Privacy Policy
Last updated: 1 July 2026
AMATETA Technology & Graphics CC ("AMATETA", "we") respects your privacy. This policy explains what personal information we collect when you use AMATETA Hosting, why we collect it, and the choices you have.
1. Information we collect
- Account details: name, email, phone, company, physical address, country — required to provide services and issue VAT-compliant invoices.
- Billing records: invoices, payments and gateway transaction references. We do not store full card numbers — card payments are processed by PCI-compliant gateways (Stripe, DPO, PayToday, PayPal).
- Technical data: IP addresses, login timestamps, browser user-agent, and activity logs — kept for security, fraud prevention and audit purposes.
- Support content: tickets, attachments and emails you send us.
2. How we use it
- To provide, bill and support the services you order.
- To register domains — the relevant registries receive the registrant contact details required by their policies, which may appear in WHOIS unless privacy is enabled.
- To send service emails: invoices, renewal reminders, suspension notices, security alerts. These are essential and cannot be opted out of while you hold active services.
- To prevent abuse, secure our network, and comply with legal obligations.
We do not sell or rent your personal information to anyone.
3. Sharing
We share data only with: domain registries and registrars (to register your domains), payment gateways (to process your payments), our datacentre and infrastructure partners (to operate servers), and authorities where Namibian law compels disclosure.
4. Cookies
We use strictly-necessary cookies: a session cookie for login and cart, an optional remember-me cookie you choose at login, and a 30-day referral cookie when you arrive through an affiliate link. We do not run third-party advertising trackers.
5. Retention
- Account and billing records: kept while your account is active, and thereafter as required by Namibian tax law (currently 5 years for financial records).
- Server logs and security logs: rotated within 12 months.
- Terminated hosting data: deleted from production and backup cycles within 90 days of termination.
6. Security
Passwords are hashed with bcrypt and never stored in plain text. API credentials and EPP codes are encrypted at rest. Access to production systems is limited to authorised staff on audited accounts, with two-factor authentication. Despite best efforts, no system is perfectly secure — notify us immediately at hosting@amateta.com if you suspect a breach of your account.
7. Your rights
You may access and correct your details at any time from your client area. You may request a copy or deletion of your personal information by emailing us; we will comply except where retention is legally required. You can enable two-factor authentication and review active sessions under Client Area → Security.
8. Children
Our services are not directed at children under 18; we do not knowingly collect their data without guardian consent.
9. Changes
We will post updates to this policy here and email registered clients before material changes take effect.
Contact: AMATETA Technology & Graphics CC, Bismark Street 36, Windhoek West, Windhoek, Namibia · hosting@amateta.com