Privacy Policy

1. Introduction

This privacy policy ("Privacy Policy") describes how SSLWebsites.com, a division of Tyga.Cloud Ltd ("SSLWebsites.com", "we", or "us") collects, uses, and discloses your Personal Data in the course of our business.

"Personal Data" when used in this Privacy Policy means any data relating to an identified or identifiable natural person that is processed by SSLWebsites.com as described in this Privacy Policy when such information is protected as "personal data" or "personal information" or a similar term under applicable data protection laws.

"Services" when used in this Privacy Policy means all of SSLWebsites.com's websites, applications, tools, platforms, APIs, and SSL certificate management services offered by SSLWebsites.com, but excluding third party applications.

"Website" when used in this Privacy Policy means the SSLWebsites.com website or any other proprietary website owned by SSLWebsites.com or that SSLWebsites.com has the authority to manage and control and which link to this Privacy Policy.

2. Applicability

Unless stated otherwise, this Privacy Policy only applies to Personal Data for which SSLWebsites.com acts as a controller, such as when you visit our Website or create an account for our Services.

If you have questions about how your data is processed or wish to exercise your rights with respect to that data, you should contact us using the details provided in section 13.

3. Information We Collect and Process

Information You Provide Directly

• When You Visit Our Website: We may collect Personal Data from you when you submit information via a web form or otherwise interact with our Website, for example to request a demo or create an account. In these instances, we may ask for certain Personal Data, such as your name, email address, and company name.
• Account Information: When you create an account, you provide us with Personal Data including name, email address, and password.
• Billing Information: If you purchase a paid plan, our third party payment processors will collect and store your billing address and credit card information. We store the last four digits of your credit card number, card type, and the expiration date.
• Certificate Data: When you use our SSL certificate services, we process domain names, certificate signing requests (CSRs), domain validation records, and certificate metadata as necessary to provide the Services.
• API Usage Data: When you use our REST API, we collect API keys, request logs, and certificate management operations for security and service delivery purposes.

Information Collected Automatically

We and our authorized third parties use cookies, pixels, web beacons, and other technologies to receive and store certain types of information when you interact with us through your computer or mobile device.

• Log & Device Data: When you access the Website or the Services, we may automatically record certain information including your device model, operating system, browser type, unique device identifier, IP address, and time zone or approximate location.
• Cookie and Local Storage Data: We may use "cookies" (a small text file sent by your computer each time you visit our Website) or similar technologies to record log data. We may use session cookies or persistent cookies.
• Usage Data: When our customers use our Services, we collect certain information about how you use the Services, such as certificate issuance frequency, API call patterns, and feature usage.

Information from Third Party Sources

We may obtain Personal Data about you from third party sources. This may include personal and employment information from lead-generation and marketing companies, such as name, email address, job title, and company details.

4. How We Use Your Information

We may use information that we collect about you, including Personal Data, for the following purposes:

• Provide the SSLWebsites.com Services: We will use your information to provide our Services to you, including to issue, manage, and renew SSL certificates; process domain validation; create and manage your account; respond to your inquiries; prevent or address service errors, security, or technical issues; analyze and monitor usage; and verify your identity.
• Understand and improve our products: We will perform research and analysis about your use of, or interest in, our products, Services or content to help make our Services better and to develop new features.
• Communicate with you: We may send you service and administrative emails, promotional communications about new product features, and respond to your questions or comments.
• Protecting Rights and Interests: We will use your information to protect our rights and interests as well as the rights and interests of our customers and any other person, as well as to enforce this Privacy Policy or our Terms.
• Legal Compliance: We may use your information to comply with applicable legal or regulatory obligations, including complying with requests from law enforcement or other governmental authorities.

5. With Whom We May Share Your Information

We may share information we collect about you, including Personal Data, in the following ways:

• With third party Service Providers: We use other companies, agents, or contractors to perform services on our behalf, such as payment processing, certificate authority infrastructure, monitoring, customer service, and data analysis.
• Certificate Transparency Logs: As required by industry standards, information about issued SSL certificates (domain names, certificate serial numbers, validity periods) is submitted to public Certificate Transparency (CT) logs. This is a requirement of all publicly trusted certificate authorities.
• Affiliates: We may disclose information to current or future affiliates or subsidiaries for purposes consistent with this Privacy Policy.
• Government entities: We may share your data if we believe that disclosure is reasonably necessary to comply with a law, regulation, legal, or governmental request.
• Business Transfers: We may transfer or assign your Personal Data as a result of a sale, merger, consolidation, change in control, transfer of assets, reorganization, or liquidation of our company.

6. Children

SSLWebsites.com is not directed to children under eighteen (18) years of age, and we do not knowingly collect Personal Data from children under 18. If we discover that a child under 18 has provided us with Personal Data, we will promptly delete such Personal Data from our systems.

