Collection of Information
Plesk gathers information in most of its interactions with you, whether directly or indirectly. Although some of the information may be considered as Personal Identifiable Information (“PII”), most of the gathered information is not PII. PII is defined as information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context.
Plesk has taken extensive safety and operational precautions, including administrative, physical and technical safeguards to protect personal information. Furthermore, Plesk deploys reasonable safeguards across the company databases to prevent unauthorized access, disclosure or loss of personal information.
Information received from you directly
Plesk collects and stores information during the registration of products, the creation of online profiles, the application via our website and any contact for support or other matters (e.g. contact forms). Examples of your information:
Names, addresses, phone numbers;
Billing and other purchasing and shipping information;
Records of transactions, including purchases, inquiries and service requests;
Authentication data such as user name and password to verify access.
Application Data, CVs, profiles, pictures (additional Job Applicant Data Policy in place)
Plesk does not collect or process any credit card data during purchases. Any credit card purchase is made through our reliable and secure online payment processor (Worldpay), with the result that Plesk is never furnished with your sensitive credit card information;
Plesk does not forward any personal information (especially names or email addresses) to third parties without your express permission, unless bindingly and mandatorily required by the applicable laws or prosecution authorities. Whenever Plesk engages subcontractors for the fulfillment of its contractual obligations with you, you will be specifically informed about such engagement in the respective data privacy statement and/or the corresponding consent text.
Plesk has an extensive data protection policy in place across its organization, which every Plesk employee or contractor must adhere to at all times. Such data protection policy sets forth the mandatory way, information is expected to be handled within Plesk and describes the necessary internal processes and to the required level of confidentiality to be maintained in order to be compliant with national and international data protection laws (like e.g. GDPR).
Plesk strives to comply with the concept of data minimization (“privacy by default”) by only collecting as much information as needed for the intended and approved purpose. Only information which is relevant to such purpose and which has been provided to Plesk in free and informed manner by you as the data subject will be maintained by Plesk for as long as needed for the purpose. Thereafter, any PII is subject to a defined deletion routine as defined in Plesk’s record of processing activities created and maintained in accordance to Article 30 of the GDPR.