Privacy Policy

Last updated: 3/10/2026

This Privacy Policy describes how OrbitLab ("we", "us", or "our") collects, uses, and shares your personal information when you use our website, hosting, domain registration, application hosting, and payment services (together, the "Services").

1. Information We Collect

2. How We Use Your Information

We use the information we collect to:

• Provide, maintain, and improve our Services (hosting, domains, applications, dashboard)
• Register and renew domains, and maintain registrant data as required by registries
• Provision and operate your hosting and application services
• Process payments and prevent fraud
• Send you transactional messages (order confirmations, renewal reminders, invoices)
• Send technical notices and support messages, and respond to your requests
• Communicate with you about products, services, and offers (you can opt out of marketing)
• Monitor and analyze trends, usage, and activities to improve our Services
• Detect, prevent, and address abuse, security threats, and technical issues
• Comply with legal obligations and enforce our Terms of Service

3. Information Sharing

We do not sell your personal information. We may share your information in the following situations:

• Payment providers: To process payments (e.g. card or mobile money), we share necessary transaction and identity information with our payment partners. Their use of your data is governed by their own privacy policies.
• Domain registries and registrars: Domain registration requires us to provide registrant and contact data to the relevant registry and registrar (e.g. for .cd and other TLDs). This may be published in WHOIS or similar directories as required by policy.
• Hosting and infrastructure providers: To deliver hosting and application services, we may use third-party providers who process data on our behalf under strict confidentiality and security terms.
• Legal requirements: We may disclose information if required by law, court order, or valid legal process, or to protect our rights, your safety, or the safety of others.
• Business transfers: In connection with a merger, sale, or acquisition of all or part of our company, your information may be transferred as part of that transaction.
• With your consent: We may share information with your consent or at your direction.

4. Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These include access controls, encryption where appropriate, and secure handling of credentials. Payment card and mobile money details are processed by our payment providers and are not stored on our systems. Despite our efforts, no method of transmission over the Internet or electronic storage is 100% secure; we encourage you to use a strong password and to keep your account credentials confidential.

5. Your Rights

Depending on your location and applicable law, you may have rights regarding your personal information, such as:

• Access to the personal information we hold about you
• Correction of inaccurate or incomplete information
• Deletion of your information (subject to legal or contractual retention requirements)
• Restriction of processing in certain circumstances
• Data portability (receiving your data in a structured, commonly used format)
• Objection to processing, including for direct marketing
• Withdrawal of consent where processing is based on consent

To exercise these rights, contact us at the email below. You may also have the right to lodge a complaint with a supervisory authority in your country.

6. Cookies

We use cookies and similar technologies for essential functions (e.g. session and authentication, keeping you logged in, storing preferences) and to understand how our site is used. We do not use cookies for third-party advertising. You can control or delete cookies through your browser settings; disabling certain cookies may affect the functionality of our Services (for example, you may need to log in again).

7. Data Retention

We retain your personal information for as long as your account is active and as needed to provide our Services. After account closure or termination, we may retain data for a period necessary to comply with legal obligations (e.g. tax, accounting), resolve disputes, enforce our agreements, and protect against abuse or fraud. Domain registrant and registration data may be retained in accordance with registry and legal requirements. Log and usage data may be kept for a limited period for security and operational purposes.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence, including where our service providers or partners operate. We take steps to ensure that such transfers are subject to appropriate safeguards (e.g. contractual commitments, adequacy decisions, or other mechanisms recognized by applicable law) to protect your information.

9. Children's Privacy

Our services are not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will post the updated policy on this page and update the "Last updated" date. For material changes that affect how we use your personal information, we may also notify you by email or a prominent notice on our website. Your continued use of our Services after the changes take effect constitutes acceptance of the updated policy.

11. Contact Us

If you have any questions about this Privacy Policy or wish to exercise your rights, please contact us at:

Email: contact@orbitlab.dev