7. Your Rights and Choices

Depending on your relationship with SSLWebsites.com and your jurisdiction, you may exercise your rights and choices in the following ways:

• Account: If you are a customer, you may keep your Personal Data accurate and complete by logging into the Services to review and update your account information via your account settings page.
• E-mail: If you do not wish to receive promotional emails from us, you may opt out at any time by following the opt-out link contained in the email itself.
• Cookies: You may have the ability to block or reject cookies via your browser settings. See our Cookie Policy for more details.
• Additional Rights: Depending on where you live, you may have additional rights including the right to know and access your Personal Data, correct inaccurate information, delete your Personal Data, opt out of certain processing, and data portability.

8. Security and Storage of Information

SSLWebsites.com takes the security of your Personal Data very seriously. We have implemented industry-standard security measures including:

• Encryption of data in transit and at rest
• Regular security audits and penetration testing
• Access controls and authentication systems
• Employee training on data protection and security
• Incident response procedures
• Secure key management for SSL certificate operations

We retain the Personal Data we collect for so long as is reasonably necessary to fulfill the purposes for which the data was collected, to perform our contractual and legal obligations, and for any applicable statute of limitations periods.

9. International Data Transfers

If you are an individual located in the European Economic Area, the United Kingdom, Canada or another jurisdiction outside of the United States, please be aware that information we collect will be processed and stored in the United States or in other countries where we or our Service Providers have operations.

We rely on appropriate safeguards for international data transfers, including Standard Contractual Clauses and adequacy decisions where applicable. For transfers from the European Economic Area and the United Kingdom, we implement appropriate safeguards to ensure your Personal Data receives adequate protection.

10. Additional EU and UK GDPR Privacy Rights

If you are located in the European Economic Area (EEA) or the United Kingdom (UK), you have additional rights under the General Data Protection Regulation (GDPR) and UK GDPR respectively.

Legal Basis for Processing

We process your Personal Data based on the following legal bases under GDPR:

• Contractual Necessity: Processing necessary for the performance of a contract with you or to take steps at your request before entering into a contract
• Legitimate Interests: Processing necessary for our legitimate interests, such as improving our Services, marketing, and fraud prevention
• Legal Obligation: Processing necessary to comply with legal obligations to which we are subject
• Consent: Where you have given specific consent for certain processing activities

Your GDPR Rights

Under GDPR, you have the following rights regarding your Personal Data:

• Right of Access: You have the right to obtain confirmation as to whether or not Personal Data concerning you is being processed, and access to such Personal Data
• Right to Rectification: You have the right to obtain the rectification of inaccurate Personal Data concerning you
• Right to Erasure ("Right to be Forgotten"): You have the right to obtain the erasure of Personal Data concerning you under certain circumstances
• Right to Restrict Processing: You have the right to obtain restriction of processing under certain circumstances
• Right to Data Portability: You have the right to receive Personal Data concerning you in a structured, commonly used and machine-readable format
• Right to Object: You have the right to object to processing of Personal Data concerning you based on legitimate interests or for direct marketing purposes
• Right to Withdraw Consent: Where processing is based on consent, you have the right to withdraw consent at any time
• Right to Lodge a Complaint: You have the right to lodge a complaint with a supervisory authority

Data Retention

We retain Personal Data for as long as necessary to fulfill the purposes for which it was collected, including:

• Account data: For the duration of your account plus 3 years after account closure
• Certificate data: As required by certificate transparency and audit requirements
• Marketing data: Until you withdraw consent or 3 years of inactivity
• Legal compliance: As required by applicable laws and regulations

Data Protection Officer

We have appointed a Data Protection Officer (DPO) who can be contacted regarding data protection matters:

Email: dpo@tyga.cloud
Address: Data Protection Officer, Tyga.Cloud Ltd, Ground Floor, Unit 2 Mallard Court, Mallard Way, Crewe Business Park, Crewe, Cheshire, England, CW1 6ZQ

Supervisory Authority

If you are located in the EEA or UK, you have the right to lodge a complaint with your local supervisory authority if you believe our processing of your Personal Data violates applicable data protection laws.

11. Additional California Resident Privacy Disclosures

Under the California Consumer Privacy Act (CCPA), California residents are entitled to additional disclosures about our data processing. In the preceding 12 months, we have collected the following categories of Personal Data:

• Identifiers (such as name, email address, IP address)
• Personal information categories listed in the California Customer Records statute
• Commercial information (such as subscription and billing information)
• Internet or other similar network activity
• Geolocation data
• Professional or employment-related data

We do not sell Personal Data in the traditional sense. However, our use of certain cookies and tracking technologies for analytics and advertising purposes may constitute a "sale" or "share" under the CCPA. California residents can opt out of such activities through our cookie management settings.

12. Changes to this Privacy Policy

This Privacy Policy is current as of the Effective Date set forth above. This Privacy Policy may change if there is a material change to the way information is handled at SSLWebsites.com, or to clarify our Policy or adjust clerical errors. If any changes are made, we'll post them on this page, so please be sure to check back periodically.

For material changes that significantly affect your rights, we will provide additional notice through email or prominent notice on our Website before the changes take effect.

13. Contacting Us