CyberloopCyberloop

Privacy Policy of Cyberloop Limited

Last Updated: 19th March 2025
Effective Date: 19th March 2025

1. Controller Information

Cyberloop Limited ("we," "us," or "our"), a company registered in Hong Kong under the Companies Ordinance (Cap. 622), operates the website loop.hk and provides IDC services, virtual hosting, blockchain infrastructure, and related solutions.
Registered Address: 11F ROOM 1104A KAI TAK COMM. BLDG 317-319 DES VOEUX RD Sheung Wan Hong Kong

2. Scope of this Policy

This policy applies to:

  • Visitors of our website;
  • Customers using our IDC, data transmission, virtual hosting, or blockchain services;
  • Third-party partners interacting with our infrastructure.

3. Information We Collect

3.1 Directly Provided Data

  • Account Information: Name, company, email, phone, payment details (e.g., bank/crypto wallet addresses).
  • Service-Specific Data:
    • For IDC/Virtual Hosting: IP addresses, server logs, resource usage metrics.
    • For Blockchain Services: Node public keys, mining rig hardware identifiers, transaction hashes.
  • Support Communications: Records of emails, chat logs, or calls.

3.2 Automatically Collected Data

  • Website Usage: IP address, browser/OS type, pages visited, referral URLs (via cookies and analytics tools).
  • Infrastructure Monitoring: Network traffic patterns, server uptime/downtime logs, DDoS attack alerts.

3.3 Third-Party Sources

  • KYC Verification: Government-issued ID data (if required for compliance).
  • Payment Processors: Transaction confirmations from banks or crypto exchanges.

4. Legal Basis for Processing

We process data under:

  • Contractual Necessity: To fulfill service agreements (e.g., hosting, node operation).
  • Legal Obligations: Compliance with Hong Kong laws (e.g., anti-money laundering, tax reporting).
  • Legitimate Interests: Fraud prevention, network security, service improvement.
  • Consent: For marketing emails or non-essential cookies (explicitly requested).

5. How We Use Your Information

PurposeData TypesLegal Basis
Service DeliveryAccount, payment, node keysContract
Network Security MonitoringIP addresses, server logsLegitimate Interests
Compliance & Legal RequestsKYC data, transaction recordsLegal Obligation
Marketing CommunicationsEmail, cookiesConsent

6. Data Sharing & Disclosure

6.1 Third Parties

  • Service Providers:
    • Cloud vendors (AWS/Azure for hosting);
    • Payment gateways (Stripe, Coinbase Commerce);
    • Blockchain networks (e.g., node synchronization data).
  • Legal/Regulatory Authorities: Disclosures required under Hong Kong laws or court orders.

6.2 Cross-Border Transfers

Data may be transferred to jurisdictions outside Hong Kong (e.g., cloud servers in Singapore). We ensure safeguards via:

  • Standard Contractual Clauses (SCCs);
  • Encryption during transit.

7. Blockchain-Specific Clauses

  • Public Ledger Transparency: Transactions on blockchain networks are immutable and publicly visible. We do not control data once written to the chain.
  • Node Validator Data: Public keys and staking addresses may be visible to network participants.

8. Data Security Measures

  • Technical: AES-256 encryption, firewalls, multi-factor authentication (MFA).
  • Physical: Biometric access controls to data centers.
  • Organizational: Regular penetration testing, employee confidentiality agreements.

9. Data Retention

Data TypeRetention Period
Account Information5 years after contract termination
Blockchain TransactionIndefinitely (due to immutability)
Server Logs12 months

10. Your Rights under Hong Kong PDPO

  • Access/Correction: Request a copy of your data or rectify inaccuracies.
  • Erasure: Delete non-essential data (excludes legal/compliance records).
  • Object/Restrict: Opt out of marketing or dispute processing legitimacy.

Submit Requests To: [email protected] (Response within 30 days).

11. Cookies & Tracking Technologies

  • Essential Cookies: Required for website functionality (no consent needed).
  • Analytics Cookies: Google Analytics (_ga, _gid) – opt-out via cookie banner.

12. Policy Updates

Changes will be notified via:

  • Website banners (30 days prior);
  • Direct email (for active customers).