Privacy Policy

Last updated: 10 February 2026

PROTOCOL 7 LTD is committed to protecting your privacy and ensuring your personal data is handled responsibly and in accordance with:
  • General Data Protection Regulation (GDPR) (EU) 2016/679
  • UK GDPR as incorporated into the Data Protection Act 2018
  • Privacy and Electronic Communications Regulations (PECR)
  • All applicable UK and EU data protection legislation
ℹ️

Important This policy complies with GDPR Articles 13 and 14 transparency requirements. For GDPR-specific information, see Section 6.

1. Who we are

Protocol 7 is operated by PROTOCOL 7 LTD, a company registered in the United Kingdom. We provide enterprise-grade BGP, tunneling, and IXP network infrastructure services.

2. Information we collect

Account and identity information

  • Username and email address
  • Hashed password
  • Two-factor authentication settings

Technical and security information

  • IP address
  • Browser type and version
  • Session tokens

Service usage information

  • Network configuration details
  • BGP session data
  • Tunnel connection logs

3. How we use your information

  • Security: Protecting your account and our infrastructure
  • Service delivery: Provisioning and maintaining your network services
  • Communication: Sending service updates and security alerts
  • Improvement: Analysing usage patterns to improve our services

4. Data retention

We retain your personal data only for as long as necessary to provide our services and fulfil legal obligations. Account data is deleted within 30 days of account closure. Security logs are retained for up to 12 months.

5. Data sharing

We do not sell your personal data. We may share data with trusted service providers who assist in operating our infrastructure, subject to appropriate data processing agreements. We may also disclose data when required by law.

6. GDPR compliance and your rights

Under the UK GDPR and EU GDPR, you have the following rights regarding your personal data:

  • Right of access — obtain a copy of your personal data
  • Right to rectification — correct inaccurate data
  • Right to erasure — request deletion of your data
  • Right to restrict processing — limit how we use your data
  • Right to data portability — receive your data in a structured format
  • Right to object — object to processing of your data

To exercise any of these rights, contact our Data Protection Officer at dpo@protocol7.co.uk.

7. Child safety

Our services are not intended for individuals under 14 years of age. We do not knowingly collect personal data from children. If you believe we have collected data from a minor, please contact us immediately.

8. Changes to this policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new policy on this page with an updated revision date.

9. Contact us

If you have any questions about this Privacy Policy or our data practices, please contact us at dpo@protocol7.co.uk.