EPY Host Privacy Policy - Compliant with EU-U.S. Data Privacy Framework (DPF)
Privacy Policy Disclaimer:
At EPY Host, we uphold the highest ethical standards in our business practices. We carefully collect, use, and disclose personal information in accordance with the laws of the countries where we operate.
This Privacy Policy, in line with the EU-U.S. Data Privacy Framework program (EU-U.S. DPF), details the privacy principles followed by EPY Host regarding the transfer of personal information from the European Economic Area (EEA) - including the twenty-eight member states of the European Union (EU) and Iceland, Liechtenstein, and Norway - to the United States.
EPY Host follows the guidelines of the EU-U.S. Data Privacy Framework program (EU-U.S. DPF) established by the U.S. Department of Commerce. Our certification affirms our commitment to complying with the EU-U.S. Data Privacy Framework program Principles (EU-U.S. DPF Principles) regarding the processing of personal data received from the European Union under the EU-U.S. DPF. In case of any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles, the Principles will take precedence. For more information about the Data Privacy Framework (DPF) program or to view our certification, please visit https://www.dataprivacyframework.gov/.
EPY Host proudly certifies its commitment to the EU-U.S. Data Privacy Framework program (EU-U.S. DPF) principles, including Notice, Choice, Accountability for Onward Transfer, Security, Data Integrity and Purpose Limitation, Access, and Recourse, Enforcement, and Liability under its EU-U.S. Data Privacy Framework program (EU-U.S. DPF) certification. In case of any conflict between the terms in this privacy policy and the EU-U.S. Data Privacy Framework program (EU-U.S. DPF) Principles, the EU-U.S. Data Privacy Framework program (EU-U.S. DPF) Principles will take precedence. To learn more about the EU-U.S. Data Privacy Framework program (EU-U.S. DPF) or view EPY Host’s certification, please visit the https://www.dataprivacyframework.gov/ page.
EPY Host is fully committed to the EU-U.S. Data Privacy Framework program (EU-U.S. DPF), covering all personal data regulated by the EPY Host Privacy Agreement and received from the European Union and European Economic Area. We adhere strictly to the EU-U.S. Data Privacy Framework program (EU-U.S. DPF) principles governing the treatment of such personal data. For a comprehensive understanding of data collection and use, please refer to the EPY Host Privacy Agreement. Moreover, specific personal information may be subject to EPY Host's more detailed privacy policies, all designed to align with the requirements of the EU-U.S. Data Privacy Framework program (EU-U.S. DPF).
EPY Host collects the following data and lists the purpose of collection
| Data | Purpose |
|---|---|
| First name | Marketing, Billing/Account Provisioning, Biometric Enrolment |
| Last name | Marketing, Billing/Account Provisioning |
| Company name | Marketing, Billing/Account Provisioning |
| Corporate physical address | Billing/Account Provisioning |
| Corporate phone number | Billing/Account Provisioning |
| Driver’s license/ National ID/ Passport | To verify KYC |
Know Your Customer (KYC) & Order Policies
To ensure the highest level of security and service integrity, EPY Host enforces a strict Know Your Customer (KYC) policy. During registration and order placement, customers must provide original and accurate details, including their full name, email address, phone number, physical address, country, and postal code. We proudly welcome customers globally, including those from Russia.
VPN Restriction: For fraud prevention, you must not be connected to a Virtual Private Network (VPN) when placing an order. Any orders placed while a VPN is active will be automatically rejected.
Data Accuracy & No Refund Policy: Providing fake or inaccurate information is a violation of our terms. If fake information is detected, you will be given one final opportunity to update your account with accurate data. If you are unable to provide valid KYC details, or if the provided information remains false, your account will be permanently banned, your payment will be frozen, and no refunds will be issued.
Refund Eligibility: Refunds for unverified accounts are only permitted for orders placed via Visa, Mastercard, or American Express. For all other payment methods, including cryptocurrencies or alternative gateways, no refunds will be issued if the KYC verification process is not successfully completed.
Our Commitment to Your Privacy: We highly respect your privacy and the trust you place in us. EPY Host will never sell, leak, or inappropriately share your personal information with unauthorized third parties.
EPY Host may share its marketing data with partners in its ecosystem. This data sharing process may involve the use of third-party automation and CRM systems, with Salesforce and Hubspot being the primary platforms.
Moreover, EPY Host may reveal an individual’s personal information if compelled by legal requirements from public authorities, such as fulfilling national security or law enforcement obligations.
If EPY Host decides to share personal data with third parties for purposes beyond the initial collection or subsequent authorization, individuals will be provided with the option to opt-out. This allows them to limit the use and disclosure of their data.
EPY Host takes responsibility for personal data received under the EU-U.S. Data Privacy Framework program (EU-U.S. DPF) and transferred to a third party, as detailed in the EU-U.S. Data Privacy Framework program (EU-U.S. DPF) Principles. In essence, EPY Host remains accountable and liable under these principles if third-party agents, processing personal data on its behalf, fail to adhere to the Principles. This accountability persists unless EPY Host can prove that it is not responsible for the incident causing the damage.
EPY Host respects the rights of individuals in the EU concerning their personal
information. To access, correct, amend, or delete inaccurate data, individuals can submit a
written request to the Chief Legal Officer, whose contact details are provided below. We
will respond promptly to data removal requests.
As part of our commitment to the EU-U.S. Data Privacy Framework program's Principles,
EPY Host is committed to addressing privacy-related complaints. EU individuals with
inquiries or complaints regarding the DPF can initially contact:
EPY Host,
611 Gateway Blvd South San Francisco
CA 94080 United
States
Additionally, EPY Host has committed to redirecting unresolved privacy complaints under
the DPF Principles to an independent dispute resolution mechanism called Data Privacy
Framework Services, managed by BBB National Programs. If your complaint doesn't receive
timely acknowledgment or a satisfactory resolution, please visit
https://bbbprograms.org/programs/all-programs/dpf-consumers/ProcessForConsumers for further
information and to file a complaint. This service is provided at no cost to you.
If, after going through the above channels, your DPF complaint remains unresolved, you
may, under specific conditions, have the option to pursue binding arbitration for certain
claims. Details are available at
https://www.dataprivacyframework.gov/s/article/G-Arbitration-Procedures-dpf?tabset-35584=2.
If your complaint is not fully resolved after being reviewed by EPY Host, BBB National
Programs Data Privacy Framework Services, and the relevant Data Protection Authority (DPA),
you may, under specific conditions, opt for binding arbitration before the EU-U.S. Data
Privacy Framework program (EU-U.S. DPF) Panel. Additional details can be found at
https://www.dataprivacyframework.gov/.
It's important to mention that EPY Host operates under the investigative and
enforcement authorities of the U.S. Federal Trade Commission (FTC).
Effective Date: February 2026.
