1. Introduction and Data Controller

This Privacy Policy describes how we collect, use, and protect your personal information when you use our Domain/IP Lookup and takedown services. We are committed to protecting your privacy and complying with applicable data protection laws, including the Swiss Federal Data Protection Act (FADP), the EU General Data Protection Regulation (GDPR), and other relevant privacy regulations.

2. Information We Collect

2.1 Personal Information

We may collect the following types of personal information:

• Contact information (name, email address, phone number)
• Account credentials (username, encrypted passwords)
• Payment information (processed through secure third-party providers)
• Communication records (support tickets, correspondence)
• Professional information (company name, job title, business address)

2.2 Technical Information

• IP addresses and domain information you submit for lookup
• Device information (browser type, operating system)
• Usage data (pages visited, features used, time spent)
• Log files and system activity
• Cookies and similar tracking technologies

2.3 Takedown Service Data

• Content reported for takedown requests
• Evidence and documentation provided
• Legal basis for takedown requests
• Communication with hosting providers and platforms

3. Legal Basis for Processing

We process your personal data based on the following legal grounds:

• Contract Performance: To provide our services and fulfill our contractual obligations
• Legitimate Interest: To improve our services, prevent fraud, and ensure security
• Legal Obligation: To comply with applicable laws and regulations
• Consent: Where you have explicitly consented to specific processing activities
• Vital Interests: To protect the vital interests of individuals in emergency situations

4. How We Use Your Information

We use your personal information for the following purposes:

• Providing domain and IP lookup services
• Processing and executing takedown requests
• Managing user accounts and authentication
• Processing payments and billing
• Providing customer support and technical assistance
• Improving our services and developing new features
• Ensuring security and preventing fraud
• Complying with legal obligations and law enforcement requests
• Sending service-related communications
• Marketing communications (with your consent)

5. Data Sharing and Disclosure

5.1 Third-Party Service Providers

We may share your information with trusted third-party service providers who assist us in:

• Payment processing
• Cloud hosting and data storage
• Customer support services
• Analytics and performance monitoring
• Legal and compliance services

5.2 Legal Requirements

We may disclose your information when required by law or to:

• Comply with legal processes, court orders, or government requests
• Enforce our terms of service
• Protect our rights, property, or safety
• Investigate fraud or security incidents
• Protect the rights and safety of our users and the public

5.3 Takedown Service Disclosures

For takedown services, we may share relevant information with:

• Hosting providers and content platforms
• Domain registrars and registries
• Law enforcement agencies (when legally required)
• Legal representatives and courts

6. International Data Transfers

As we operate internationally, your personal data may be transferred to and processed in countries outside Switzerland and the European Economic Area (EEA). We ensure adequate protection through:

• European Commission adequacy decisions
• Standard Contractual Clauses (SCCs)
• Binding Corporate Rules
• Certification schemes and codes of conduct
• Other appropriate safeguards as required by law

7. Data Retention

We retain your personal information for as long as necessary to:

• Provide our services to you
• Comply with legal obligations
• Resolve disputes and enforce agreements
• Maintain business records as required by law

Specific retention periods:

• Account data: Until account deletion plus 30 days
• Transaction records: 10 years (Swiss commercial law requirement)
• Takedown records: 7 years (legal documentation purposes)
• Log files: 12 months
• Marketing data: Until consent withdrawal

8. Your Rights

Under applicable data protection laws, you have the following rights:

• Access: Request access to your personal data
• Rectification: Request correction of inaccurate data
• Erasure: Request deletion of your data (right to be forgotten)
• Restriction: Request limitation of processing
• Portability: Request transfer of your data
• Objection: Object to processing based on legitimate interests
• Withdraw Consent: Withdraw consent for consent-based processing
• Lodge Complaints: File complaints with supervisory authorities

To exercise these rights, contact us at privacy@[yourdomain].com. We will respond within 30 days of receiving your request.

9. Security Measures

We implement comprehensive security measures to protect your personal information:

• Encryption in transit and at rest
• Multi-factor authentication
• Regular security audits and penetration testing
• Access controls and employee training
• Incident response procedures
• Regular backup and disaster recovery plans
• Compliance with industry security standards

10. Cookies and Tracking Technologies

We use cookies and similar technologies to:

• Maintain user sessions and preferences
• Analyze website usage and performance
• Provide personalized content and features
• Ensure security and prevent fraud

You can control cookie settings through your browser preferences. However, disabling certain cookies may affect website functionality.

11. Children's Privacy

Our services are not intended for individuals under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected such information, we will take steps to delete it promptly.

12. Automated Decision-Making

We may use automated decision-making processes, including profiling, for:

• Fraud detection and prevention
• Risk assessment for takedown requests
• Service optimization and personalization

You have the right to request human intervention in automated decision-making processes that significantly affect you.

13. Data Breach Notification

In the event of a data breach that poses a risk to your rights and freedoms, we will:

• Notify the relevant supervisory authority within 72 hours
• Inform affected individuals without undue delay
• Provide clear information about the breach and our response
• Take immediate steps to mitigate the impact

14. Third-Party Links and Services

Our website may contain links to third-party websites and services. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any personal information.

15. Business Transfers

In the event of a merger, acquisition, or sale of assets, your personal information may be transferred to the acquiring entity. We will provide notice of such transfers and any changes to this privacy policy.

16. Supervisory Authority

If you have concerns about our data processing practices, you may contact the Swiss Federal Data and Information Protection Commissioner (FDPIC):

17. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of material changes through:

• Email notifications to registered users
• Prominent notices on our website
• In-app notifications

Your continued use of our services after such changes constitutes acceptance of the updated policy.

18. Contact Information

For questions, concerns, or requests regarding this Privacy Policy or our data practices, please use our contact form.

19. Disclaimer and Limitation of Liability

While we strive to protect your personal information, no method of transmission or storage is 100% secure. We cannot guarantee absolute security of your data. Our liability for data protection violations is limited to the extent permitted by applicable law.

This Privacy Policy is governed by Swiss law. Any disputes arising from this policy shall be subject to the exclusive jurisdiction of Swiss courts.