Privacy Policy

Your data, your trust. This policy explains exactly what we collect, why we collect it, who we share it with, and the rights you have over your personal information at ServerBD Technology.

01

Who We Are

The company behind this policy and what it covers.

ServerBD Technology ("we", "us", "our") is a hosting, domain and email-services company headquartered in Dhaka, Bangladesh, operating since 2012. We provide shared hosting, reseller, VPS, dedicated servers, domain registration, Google Workspace, Microsoft 365, Titan Mail, Business Email and related services to customers across Bangladesh and abroad.

This Privacy Policy applies to serverbd.net, cloudmailbd.com, our client portal at my.serverbd.net, and any service we provide. It describes how we collect, use, store, share and protect your information. By using any ServerBD Technology service, you agree to the practices described here.

We act as a data controller for the personal information you give us when signing up or using our services, and as a data processor for any data you store on our hosting infrastructure.

We sell to people, not faceless logos. If anything in this policy isn't clear, email [email protected] or call +880 1722-221145 and a real person will explain.

02

Information We Collect

What data we ask for, what's optional, and what gets logged automatically.

We only collect the minimum information needed to provide and bill our services. Broadly, the data falls into four buckets:

Account Information

Name, email address, phone number, company name, billing address, and country. Required to create an account and issue invoices.

Payment Information

Transaction IDs from bKash, Nagad, Rocket and bank transfers. We do not store full card numbers — card payments are processed by SSLCommerz / Stripe directly.

Service Data

Domain names, hosting plan choices, support tickets, configuration options, and any data you upload to your hosting account.

Technical & Usage Logs

IP address, browser type, pages visited, login timestamps, and server logs. Collected automatically and retained for security & debugging.

03

How We Use Your Data

The specific purposes — and only these purposes.

  • To provision and operate your hosting, domain, email or other purchased services.
  • To process payments and send invoices, receipts and renewal reminders.
  • To provide support when you contact us via email, ticket, WhatsApp, phone or live chat.
  • To send service notifications — outage alerts, maintenance windows, security advisories, expiry warnings.
  • To verify domain ownership with registries (ICANN, .com.bd, etc.) and Google Workspace / Microsoft 365 as required.
  • To detect and prevent fraud, abuse and security incidents on our servers and across our network.
  • To improve our services through anonymous analytics — never tied to your individual identity.
  • To comply with legal obligations in Bangladesh and any country where we offer services, including law-enforcement requests with valid legal authority.

We never sell your personal data to advertisers, marketers, data brokers or any third party. Ever.

04

Sharing & Disclosure

The limited circumstances under which third parties see your data.

  • Domain registries & ICANN: when you register a domain, we share the WHOIS information required by the registry. Privacy Protection (when enabled) hides this from public WHOIS lookups.
  • Payment processors: SSLCommerz, Stripe, bKash, Nagad and Rocket receive only the payment metadata they need to process the transaction.
  • Upstream service providers: Google (Workspace), Microsoft (365), Titan, and certain datacenter partners receive only the account-level information they require to provision the service.
  • Government and law enforcement: we will respond to lawfully issued requests under Bangladeshi law, but only what is specifically required and after verifying authenticity.
  • Service providers under contract: our email-delivery, monitoring and CDN partners are contractually bound to use your data only as we direct.
  • Business transfers: in the unlikely event of a merger or acquisition, your data would transfer to the new entity under the same terms as this policy.
05

Cookies & Tracking

What we set in your browser and what those cookies do.

  • Essential cookies: session and authentication cookies that keep you logged into the client portal and remember items in your cart. The site cannot function without these.
  • Preference cookies: remember your dark/light theme, language and currency choice.
  • Analytics cookies: aggregated, anonymous traffic statistics to understand which pages are popular and identify slow areas. We do not link analytics data to individual identities.
  • No third-party advertising cookies. We do not run ads, display retargeting pixels, or share data with ad networks.

Managing cookies

You can clear or block cookies in your browser settings at any time. Disabling essential cookies will prevent you from logging into the client portal, completing checkout, or saving preferences.

06

Data Retention

How long we keep things — and when we delete them.

  • Active accounts: we keep your account information for as long as your account is active.
  • Closed accounts: account profiles are retained for 3 years after closure to handle disputes, refunds, taxes and legal requirements, then deleted.
  • Hosting backups: daily backups are kept for up to 30 days, then rotated. Backups are not guaranteed — please maintain your own.
  • Server access logs: retained for 90 days for security and debugging, then rotated.
  • Payment records: retained for 7 years to comply with Bangladeshi tax and accounting regulations.
  • Support ticket history: retained for 2 years to maintain context across recurring issues.
07

Your Rights

What you can ask us to do with your data — and how to exercise those rights.

  • Access: request a copy of all personal data we hold about you.
  • Correction: ask us to fix any inaccurate or incomplete information.
  • Deletion: request deletion of your account and associated data, subject to legal retention obligations.
  • Restriction: ask us to limit how we use your data while a complaint is being investigated.
  • Portability: receive your data in a structured, machine-readable format that you can move to another provider.
  • Objection: object to specific uses of your data — for example, certain non-essential analytics.
  • Withdraw consent: where we rely on consent, you can withdraw it at any time without affecting prior processing.

How to exercise these rights: email [email protected] from the address registered to your account. We respond within 30 days at no charge for reasonable requests.

08

Security & Storage

How we protect your data and where it lives.

  • Encryption in transit: every connection to our website, client portal and email servers uses TLS 1.2 or higher.
  • Encryption at rest: passwords are stored using bcrypt; sensitive backups are encrypted with industry-standard algorithms.
  • Access control: only authorised ServerBD staff can access customer data, and access is logged and audited.
  • Network protection: firewalls, fail2ban, DDoS mitigation, malware scanning and brute-force protection are active 24/7.
  • Datacenters: primary infrastructure is located in Bangladesh; some upstream services (Google Workspace, Microsoft 365) host data in their respective global regions.
  • Incident response: if a security incident affects your data, we'll notify you and the relevant authorities within 72 hours as required by best practice.

While we use industry-standard safeguards, no system is 100% secure. Use a strong unique password, enable 2FA where available, and keep your local devices patched.

09

Children's Privacy

Our services aren't intended for minors.

Our services are intended for users aged 18 and over. We do not knowingly collect personal information from children. If you become aware that a child has provided us with personal information, please email [email protected] and we will delete it promptly.

10

Changes to This Policy

When we update this document and how you'll find out.

We may update this Privacy Policy from time to time to reflect changes in our services, technology, applicable laws or operational practices. The date at the top of this page (effective date) will always reflect the most recent revision.

For material changes — anything that meaningfully affects how we use your personal data — we will notify you by email at the address on your account at least 30 days before the change takes effect, giving you time to review and respond.

Continued use of our services after the effective date constitutes acceptance of the revised policy.

11

Contact Us

Reach a real person — not a chatbot.

For any privacy-related question, request, complaint or to exercise any of your data rights:

Email: [email protected]
Phone / WhatsApp: +880 1722-221145
Mailing address: ServerBD Technology, Dhaka, Bangladesh

We respond to privacy inquiries within 5 business days for general questions and 30 days for formal data-rights requests.

Have a question about your data?

Our Bangla & English-speaking team can walk you through any clause, request a data export or process a deletion — usually within minutes.

Contact Us

Need Help Right Now?

Our Bangladesh-based support team is online 24/7 via phone, WhatsApp, live chat and ticket system. We respond within minutes.

Call Now → Open Support Ticket
● Phone & WhatsApp ● Email Support ● Live Chat ● 24/7 Available
ServerBD Support Team