Skip to main content

Privacy Policy

About this policy: This Privacy Policy is provided by A+ Hosting Inc., a Nevada corporation, and applies to all services purchased through any of our three brand websites: APlusHosting.com, ServerPoint.com, and ColossusCloud.com. The terms below apply identically regardless of which brand website you signed up through. References to "we", "us", or "our" in this document mean A+ Hosting Inc.

1. Introduction

Your privacy is important to us. We collect only the information needed to provide our services, process payments, and keep your account secure.

This policy explains what information we collect, how we use it, and the rights you have. By using our services, you agree to this policy.

2. Information we collect

Account information. When you sign up, we collect your name, email address, and contact details. When you purchase a service, we also collect your billing address and payment information.

Identity verification. For orders flagged by our fraud screening, or to meet legal or compliance requirements, we may ask you to provide a government-issued ID, business registration documents, or proof of address.

Automatic information. When you use our website or services, we automatically collect technical data such as IP address, browser type, operating system, pages visited, and the date and time of access.

Device and usage information collected by our customer portal. When you sign in to our customer portal, once per login and after the portal has finished loading, our portal sends a small set of technical information about the device and browser you used to sign in to our own database via an internal API. No cookies are used to collect or transmit this information. The information is stored against your account so we can see, per user and per login, the environments our customers actually use.

What we collect each time you log in:

  • Screen resolution, browser window size, and display scaling (such as Retina)
  • Browser name and version
  • Operating system and version (such as Windows 11, macOS, iOS, or Android)
  • Device type (desktop, mobile, or tablet) and whether the device has a touchscreen
  • Approximate CPU core count and device memory, where the browser reports them
  • Language setting and time zone
  • Network connection type (such as 4G), where available
  • How long the customer portal took to load

Together with the request itself, our server also automatically records your IP address (and the country or region we derive from it), the browser's User-Agent string, your username, and the date and time of the login.

What we do not collect through this feature:

  • We do not use advertising or third-party tracking cookies for this. The information is not shared with advertising networks.
  • We do not use device fingerprinting techniques such as canvas or WebGL fingerprints.
  • We do not record keystrokes, page content, mouse movements, or session recordings.
  • We do not collect anything from your device beyond the technical attributes listed above.

Why we collect it:

  • Product decisions: to understand which browsers, operating systems, screen sizes, and devices our customers actually use, so we build and test for them.
  • Performance and reliability: to detect slow load times by region and device.
  • Security: to recognise unusual sign-in environments for account-safety purposes.

Who it is shared with. This information stays with A+ Hosting Inc. It is first-party only. It is stored only in our own database. It is not sold, not shared with advertising networks, and not shared with data brokers. If we ever engage a sub-processor to store or process this information, that sub-processor will be added to the sub-processors list described in our Data Processing Agreement.

Legal basis (GDPR). We rely on our legitimate interest in operating, securing, and improving the service the customer has signed up for. This information is necessary first-party analytics, gathered only after a customer signs in to a login-gated portal under our Terms of Service. It is not used for advertising. Because no cookies are involved and the collection is strictly first-party, a cookie-consent banner is not required, but the collection is disclosed here so that customers are fully informed.

How long we keep it. Raw per-login records are kept for at least thirty (30) days, after which they may be deleted or aggregated into non-personal statistics that do not identify any individual customer.

Communications. We keep records of support tickets, chats, and emails between you and our team. Calls and live chats may be monitored or recorded for quality, security, fraud prevention, and dispute resolution, where permitted by law.

Customer surveys. From time to time we may invite customers to participate in surveys. Participation is voluntary, and your individual responses are kept confidential. We use aggregated, non-personally-identifying survey results to improve our services, and may share aggregated results with third parties.

3. How we use your information

We use the information we collect to:

  • Provide, maintain, and improve our services
  • Process payments and send invoices
  • Send service notices, security alerts, and support replies
  • Respond to your questions and requests
  • Detect, investigate, and prevent fraud and abuse
  • Comply with our legal obligations

We rely on one or more of the following legal bases: performance of our contract with you, our legitimate business interests, your consent, or compliance with the law.

4. Domain registration

Domain registrations are subject to ICANN rules, which require registrant information to be published in the public WHOIS database. You can shield your personal information from public WHOIS queries by activating Premium WHOIS Privacy in your Client Portal.

5. Information sharing

5.1 Service providers and partners

We share information only with partners who help us operate our services, such as payment processors, domain registrars, fraud prevention providers, and infrastructure providers.

5.2 Aggregated information

We may generate non-identifying, aggregated data (such as the total number of customers in a region). This data does not identify you personally, and we may share it with partners or third parties.

5.3 Online shopping and orders

When you purchase products and services from us, you may be asked to provide contact information such as your name, address, email address, phone number, and credit/debit card information. If you complete an order for someone else, you may be asked to provide information about the recipient.

