We collect various types of personal data, including but not limited to:

Name, surname, address, phone number, and email address.

Payment data, billing, and accounting documents.

Data related to user profiles and IP addresses.

Data related to the use of our services (e.g., hosting services, domain registration, etc.).

The personal data we collect is used for the following purposes:

Providing services you have requested (e.g., hosting services, domain registration, and support).

Processing payments and billing.

Communication with you regarding your services and inquiries.

Compliance with legal and regulatory requirements (e.g., for tax and accounting purposes).

Improving our services and analyzing user preferences to optimize the services offered.

Protecting our legitimate interests, such as preventing fraud or unauthorized access to our systems.

We process your personal data on the following legal grounds:

Consent: If you have given your consent for the processing of certain personal data.

Contract: When processing is necessary for the performance of a contract to which you are a party (e.g., a hosting services agreement).

Legal obligation: If processing is necessary for compliance with legal obligations (e.g., data retention for accounting purposes).

Legitimate interest: If processing is necessary for the protection of the legitimate interests of the Company or a third party (e.g., protecting the security of information systems).

According to Regulation (EU) 2016/679, you have a number of rights regarding the processing of your personal data:

Right of access: You have the right to obtain confirmation as to whether your personal data is being processed and, if so, to access that data.

Right to rectification: You have the right to request correction of inaccurate or incomplete personal data.

Right to erasure (right to be forgotten): In certain cases, you have the right to request the erasure of your personal data.

Right to restriction of processing: You can request the restriction of processing of your data in certain cases (for example, if you dispute the accuracy of the data).

Right to data portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transfer it to another controller.

Right to object: You have the right to object to the processing of your personal data if the processing is based on legitimate interests or is carried out for direct marketing purposes.

Right not to be subject to automated decision-making, including profiling: You have the right not to be subject to decisions based solely on automated processing of data, including profiling, if this results in legal consequences for you.

To exercise these rights, please contact us using the contact information provided below.

The personal data we collect will be stored only for the period necessary to achieve the purposes of processing, or for the period required by legal or regulatory requirements.

Data Security

We implement all necessary technical and organizational measures to ensure the security of your personal data and to prevent its unauthorized disclosure, loss, or access.

Sharing of Personal Data

Your personal data will not be provided to third parties unless it is necessary for the performance of the contract with you, or if required by law to provide such data to competent authorities.

If you believe that the processing of your personal data infringes your rights, you can file a complaint with the competent supervisory authority — the Commission for Personal Data Protection.

Name: Commission for Personal Data Protection

Headquarters and address: Sofia 1592, Prof. Tsvetan Lazarov Blvd. No. 2

Correspondence details: Sofia 1592, Prof. Tsvetan Lazarov Blvd. No. 2

Phone: 02 915 3 518

Email: kzld@government.bg, kzld@cpdp.bg

Website: www.cpdp.bg

The company reserves the right to update this personal data protection policy. Any changes will be published on our website and will take effect immediately after their publication.

Contact Information

If you have any questions regarding the processing of your personal data, please contact us at the following email address: gdpr@bghosting.cloud or via our customer support phone numbers.

Afar Ltd. provides hosting services, including but not limited to:

Web hosting services
Domain registration
Email management
Backup and data recovery
Other related services (such as SSL certificates, databases, etc.)
By signing a contract or accepting these Terms, you agree to use these services in accordance with the applicable terms.

In order to use the services of Afar Ltd., you must go through the registration process and provide accurate, truthful, and up-to-date information. You are responsible for maintaining the confidentiality of your username and password. In the event of unauthorized access or use of your account, you agree to notify Afar Ltd. immediately.

The services of Afar Ltd. must be used solely for lawful purposes. You agree not to use the services for:

Violation of copyright, trademarks, or other intellectual property rights.
Distributing malicious software, viruses, or other forms of cyber attacks.
Violating the law, including the distribution of illegal content (e.g., pornography, violence, racism, etc.).
Excessive load on servers or services that may disrupt the normal operation of existing systems.

Rights and Obligations of the Provider

AFAR OOD undertakes to provide the services selected by the User in accordance with the technical and functional requirements specified in the contract or on our website.

