Privacy Policy
Your privacy is important to us. This policy explains how we collect, use, and protect your personal information.
1. Introduction
Welcome to n8n Hosting. We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains what information we collect, how we use it, and what rights you have in relation to it.
By using our services, you agree to the collection and use of information in accordance with this policy.
2. Information We Collect
2.1 Personal Information
Information provided by you:
- Account Information: Name, email address, phone number, password
- Billing Information: Payment details, billing address (processed securely through payment gateways)
- Profile Information: Company name, job title, profile picture (optional)
- Communication Data: Support tickets, emails, chat messages
2.2 Automatically Collected Information
Technical data collected during service usage:
- Device Information: IP address, browser type, operating system
- Usage Data: Pages visited, features used, time spent on platform
- Log Data: Server logs, error reports, API calls
- Cookie Data: Session cookies, preference cookies
2.3 n8n Instance Data
Data within your n8n instance:
- Workflow Data: Your n8n workflows, configurations, and automation
- Execution Logs: Workflow execution history and logs
- Credentials: Encrypted third-party service credentials stored in your instance
Important: We do not access or view the contents of your n8n workflows or data unless explicitly authorized by you for support purposes.
3. How We Use Your Information
3.1 Service Provision
- Create and manage your account
- Provision and maintain your n8n instance
- Process payments and billing
- Provide customer support
- Send service-related notifications
3.2 Service Improvement
- Analyze platform usage to improve features
- Monitor system performance and uptime
- Debug and fix technical issues
- Develop new features based on usage patterns
3.3 Communication
- Send important updates about your account
- Notify you of service changes or maintenance
- Respond to your inquiries and requests
- Send billing reminders and invoices
3.4 Security and Fraud Prevention
- Detect and prevent fraudulent activities
- Protect against security threats
- Ensure compliance with terms of service
- Investigate violations of our policies
3.5 Legal Compliance
- Comply with legal obligations
- Respond to legal requests
- Enforce our terms and conditions
- Protect our rights and property
4. Data Sharing and Disclosure
4.1 Third-Party Service Providers
We share your information with trusted third-party service providers who assist us in operating our platform:
Payment Processors
- bKash (for Bangladesh payment processing)
- Other payment gateways as applicable
- Purpose: Process payments securely
- Data shared: Transaction details, billing information
Cloud Infrastructure
- Hosting providers (AWS, Azure, DigitalOcean, or similar)
- Purpose: Host and maintain the platform
- Data shared: All platform data
Communication Services
- Email service providers (SMTP, SendGrid)
- SMS service providers (for OTP)
- Purpose: Send notifications and communications
- Data shared: Contact information, message content
We do not sell your personal information to third parties.
4.2 Legal Requirements
We may disclose your information if required by law or in response to:
- Court orders or legal processes
- Government requests or investigations
- Protection of our rights and property
- Safety concerns for users or the public
4.3 Business Transfers
In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.
4.4 Your Consent
We may share your information with your explicit consent for purposes not covered in this policy.
5. Data Security
5.1 Security Measures
We implement industry-standard security measures to protect your data:
Technical Security
- ✓ TLS 1.3 encryption in transit
- ✓ AES-256 encryption at rest
- ✓ Secure credential hashing
- ✓ DDoS protection
- ✓ Intrusion detection
Organizational Security
- ✓ Staff security training
- ✓ Limited data access
- ✓ Comprehensive audit logs
- ✓ Regular security audits
- ✓ Penetration testing
5.2 Instance Isolation
- Each n8n instance runs in an isolated environment
- Your workflows and data are not accessible to other users
- Dedicated credentials for each instance
- Network isolation between instances
5.3 Backup and Recovery
- Regular automated backups of your data
- Encrypted backup storage
- Disaster recovery procedures
- Data retention according to your plan
6. Data Retention
6.1 Active Account Data
We retain your data as long as your account is active and for the duration of your subscription.
6.2 Deleted Account Data
When you delete your account:
- Immediate deletion: Account access removed immediately
- Grace period: 30-day grace period for data recovery (if requested)
- Permanent deletion: Complete data deletion after grace period
- Backup retention: Backup copies deleted within 30 days
6.3 Legal Requirements
We may retain certain data longer if required by law or for legitimate business purposes:
- Financial records (for tax and accounting purposes)
- Audit logs (for security and fraud prevention)
- Legal hold data (if involved in legal proceedings)
6.4 Anonymous Data
We may retain anonymized and aggregated data indefinitely for statistical analysis and service improvement.
7. Your Privacy Rights
7.1 Access & Portability
- ✓ Request a copy of your data
- ✓ Download your workflows
- ✓ Receive data in portable format
7.2 Correction & Updates
- ✓ Update inaccurate information
- ✓ Change profile details
- ✓ Update contact information
7.3 Deletion
- ✓ Request data deletion
- ✓ Delete your account
- ✓ Complete removal of data
7.4 Restriction & Objection
- ✓ Restrict data processing
- ✓ Opt-out of marketing
- ✓ Object to certain uses
To exercise your rights, contact us at: privacy@n8nclouds.com
9. Third-Party Links
Our platform may contain links to third-party websites and services:
- External sites are not covered by our privacy policy
- Third-party practices are governed by their own privacy policies
- Review privacy policies of external sites you visit
- We are not responsible for third-party privacy practices
10. Children's Privacy
Our services are not intended for users under 18 years of age:
- We do not knowingly collect data from minors
- If you believe we have collected data from a minor, contact us immediately
- We will promptly delete such information
11. International Data Transfers
11.1 Data Location
- Primary storage in secure data centers
- Cloud infrastructure may be distributed across multiple regions
- Backups stored in geographically separate locations
11.2 Cross-Border Transfers
If data is transferred internationally:
- Adequate protections through standard contractual clauses
- Compliance with applicable data transfer regulations
- Explicit consent for international transfers when required
12. Data Protection Compliance
12.1 Bangladesh ICT Act
We comply with the Information and Communication Technology Act of Bangladesh, including legal registration, data protection standards, user rights protection, and regulatory reporting.
12.2 GDPR Considerations
For users in the EU/EEA, we provide GDPR-compliant protections including legal basis for processing, data subject rights, data protection officer contact, and cross-border transfer safeguards.
12.3 Other Regulations
We monitor and comply with applicable data protection laws in all jurisdictions where we operate.
13. Changes to This Policy
13.1 Policy Updates
- We review and update this policy periodically
- Material changes notified via email and dashboard
- Changes effective upon posting (unless stated otherwise)
- Continued use after changes constitutes acceptance
13.2 Version History
Current version: 1.1 | Last updated: March 1, 2026