Shared Responsibility. Rackdog secures the infrastructure (physical facilities, network, hardware, and, for VPS, the virtualization/hypervisor layer). Customer secures everything at the operating system level and above (applications, data, access management, regulatory compliance). For colocation, Customer is additionally responsible for Customer-owned hardware.

Rackdog Security Measures. Rackdog implements commercially reasonable safeguards including: (a) physical security via upstream data center partners; (b) network security (firewalls, intrusion detection, DDoS mitigation, segmentation); (c) access controls for Rackdog personnel; and (d) documented incident response procedures.

Data Retention and Deletion. After termination (provided Customer has paid all amounts due):
Customer may export Customer Content and Account Data for thirty (30) days; Rackdog will delete or anonymize Customer Content within sixty (60) days thereafter, except as required for legal compliance, routine backup rotation, or dispute resolution. For bare metal, Rackdog performs a secure disk wipe before redeploying hardware. For VPS, Rackdog destroys the virtual machine and virtual disk; underlying storage is reclaimed by the hypervisor and may be overwritten through normal operations, but is not individually zeroed unless Customer requests certified data destruction. Account Data may be retained for legal, accounting, or audit purposes. Rackdog Data survives termination.