These Terms of Service govern your access to and use of Hosthink websites, portals, APIs, compute, storage, connectivity, support, managed application hosting, AI/application hosting, email add-ons, and related infrastructure services operated by Sembol Internet Hizmetleri ve Dış Tic. Ltd. Şti., Istanbul, Türkiye ("Hosthink", "we", "us"). By ordering, accessing, or using the services, you agree to these terms and every policy referenced on this page.
Important commercial terms: payments are final and non-refundable except where mandatory law requires otherwise or Hosthink expressly agrees in writing; we may request KYC or business verification when risk, payment, abuse, legal, or compliance checks require it; and usage beyond included bandwidth may be charged at USD 0.03 per GB unless your order states another rate.
You must provide accurate account, billing, tax, and contact information and keep it current. You are responsible for all activity under your account, including users, administrators, contractors, customers, scripts, agents, integrations, and automated systems you authorize. You must keep passwords, API keys, SSH keys, gateway tokens, mailbox credentials, and recovery methods secure. We may require multi-factor authentication for security-sensitive or billing actions.
We may request identity, company, beneficial-owner, address, payment, source-of-funds, intended-use, sanctions, or fraud-prevention verification before activation or at any time during service. We may pause provisioning, suspend services, reject orders, or terminate accounts when verification is incomplete, inconsistent, high-risk, legally restricted, or refused. Verification materials are processed under our Privacy Policy and may be retained where needed for legal, tax, accounting, security, abuse, or dispute purposes.
We provide virtual servers, dedicated servers, GPU servers, colocation, IP transit, CDN-connected delivery, managed applications, AI/application hosting, and network services in multiple metros. Inventory, routes, upstream providers, IP ranges, hardware models, control panels, templates, and locations may change when needed for security, availability, capacity, legal compliance, supplier change, or operational reasons. We will avoid material negative changes where commercially reasonable.
Plans, renewal terms, overage rates, taxes, currency, and included resources are shown at checkout, in the customer portal, or in written order terms. Monthly and prepaid services renew automatically unless cancelled before the renewal date. Usage-based resources may be billed during the billing cycle or at renewal. Unpaid invoices may result in suspension, late fees where lawful, data deletion after notice, debt collection, or termination.
You retain ownership of your content, data, software, and workloads. You grant Hosthink the limited rights needed to host, transmit, cache, secure, back up, troubleshoot, and provide the services. You are responsible for maintaining lawful rights to the content you deploy and for configuring security, backups, access controls, and data protection settings appropriate to your workload.
You must not bypass metering, exploit shared infrastructure, scan or attack third parties, send spam, host illegal material, or use the services in a way that creates risk to Hosthink, other customers, or networks. We may throttle, filter, null-route, isolate, suspend, or remove workloads when needed to stop abuse, respond to legal process, protect infrastructure, or comply with our Acceptable Use Policy.
The services may rely on data centers, carriers, payment processors, domain registries, Cloudflare CDN/security services, control panels, open-source projects, AI model/API providers, email delivery providers, support tooling, and other subprocessors. Third-party terms may apply where those services are selected by you or required to deliver the service. We are not responsible for third-party outages, policy changes, API limits, model behavior, license restrictions, or deprecations outside our control.
Except for the express service commitments in the SLA, the services are provided on an "as is" and "as available" basis to the fullest extent permitted by law. We are not liable for indirect, incidental, special, consequential, exemplary, punitive, or lost-profit damages. Our aggregate liability for claims related to the services is limited to the amounts you paid to Hosthink for the affected service during the three months before the event giving rise to the claim, unless a different limit is required by mandatory law.
You may cancel services from the dashboard or by support request. We may suspend or terminate services for non-payment, failed verification, legal risk, security risk, AUP violations, sanctions exposure, payment dispute, chargeback, resource abuse, or material breach. Where legally and operationally possible, we will provide notice and an opportunity to cure. After suspension or termination, data may be deleted according to the product lifecycle and the retention periods in the Privacy Policy and any applicable DPA.
