Privacy Policy
We value your personal information and privacy. This policy explains how we collect, use, store, and protect your information. By using our services, you understand and agree to this policy. This policy and theTerms of Servicetogether form your agreement with us.
1. Who We Are & Scope
1.1 This policy applies to personal data processing activities related to information you provide to us through the Hashvps website, dashboard, and related features, or that we generate as a result of your use of our services. Hashvps provides cloud Mac computing services to global users, and this policy also applies to users in the EEA, UK, US, Southeast Asia, and other regions.
1.2 If a particular feature has a separate privacy notice or authorization prompt, thatseparate notice and your explicit consentwill take precedence in that context.
1.3 For EU and EEA users, this policy complies with the requirements of the GDPR. For California residents, our data processing practices comply with applicable CCPA provisions.
2. Information We Collect
2.1 Information you actively provide: such as email or phone number, password (encrypted), support ticket communications, and information required for orders and invoices.
2.2 Information generated through your use of the service: such as access logs, device model, browser type, approximate location (based on IP), activity records, and instance-relatedtechnical metadata(e.g., resource ID, status) used to maintain service and security.
2.3 Payment information: order amounts and payment status are processed jointly by us and payment providers;sensitive payment data such as full card numbersare generally collected directly by licensed payment providers, and we only receive necessary result notifications.
2.4 Please do not submitpasswords, private keys, or unmasked personal information of othersin tickets, chats, or public areas.
3. How We Use Information
3.1 We use information only within a lawful, legitimate, and necessary scope, for:
- Creating and maintaining accounts, completing purchases and activations, processing payments and invoices;
- Providing technical support and responding to tickets and customer service requests;
- Ensuring system and network security, preventing fraud and abuse, meeting compliance and regulatory requirements;
- Sending service notifications, security alerts, or product updates with consent or as permitted by law;
- Fulfilling our obligations under applicable laws in your region (including GDPR, CCPA, and other data protection regulations).
3.2 We will not use your personal information for purposesinconsistentwith the purposes stated in this policy, unless we re-obtain consent or are otherwise permitted by law.
4. Cookies & Similar Technologies
4.1 We may use cookies, local storage, or similar technologies to maintain login sessions, remember language preferences, analyze traffic, and improve user experience.
4.2 You can manage or delete cookies through your browser settings. If essential cookies are disabled, some features may not work properly.
5. Sharing, Transfer & Public Disclosure
5.1 Sharing: We may share the minimum necessary information with payment processors, cloud and SMS service providers, and analytics providers (de-identified) asdata processors, and we enter into agreements to bind their processing behavior.
5.2 Transfer: In cases of mergers, splits, or asset transfers involving personal data, we will require the new data holder to continue to be bound by this policy or to re-obtain your consent.
5.3 Public Disclosure: We do not publicly disclose personal data in principle. Exceptions may apply when required by law, litigation, or emergency situations.
6. Cross-border Transfers & Storage Locations
6.1 Hashvps is a global service, and your information may be stored in data centers operated by us or our authorized service providers located invarious regions worldwide (including but not limited to Asia-Pacific, North America, and Europe). When transferring personal data across borders, we take appropriate protective measures in accordance with applicable laws, including executing Standard Contractual Clauses (SCCs) or adopting other GDPR-compliant paths.
6.2 For EU/EEA users, we commit to providing a level of protection equivalent to GDPR requirements when transferring personal data to third countries.
6.3 Your chosen data center region may affect where data is actually processed. Seeplan detailsand order notes.
7. Retention Period
7.1 We retain information for as long as necessary to fulfill the purposes described in this policy, unless a longer retention period is required by law.
7.2 After the retention period, we will delete or anonymize the data, unless otherwise required by law.
8. Your Rights
Depending on applicable laws in your region, you may exercise some or all of the following rights regarding your personal information:
- Access and copy: learn what personal information we hold about you and obtain a copy;
- Rectification: request that we correct inaccurate information;
- Deletion: request deletion of your personal information when legally required conditions are met;
- Withdrawal of consent: withdraw consent-based processing at any time, without affecting the lawfulness of processing before withdrawal;
- Restriction or objection to processing(GDPR users): request restriction of processing or object in specific circumstances;
- Data portability(GDPR users): receive your personal data in a machine-readable format;
- Freedom from automated decision-making: not be subject to decisions based solely on automated processing;
- Complaint: lodge a complaint with the data protection authority in your region.
You may submit requests throughContact Usor the account and ticket entry points in the dashboard. We will respond within the timeframe required by applicable law (typically 30 days under GDPR).
9. Protection of Minors
Our services are primarily intended for users aged 18 or older (or the legal age of majority in your region). If you are a minor, please read this policy and obtain parental/guardian consent before using the service. For children under 13 in the US, we do not intentionally collect their personal information (COPPA compliant).
10. Information Security
We implement management and technical measures in line with international best practices (access control, TLS encryption, data-at-rest encryption, and regular security audits) to protect your information. In the event of a security incident, we will notify you and report to relevant authorities in accordance with applicable laws (including GDPR's 72-hour notification requirement).
11. Policy Updates
We may revise this policy and publish the updated version prominently on the website. For material changes, we may notify you via pop-ups or email. If you continue to use the service, you are deemed to accept the update.
12. Contact Us
If you have any questions, comments, or requests about this policy, please reach us throughContact Usor theHelp Center.