Privacy Policy

1. Who we are

Host Luma UK provides managed WordPress hosting services. This Privacy Policy explains how we handle personal data when you use our websites, client area, billing systems, support, and hosting services.

2. What data we collect

We may collect and process the following categories of data:

• Account information: name, email address, phone number, billing address, company name (if provided).
• Client area and support: support tickets, messages, and service-related requests.
• Billing and payments: invoices, payment status, transaction references, and tax-related records where applicable.
• Technical and usage data: IP address, access logs, timestamps, device and browser information, and diagnostics.
• Service data: domain and hosting metadata, service identifiers, and configuration required to provide the service.

3. How we use data

We use personal data to:

• Provide, operate, and support the services (provisioning, troubleshooting, customer support).
• Manage billing, payments, fraud prevention, and account security.
• Send service communications such as invoices, renewal notices, security notices, and maintenance updates.
• Maintain platform integrity, detect abuse, and monitor performance and reliability.
• Comply with legal and regulatory obligations.

4. Legal bases for processing

We process personal data under one or more of the following legal bases:

• Contract: to provide the services you purchase.
• Legitimate interests: to operate, secure, and improve our platform and prevent abuse and fraud.
• Legal obligation: to comply with applicable laws, including accounting and tax requirements.
• Consent: where we specifically ask you, such as for certain optional marketing communications.

5. Hosting content, logs, and security monitoring

Websites hosted on our platform may generate server logs for operational and security purposes. Logs can include IP addresses, request metadata, and timestamps. We use this data to maintain stability, prevent abuse, and troubleshoot issues.

6. Sharing data and service providers

We may share data with trusted third parties where required to deliver services, such as payment processors, infrastructure providers, email delivery systems, backup providers, and CDN providers. We only share data that is necessary for the relevant service or security function.

7. International transfers

Some service providers may process data outside the UK. Where this occurs, we take reasonable steps to ensure appropriate safeguards are in place.

8. Data retention

We retain personal data only as long as necessary for the purposes described in this policy, including legal, accounting, and security requirements. Backup copies may exist for limited periods depending on backup retention and operational needs.

9. Your rights

Depending on your circumstances, you may have rights to access, correct, erase, restrict processing, object, and data portability. You may also have the right to lodge a complaint with the UK Information Commissioner Office.

10. Security

We use reasonable technical and organisational measures to protect data. However, no method of transmission or storage is completely secure. You are responsible for protecting your account credentials and keeping your own website secure.

11. Cookies

Our websites and client area may use cookies for essential functionality, security, and performance. Where required, you can control cookies through your browser settings.

12. Contact

For privacy-related requests, contact us via the Host Luma UK client area or support channels.