These terms are governed by the laws of Türkiye, excluding conflict-of-law rules, unless mandatory consumer or data protection law gives you rights in another jurisdiction. Courts and enforcement bodies with mandatory jurisdiction remain unaffected.
We may update these terms to reflect legal, operational, security, product, or supplier changes. Material changes will be posted on this page with a new effective date. Continued use after the effective date means you accept the updated terms.
This section explains billing and resource-limit rules that apply across Hosthink services unless a product page, signed order, or written agreement gives a different rule.
| Item | Policy |
|---|---|
| Payments | Invoices are due on the stated due date. Services may be suspended or terminated for unpaid invoices, failed payments, chargebacks, payment fraud, or unresolved verification. |
| Refunds | All payments are final and non-refundable except where mandatory law requires otherwise or Hosthink expressly agrees in writing. |
| Bandwidth overage | Bandwidth beyond the included monthly quota may be billed at USD 0.03 per GB, measured from network accounting data, unless your order states another rate. |
| Fair use | CPU, RAM, disk I/O, storage, database, mail, API, AI/proxy, and network usage must stay within the plan limits and normal operation for the selected product. |
| IP addresses | Additional IPs are subject to justification, availability, registry policy, abuse history, and recurring charges. We may revoke or renumber IPs for abuse, legal, operational, or registry reasons. |
| Backups | Unless a plan expressly includes managed backups, customers are responsible for backups. Any provided backups are a convenience, not a guarantee of recovery. |
| Licenses and domains | Third-party licenses, domains, SSL certificates, registry fees, custom procurement, setup, migration, reserved capacity, and professional services are non-refundable once ordered, activated, or consumed. |
We may apply rate limits, queueing, port restrictions, mail limits, AI/model limits, API limits, throttling, or temporary suspension when usage threatens platform stability, violates product limits, creates abnormal cost, or harms IP/network reputation. Limits may be adjusted to protect service quality and abuse controls.
Hosthink support is provided on a best-effort basis unless a written enterprise agreement states otherwise. Our target first response time for standard support tickets is within 24 hours. Security incidents, outages, billing blocks, and abuse issues may be triaged faster, while complex software, application, migration, or third-party cases may require more time.
Support covers Hosthink platform availability, provisioning, billing, network reachability, account access, and product features we directly operate. Support does not include custom development, debugging customer code, administering unmanaged operating systems, recovering deleted customer data, tuning third-party applications, guaranteeing AI/model output, or fixing software installed by the customer unless the product explicitly includes managed support.
Customers must provide accurate service IDs, timestamps, logs, error messages, and reproduction steps. We may refuse support requests that require unsafe access, credential sharing, unlawful activity, unsupported software, or actions that would compromise another customer or Hosthink infrastructure.
This Privacy Policy explains how Hosthink processes personal data when you visit our websites, contact us, create an account, order services, complete verification, use the customer portal, open support tickets, or run infrastructure with us. For customer workloads that contain personal data, Hosthink normally acts as a processor and the customer acts as controller. For account, billing, security, abuse, compliance, website, fraud-prevention, and legal-request data, Hosthink acts as controller.
Controller: Sembol Internet Hizmetleri ve Dış Tic. Ltd. Şti., Seyrantepe Mah. Nato Çık. No: 2/2 Kağıthane/İstanbul, Türkiye. Data protection and legal contact: legal@hosthink.net.
