× Home Secure Cloud Hosting Secure Server Hosting Secure Email Hosting HIPAA Compliance Web Development Mobile Development UI / UX Design About Contact
Rebel Webmail Rebel Control Panel WebSmith Mail Portal

Rebel IST policies associated with General Data Protection Regulation (GDPR)




Overarching policy

Rebel IST (The Company) is a web hosting and development company based in the USA. For the European Union and GDPR, The Company only provides web hosting services. The Company hosts websites and email accounts on servers The Company owns and operates. These servers are in a highly secure data center based in continental USA. The Company does not sell data nor does The Company share data unless directed to do so by the customer in writing. The Company asks for and retains only personal data that is needed to provide the requested service. This data includes names, physical addresses, email addresses, IP addresses and phone numbers. Rebel IST may initially have access to customer billing information when setting up a new account. This information is entered into an encrypted, EU approved credit card billing system. The information is not retained by Rebel IST.



Content Management, third party applications and cookies.

All websites hosted by Rebel IST are the property of the owner (customer). Our customers select all third-party software and applications. Rebel is not aware of and is not a party to the selection process. Therefore, The Company is not responsible for these third-party providers and cannot be held liable for the policies and practices of these providers. Rebel IST does not use cookies. Rebel uses the WHMCS client management system for website hosting and billing. The WHMCS privacy and GDPR policies can be found at the following link. WHMCS Privacy Policy



Privacy Policy

Rebel IST and all its subsidiaries collect only data required for the performance of the service that has been requested (and directed) by the customer. The Company does not sell or share customer data. All data collected is stored on secure hardware and software under direct control of The Company using the latest encryption technologies.



Changes to our Policy

The Company reserves the right to modify this policy along with our standard Privacy Policy at any time. If we decide to change our Privacy Policy, we will post the changes on our website. If we make material changes that directly impact any of our customers, we will also notify you by email at least thirty (30) days prior to the implementation of the changes.



Data Protection Supervisory Authority

If you are a resident of the European Economic Area (EEA) and believe we maintain your personal data subject to the General Data Protection Regulation (GDPR), you may direct questions or complaints to the Companies designated supervisory authority, the UK's Information Commissioner’s Office, as noted below:



Data Portability

You may request a copy of your personal information in a format that you can take to another service provider. We will respond to your request within business 30 days via email with the data requested.



Right to withdraw consent and erasure of personal data

The customer has the right to “withdraw consent” for use of personal data at any time. You must do so in writing. Withdrawal of consent will result in account closure and data deletion as The Company will no longer have access to the information necessary to service your account.
The following conditions apply:


Once The Company has received your consent withdrawal request, it may take up to 30 business days for account data to be deleted. After deletion, you will no longer be able to access your account and your account will be unrecoverable. Data that is necessary for the products or services you have purchased may be retained if required by law and for financial record keeping requirements.



Contact Us

If you have any questions, concerns or complaints about our Policy, or our Services, you may contact The Company in writing at the address below.


The Company will respond to all requests within thirty (30) business days.