General Data Protection Regulation (GDPR)

NewsDemon is operated by K&L Technologies, Inc., a privately held company registered in the United States.

Data Controller: K&L Technologies, Inc., 3504 Highway 153, Box #14, Greenville, SC 29611, United States

Contact for data inquiries: [email protected]

Account Data

When you create a NewsDemon account, we collect your email address and a username. If you pay by credit card, our payment processor collects billing details (name, card number, billing address). We do not store full credit card numbers on our servers.

Connection Data

When you connect to our Usenet servers, we process your IP address for the purpose of establishing and maintaining the connection. We do not log which newsgroups you access, which articles you download, or what you post. Connection metadata is not retained beyond what is necessary for active session management and abuse prevention.

Support Data

If you contact our support team, we collect the information you provide in your message (name, email, username, and the substance of your inquiry). Support communications are retained for the purpose of resolving your issue and improving our service.

Website Analytics

We use Google Analytics (GA4) to understand how visitors use our website. This may collect IP addresses, browser type, pages visited, and referring URLs. You can opt out of analytics tracking via the cookie consent banner on every page.

Payment Data

Payments are processed by third-party processors including PayPal, BitPay, BTCPay, and credit card processors. We receive transaction confirmations and subscription status but do not handle or store raw payment credentials.

Under GDPR Article 6, we process your personal data on the following legal bases:

Contract Performance (Article 6(1)(b))

Processing your account data, connection data, and payment data is necessary to provide the Usenet access service you purchased. Without this data, we cannot fulfill our contract with you.

Legitimate Interest (Article 6(1)(f))

We process limited data for abuse prevention, fraud detection, and service security. This includes monitoring for violations of our Terms of Service and responding to DMCA/NTD takedown requests. Our legitimate interest does not override your fundamental rights — we only process the minimum data necessary.

Consent (Article 6(1)(a))

Website analytics and marketing cookies are only activated with your explicit consent via the cookie consent banner. You can withdraw consent at any time.

Legal Obligation (Article 6(1)(c))

We may process and retain data when required by law, such as tax records and lawful government requests.

Active accounts: Account data is retained for the duration of your subscription.

Expired accounts: After your subscription expires or is cancelled, we retain your account data for up to 12 months to support reactivation and handle any billing disputes. After 12 months, accounts are anonymized or deleted.

Support communications: Retained for up to 24 months after resolution.

Payment records: Retained as required by applicable tax and financial regulations (typically 7 years).

Connection logs: We do not retain connection logs beyond active session management. We do not log your Usenet activity (articles accessed, newsgroups visited, or files downloaded).

Analytics data: Google Analytics data is retained according to Google's data retention policies. We have configured GA4 to the shortest available retention period.

If you are in the European Economic Area (EEA), United Kingdom, or Switzerland, you have the following rights:

Right of Access (Article 15)

You can request a copy of all personal data we hold about you. We will respond within 30 days.

Right to Rectification (Article 16)

You can request correction of inaccurate personal data. You can update your email address and username directly in your account settings, or contact support for other corrections.

Right to Erasure (Article 17)

You can request deletion of your personal data ("right to be forgotten"). We will comply unless we have a legal obligation to retain certain records (e.g., tax documentation). Account deletion is permanent and cannot be reversed.

Right to Restrict Processing (Article 18)

You can request that we limit how we use your data while a dispute or inquiry is being resolved.

Right to Data Portability (Article 20)

You can request your personal data in a structured, commonly used, machine-readable format (JSON or CSV).

Right to Object (Article 21)

You can object to processing based on legitimate interest. We will stop processing unless we demonstrate compelling legitimate grounds that override your interests.

Right to Withdraw Consent

Where processing is based on consent (e.g., analytics cookies), you can withdraw consent at any time via the cookie settings accessible from any page. Withdrawal does not affect the lawfulness of processing performed before withdrawal.

To make a data subject request, contact us at:

Email: [email protected]
Subject line: "GDPR Data Request"
Mail: K&L Technologies, Inc., 3504 Highway 153, Box #14, Greenville, SC 29611, USA

We will verify your identity before processing any request. We respond to all requests within 30 days. If we need additional time (up to 60 additional days for complex requests), we will inform you within the initial 30-day period.

There is no fee for exercising your rights. However, we may charge a reasonable fee for manifestly unfounded or excessive requests.

NewsDemon is based in the United States. If you are in the EEA, your data may be transferred to and processed in the United States. We rely on the EU-US Data Privacy Framework for lawful transfers. Where the framework does not apply, we use Standard Contractual Clauses (SCCs) approved by the European Commission.

Our website uses cookies. Strictly necessary cookies (session management, security) are loaded without consent. Analytics and marketing cookies require your explicit opt-in via the consent banner.

You can manage your cookie preferences at any time using the cookie settings link available in the footer of every page. For full details, see our Datenschutz.

We implement appropriate technical and organizational measures to protect your personal data, including:

All Usenet connections support 256-bit SSL encryption. Our website is served over HTTPS. Payment processing is handled by PCI-compliant third parties. Access to personal data is restricted to authorized personnel. Our server infrastructure spans three regions with redundancy and failover protection.

No system is 100% secure. If we become aware of a data breach that poses a risk to your rights and freedoms, we will notify the relevant supervisory authority within 72 hours and affected individuals without undue delay, as required by GDPR Articles 33 and 34.

NewsDemon does not knowingly collect personal data from anyone under the age of 16. If we learn that we have collected data from a child under 16, we will delete it promptly. If you believe a child has provided us with personal data, contact [email protected].

If you are unsatisfied with how we handle your data or your request, you have the right to lodge a complaint with a supervisory authority. For EU residents, this is typically the data protection authority in your country of residence. A list of EU data protection authorities is available at edpb.europa.eu.

We may update this GDPR disclosure from time to time. Material changes will be posted on this page with an updated effective date. If changes significantly affect how we process your data, we will notify active subscribers by email.

Last updated: March 2026