Privacy Policy

Last Updated: April 16, 2026

This Privacy Policy explains how MultihopIX collects, uses, discloses, and protects information about our customers and website visitors.

1. Information We Collect

1.1 Personal Information

When you sign up for our services, we collect:

• Full name and business name (if applicable)
• Physical address and billing address
• Email address and phone number
• Payment information (credit card, bank account details)
• Government-issued ID (for identity verification when required)
• Social Security Number or Tax ID (for credit checks, when applicable)
• AS Number (ASN) and IP address allocations

1.2 Technical and Usage Data

We automatically collect information about your use of our services:

• IP addresses assigned to your connection
• Connection timestamps and session duration
• Bandwidth usage and data transfer volumes
• Device information (router MAC address, device types, firmware versions)
• Network performance metrics (latency, packet loss, jitter)
• BGP session information (peer AS numbers, announced prefixes, routing updates)
• Protocol information (TCP/UDP port usage aggregates)

1.3 BGP Routing Data

For customers using BGP services, we collect:

• AS path information and routing announcements
• Prefix announcements and withdrawals
• BGP community tags and attributes
• Route origin validation (RPKI) status
• Session authentication methods and security configurations

1.4 Website and Account Data

• Website activity and page views (aggregate data)
• Customer support interactions and ticket history
• Account preferences and notification settings
• Login history and authentication logs

1.5 Cookies and Tracking

Our website uses cookies for:

• Essential functions (login sessions, security)
• Analytics (aggregate usage statistics)
• Preferences (language, display settings)

You can control cookie preferences through your browser settings.

2. How We Use Your Information

MultihopIX uses collected information for the following purposes:

2.1 Service Provision

• Delivering and maintaining internet connectivity services
• Establishing and managing BGP peering sessions
• Routing optimization and network performance improvement
• Technical support and troubleshooting
• Service upgrades and feature enhancements

2.2 Billing and Account Management

• Processing payments and managing invoices
• Credit checks and fraud prevention
• Account administration and record-keeping
• Usage monitoring for billing purposes

2.3 Network Security and Abuse Prevention

• Detecting and preventing fraud, spam, and malicious activities
• Monitoring for network attacks (DDoS, intrusions)
• Investigating abuse complaints and security incidents
• Enforcing our Acceptable Use Policy
• RPKI validation and route security monitoring

2.4 Legal Compliance

• Complying with laws, regulations, and legal processes
• Responding to law enforcement requests
• Protecting our rights and property
• DMCA copyright compliance

2.5 Communications

• Service updates and maintenance notifications
• Billing and payment reminders
• Security alerts and abuse notifications
• Marketing and promotional offers (with opt-out available)
• Customer satisfaction surveys

3. Data Retention

We retain your information for different periods depending on the type of data:

Data Type	Retention Period	Purpose
Account Information	Duration of service + 7 years	Legal, tax, and audit requirements
Billing Records	7 years	Financial compliance and tax purposes
Connection Logs	90 days	Troubleshooting and abuse investigation
BGP Routing Data	1 year	Network analysis and security research
Support Tickets	3 years	Customer service improvement
Abuse Reports	2 years	Pattern analysis and repeat offender tracking

4. Information Sharing and Disclosure

We do not sell your personal information. We may share information in the following circumstances:

4.1 Service Providers

We share information with trusted third parties who assist us:

• Payment processors (for billing)
• Data center and colocation providers
• Network equipment vendors (for support)
• Email and communication services
• Analytics providers (aggregated data only)

These providers are contractually required to protect your information and use it only for specified purposes.

4.2 BGP Community and Peering

BGP routing information is inherently shared with:

• BGP peers and transit providers
• Route servers and looking glass services
• Public routing databases (IRR, RADB)
• RPKI repositories

This sharing is essential for internet routing and is standard practice.

4.3 Legal Requirements

We may disclose information when required by law:

• In response to valid subpoenas, court orders, or search warrants
• To comply with DMCA takedown notices
• When necessary to protect our rights or property
• In emergency situations involving imminent danger
• To cooperate with law enforcement investigations

4.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, customer information may be transferred to the acquiring entity.

4.5 Abuse Complaints

When investigating abuse, we may share relevant information with:

• Abuse reporting organizations (Spamhaus, SURBL, etc.)
• Other ISPs and network operators
• Law enforcement agencies
• Copyright holders (DMCA compliance)

5. Data Security

We implement comprehensive security measures to protect your information:

5.1 Technical Safeguards

• Encryption of data in transit and at rest
• Secure BGP authentication (MD5, TCP-AO)
• Firewalls and intrusion detection systems
• Regular security audits and penetration testing
• Secure data centers with physical access controls

5.2 Organizational Safeguards

• Access controls and role-based permissions
• Employee training on data protection
• Confidentiality agreements with staff and vendors
• Incident response procedures
• Regular backups and disaster recovery plans

6. Your Privacy Rights

You have the following rights regarding your personal information:

6.1 Access and Portability

• Request a copy of your personal data
• Access your account information and usage history
• Export your BGP routing configurations

6.2 Correction and Updates

• Update your account information
• Correct inaccurate data
• Modify communication preferences

6.3 Deletion

• Request deletion of your personal data (subject to legal retention requirements)
• Close your account

6.4 Opt-Out Rights

• Unsubscribe from marketing emails
• Disable non-essential cookies
• Request restriction of data processing

To exercise these rights, contact us at privacy@multihopix.com.

7. California Privacy Rights (CCPA)

California residents have additional rights under the CCPA:

• Right to know what personal information is collected
• Right to know if personal information is sold or shared
• Right to opt-out of sale of personal information (we do not sell data)
• Right to deletion of personal information
• Right to non-discrimination for exercising privacy rights

8. Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect information from children. If we discover we have collected data from a child, we will delete it promptly.

9. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for international transfers.

10. Changes to This Privacy Policy

We may update this Privacy Policy periodically. Material changes will be communicated via email at least 30 days before taking effect. The "Last Updated" date at the top reflects the most recent changes.

11. Contact Information

For privacy-related questions or concerns: