Privacy Policy

Last updated: 1 February 2026

1. Introduction

European Edge Internet Exchange Ltd ("EE-IX", "we", "us", or "our") is committed to protecting the privacy of our members, website visitors, and other individuals whose personal data we process. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website ee-ix.net, use our services, or otherwise interact with us.

EE-IX is registered in England and Wales and operates as a data controller for the purposes of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

2. Information We Collect

2.1 Information You Provide

We collect information that you voluntarily provide to us, including:

• Account and membership data: company name, contact name, email address, phone number, postal address, ASN, and billing information when you apply for membership or register for the member portal.
• Communications: any information you include in emails, support tickets, or contact form submissions.
• Event registration: name, email, dietary requirements, and other details when you register for EE-IX events.

2.2 Information Collected Automatically

When you access our website or member portal, we may automatically collect:

• Log data: IP address, browser type, operating system, referring URL, pages visited, and timestamps.
• Cookies and similar technologies: we use strictly necessary cookies for session management and optional analytics cookies with your consent. See Section 7 for details.
• Network telemetry: traffic volumes, port utilisation, and routing data associated with your EE-IX connection for service delivery and monitoring purposes.

3. How We Use Your Information

We use the collected information for the following purposes:

• Provisioning and delivering our interconnection services.
• Managing your membership account and billing.
• Providing technical support and responding to enquiries.
• Monitoring and maintaining network performance, security, and reliability.
• Sending operational notifications (e.g. planned maintenance, outage alerts).
• Sending marketing communications where you have opted in.
• Complying with legal obligations and enforcing our policies.
• Producing aggregated, anonymised traffic statistics.

4. Legal Basis for Processing

Under UK GDPR, we rely on the following legal bases:

• Contract performance: processing necessary to deliver our services under the membership agreement.
• Legitimate interests: network security monitoring, fraud prevention, service improvement, and direct marketing to existing members.
• Consent: marketing communications to non-members, analytics cookies.
• Legal obligation: compliance with applicable laws and regulations.

5. Data Sharing and Disclosure

We do not sell your personal data. We may share your information with:

• Service providers: hosting providers, payment processors, and support tools that assist in our operations, bound by data processing agreements.
• Member directory: your company name, ASN, and peering contact details may be listed in the EE-IX member directory and on PeeringDB, unless you opt out.
• Legal requirements: when required by law, court order, or governmental authority.
• Business transfers: in connection with a merger, acquisition, or sale of assets.

6. Data Retention

We retain personal data for as long as necessary to fulfil the purposes for which it was collected, including satisfying legal, accounting, or reporting obligations. Membership data is retained for the duration of your membership and for 6 years thereafter for financial record-keeping. Website log data is retained for 12 months.

7. Cookies

Our website uses the following categories of cookies:

• Strictly necessary: required for the website and member portal to function (e.g. session tokens, CSRF protection). These cannot be disabled.
• Analytics: help us understand how visitors use our website. These are only placed with your consent.

You can manage your cookie preferences at any time through the cookie banner or your browser settings.

8. International Transfers

Your data may be processed outside the UK where our service providers are located. In such cases, we ensure appropriate safeguards are in place, including Standard Contractual Clauses approved by the Information Commissioner's Office (ICO).

9. Your Rights

Under UK GDPR, you have the right to:

• Access the personal data we hold about you.
• Rectify inaccurate or incomplete data.
• Erase your data in certain circumstances ("right to be forgotten").
• Restrict or object to processing.
• Data portability — receive your data in a structured, machine-readable format.
• Withdraw consent at any time where processing is based on consent.
• Lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.

To exercise any of these rights, please contact us at [email protected].

10. Security

We implement appropriate technical and organisational measures to protect your personal data, including encryption in transit (TLS), access controls, regular security audits, and staff training. However, no method of transmission or storage is 100% secure, and we cannot guarantee absolute security.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated revision date. We encourage you to review this page periodically.

12. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact:

European Edge Internet Exchange Ltd
Data Protection Officer
Email: [email protected]
Address: [Registered Address]