Client Area
// LEGS_STATUTE_V4.2

Privacy Policy

LAST_UPDATED: JULY 16, 2026 // VERSION 4.2.0

Votion Cloud operates high-performance edge bare-metal nodes and Anycast routing systems globally. This document clarifies what telemetry data we register, how we scrub traffic, and our commitment to user privacy and data minimization.

1. Global Data Collection

INBOUND_TRAFFIC_LOGS
We collect information necessary to deploy, secure, and optimize our high-performance cloud hosting environment. This includes network telemetry (IP addresses, traffic volume, connection ports), system telemetry (CPU usage, RAM allocation, NVMe read/write metrics), and account metadata (email addresses, billing addresses, cryptographic payment references).

2. LunarShield DDoS Telemetry

EDGE_TRAFFIC_SCRUBBING
During active mitigation events, our LunarShield v4 edge clusters process real-time traffic headers to filter out malicious packets. This analysis happens in kernel space via eBPF XDP pipelines. Raw packet payloads are never stored. Traffic patterns, source IPs, and mitigation logs are retained for 7 days to tune machine learning models and improve global Anycast routing pathing.

3. Operational Usage of Data

SYSTEM_OPTIMIZATION_PIPELINE
We use telemetry data solely to route traffic efficiently, optimize bare-metal resources, prevent server overloading, and block security exploits. Votion Cloud does not engage in advertising, and we do not sell or lease user metadata to third parties. All diagnostic reports are anonymized before storage.

4. Cryptographic Retention & Storage

ZERO_KNOWLEDGE_ARCHIVE
All account records are stored using AES-256 encryption at rest. Telemetry logs, including terminal commands, execution histories, and edge node pings, are cycled and permanently purged on a 14-day rolling window. Financial data is tokenized through Stripe and is never stored on Votion Cloud servers.

5. Compliance & Regulatory Rights

GDPR_CCPA_ALIGNED
We support data rights globally. Users in the European Economic Area (EEA) under GDPR, and California residents under CCPA, hold the right to inspect, port, limit, or delete their stored credentials and account data at any time. Erase requests are processed instantly across all core nodes.

6. Global Regulatory Compliance Profiles

MULTI_JURISDICTIONAL
Votion Cloud maintains compliance with global privacy regulations across key operational jurisdictions: • United States (US): Complies with the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) for consumer data control rights, CalOPPA disclosure mandates, COPPA (targeting no services to individuals under 13), and CAN-SPAM requirements. • European Union (EU) & Germany (DE): Fully aligned with EU GDPR principles (Article 30 processing records, Article 32 security measures), ePrivacy Cookie directives, and the German Telecommunications-Telemedia Data Protection Act (TDDDG) requirements. • United Kingdom (UK): Aligned with the UK GDPR and the Data Protection Act 2018 (DPA 2018) regulations for data protection officer reporting. • Japan (JP): Compliant with the Act on the Protection of Personal Information (APPI) regulating cross-border data transfer structures. • India (IN): Adheres to the Digital Personal Data Protection Act, 2023 (DPDPA), guaranteeing processing only for lawful purposes with explicit consent of data principals. • Singapore (SG): Complies with the Personal Data Protection Act (PDPA 2012) governing automated data curation and security safeguards.