • Location: Sweden

3. The Data We Collect

We collect only the information necessary to provide you with a hosting account and ensure the security of our network. This includes:

  • Identity Data: First name, Last name.
  • Contact Data: Email address, physical address, country, postal code, and phone number.
  • Technical Data: Internet Protocol (IP) address, browser type and version, time zone setting, and operating system.
  • Usage Data: Information about how you use our website, products, and services (e.g., login logs).
  • Hosting Data: The files you upload to our servers. (Note: We do not support databases or email hosting).

4. The Sensitive Stuff (ID Verification)

To keep FruityHost free and safe from bots, spam, and fraud, we require Identity Verification. This is handled delicately:

⚠️ How we handle your ID Documents:

  • We use Stripe Identity, a world-class payment processor, to handle the verification.
  • We DO NOT see or store your ID photos: When you upload your ID, it goes directly to Stripe. Stripe processes it and sends us a simple "Pass" or "Fail" signal.
  • Because we do not store the documents, we cannot lose them. Your sensitive biometric data stays with Stripe.

5. How We Use Your Data

We will only use your personal data when the law allows us to. Most commonly, we use your personal data in the following circumstances:

  • To perform the contract: To create your account and give you access to the server.
  • For Security: To prevent DDoS attacks, fraud, and abuse (using IP logs).
  • To comply with a legal obligation: If Swedish, French, or British authorities require us to report illegal content.

6. Third-Party Processors (Who else helps?)

We don't build everything from scratch. We use trusted third-party providers to help run the service. We have Data Processing Agreements (DPA) or rely on standard contractual clauses with these providers:

7. Where is your Data Stored? (Geography)

Our infrastructure is split to provide the best performance and security:

  • User Registration Records: Hosted in England (UK) via Alpha Internet Limited. Since each account is set up manually, we do not have a public billing panel. Your registration details are stored securely in our internal systems.
  • The Hosting Servers (Your Website Files): Hosted in the OVH Data Center in France (EU). This stores your website files.

Both the UK and France adhere to strict GDPR standards.

8. Data Retention (How long we keep it)

We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for.

  • Active Accounts: We keep your data as long as you use the service.
  • Deleted/Terminated Accounts: If you delete your account (or get banned), your personal data is removed from our live database immediately. Backups may retain data for up to 30 days before being overwritten.
  • Legal/Security Logs: Server access logs (IP addresses) are retained for up to 12 months for security auditing and legal compliance.

9. Cookies

We use cookies solely for functionality. We do not use third-party tracking pixels or advertising cookies.

  • Session Cookies: To keep you logged in to the control panel.
  • Cloudflare Cookies: To identify trusted traffic and block bots.

10. Your Legal Rights (GDPR)

Under certain circumstances, you have rights under data protection laws in relation to your personal data:

  • Request Access: Ask for a copy of the data we hold about you.
  • Request Correction: Ask us to fix wrong data.
  • Request Erasure (Right to be Forgotten): Ask us to delete your data (this will result in your hosting account being closed).
  • Object to Processing: Tell us to stop using your data for specific things.
  • Request Transfer: Ask for a copy of your data in a machine-readable format.

To exercise any of these rights, simply email our Data Protection team at . We will respond within 30 days.

11. Data Security

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorized way. In addition, we limit access to your personal data to those team members who have a business need to know. They are subject to a duty of confidentiality.

Passwords: Your passwords are hashed and salted (encrypted) in our database. Even we cannot read them.

12. Contact Us

If you have any questions about this privacy policy or our privacy practices, please contact us:

Email:
Response Time: Within 30 days.

Last Updated: Friday, December 26, 2025