← Legal documents

Privacy Policy

Last updated: 2026-05-09

1. Summary

At QuantumVPS we respect your privacy. This policy explains what personal data we collect, why, who we share it with and what rights you have over it. It applies to all services provided through quantumvps.tech.

2. Data we collect

Account data

  • Name and email (when you sign up).
  • Password (stored hashed, never in cleartext).
  • Preferred language and timezone.

Billing data

  • Transaction history and payment IDs provided by Stripe / Mercado Pago / PayPal. We never store card numbers — that data is handled directly by the processor.
  • Tax information you provide (VAT, EIN, address).

Technical data

  • IP address from which you access the panel, browser user-agent, connection time.
  • Audit logs of actions performed in the panel.
  • Server metrics (CPU, RAM, network) — required so you see graphs in the panel.

3. How we use it

  • To provide the Service you subscribed to.
  • To collect payments and issue receipts.
  • To send you transactional emails (welcome, invoice, support).
  • To detect and prevent abuse, fraud or unauthorized access to your account.
  • To comply with binding legal obligations.

We do not use your data for advertising and we do not sell it to third parties.

4. Third parties with access

We share the minimum necessary with the following providers:

  • Payment processors (Stripe, Mercado Pago, PayPal): your name, email and amount to charge. Card information never passes through our servers.
  • Resend (transactional email): your email and the content of messages we send you.
  • Hetzner (infrastructure provider): the contents of your virtual machines reside in their datacenters (Germany).

5. Cookies and similar

We use strictly necessary cookies to keep your session signed in (Better-Auth session_token). We do not use tracking or advertising cookies.

6. Your rights (GDPR)

If you reside in the European Union or the UK, you have the right to:

  • Access a copy of your personal data.
  • Rectify incorrect data (you can do this from the panel).
  • Erase your account and all associated data (the "Delete account" function in the panel).
  • Port your data to another provider.
  • Object to processing based on legitimate interest.

To exercise these rights, contact us at privacy@quantumvps.tech.

7. Retention

  • Account and billing data: while you have an active account plus the legal retention period for receipts (typically 5–10 years depending on jurisdiction).
  • Audit logs: 24 months.
  • Technical logs: 30 days.
  • Backups: automatic rotation (typically 7–30 days).

8. Security

  • Connections encrypted with TLS 1.3.
  • Passwords hashed with scrypt.
  • Secrets configured from the panel encrypted with AES-256-GCM.
  • Two-factor authentication (2FA) available for your account.
  • Internal access on a least-privilege basis.

If you discover a vulnerability, please report it to security@quantumvps.tech.

9. Minors

The Service is not directed to children under 13. We do not intentionally collect data from minors. If you discover a minor has provided us with data, contact us to have it removed.

10. International transfers

Your data may be processed in countries other than your own, primarily in the European Union. We apply standard contractual clauses and other legal mechanisms to ensure an adequate level of protection.

11. Changes to this policy

If we materially change this policy, we'll notify you by email at least 30 days in advance.

12. Contact / DPO

For any privacy question or to exercise your rights: privacy@quantumvps.tech.