Legal

Privacy Policy

How PyxCloud collects, uses, and protects your data.

Last updated: 2026

1

Service Data We Collect

Service Data is the personal information we collect or generate in the implementation of our PyxCloud SaaS program, excluding any Customer Data and Partner Data. Service Data consists of:

  • Account information: Usernames, names, contact details, job titles, current cloud provider, storage requirements, and related information provided when obtaining a license.
  • Cloud payments and transactions: Reasonable business records of charges, payments, and billing details related to your cloud provider.
  • Cloud settings and configurations: Your current and new cloud configuration and settings, including resource identifiers and attributes. These cannot be disseminated to third parties through PyxCloud.
  • Technical and operational details: Usage data, operational status, software errors, crash reports, authentication details, quality metrics, device identifiers, cookie tokens, and IP addresses.
  • Direct communications: Records of your communications and interactions with us and our partners, including feedback, questions, and technical support requests.
2

Sharing of Service Data

We do not share Service Data with companies, organizations, or individuals outside of PyxCloud except in the following cases:

When you procure third-party services

We share Service Data outside of PyxCloud when you choose to procure a third-party service through PyxCloud, or use a third-party application that requests access to your Service Data.

With your consent

We'll share Service Data outside of PyxCloud where we have obtained your explicit consent.

With your administrators and authorized resellers

When you use PyxCloud, your administrator and authorized resellers may:

  • View account and billing information, activity and statistics
  • Change your account password
  • Suspend or terminate your account access
  • Access your account information to satisfy applicable law or legal process
  • Restrict your ability to delete or edit your information or privacy settings

For external processing

We do not sell your Service Data to any third parties. We share Service Data with trusted third-party providers to process it on our behalf, in compliance with this Privacy Notice and appropriate confidentiality and security measures.

For legal reasons

We share Service Data outside of PyxCloud when we have a good-faith belief that access or disclosure is reasonably necessary to:

  • Comply with applicable law, regulation, legal process, or enforceable governmental request
  • Enforce applicable agreements, including investigation of potential violations
  • Detect, prevent, or otherwise address fraud, security, or technical issues
  • Protect against harm to the rights, property or safety of PyxCloud, our customers, users, and the public
3

Retention and Deletion of Service Data

We retain Service Data for different periods of time depending on the type of data, how we use it, and how you configure your settings. When we no longer need Service Data, we delete or anonymize it.

We retain most types of Service Data for up to 180 days. However, some data may be kept for longer where there is a legitimate business need:

  • Security, fraud and abuse prevention: To protect against fraudulent access attempts, including device identifiers, cookie tokens, IP addresses, and log data.
  • Legal or regulatory requirements: When required by enforceable legal process, such as a lawful subpoena.
  • Tax, accounting or financial requirements: Typically a minimum of five years for payment and billing records, as required for tax or accounting purposes.
4

European Privacy Standards and GDPR

If EU, UK, or Swiss data protection law applies to the processing of Service Data relating to you, you have certain rights, including the rights to access, correct, delete, and export your Service Data, and to object to or request restriction of processing. We may transfer your information to a third country based on an exception provided for by the Swiss Federal Data Protection Act.

5

Brazil Requirements

If Brazilian data protection law applies, you have rights including access, correction, deletion, export, and the right to object to processing. We may process Service Data on the following legal grounds: contract performance, legal obligations, and legitimate interests such as maintaining and improving PyxCloud and protecting against harm.

6

U.S. State Privacy Law Requirements

Some U.S. state privacy laws require specific disclosures and provide rights to request access, correction, deletion, and portability of your Service Data. Applicable laws may include:

  • California Consumer Privacy Act (CCPA)
  • Virginia Consumer Data Protection Act (VCDPA)
  • Colorado Privacy Act (CPA)
  • Connecticut Act Concerning Personal Data Privacy and Online Monitoring (CTDPA)
  • Utah Consumer Privacy Act (UCPA)
  • Florida Digital Bill of Rights (FDBR)
  • Texas Data Privacy and Security Act (TDPSA)
  • Oregon Consumer Privacy Act (OCPA)
  • Montana Consumer Data Privacy Act (MTCDPA)
7

APAC Requirements

Data protection laws in certain APAC countries may require PyxCloud to obtain your consent to collect and process your Service Data. By accessing and using any PyxCloud services, you agree that PyxCloud may process your Service Data in accordance with this Privacy Notice.

8

Korea Requirements

If Korean data protection law applies, we collect the following Service Data: account credentials, names, contact details, job titles; business records of charges, payments, and billing details; configuration and settings; usage data, operational status, and IP addresses; and communications with us and our partners.

We retain Service Data only for as long as necessary. Most types are retained for up to 180 days, with longer retention for security, fraud prevention, and legal compliance. Payment and billing information is retained for a minimum of five years. Our basic policy is not to collect personal information of Korean residents under the age of 14.

9

Japan Requirements

If Japanese data protection law (APPI) applies, PyxCloud takes the following measures to protect retained personal information:

  • General policy: This Privacy Notice outlines our general policy relating to Service Data.
  • Internal policies: We establish internal policies about handling measures and persons in charge.
  • Personnel measures: We conduct periodic training for employees on handling personal data.
  • Physical measures: We take measures to prevent unauthorized access and prevent theft or loss of devices and electronic media.
10

Updates to this Policy

We may update this Privacy Notice from time to time. We will not make any significant changes without notifying you in advance by posting a prominent notice on this page or by sending you a direct communication. We encourage you to regularly review this Privacy Notice.

Questions about this policy?

If you have any questions or concerns about how PyxCloud handles your data, please contact us at