We reserve the right to:
Change or update our services and terms.
Terminate or restrict the provision of services in the event of a violation of these Terms.
Impose limitations on the use of resources to ensure the stability and security of the system.
Suspend the provision of services in case of force majeure or other unforeseen circumstances.

Rights and Obligations of the User

You agree to use the provided services in a way that does not violate the law, harm third parties, or create overload on AFAR OOD's infrastructure.

The User is responsible for:
Maintaining up-to-date account information.
Complying with all terms and conditions for the use of internet resources and services.
Being responsible for the content uploaded to AFAR OOD's servers.

The User agrees to make payments for the services they use in accordance with the terms of the contract. AFAR OOD offers various payment plans, which can be annual, МЕСЕЧНО, or based on other terms, as specified during the service registration.

Failure to fulfill payment obligations may result in temporary suspension of the service or account removal.

AFAR OOD processes users' personal data in accordance with the General Data Protection Regulation (GDPR). For more details regarding the processing of personal data, please refer to our Privacy Policy.

All rights to the software, technologies, trademarks, design, logo, and other resources related to the services of AFAR OOD are the property of the company or the respective third parties. Users are not permitted to use these resources without the explicit consent of AFAR OOD.

AFAR OOD is not responsible for interruptions in the provision of services, data loss, or other damages arising from:

Force majeure circumstances.
Issues related to internet infrastructure or third-party servers.
Unauthorized use of services by the User.

AFAR OOD reserves the right to terminate the provision of services to any User who violates these Terms, by notifying the User in advance.

AFAR OOD reserves the right to amend these Terms at any time. Any changes will be published on the company's website and will take effect immediately after being posted.

These Terms are governed by Bulgarian law. Any disputes arising in connection with the provision of services will be resolved by the competent courts in Bulgaria.

Your domain registration and any privacy/proxy services that you may use in connection with it must be subject to a registration agreement with an ICANN-accredited registrar.

You have the right to review this Registration Agreement at any time and to download a copy for your records.

You are entitled to accurate and accessible information about: The identity of your ICANN-accredited registrar. The identity of any proxy or privacy service provider associated with your Registrar. The terms and conditions of your Registrar, including pricing information applicable to domain name registrations. The terms and conditions, including pricing information, applicable to any privacy services offered by your Registrar. Customer support services offered by your Registrar and privacy service provider, and how to access them. How to express concerns and resolve disputes with your Registrar and any privacy services they offer. Instructions explaining your Registrar’s processes for registering, managing, transferring, renewing, and recovering your domain name registrations, including through any proxy or privacy services provided by your Registrar. You will not be subject to fraudulent advertising or deceptive practices by your Registrar or through any proxy or privacy services provided by your Registrar. This includes fraudulent notices, hidden fees, and any practices that are illegal under consumer protection law in your jurisdiction.

Registrant Responsibilities for Domain Names

You must comply with the rules and conditions published by your Registrar, including applicable policies from your Registrar, the Registry, and ICANN. You must review the current registration agreement with your Registrar, along with any updates. You are fully responsible for the registration and use of your domain name. You must provide accurate information for publication in directories such as WHOIS and promptly update it to reflect any changes. You must respond to inquiries from your Registrar within fifteen (15) days and keep your account information with the Registrar up to date. If you choose to have your domain name registration automatically renewed, you must also keep your payment information up to date.

You should familiarize yourself with the rules on ICANN.org

Art. 1. With this Policy, "AFAR" Ltd. establishes the procedure for resolving disputes that may arise between users of the company's services, as well as conflicts that may occur between users and third parties in connection with the provision of these services.

Art. 2. The dispute resolution procedure may be initiated by any person who believes that their rights have been violated in using the company's services, either by another service user or by a third party. The possibility to initiate the procedure is available to all affected parties.

Art. 3. "AFAR" Ltd. reserves the right to introduce a fee for processing submitted complaints and requests for dispute resolution. This applies to both disputes between users and those involving third parties, in accordance with the terms outlined in this Policy.

