We maintain webserver logs that records the IP address, web browser details, and request details for each web request that users make on LunaNode websites. These logs are used by LunaNode Hosting Inc. employees and contractors to investigate and resolve performance and security issues. Recorded data is retained for at most thirty days; it is erased via standard log rotation. We do not disclose this data to third parties, except (1) to the extent we are required to by law, and (2) to provide evidence of malicious activities (e.g., requests from a vulnerability scanner), in which case only data associated with malicious requests will be disclosed.
We collect the e-mail address, name, address, and phone number of users who purchase services on our plaform. This data is used for sending notifications to users, and for security, anti-fraud, and billing purposes. We do not disclose this data or any aggregated form of this data to third parties, except (1) to the extent we are required to by law, (2) to provide evidence of malicious activities, in which case only data associated with users participating in malicious activities will be disclosed, and (3) to ARIN for the purpose of IP usage reporting (e-mail address only). Note that users may need to disclose personal information to our payment processors when making payments.
We record metadata about purchased services (e.g., VM name, plan, creation time), a log of actions performed by users on the panel (see Account -> Recent Activities), and a log of service usage history (e.g., CPU usage of a VM). The metadata is used to provide services to users, along with billing, security, monitoring, and customer service purposes. Action logs are used for security and customer service purposes, and data in action logs is retained for at most 120 days. Usage history is used for billing and monitoring purposes, and usage data is retained for at most 60 days.
Users may store data on our services. This data includes virtual machine disk contents, volume contents, and image contents. We do not store copies of this data, although users may elect to make copies (e.g., with VM snapshots, volume snapshots, and image replication) for data integrity or other purposes; for example, data stored on a VM will only be stored in the disk file associated with that VM. We will never access this data, except when granted authorization by the user to access the data for customer service purposes. We will never disclose this data to third parties, unless required to by law.
All data exchange between our platform and our users occurs over an SSL-secured communication channel. We encrypt backups of data collected on the Luna Node Dynamic Panel. We routinely review the security of our platform to protect user data.
Users may upload a PGP key so that e-mails to the user are encrypted.
By using our platform, you signify your acceptance of this policy and the terms of service. If you do not agree to thees policies and terms, please do not use our platform. Your continued use of our platform following the posting of changes to this policy will be deemed your acceptance of those changes.
This document was last updated on 25 February 2018.