| Category | Examples | Purpose | Legal basis |
|---|---|---|---|
| Account data | Name, company, email, phone, billing address, role, login metadata | Create accounts, authenticate users, manage services, communicate with you | Contract; legitimate interests; legal obligations |
| Billing, KYC, and compliance data | Invoices, VAT/tax data, payment status, fraud checks, sanctions screening outcomes, identity or business verification materials where required | Billing, collections, accounting, fraud prevention, verification, legal compliance, dispute handling | Contract; legal obligations; legitimate interests |
| Service and network data | IP addresses, hostnames, traffic metadata, firewall events, API logs, resource identifiers, support diagnostics | Operate, secure, troubleshoot, meter, and improve services | Contract; legitimate interests; legal obligations |
| Support and sales data | Tickets, emails, chat messages, call notes, requested configurations | Respond to requests, provide support, quote and deliver services | Contract; legitimate interests; consent where required |
| Website and cookie data | Consent choice, security cookies, Cloudflare CDN/WAF logs, aggregate analytics | Keep the site secure, remember preferences, measure performance and reliability | Legitimate interests for necessary security; consent for optional cookies/analytics where required |
We use Cloudflare as a CDN, DNS, DDoS mitigation, WAF, bot-management, performance, and security provider. Cloudflare may process IP addresses, request headers, URLs, timestamps, security events, and limited device/browser signals to deliver, cache, route, and protect traffic. Cloudflare may set strictly necessary security cookies such as __cf_bm or cf_clearance when bot mitigation, challenge, or fraud-prevention features require them. We may also use Cloudflare Web Analytics to understand aggregate page views and performance; Cloudflare describes this product as privacy-first and cookie-free.
We do not sell personal data. We share personal data only with service providers and subprocessors needed to operate Hosthink, including data centers, carriers, Cloudflare, payment processors, accounting providers, support tooling, email delivery providers, fraud-prevention providers, and professional advisers. We may disclose data when required by valid legal process, to protect rights and security, or in connection with a corporate transaction.
Customer compute and storage data remains in the region you deploy unless you configure replication, backups, support access, or integrations elsewhere. Account, billing, support, security, and control-plane metadata may be processed in Türkiye, the EEA, the United Kingdom, the United States, and other countries where we or our subprocessors operate. For transfers from the EEA/UK/Switzerland, we rely on adequacy decisions, Standard Contractual Clauses, the UK Addendum/IDTA where applicable, supplementary safeguards, or another lawful transfer mechanism.
We keep personal data only as long as needed for the purposes above. Typical periods are: account records for the life of the account plus up to 6 years for legal, tax, accounting, and dispute purposes; invoices and accounting records for legally required periods; KYC, fraud, sanctions, abuse, and payment-dispute records for as long as needed to protect Hosthink, comply with law, and prevent repeat abuse; security and access logs typically 12 months unless needed for investigation; support tickets up to 3 years after closure; backups according to the relevant product backup cycle; cookie consent records up to 12 months before renewal. Deletion requests may be refused or delayed where retention is required for legal, tax, accounting, security, abuse-prevention, dispute, or law-enforcement reasons.
Depending on your location, you may request access, correction, deletion, restriction, portability, objection, withdrawal of consent, and information about automated decision-making. You may also lodge a complaint with your local data protection authority. Send requests to legal@hosthink.net. We may need to verify your identity and may retain data where required for legal, security, billing, or dispute reasons.
Hosthink services are intended for business and technical users and are not directed to children. We do not knowingly collect children's personal data through our websites or customer portal.
We use administrative, technical, and organizational safeguards including access control, encryption in transit, least-privilege internal access, logging, network segmentation, vulnerability handling, and incident response processes. No system is perfectly secure; customers remain responsible for securing their own applications, credentials, backups, operating systems, and data.
You may not use Hosthink services for unlawful, harmful, abusive, or high-risk activity. You are responsible for your users, customers, scripts, containers, virtual machines, and downstream traffic. Prohibited activity includes:
We may remove content, rate-limit, block ports, null-route IPs, suspend services, preserve evidence, or report activity when required to protect the network, comply with law, or prevent harm. Abuse reports should be sent to abuse@hosthink.net with logs, timestamps, time zone, IPs, URLs, and headers where available.
