strettch cloud

Abstract header background graphic

Privacy Policy

Last Updated On August 1, 2025
CONTENTS

This Privacy Notice describes how STRETTCH CLOUD Limited (“Strettch Cloud,” “we,” “us,” or “our”) collects, uses, and shares personal information of users of our cloud services, our website (https://cloud.strettch.com), and other related services (collectively, our "Services").

By using our Services, you agree to the collection, use, and sharing of your personal information as described in this Privacy Notice.

1. Information We Collect

We collect “Non-Personal Information” and “Personal Information” to provide and continuously improve our products and services. The types of personal information we collect are:

A. Information You Provide to Us

We collect and store any information you provide in connection with our Services. This includes:

  1. Account Information: When you create an account, we collect your name, email address, avatar (profile picture), and phone number. Registration and login are exclusively handled through Google or GitHub.
  2. Payment Processing: To top up your account balance, you will be directed to an external, third-party payment provider(Irembo Pay). We do not collect, process, or store any of your sensitive payment information, such as credit card numbers. We only receive confirmation of your transaction from the payment provider.
  3. Communications: If you contact us for support or other inquiries, we will collect the contents of your communications.

B. Automatic Information & Information from Other Sources

We automatically collect and store certain types of information when you interact with our Services.

  1. Authentication Provider Information: When you register or log in using Google or GitHub, we receive information from that provider, including your name, email address, avatar (profile picture), and a unique authentication provider ID.
  2. Usage and Log Data: We collect information related to your use of the Services, including IP addresses, browser type, operating system, API calls, resources you launch and terminate, and timestamps of your activities.
  3. Cookies and Other Identifiers: We use cookies and similar identifiers to recognize your browser or device, maintain your session, enhance security, and learn more about your preferences. You can manage your cookie preferences through your browser settings.

2. How We Use Your Personal Information

We use your personal information to operate, provide, and improve our Services. Our purposes for using personal information include:

  1. Providing and Managing Services: We use your information to create and manage your account, process your requests to create and manage virtual machines (VMs), and handle DNS management tasks.
  2. Communicating with You: We use your contact information to send you transactional and service-related communications. These include welcome messages, account balance notifications, and service status alerts.
  3. Improving Our Services: We analyze usage data to understand how our Services are used, to diagnose technical issues, and to develop new features and offerings.
  4. Security and Fraud Prevention: We use personal information to protect the security of our customers, ourselves, and others.
  5. Complying with Legal Obligations: In certain cases, we may have a legal obligation to collect, use, or retain your personal information.

3. How We Share Your Personal Information

We do not sell our users' personal information to others. We share personal information only as described below and with parties that are either subject to this Privacy Notice or follow practices at least as protective as those described here.

  1. Third-Party Service Providers: We employ other companies and individuals to perform functions on our behalf. These providers have access to the personal information needed to perform their functions, but are prohibited from using it for other purposes.
  2. Authentication Providers: To facilitate your account creation and login, we use services provided by Google and GitHub. After you grant consent on their platform, we receive your profile information (such as your name, email address, and avatar) from them.
  3. Payment Processors: We use third-party payment processors to handle account top-ups. As stated above, we do not share your sensitive payment details with them, nor do we receive such details from them.
  4. Email and SMS Providers: We use third-party providers to send transactional communications. We use Resend to deliver all service-related emails (such as welcome messages and low-balance alerts), which requires sharing your email address and name. We use Amazon Web Services (AWS) for non-Rwandan phone numbers and Pindo for Rwanda phone numbers to send phone number verification messages via SMS, which requires sharing your phone number.

4. Data Security

We design our systems with your security and privacy in mind. We use encryption protocols, maintain procedural safeguards, and restrict access to your personal information. It is important for you to protect against unauthorized access to your account and resources.

5. Data Retention

In line with the principles of the Rwandan Law, we retain your personal data only for as long as necessary to fulfill the purposes for which it was collected.

Following the closure of your account, we will retain your personal data for a period of six (6) months. This period serves as a grace period to allow you to reactivate your account or retrieve necessary data.

At the end of these six months, your personal data will be permanently destroyed from our live systems in a manner that prevents its reconstruction in an intelligible form.

6. Your Rights and Choices

In accordance with Rwanda's Law relating to the protection of personal data and privacy, you, as a data subject, have specific rights regarding your personal information. You may exercise these rights by contacting us at [email protected]. Your rights include:

  1. Right to Access: You have the right to request a copy of your personal data that we hold, information about the purposes of the processing, and a description of who has or has had access to your data.
  2. Right to Rectification: You have the right to request the correction of inaccurate personal data and to have incomplete personal data completed.
  3. Right to Erasure: You have the right to request the deletion of your personal data when it is no longer necessary for the purpose it was collected, if you withdraw consent, or if it has been unlawfully processed.
  4. Right to Object: You can object at any time to the processing of your personal data, particularly if it is for direct marketing purposes or if the processing is likely to cause you loss, sadness, or anxiety.
  5. Right to Data Portability: You have the right to receive the personal data you have provided to us in a structured and readable format and to have that data transmitted to another data controller where technically feasible.
  6. Right to Restrict Processing: You have the right to request the temporary restriction of the processing of your data, for instance, while the accuracy of the data is being contested.
  7. Rights Related to Automated Decision-Making: You have the right not to be subject to a decision based solely on automated processing, including profiling, which produces legal or similarly significant consequences for you.
  8. Right to Designate an Heir: The Law grants you the right to designate an heir for your personal data through a will, who can exercise rights relating to your data if it still needs to be used.

Should you be unsatisfied with our response to your request, you have the right to appeal to the supervisory authority within thirty (30) days of receiving our response.

7. Children's Privacy

Our Services are not intended for individuals under the age of sixteen (16) unless we have obtained the consent of a holder of parental responsibility, in accordance with Rwandan law. We do not knowingly collect personal data from children under this age without such consent. If you are a parent or guardian and believe your child has provided us with personal information without your consent, please contact us at [email protected] so that we may take appropriate action.

8. Data Residency and Location of Information

To ensure data sovereignty and compliance, all customer personal information and user-generated data processed and stored by Strettch Cloud are located exclusively within data centers in the Republic of Rwanda. We do not and will not transfer your data outside of the country of Rwanda.

9. Changes to This Privacy Notice

We may update this Privacy Notice from time to time. If we make material changes, we will notify you by email (sent to the email address specified in your account) or by posting a notice on our website prior to the change becoming effective.

10. Contact Us

If you have any questions or concerns about our privacy practices or this Privacy Notice, please contact us at:

Strettch Cloud Email: [email protected]

strettch cloud

Decorative dotted background pattern

Products

SC Compute
(Scaleable Virtual-Machine)
DNS Hosting
DBaaS
COMING SOON
(Database as a Service)

Social Media

Contact Us

©2025 strettch cloud. All rights reserved
Privacy Policy
Terms of Service
Strettch logo full textProduct ofStrettch company logo