Privacy Policy
MasterAPP is the development/software division of MasterDC s.r.o. (hereinafter referred to as MasterDC).
For MasterDC, protecting your privacy is of the utmost importance, as this is the only way to achieve long-term trust and cooperation. As a leading operator of datacenter and hosting services, MasterDC is well aware of how important it is to you how your personal data and information is used and shared.
All of our company procedures and processes, including information handling, are regularly certified under the ISO 9001:2015 quality management system and in particular ISO 27001:2013 information security.
This document sets out basic information about the type of data, information and personal data we handle and the security measures we take to keep it safe.
What information do we collect?
The information MasterDC works with and collects depends mainly on the type of service you use. As a rule, it is the information necessary for your secure authorization and access to the technologies to which you are authorized. Below are the types of data retained, an overview of the services with a brief description of the data retained, and a description of how to protect that data and your privacy.
The data you necessarily provide
We collect verified personal data and information that you provide to us, usually when you enter into a contract for a new service through our website or when you meet us in person. We collect, among other things, your name, address, contact email address and telephone number and other information necessary to securely authorize you to access and support your services and identifying information directly required by law.
We collect this information when:
- you create a user account, place an order or register for a service
- you request support or make a request for an already registered service
- you request information about products and services we provide
- participate in our surveys and marketing events
Your data on our servers or related services
How we handle your data depends mainly on the type of service we provide. A brief description of how we work with and access your data for the services we provide:
Dedicated server hosting and rental (your server or a server leased from us and located in our data centre) – for this service, we do not work in any way with the data that resides on any of the technology associated with these services. We do not disclose to third parties customer information or any data from such technologies without the written consent of the customer, except when requested by an authorised authority under generally applicable law.
Rackhousing (renting space in a data rack in our data centre) – in this type of service we do not work in any way with data that is located on any of the technologies located within the rackhousing. Only the authorized customer has access to the secure rack. We do not disclose to third parties customer data or any data from such technologies without the written consent of the customer, except when requested by an authorized authority under generally binding legislation.
Virtual server and cloud hosting (rental of computing power and storage) – rental of part of a physical server as a service, where you only take care of the configuration of the performance similar to a dedicated server. We manage the HW including the virtualization platform. You take care of the data on such a server yourself and only you have access to the data on such a service. We do not disclose to third parties customer data or any data from such technologies without the written consent of the customer, except when requested by an authorized authority under generally binding legislation.
Managed server/service (management of a physical or virtual server or provision of a service in the form of SaaS) – a service designated as a managed server is characterized by our access to data located on a specific technology. In practice, this means our unrestricted access (root access) to the server that falls under this service. For this technology, we are mainly responsible for its smooth functionality. Only our administrators have access to these servers. We do not disclose customer data or any data from such technologies to third parties without the written consent of the customer, except when requested by an authorised authority in accordance with generally binding legislation.
Automatically collected information and data
Operational data and location data
In the course of using MasterDC’s services, customer operational data is collected. This is only a recording and storage of data flow data, not a recording of the actual data content. This data is collected in accordance with Act No. 127/2005 Coll. (Electronic Communications Act), which implies the obligation of service providers to retain traffic data for 6 months in accordance with Decree No. 357/2012 Coll. on the retention, transmission and disposal of traffic and location data.
In addition, location data processed in electronic communications networks that determine the geographic location of your terminal equipment (in particular, the number, name and location of the end point in the network, etc.) are stored. Act No. 127/2005 Coll. (Electronic Communications Act) obliges all providers to store, among other things, location and traffic data for the purposes of criminal proceedings and other purposes defined by law. The exact scope of such data is set out in Decree No. 357/2012 Coll. on the retention, transmission and destruction of traffic and location data.
We would like to assure you that we strive to protect all data about your person to the maximum extent possible and treat the information obtained as confidential and only in accordance with the relevant legislation, in particular Act No. 127/2005 Coll. (Act on Electronic Communications) and Act No. 101/2000 Coll. on the Protection of Personal Data. In no case do we provide or sell your personal data to other companies, so-called third parties.
Camera footage
We store CCTV footage in all our data centres and related areas. We only use the footage for the purpose of detecting or proving activity in the datacentre, usually following a complaint from you, and also as evidence for the detection of crime in the context of investigations by the Police or the courts.
CCTV footage is one of the important elements of protecting your data and technology and is predominantly used for online monitoring only, without actual analysis of the footage.
Data retention
Your data is stored only for the period of time strictly necessary both from a procedural point of view and as a result of generally binding legal regulations.
We retain your registration information and data for the duration of your account or for as long as necessary to provide you with services and related support. Furthermore, we only retain your registration information for as long as necessary to fulfil our obligations, resolve disputes and ensure compliance with our mutual agreements.
Customer data on servers and related services is retained for the duration of the service, and in the event of termination of the service, data is retained for a minimum of 8 weeks. After this time the data is securely deleted (overwritten several times).
Use of personal data
Please be assured that the protection of your personal data and all data is an absolute priority for us. Your personal data and data can only be accessed by employees of our company with precisely defined authorization. The rules for assigning rights as well as the rules for accessing and handling data are governed by regularly authorized policies and procedures.
In no case do we provide your personal data to third parties without your consent. The only exception to this is the transfer of data to authorised authorities according to the obligation arising for us from generally binding legal regulations, i.e. in particular upon request by the Police of the Czech Republic, courts.
As a provider, we are also entitled to suspend your service and access to your data if we expose ourselves, our employees or other persons to the risk of criminal liability or if you fail to pay your obligations to our company within the agreed period. However, we take these measures in extreme cases and they serve to limit the possible negative effects resulting from the illegitimate operation of the service.
Security and accuracy of information
It is our intention to protect your personal data and the data stored with us in accordance with best practices for information protection. We continually improve and adopt state-of-the-art technical, physical and administrative safeguards to help protect your personal information, data and collected information from unauthorized misuse.
Our data centers are protected against entry by unauthorized entities and are constantly monitored by a comprehensive video surveillance system. Continuous supervision of physical access is handled by a technical support staff member who proactively addresses any unauthorized access. Access is therefore only possible after the subject has been authorised by the technical support officer. This entity must be listed as the access entity on the customer’s account for successful access to the required technologies.
Other security features of our data centers include access through code doors and a modern fire extinguishing system with a fire extinguishing panel (immediate fire extinguishment thanks to FM200 inert gas extinguishing). Cooling of the technology is then taken care of by precision air conditioners with high backup cooling capacity.
Cookies
By using our website, you consent to our use of cookies. A separate panel informs you about the use of cookies when you visit the site.
So-called cookies are small text files that are sent to the user’s browser when visiting the website. Cookies help us to record information about your visit to our website.
We use a type of cookie that expires when you end your browsing session, and also a type of cookie that has a set expiry date.
Cookies allow us to distinguish users using arbitrarily assigned ID numbers to track the number of visitors to the site, to control the speed of their requests to the server, and to record information about the status of their visit, where they specifically came to our site from, the status of their session, and when their visit ends. This data is for the purpose of operating and improving our services and is only shared with our analytics, advertising and social media partners. You can read more about how they work with the data.
There is an option to manage cookies in most browsers you use to access our site. This option may be limited in mobile browsers. Please refer to your browser’s help for details.