Introduction
At Skylantix, privacy isn’t just a policy—it’s why we exist. We’re a privacy-first collective microcloud. This policy explains exactly what data we collect, why, and what we do (and don’t do) with it.
Short version: We collect the absolute minimum needed to run the collective, we never sell your information to anyone, and your data stays in California on hardware we own.
What We Collect
- Email address - To communicate with you about your service
- Name - For billing and support
- Billing information - Processed through secure payment providers (we don’t store credit card numbers)
- IP addresses - For security and abuse prevention
- Server logs - Standard nginx access logs (automatically rotated and deleted after 30 days)
- Usage metrics - Disk space, bandwidth, resource usage (to ensure we’re meeting your needs)
What We DON’T Collect
- No analytics tracking on our website
- No cookies except essential session cookies
- No advertising IDs or tracking pixels
- No data mining or behavioral profiling
- We don’t read your hosted data (it’s yours, not ours)
We use your information ONLY for:
- Service Delivery - Running and maintaining your hosting
- Billing - Processing payments and sending invoices
- Support - Responding to your questions and issues
- Security - Preventing abuse and securing infrastructure
- Legal Compliance - Meeting legal obligations (only when required by law)
We do NOT:
- Sell your data to anyone, ever
- Use your data for advertising
- Share your information with third parties (except payment processors and only for billing)
- Train AI models on your data
- Mine your data for any purpose
Data Storage & Security
- Location: All data is stored in Orange County, California, USA on hardware we own (not AWS, Google, or other cloud providers)
- Encryption: Data at rest is encrypted with LUKS; data in transit uses SSL/TLS
- Backups: Automated encrypted backups following 3-2-1 rule (RAID Z3 redundancy)
- Access: Only the infrastructure administrator has access, and only when necessary for support or maintenance
- Retention: Your data is kept as long as you’re a member, then securely deleted within 30 days of cancellation
Third-Party Services
We work with minimal third parties:
- Payment Processors - For billing (they have their own privacy policies)
- Cloudflare - For DDoS protection and SSL (they see your IP when you access your hosted services)
That’s it. We don’t use analytics services, advertising networks, or data brokers.
Your Rights
You have complete control over your data:
- Access - Request a copy of all data we have about you
- Correction - Fix any inaccurate information
- Deletion - Request deletion of your data (we’ll delete within 30 days)
- Export - Download all your hosted data anytime
- Portability - We’ll help you migrate to another provider if you want to leave
To exercise these rights: Just email [email protected]
Student Data
If you’re using our student discount, we collect your .edu email address and proof of enrollment (Student ID, unofficial transcript, or National Student Clearinghouse certificate) to verify eligibility. Email [email protected] from your .edu email to apply. This proof is deleted after verification. You receive the discount for 3 years with no ongoing verification required.
Changes to This Policy
If we change this policy, we’ll:
- Email you directly about significant changes
- Post the updated policy here with a new “Last Updated” date
- Give you 30 days notice before changes take effect
We won’t make changes that reduce your privacy protections without your explicit consent.
Questions about privacy? We’re happy to explain anything. You can reach me directly via Mattermost or email.
- Email: [email protected]
- Support: Via Mattermost after joining
- Location: Orange County, California
Last Updated: November 1, 2025