Privacy Policy

Effective date: 22 June 2026 · Last updated: 22 June 2026 · ithouse ApS

This Privacy Policy explains what personal data ithouse collects, how we use and protect it, and the rights you have over it. We keep it plain-spoken, with no dense legalese where we can avoid it.

On this page
  • 1. Who we are
  • 2. Scope of this policy
  • 3. Information we collect
  • 4. How we use your information
  • 5. Legal bases for processing
  • 6. Data we process for our customers
  • 7. How we share information
  • 8. International data transfers
  • 9. Data retention
  • 10. How we protect your data
  • 11. Your privacy rights
  • 12. Cookies and tracking
  • 13. Children’s privacy
  • 14. Changes to this policy
  • 15. Contact us

1. Who we are

ithouse ApS ("ithouse", "we", "us" or "our") provides Managed Enterprise Hosting from Copenhagen, Denmark. For the personal data described in this policy, we are the data controller. This policy explains how we collect, use, and protect personal data when you visit ithouse.com, create an account, or use our services.

We operate under EU and Danish data protection law, including the General Data Protection Regulation (GDPR) and the Danish Data Protection Act.

ithouse ApS
Herstedvang 8
2620 Albertslund
Denmark
CVR/VAT: DK40780297
Email: hello@ithouse.com
Phone: +45 70 60 81 31

2. Scope of this policy

This policy applies to personal data we process as a data controller, for example, information about website visitors, prospective customers, and the account holders who manage our services.

When you host websites or applications with us, we also process personal data on your behalf as a data processor. That processing is governed by our Data Processing Agreement and your instructions as the controller of that data — not by this policy.

3. Information we collect

Account and billing information

When you register or purchase a plan, we collect your name, business name, email address, phone number, billing address, VAT number, and payment details processed through our payment providers. We do not store full card numbers on our systems.

Technical and usage data

We collect IP addresses, browser and device information, log data, request metadata, and information about how you interact with our dashboard and websites. This helps us secure, operate, and improve the service.

Support communications

When you contact us by email, chat, or phone, we keep a record of the correspondence and any information you provide so we can resolve your request.

Website and cookies

Our website uses cookies and similar technologies. See our Cookie Policy for details and your choices.

4. How we use your information

We use personal data to:

  • Provide, maintain, and secure our hosting services and dashboard;
  • Set up accounts, process payments, and manage subscriptions and renewals;
  • Provide technical support and respond to your enquiries;
  • Monitor performance, detect abuse, and prevent fraud and security incidents;
  • Send service, security, and billing notifications;
  • Send marketing communications where you have opted in; you can opt out at any time;
  • Comply with legal, tax, and accounting obligations.

5. Legal bases for processing

Under the GDPR, we rely on the following legal bases:

  • Performance of a contract — to deliver the services you signed up for and manage your account.
  • Legitimate interests — to secure and improve our services, prevent abuse, and run our business, balanced against your rights.
  • Consent — for optional cookies and marketing, which you may withdraw at any time.
  • Legal obligation — to meet accounting, tax, and other statutory requirements.

6. Data we process for our customers

Content stored or transmitted through your hosted sites and applications may contain personal data about your own users. For that data you are the controller and we act as your processor.

We process it only on your documented instructions, keep it within EU data centers by default, and protect it with the measures set out in our Data Processing Agreement.

7. How we share information

We do not sell personal data. We share it only with:

  • Service providers and sub-processors who help us run the service (for example CDN, payment, email delivery, and monitoring providers), under contracts that require appropriate safeguards;
  • Authorities or third parties where required by law or to protect our rights, users, or the security of the service;
  • A successor entity in connection with a merger, acquisition, or sale of assets, subject to this policy.

A current list of sub-processors is maintained in Annex III of our Data Processing Agreement.

8. International data transfers

We host and process data primarily in data centers located in the European Union. Where data is transferred outside the EU/EEA, we rely on adequacy decisions or the European Commission’s Standard Contractual Clauses, together with additional safeguards where required.

9. Data retention

We keep personal data only as long as necessary for the purposes described in this policy:

  • Account data — for the life of your account and a reasonable period afterwards;
  • Billing and accounting records — for at least five years, as required by Danish bookkeeping law;
  • Server and security logs — for a limited period unless needed for security investigations;
  • Support communications — for as long as needed to support you and improve our service.

10. How we protect your data

We apply enterprise-grade safeguards including encryption in transit, access controls, network segmentation, a web application firewall, DDoS protection, antivirus and anti-malware scanning, continuous monitoring, and regular backups. A summary of our technical and organizational measures is provided in Annex II of our Data Processing Agreement.

No system is completely secure, but we work continuously to protect your data and to detect and respond to incidents quickly.

11. Your privacy rights

Subject to applicable law, you have the right to:

  • Access the personal data we hold about you;
  • Request correction of inaccurate or incomplete data;
  • Request erasure of your data (the “right to be forgotten”);
  • Restrict or object to certain processing;
  • Receive your data in a portable format;
  • Withdraw consent at any time, without affecting prior processing.

To exercise any of these rights, contact us at hello@ithouse.com. You also have the right to lodge a complaint with the Danish Data Protection Agency (Datatilsynet); see below.

12. Cookies and tracking

We use strictly necessary cookies to operate the site and, with your consent, preference and analytics cookies. You can choose “Essential only” or “Accept all” in our cookie banner and change your choice at any time. Full details are in our Cookie Policy.

13. Children’s privacy

Our services are intended for businesses and are not directed at children. We do not knowingly collect personal data from children under 16. If you believe a child has provided us with personal data, please contact us and we will delete it.

14. Changes to this policy

We may update this policy from time to time to reflect changes in our practices or legal requirements. We will post the updated version here and revise the “Last updated” date above. Material changes will be communicated through the service or by email.

15. Contact us

For any questions about this policy or how we handle your data, contact us at hello@ithouse.com or:

ithouse ApS
Herstedvang 8
2620 Albertslund
Denmark
CVR/VAT: DK40780297
Email: hello@ithouse.com
Phone: +45 70 60 81 31

If you are not satisfied with our response, you may contact the Danish Data Protection Agency:

Datatilsynet
Carl Jacobsens Vej 35
2500 Valby, Denmark
www.datatilsynet.dk

Related policies

Cookie PolicyTerms of ServiceData Processing — DPA