Privacy Policy

Last updated: May 6, 2026

Echo Ridge INC (“we”, “us”, “our”), a Wyoming corporation operating safeserversetup.com, respects your privacy. This Privacy Policy describes what personal information we collect when you visit the Site or purchase a VPS hardening service, how we use that information, who we share it with, how long we keep it, and the choices you have. If you do not agree with this policy, please do not use the Site or our services.

1. Scope

This policy applies to information we collect on safeserversetup.com and through email, chat, and phone conversations related to an order. It does not cover third-party websites that we link to — those sites have their own privacy policies.

2. Information we collect

2.1 Information you provide

• Account data: name, email address, password (stored as a one-way hash), optional phone number, company name, and country.
• Order data: the plan you purchase, the amount paid, and any note you add to an order.
• Server credentials: provider name, host or IP address, SSH port, username, and either a password or private key, plus any notes you share about the server. These values are encrypted at rest.
• Chat and attachments: the messages you exchange with our team on an order page and any files you upload there.
• Support correspondence: the content of emails and contact-form submissions you send us.

2.2 Information we collect automatically

• Log data: IP address, browser user-agent, pages visited, HTTP method, and timestamps, used for security and debugging.
• Session cookies: a first-party cookie that keeps you signed in and protects against CSRF. No third-party advertising cookies are set.

2.3 Information we receive from third parties

• Payment information: Authorize.Net processes your card on our behalf. We receive a transaction identifier, approval status, the last four digits of the card, and the card brand. We do not see or store full card numbers or CVV codes.

3. How we use your information

• To deliver the hardening service you ordered.
• To communicate with you about the order (status updates, chat messages, delivery).
• To process payments and prevent fraud.
• To comply with tax, accounting, and other legal obligations.
• To maintain the security and reliability of the Site (rate limiting, abuse detection, log review).
• With your permission, to send you occasional service announcements. You can opt out at any time.

4. Legal bases (EU/UK users)

If you are in the EEA or the United Kingdom, we rely on the following legal bases under the GDPR or UK GDPR: contract performance (to deliver your order), legitimate interests (to secure and improve the service), legal obligation (tax and accounting records), and consent (only where you have opted in).

5. How we share information

We do not sell or rent your personal information. We share it only with:

• Service providers that help us run the business: our hosting provider, email-delivery vendor, and Authorize.Net for payment processing. Each is bound by a contract or published terms that require them to protect your data.
• Legal or regulatory authorities when we are required to disclose information under a valid legal process, or to protect our rights, property, or safety.
• Successors in a corporate transaction (merger, acquisition, asset sale), in which case your information will continue to be protected under the terms of this policy or one materially equivalent.

6. How long we keep information

• Server credentials: automatically wiped from our database seven (7) days after the order is marked delivered. You may also request earlier deletion via chat on the order page.
• Order and payment records: retained for up to seven (7) years to satisfy tax and accounting requirements, after which they are deleted or anonymized.
• Account profile: retained while your account is active. You may request deletion once you have no open orders; closed orders are anonymized rather than deleted so the accounting record remains intact.
• Server logs: retained for up to 90 days for security purposes, then rotated out.

7. Security

All traffic to safeserversetup.com is served over TLS. Server credentials and other sensitive fields are encrypted at rest using AES-256 via our application key. Internal access is limited to personnel who need it to complete the hardening work and who have signed a confidentiality agreement. No system is perfectly secure — if you believe your account has been compromised, contact us immediately.

8. Your rights

Depending on where you live, you may have the right to:

• Request a copy of the personal information we hold about you.
• Correct information that is inaccurate or incomplete.
• Ask us to delete your information, subject to exceptions (for example, records we must keep for tax reasons).
• Object to or restrict certain processing.
• Receive your information in a machine-readable format (data portability).
• Withdraw consent where processing is based on consent.
• Lodge a complaint with your data protection authority.

California residents have additional rights under the CCPA/CPRA, including the right to know what personal information we collect and the right to opt out of the sale or sharing of personal information. We do not sell or share personal information for cross-context behavioral advertising.

To exercise any of these rights, use the contact form or email support@safeserversetup.com. We respond within thirty (30) days.

9. Cookies

We use a small number of first-party cookies to keep you signed in, remember your session, and protect forms against cross-site request forgery. We do not use advertising cookies. You can clear cookies in your browser at any time; the Site may not function correctly without session cookies.

10. Children

Our services are not directed to children under 16. We do not knowingly collect personal information from anyone under 16. If you believe a minor has provided us with personal information, contact us and we will delete the account.

11. International transfers

We are based in the United States and our infrastructure runs in the United States. If you access the Site from outside the United States, you understand that your information will be transferred to, stored, and processed in the United States.

12. Changes to this policy

We may revise this Privacy Policy from time to time. The “Last updated” date at the top of the page reflects the most recent revision. For material changes, we will post a prominent notice on the Site. Continued use of the Site after the effective date constitutes acceptance of the updated policy.

13. How to reach us

For any privacy-related question or request, please contact:

• Echo Ridge INC — attention: Yusley Rodriguez
• 2232 Dell Range Blvd, Suite 245, Cheyenne, WY 82009, USA
• Phone: (307) 655-6731
• Email: support@safeserversetup.com
• Or use the contact form.