Legal
Privacy Policy
Last updated: June 24, 2025 · Effective immediately
SharkCluster ("we", "our", "us") is a managed cloud hosting platform operated by Coreway Solution, based in Ahmedabad, Gujarat, India. This Privacy Policy explains how we collect, use, store, and protect your information when you use our platform, website, and related services.
By accessing SharkCluster, you agree to the practices described in this policy.
1. Information We Collect
1.1 Account & Identity Information
- Name, email address, phone number
- Company name (if applicable)
- LinkedIn profile data when you sign up via LinkedIn OAuth (name, email, profile photo)
- Billing address and country
1.2 Payment Information
We do not store full credit/debit card numbers on our servers. Payments are processed through third-party payment gateways. We store transaction IDs, invoice amounts, and wallet credit history.
1.3 Server & Infrastructure Data
- VPS/server details you provision through the platform (hostname, region, plan, IP addresses)
- API credentials you store for connecting third-party providers (DigitalOcean, OVH, Contabo, Vultr, etc.) — stored encrypted at rest
- Server monitoring metrics (CPU, RAM, disk, network) if you use InfraCaptain monitoring features
1.4 Usage & Technical Data
- IP address, browser type, operating system
- Pages visited, features used, session duration
- Error logs and support interactions
- Referral parameters (e.g.
?ref= tracking links)
2. How We Use Your Information
- To create and manage your SharkCluster account
- To provision, manage, and monitor cloud servers on your behalf via provider APIs
- To process payments and maintain wallet credit balances
- To send transactional emails (invoices, server alerts, account notifications)
- To provide customer support
- To detect fraud, abuse, and security incidents
- To improve the platform based on aggregated usage analytics
- To send product updates or promotional emails (you can unsubscribe anytime)
3. Third-Party Service Providers
We integrate with and share limited data with the following categories of third parties to deliver our service:
- Cloud infrastructure providers – OVH, DigitalOcean, Vultr, Contabo, and others, using your credentials or our reseller credentials to provision servers
- Payment processors – to handle subscription and wallet top-up payments
- Email delivery services – for transactional and marketing emails
- Analytics tools – aggregated, anonymized usage data only
- LinkedIn – if you sign in with LinkedIn, their OAuth flow shares your basic profile per their own Privacy Policy
We do not sell your personal data to any third party.
4. API Credentials Security
Important: When you connect a provider (e.g. DigitalOcean, Vultr) by entering your API key, that key is stored encrypted at rest and is used exclusively to manage resources on your behalf. We never use your credentials for any other purpose.
5. Data Retention
We retain your account data for the duration of your subscription and up to 90 days after account closure, after which personal data is deleted or anonymized. Server logs are retained for 30 days for security purposes. Billing records are retained for 7 years as required by applicable tax laws in India.
6. Your Rights
Depending on your location, you may have the right to:
- Access the personal data we hold about you
- Request correction of inaccurate data
- Request deletion of your account and associated data
- Withdraw consent for marketing communications
- Data portability (export of your account data)
To exercise any of these rights, contact us at [email protected].
7. Cookies
We use essential cookies to keep you logged in and remember your session. We may use analytics cookies (e.g. PostHog) to understand feature usage. You can disable cookies in your browser, though some platform features may not function correctly.
8. Children's Privacy
SharkCluster is intended for users aged 18 and above. We do not knowingly collect data from minors.
9. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you by email or in-app notice at least 7 days before material changes take effect. Continued use of the platform after the effective date constitutes acceptance of the updated policy.
10. Contact