If you order products directly from us, we use the personal information you provide to process that order and as otherwise described in this Privacy Policy.

5.4 Legal requirements

We may disclose your information when required by law or when we believe in good faith that disclosure is necessary to:

  • Comply with a legal request, subpoena, court order, or applicable regulation
  • Protect our rights, property, or safety, or that of our customers or the public
  • Detect, prevent, or investigate fraud, abuse, or security incidents

We respond to lawful requests from competent authorities. We do not voluntarily provide information about your account except as described in this section or as required by law.

5.5 Sharing within A+ Hosting Inc.

A+ Hosting Inc. operates three brand websites: APlusHosting.com, ServerPoint.com, and ColossusCloud.com. Information you provide may be shared between these brands for account management, customer support, fraud prevention, billing, and providing services across our ecosystem. All three brands share the same Client Portal, infrastructure, support team, and data centers.

5.6 Business transfers

In the event of a merger, acquisition, financing, reorganization, bankruptcy, or sale of all or part of A+ Hosting Inc.'s assets, your information may be transferred to the acquiring entity or successor in interest. We will notify you of any such change in ownership or control of your personal information.

6. Cookies and tracking technologies

We use cookies and similar technologies on our website and Client Portal to enable functionality, analyze usage, and remember your preferences. For details on the categories of cookies, the third parties involved, and how to disable them, see our Cookie Policy, which forms part of this Privacy Policy.

7. Data security

We use appropriate technical and organizational measures to protect your information, including HTTPS for secure access, encryption in transit, access controls, and ongoing monitoring. No system is completely secure, and we cannot guarantee that our measures will prevent every unauthorized access attempt.

7.1 International data transfers

We are based in the United States, and your information may be transferred to and processed there or in other countries where we or our service providers operate. For transfers from the European Union or European Economic Area, see our Data Processing Addendum for the safeguards we apply.

8. Data retention

We keep your information for as long as needed to provide our services and to meet our legal, tax, and accounting obligations.

Your account stays open in the Client Portal even after you cancel individual services, so you can keep managing other services or sign up for new ones. Copies of your data may stay in our backup systems for a limited period.

9. Your rights and choices

Access and correction. You may access or update information provided during registration by logging into your Client Portal or contacting us through a support ticket.

Marketing communications. You may opt out of promotional communications by following the unsubscribe instructions in those messages or by contacting us. Even if you opt out, we may still send you non-promotional communications related to your account and services.

EU and EEA residents. If you are a resident of the European Union or European Economic Area, you have specific rights under the General Data Protection Regulation (EU) 2016/679. To exercise these rights, log into your Client Portal and submit a request through your account before any cancellation, so we can verify your identity from the active account. If your account has already been cancelled, requests must be submitted by support ticket and will be subject to an identity verification process before any data is released. When our customers use our infrastructure to process personal data of their own end users, we act as a data processor on behalf of those customers. Our role and safeguards in that capacity are described in our Data Processing Addendum.

Nevada residents. Under Nevada law (SB220), Nevada residents may direct a business that operates an internet website not to sell certain personal information about them. To submit an opt-out request or ask questions, please contact us through our Contact Us page.

Texas residents. If you are located in Texas, you have additional rights under the Texas Data Privacy and Security Act (TDPSA). See our Texas Privacy Rights Notice for more information.

10. Children's privacy

Our services are intended for businesses and adults. By signing up, you confirm that you are at least 18 years old. We do not knowingly collect personal information from individuals under 18, and we do not knowingly collect personal information from any individual under 13 as required by the Children's Online Privacy Protection Act (COPPA). If you believe a minor has provided us with personal data, please contact us and we will delete it. We are not obligated to act on unsupported third-party allegations or competitor complaints.

11. Public forums

Please remember that any information you may disclose in blogs or other public areas of our websites or the Internet (for example, our social media accounts) becomes public information. You should exercise caution when deciding to disclose personal information in these public areas.

12. Third-party websites

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of such websites. We encourage you to read the privacy policies of any third-party websites you visit.

13. Hosted websites

When customers use our infrastructure to host websites or applications that collect personal data from their own users, the customer acts as the data controller and is solely responsible for compliance with applicable privacy laws. This includes providing their own privacy policy, obtaining any required consents, and responding to data subject requests. We act only as the processor for that data, and any direct requests we receive will be forwarded to the relevant customer.

14. Changes to this policy

We may revise this policy from time to time. Material changes will be posted on our website with an updated "Last Updated" date. Your continued use of our services after any changes means you accept the updated policy.

15. Contact us

If you have any questions about this Privacy Policy, or want to know what information we hold about you, please contact us:

  • Via our Contact Us page
  • Support ticket: through your Client Portal
  • Mail: A+ Hosting Inc., 10620 S. Highlands Pkwy, Suite 110-491, Las Vegas, NV 89141

Last Updated: May 2026