Back to Home

Privacy Policy

Last updated: December 10, 2025

1. Introduction

Welcome to OneSSL, a service provided by NodecP. We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our SSL certificate management service.

2. Information We Collect

We collect information that you provide directly to us, including:

  • Account Information: Email address, password (encrypted), and primary domain name when you create an account.
  • Domain Information: Domain names you add for SSL certificate issuance.
  • Certificate Data: SSL certificates, private keys, and CA bundles (stored encrypted).
  • Usage Data: Information about how you interact with our service, including IP addresses, browser type, and access times.

3. How We Use Your Information

We use the information we collect to:

  • Provide, maintain, and improve our SSL certificate management service
  • Issue and manage SSL/TLS certificates through Let's Encrypt
  • Send you technical notices, security alerts, and certificate expiration reminders
  • Respond to your comments, questions, and customer service requests
  • Monitor and analyze trends, usage, and activities in connection with our service
  • Detect, prevent, and address technical issues and fraudulent activities

4. Data Security

We implement industry-standard security measures to protect your personal information:

  • Encryption at Rest: All certificates and private keys are encrypted using AES-256-GCM before storage.
  • Password Security: User passwords are hashed using bcrypt with secure salt rounds.
  • Secure Transmission: All data is transmitted over HTTPS/TLS encrypted connections.
  • Access Controls: Strict access controls ensure only you can access your certificates.

5. Data Sharing

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

  • Let's Encrypt: Domain information is shared with Let's Encrypt for certificate issuance as required by the ACME protocol.
  • Legal Requirements: When required by law or to protect our rights and safety.
  • Service Providers: With trusted service providers who assist in operating our service, subject to confidentiality obligations.

6. Data Retention

We retain your personal information for as long as your account is active or as needed to provide you services. Certificate data is retained until expiration or deletion by you. You may request deletion of your account and associated data at any time by contacting us.

7. Your Rights

You have the right to:

  • Access and receive a copy of your personal data
  • Rectify inaccurate personal data
  • Request deletion of your personal data
  • Object to processing of your personal data
  • Data portability
  • Withdraw consent at any time

8. Cookies

We use essential cookies to maintain your session and preferences. We do not use tracking or advertising cookies. Our authentication system uses secure HTTP-only cookies to maintain your login session.

9. Children's Privacy

Our service is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. You are advised to review this Privacy Policy periodically for any changes.

11. Contact Us

If you have any questions about this Privacy Policy, please contact us at: