PROTECTING YOUR INFORMATION Privacy Policy

Last modified: 23/06/2020

0.1.1 RAMShard LLC, a Michigan limited liability company (“RAMShard”), provides Minecraft hosting services (the “Services”). By purchasing or using the Services, you agree to the use of the data that we collect in accordance with this Privacy Policy. This Privacy Policy describes what personal information of yours is collected, how we use or share your information, and how you can correct any inaccuracies in the information. If you do not agree with the practices set forth in this Privacy Policy, do not purchase or use the Services. 0.1.2 All RAMShard customer data is stored on servers hosted in the United States. Server data is stored on servers hosted in Canada, France, Singapore, and Australia. Servers are hosted by OVH and RamNode. We use a Content Delivery Network (CDN) to reduce latency, which does not store any data except connection logs. These CDN servers are hosted in the United States, Brazil, United Kingdom, Germany, Japan, Singapore, and Australia. 0.1.3 Certain parts of RAMShard's GDPR compliance are subject to the laws of the United States of America, where RAMShard is incorporated. Therefore, we must comply with United States data protection laws as well as the GDPR. 0.1.4 All employees responsible for development and infrastructure maintenance of RAMShard LLC, a United States Limited Liability Company, are fully aware of the GDPR requirements. In addition, all code is reviewed by the Data Protection Officer (DPO) before it is deployed to the platform. This ensures security breaches and bad practices do not take place (this provides a double safety check before any changes are pushed lived).

1.1.1 We collect the following types of information from you to provide you with the Services and for the other purposes described below. We may collect such information via automated means such as cookies.

1.1.2 Personal: The personal information we collect may include your name, address, telephone number, email address, IP address, dates of service provided, types of service provided, payment history, manner of payment, amount of payments, date of payments, and other payment information. The financial information we receive will only be used to bill you for the Services.

1.1.3 Cookies: Your Internet browser has the in-built facility for storing small text files - "cookies" - that hold information which allow a website to recognize your account. We use cookies to save your preferences and login information, and to provide personalized functionality. We may use cookies to store and sometimes track information for statistical purposes to improve the Services. More specifically, we use different types of cookies for different purposes: (i) “required cookies” - are necessary for our website to work properly, (ii) “performance cookies” - allow us to analyze how visitors use our website so we can measure and improve the performance of our website, and (iii) "functional cookies" allow us to remember choices you may have made on our website. We may utilize cookies to track referrals from internal and external affiliates, as well as advertising campaigns. You can reject cookies by changing your browser settings, but be aware that this may disable some of the functionality on our website.

1.1.4 RAMShard stores data on two kinds of parties: Our customers (the people using the client area or control panel to manage their service(s)) Our customers' end-users (the users of our customers)

1.1.5 RAMShard collects the following account information for each user (referred to as customers):

  • First and last name
  • Email address
  • Address
  • Phone number
  • Payment details (includes invoices - billing agreements and credit card numbers are stored by PayPal and Stripe respectively)

1.1.6 The following information is held on our users' end-users:

  • Username
  • Messages
  • IP Address
  • Date and time of last activity

1.1.7 We don't log any user activity, except for system logs which include IP address, user agent, and time of connection. These logs are used for informing the customer about the security of their account, debugging, and lawful purposes and are retained for a maximum of 6 months. This log retention policy is subject to the laws of the United States of America (if we are sent a search warrant, we must comply and provide logs with the requested information).

1.1.8 The information held on our users' end-users in the responsibility of our users (the individuals who've purchased a service with RAMShard). It is the responsibility of our users to manage the data they hold on their server (e.g. removing sensitive data such as credit card or social security numbers if someone happens to share it with them). It is our responsibility to secure access to this data so only server owners can access it and have the right to rectification and deletion.

1.1.9 Communicating privacy information: RAMShard users' end-user privacy terms are the responsibility of RAMShard customers. They should be available on the RAMShard customer's server or server website.

2.1.1 Personal: The information we collect is used for billing and to provide service and support to our customers. We may study this information to determine our customers needs and to promote certain products and services or additional support. We may also generate non-identifying and aggregate profiles from information that our customers provide during registration (such as the total number of customers in a given category). We take reasonable precautions to prevent unauthorized access to your information.

2.1.2 Log Files: We use IP addresses to analyze trends, administer our site and servers, track access, and gather broad demographic information for aggregate use. It is possible that personal information about a customer may be included in the log files due to the normal functions of IP addresses and Web browsing.

2.1.3 RAMShard does not share or sell any customer or server data. The data is not used for advertising or analytics. Our business model is solely based on paid subscriptions (the user is not the product).

3.1.1 Service Providers: We may share your personal information with third parties that help us provide the Services. For example, we may use service providers to authorize and process payments, administer surveys or run promotions. Your personal information may be maintained and processed by our third party service providers in the United States or in other jurisdictions. Our service providers are given the information they need to perform their designated functions.

3.1.2 Law Enforcement: We cooperate with government and law enforcement officials to enforce and comply with the law. We will disclose any information about users upon a valid request by government or law officials as we believe necessary or appropriate to respond to claims and legal process.

4.1.1

  • RAMShard customers' rights in regards to GDPR are enforced in the following ways:
  • Right to be informed: We clearly inform our users about how we will use their data
  • Right of access: Our users can access all of their data, without restriction, through the RAMShard websites
  • Right to rectification: We process all rectification requests, just contact us via live chat, ticket, or email
  • Right to erasure: We process all erasure requests, just contact us via live chat, ticket, or email
  • Right to restrict processing: We don't process the data of our customers or our customers' end-users
  • Right to data portability: We process all data export requests, just contact us via live chat, ticket, or email
  • Right to object: We handle all requests on this matter via live chat, ticket, or email
  • Rights in relation to automated decision making and profiling: We don't do this (and never will), all data is strictly used to provide the service(s)

5.1.1 If a customer's information changes, or if a customer no longer desires the Services, we will endeavor to provide a way to correct, update or remove that customer's personal data from our records. In most cases, this can be achieved via our billing system at https://my.ramshard.com/.

6.1.1 RAMShard replies to all access requests within 1 month. We offer this free of charge to our customers.

7.1.1 Lawful basis for processing personal data: RAMShard stores user data involving giving consent (e.g. opting into marketing emails or a conversation both parties entered by will).

7.1.2 Consent is explicitly provided by our users when they proceed to complete an action or task (e.g. providing user data).

8.1.1 This website is not directed towards children and we do not seek to collect any personal information from children. If we become aware that personal information from a child under the age of thirteen has been collected, we will use all reasonable efforts to delete such information from our systems.

8.1.2 RAMShard does not offer online services to children under the age of 13 in the United States or under the age of 16 in Europe.

8.1.3 Children may still be able to use RAMShard services from another RAMShard customer's account. The RAMShard customer is responsible for their own users and activities in regards to children regulations and laws.

9.1.1 Our team closely monitors any unauthorized system access and has put multiple measures in place to minimize the attack surface on our systems and services. In over a year, RAMShard has had zero security issues. Users and security researchers can report security flaws to an encrypted email address (support@ramshard.com). We process all reports in the same day. In addition, we pay for valid security flaws that are reported to us.

9.1.2 Here are the measures we have taken to reduce the attack surface on our systems and services:

  • Aggressive use of firewalls and network isolation in our infrastructure
  • Access to our internal systems is not allowed from the public internet, trusted RAMShard administrators must connect via a trusted VPN network
  • Use of SSH on all servers
  • Use of encrypted two-factor authentication on all sensitive accounts
  • All platform backups are privately stored, retained for a maximum of 3 months

9.1.3 RAMShard will notify its users of any data breach within twenty-four hours after knowing about it and patching the security flaw. It is then the responsibility of our users to report this data breach to their end-users in due time.

10.1.1Security comes first for any new system RAMShard develops. Our goal is to protect the integrity of the new system while at the same time protecting any user data that's going to be stored by that system.

11.1.1 RAMShard has designated a Data Protection Officer (DPO), as required by the GDPR:

  • Name: Erik Prinz
  • Role: Founder & Managing Director
  • Email: erik@ramshard.com
  • Phone: (734) 794-4756
  • Address: 2723 South State Street Suite 150, Ann Arbor, MI 48104

12.1.1 RAMShard may, via its users, process data from individuals located in EU member states.

12.1.2 RAMShard's main establishment is in the United States, therefore its supervisory authority is based in the United States of America.

12.1.3 RAMShard is owned and operated by RAMShard LLC, a United States Limited Liability Company, identified as:

  • ID: 802094725
  • Address: 2723 South State Street Suite 150, Ann Arbor, MI 48104
  • Email: support@ramshard.com
  • Phone: (734) 794-4756

13.1.1 We reserve the right to modify this Privacy Policy at any time. However, if we plan to materially change how we plan to use previously collected personal information, we will provide you with advance notice prior to the change becoming effective and an opportunity to opt-out of such differing uses. We encourage you to periodically review this page for the latest information on our privacy practices.