Privacy Policy
Effective: March 25, 2026 — Last updated: March 25, 2026
1. Who We Are
Pfcloud UG (haftungsbeschränkt) ("we", "us", "Provider") is the data controller for personal data processed through the 0x.cloud platform.
Hauzenberg, Germany — HRB 12249
2. What Data We Collect
| Data | Purpose | Required |
|---|---|---|
| Email address | Authentication, notifications | Yes |
| Password (hashed) | Authentication | Yes |
| Country | Tax calculation | Yes |
| Payment method details | Payment processing | For paid accounts |
What We Do NOT Collect
- Server content: We do not access, scan, or analyze data on your servers.
- Network traffic content: No deep packet inspection.
- Biometric data or data from third-party sources.
3. Legal Basis (GDPR)
| Processing Activity | Legal Basis |
|---|---|
| Account management | Contract performance (Art. 6(1)(b)) |
| Payment processing | Contract performance (Art. 6(1)(b)) |
| Security logs | Legitimate interest (Art. 6(1)(f)) |
| Tax records | Legal obligation (Art. 6(1)(c)) |
4. Data Sharing
We do NOT sell personal data, share with advertising networks, or provide data to data brokers. Law enforcement disclosure only with valid Dutch court order.
5. Data Retention
| Data Type | Retention Period |
|---|---|
| Account data | Account + 90 days |
| Server disk content | Overwritten within 24 hours |
| API/access logs | 90 days |
| Billing records | 7 years |
6. Data Security
- Encryption in transit: TLS 1.3
- Encryption at rest: AES-256
- Password storage: bcrypt
- SOC 2 Type II certified data centers
- 72-hour GDPR breach notification
7. Your Rights
Access, rectification, erasure, restriction, portability, objection. We respond within 30 days. Supervisory authority: Dutch DPA.
8. Cookies
Essential cookies only (session, CSRF, language, theme). No third-party cookies, tracking pixels, or social media trackers.
Contact
privacy@0x.cloud
Pfcloud UG (haftungsbeschränkt), Hauzenberg, Germany