We target 99.99% monthly availability for paid dedicated, cloud, and VPS services, measured per affected service from Hosthink monitoring and ticket evidence. Availability means the service can exchange IP traffic with our edge network and the underlying power/network/hardware layer is functioning.
| Monthly availability | Service credit |
|---|---|
| 99.99% to 99.9% | 5% of the affected monthly service fee |
| 99.9% to 99.0% | 10% of the affected monthly service fee |
| 99.0% to 95.0% | 25% of the affected monthly service fee |
| Below 95.0% | 50% of the affected monthly service fee |
Credits are applied to future invoices and are the sole remedy for SLA failure unless mandatory law provides otherwise. Credits cannot exceed the monthly fee for the affected service.
The SLA does not apply to planned maintenance with notice, customer misconfiguration, customer software failure, compromised credentials, suspended services, non-payment, AUP violations, force majeure, upstream Internet events outside our control, beta/free services, attacks that exceed purchased protection, or outages caused by third-party services selected by the customer.
Open a support ticket within 7 days of the incident with service ID, timestamps, impact, and logs. We may also apply credits proactively when our monitoring confirms an eligible outage.
This DPA applies when Hosthink processes personal data on behalf of a customer as processor in connection with the services. It forms part of the agreement between Hosthink and the customer. If you need a signed copy, Standard Contractual Clauses, or a subprocessor list for procurement, email legal@hosthink.net.
The customer is controller or processor, as applicable, and Hosthink is processor/subprocessor. Hosthink processes customer personal data only to provide, secure, support, maintain, meter, and improve the services; to comply with documented customer instructions; and as required by law. Customer instructions must be lawful and must not require Hosthink to violate sanctions, export rules, network policy, security controls, or applicable law.
Hosthink restricts access to personnel and subprocessors who need it to provide the services and who are bound by confidentiality obligations. We maintain appropriate technical and organizational measures considering the nature of infrastructure services, including access controls, network security, logging, backup controls, encryption in transit, and incident response.
The customer authorizes Hosthink to use subprocessors for data centers, connectivity, CDN/security, payment, support, monitoring, email, and operational tooling. Hosthink remains responsible for subprocessor performance where required by data protection law and will require subprocessors to protect personal data under materially similar obligations.
Where GDPR, UK GDPR, or Swiss data protection law requires a transfer mechanism, the parties incorporate the applicable Standard Contractual Clauses and supplementary safeguards. Customer instructions must identify any special data residency requirement before deployment.
We will reasonably assist with data subject requests, DPIAs, audits, and regulator inquiries where required by law and where the customer cannot fulfill the request independently. After service termination, we delete or return customer personal data according to product functionality, backup cycles, and legal retention obligations.
We will notify affected customers without undue delay after confirming a personal data breach involving customer personal data processed by Hosthink, and we will provide information reasonably available to help the customer meet its notification duties.
All payments to Hosthink are final and non-refundable except where mandatory law requires a refund or Hosthink expressly agrees in writing. This applies to monthly, annual, prepaid, committed-term, usage-based, setup, migration, custom hardware, reserved capacity, third-party license, domain, SSL, managed application, AI access, email add-on, professional service, and overage charges.
Cancellation stops future renewal when completed before the renewal date, but it does not create a refund, credit, or partial refund for the current billing period. Unused time, unused bandwidth, unused AI/proxy quota, unused mail capacity, unused IPs, and unused add-ons are not refundable.
SLA credits, when approved, are service credits applied to future invoices for the affected service. They are not cash refunds and cannot be transferred, redeemed, or withdrawn unless mandatory law requires otherwise.
We review government, court, regulator, and law-enforcement requests for validity, jurisdiction, specificity, and legal basis. Requests should identify the legal authority, affected account, IP address, timestamp with time zone, requested data, and contact details. Send requests to legal@hosthink.net. Emergency requests involving imminent risk of death or serious physical harm should be clearly marked "Emergency".
Unless prohibited by law or where notice would create risk of harm, we may notify affected customers before disclosure. We preserve and disclose data only as required by valid legal process or applicable law.