HDNETRO · Premium WordPress Themes (“HDNETRO”, “we”) is the data controller for personal data collected through hdnet-tech-fze.com and our maintenance dashboard. We comply with the EU General Data Protection Regulation (GDPR) and equivalent privacy laws.

1. Data We Collect

1.1 When you buy a theme or subscribe to maintenance

• Name & email address — for account creation, license delivery and support
• Billing address & tax ID — collected by Mamo Pay (Mamo Payments LLC, Dubai UAE) for invoicing & VAT compliance
• Payment method last 4 digits — held only by Mamo Pay, not by us

1.2 When you use our maintenance platform

• Site URLs and connection keys — to operate updates and monitoring on your sites
• Performance & security metrics — aggregated diagnostics necessary for our service

1.3 When you browse our website

• IP address & user agent — for security and analytics (anonymized in Google Analytics)
• Cookies — only essential cookies are set without consent. Analytics cookies require your opt-in via the CookieYes banner.

2. Legal Basis (GDPR Art. 6)

• Contract performance: billing, license delivery, support — Art. 6(1)(b)
• Legal obligation: tax record keeping in UAE and your jurisdiction — Art. 6(1)(c)
• Legitimate interest: security monitoring, fraud prevention — Art. 6(1)(f)
• Consent: marketing emails, analytics cookies — Art. 6(1)(a), revocable anytime

3. Data Processors We Use

We share specific data with the following sub-processors. Each has a Data Processing Agreement in place with us.

• Mamo Pay (Mamo Payments LLC), Dubai UAE — payment processor for theme purchases and maintenance subscriptions. Data shared: transaction amount, billing name, billing address, billing email, payment-method type (card brand + last 4 digits only). Legal basis: contract performance (GDPR Art. 6(1)(b)). Privacy policy: https://www.mamopay.com/privacy
• Amazon Web Services (eu-west-1) — hosting, encrypted backups
• Cloudflare, Inc. (USA, EU) — DDoS protection, CDN, edge security
• Google Analytics (USA, EU) — anonymized web analytics, only after cookie consent
• SendGrid / Twilio — transactional emails (purchase confirmations, password resets, monthly reports)

4. International Transfers

Some processors above are based outside the EU. Transfers are protected by the European Commission’s Standard Contractual Clauses (SCCs) or equivalent safeguards.

5. Retention

• Account & billing records: 7 years (UAE/EU tax law)
• Backups of your managed sites: 30 days rolling window
• Web logs & analytics: anonymized after 14 months
• Support tickets: 3 years after last reply

6. Your Rights

Under GDPR you have the right to:

• Access all personal data we hold about you
• Rectify incorrect or outdated data
• Erase your data (“right to be forgotten”), subject to legal retention requirements
• Restrict processing in specific circumstances
• Data portability — export your data in a machine-readable format
• Object to direct marketing or legitimate-interest processing
• Lodge a complaint with your local data protection authority

To exercise any right, email sales@hdnet-tech-fze.com — we respond within 30 days.

7. Data Protection Officer

Privacy questions: sales@hdnet-tech-fze.com. Postal mail accepted at our registered Dubai address (see footer).

8. Cookies

This site uses essential cookies (session, security, language preference) without consent, and analytics & marketing cookies only after you accept them via the CookieYes banner. You can change your cookie preferences anytime from the footer link.

9. Changes to This Policy

Material changes are announced 14 days in advance via email and on this page.