Art. 4. Upon receiving a complaint or request for dispute resolution, "AFAR" Ltd. will notify the opposing party about the submitted request and provide them with the opportunity to express their position on the substance of the dispute. Each party will have the chance to present their arguments and evidence.

Art. 5.

(1) Based on the collected information and the parties' positions, "AFAR" Ltd. will make a decision on the dispute. This decision will be final and binding for all affected parties, including the complainant and the service user to whom the dispute pertains.

(2) For the purpose of resolving the dispute, "AFAR" Ltd. may appoint independent experts or specialized commissions with the necessary qualifications to assist in evaluating the circumstances and providing recommendations for its resolution.

(3) "AFAR" Ltd. is not responsible for the consequences of the decision it makes. The parties explicitly agree to place full trust in the company to resolve the dispute in a manner it deems most appropriate, in accordance with the objective facts and conditions of the case.

Art. 6. This Policy may be modified and updated at any time, at the discretion of "AFAR" Ltd., with all changes being published on the company's website and taking effect immediately upon publication.

1. Introduction:
This Acceptable Use and Security Policy (hereinafter referred to as the "Policy") sets forth the rules and obligations regarding the use of the hosting services provided by AFAR Ltd. It aims to ensure the safety and security of the services and prevent their misuse or unauthorized use by users. By using the services of AFAR Ltd., you agree to the terms of this Policy.

2. Purpose of the Policy
The Policy aims to:
- Ensure a safe and secure environment for all users of AFAR Ltd.'s services.
- Define actions that are considered inappropriate or improper when using hosting services.
- Prevent the use of services for illegal or malicious purposes.
- Create a framework for effective management of risks related to data and infrastructure security.

3. Acceptable Use of Services
Users of AFAR Ltd.'s services are required to use these services solely for lawful purposes and in accordance with the rules of acceptable use. The following activities are strictly prohibited:

3.1. Illegal Activities
Users are prohibited from using hosting services for:
- Distributing illegal content, including, but not limited to, pornography, violence, racism, vandalism, or content that infringes on copyrights or trademarks.
- Committing cybercrimes such as hacking attacks, spreading viruses or malware, phishing, DoS (Denial of Service) attacks, and other forms of computer crimes.
- Distributing illegal or obscene materials through our servers.

3.2. Intellectual Property Infringement
It is prohibited to use hosting resources to upload, store, or distribute content that infringes on copyrights, trademarks, patents, trade secrets, or other intellectual property rights of third parties.

3.3. Unauthorized Access
Users are prohibited from attempting to gain unauthorized access to AFAR Ltd.'s or third-party servers, networks, or other resources. This includes:
- Attempting to access information or services for which you are not authorized.
- Attempting to compromise the security or integrity of AFAR Ltd.'s infrastructure or the systems of other users.

3.4. Spam and Unsolicited Emails
The use of AFAR Ltd.'s services to send spam (unsolicited emails) is prohibited, including, but not limited to:
- Mass sending of unsolicited emails.
- Distributing fraudulent messages with the intent to deceive.
- Using our servers to distribute advertisements or commercial messages without the consent of the recipients.

4. Service Security
AFAR Ltd. strives to provide the highest level of security for its services and data. However, users are also responsible for the security of their accounts and data. The following rules must be observed:

4.1. Password Protection
Users must use strong and unique passwords for their accounts and services.
Passwords must be kept confidential and not shared with third parties.
AFAR Ltd. is not responsible for abuse of accounts where passwords have been compromised due to the user's negligence.

4.2. Data Protection
Users are responsible for the protection of the data they store and manage through AFAR Ltd.'s hosting services.
It is recommended to regularly back up data, as AFAR Ltd. is not responsible for data loss caused by negligence or malicious activities.
4.3. Monitoring and Protection from Attacks
AFAR Ltd. uses modern technologies for monitoring and protecting its systems from external threats such as viruses, DDoS attacks, and other vulnerabilities. However, users must also take measures to protect their websites and applications, such as:
- Regularly updating software and application packages to prevent exploitation of vulnerabilities.
- Using firewalls and other security technologies to protect their resources.

