XMission Privacy Pledge

Privacy Pledge

XMission will protect your rights.

We promise to protect our customers from warrantless search and seizure as outlined in the 4th Amendment of the United States Constitution and Section 14, Article 1 of the Utah Constitution.

How we keep this promise:
XMission has consistently turned away all unconstitutional warrants and subpoenas since our founding in 1993 and will continue to do so. Please visit our transparency report to learn more.

We promise to protect our customers’ freedom of speech as outlined in the 1st Amendment of the United States Constitution.

How we keep this promise:
XMission requires judicially-sanctioned court orders before handing over any customer data. While we cooperate with law enforcement when presented with valid warrants for specific information, we do not consider it our business to police our customers or their content. Please read our privacy policy to learn more.

We promise to adhere to the Utah Consumer Privacy Act, which protects the Utah residents’ privacy rights while establishing data privacy guidelines for companies doing business in Utah.

How we keep this promise:
XMission gives customers full control over their data including the ability to edit personal information. Upon request by a fully-authorized customer, XMission will delete an account and all personal data associated with the account. We only collect and retain personal data necessary to provide service. XMission will never sell customer data to a third party.

We promise to protect our customers from foreign or domestic Internet spying to the best of our ability.

How we keep this promise:
XMission will not, under any circumstances, voluntarily cooperate with any unconstitutional surveillance activity by any foreign or domestic government entity. This includes broad data collection, customer lists, customer contact information, customer financial information, metadata, system logs, and other records. We also protect our customers’ data through the use of best-practice security procedures. Please read our privacy policy to learn more.

We promise to protect our customers’ data from physical security breaches.

How we keep this promise:
XMission technicians constantly watch all conditions, doors, and cameras in our data center. We control access via a two-factor biometrics (who the visitors are, what they know) system and record and archive facility access with security cameras. XMission is SOC 2 Certified which requires us to maintain rigorous security standards. Please visit our SOC 2 Certification page to learn more.

We promise to protect our customers from corporate data mining.

How we keep this promise:
With the exception of data required to provide service or facilitate billing, XMission will not sell, share, or rent any customer data or metadata to others. Please read our privacy policy to learn more.

We promise to protect our customers from security breaches due to social engineering.

How we keep this promise:
XMission only authorizes approved contacts to make changes to accounts. Authorized contacts must also verify their identity through a series of questions before XMission will allow them to make changes. We will not allow any unauthorized person to access account information or make changes of any kind. XMission adheres strictly to policy when changing contacts on an account. Please read our privacy policy to learn more.

We promise to protect our customers from internal security breaches.

How we keep this promise:
XMission absolutely forbids its employees to read any customer email or data without customer permission or for diagnostic purposes. Employees found in violation of this policy immediately forfeit employment with XMission. Please read our privacy policy to learn more.