5. User Responsibilities
Users of AFAR Ltd.'s services are required to comply with all the terms outlined in this Policy, including the following restrictions and rules for installing and using applications and software:

5.1. Prohibited Applications and Software
It is prohibited to install or use the following types of applications and software:
- Torrent trackers and file-sharing applications via torrents or P2P networks;
- Online games requiring constant connection to a server for multiplayer games;
- Proxy servers and software designed to relay or manipulate internet traffic (e.g., "traffic relay");
- Cryptocurrency mining software such as Bitcoin, Litecoin, Ethereum, and others;
- Websites offering file sharing or downloading, including P2P platforms like Rapidshare, DepositFiles, MegaUpload, and similar;
- Bots and automated scripts scanning for vulnerabilities or other malicious software.
Additionally, it is prohibited to run background processes, including IRC servers and other programs that open ports for incoming network connections, such as VPN software or network servers.
5.2. Violations and Security Measures
The user acknowledges that AFAR Ltd. has the right to assess which actions or installed applications violate the acceptable use policy and take appropriate measures. These measures may include:
- Termination of service or banning specific software;
- Limiting or banning access for specific IP addresses in case of a security threat or disruption to the normal operation of servers.
In case of a violation and failure to take corrective actions by the user within the time limit, AFAR Ltd. reserves the right to terminate the service and is not responsible for any potential data loss from the account. The user has the right to submit a request for a review of the decision, but only once for each specific violation.
5.3. Email Service Restrictions and Spam
The user is restricted to sending no more than 350 emails per hour and no more than 50,000 emails per week. The use of the service to send unsolicited emails (spam) is prohibited. Violation of this condition will lead to temporary suspension of the service until the matter is clarified. Upon repeated violation, AFAR Ltd. has the right to terminate the service without prior notice.
5.4. Processing Time and Resources
The maximum CPU time that applications in the account can consume depends on the chosen hosting plan:
- Cloud Mini: up to 2700 minutes per month from 2 processor cores;
- Cloud Business: up to 9900 minutes per month from 4 processor cores;
- Cloud Platform: up to 14400 minutes per month from 4 processor cores;
- Cloud Hybrid: up to 25200 minutes per month from 8 processor cores.
If the user exceeds 80% of the МЕСЕЧНО CPU resource limit, AFAR Ltd. will notify them and offer options to optimize resource usage or upgrade to a plan with more resources. Exceeding 100% of the limit may result in service restrictions or termination until the user upgrades to a higher plan or a new month begins.
5.5. Database Restrictions
The user is responsible for using database resources in a way that does not affect server performance. The maximum allowable number of SQL queries to the servers is 100,000 queries per hour. In case of violation of this clause, AFAR Ltd. will request optimization measures for the database or removal of problematic queries. If no action is taken within 24 hours, AFAR Ltd. may terminate or limit the service.
5.6. Backup and File Size Restrictions
The user cannot store backups older than 1 month or files larger than 500 MB in their account.
5.7. Actions in Security Incidents
If a violation or compromise of the user's account is detected (e.g., hacking or security breach), AFAR Ltd. will temporarily suspend the service and notify the user. However, the user is obligated to take immediate action to resolve the issue within 24 hours. If no action is taken, AFAR Ltd. has the right to terminate the service without further warning.
5.8. Deletion of Spam Emails
AFAR Ltd. has the right to delete without warning any emails marked as spam that are older than 1 month.

6. Risks and Limitations
Despite all the efforts made by AFAR Ltd. to protect the infrastructure and data, we cannot guarantee the absolute safety of systems. Users must be aware of the risks and take appropriate security measures.
AFAR Ltd. is not responsible for data loss, service interruptions, or other damages that may arise due to hacking attacks, malicious software, or other external threats.

7. Sanctions for Policy Violations
AFAR Ltd. reserves the right to:
- Terminate or restrict access to services for any user who violates these rules.
- Impose sanctions, including temporary account suspensions, without being liable for any potential damages resulting from these actions.

8. Changes to the Policy
AFAR Ltd. reserves the right to change or update this Acceptable Use and Security Policy at any time. Changes will take effect immediately upon publication on our website.