Terms and conditions, privacy policies and other important information about our services.
"Company" refers to SC CLOUD FOREST INFRASTRUCTURE SRL, VAT: 46309790, headquartered in Buzău, Romania.
"User" refers to the natural or legal person who uses the web hosting services offered by the company.
"Services" refers to the web hosting plans offered by the company through the roleaf.ro platform.
"Account" refers to the user account created for access to web hosting services.
"Login credentials" refers to identification information, such as username and password, used for access to the web hosting account.
Users are responsible for providing correct and complete information during the account registration process.
Users are responsible for the security of their login credentials and must keep them confidential. Any suspicious or unauthorized activity must be reported immediately to the company.
Users agree to use the services only for legal purposes and in accordance with these Terms and Conditions, as well as all applicable laws and regulations.
Use of services in the manner described in the Acceptable Use Policy is prohibited.
The company reserves the right to suspend or terminate the user's account in case of violation of these Terms and Conditions or the Acceptable Use Policy.
Users can register as affiliates on our hosting platform where they can recommend our services and earn a 10% commission in the form of credit that can be used to pay invoices for services we offer. The commission applies repeatedly, for each payment made by the referred customer.
Users agree to pay applicable fees for web hosting services according to the selected plan and billing period.
Invoices must be paid in advance, according to the terms and payment methods specified by the company.
According to the withdrawal right guaranteed to consumers under EU consumer protection law (Directive 2011/83/EU, transposed into Romanian law by OUG 34/2014), individual consumer customers have the right to a refund of the amount paid for web hosting services within 14 calendar days from the date the contract is concluded, without giving a reason.
Customers who want a refund must submit a formal request through the electronic channels provided (email/ticketing system) within the 14-day period.
In accordance with EU consumer protection regulations (Art. 16(c) of Directive 2011/83/EU), domain registration is not subject to the money-back guarantee, as it constitutes the supply of a personalised product or service that cannot be returned.
No refund will be issued — partial or full — for services suspended or terminated as a result of a violation of the Acceptable Use Policy or any other provisions of these Terms and Conditions. This includes, without limitation: spam, network scanning, malware distribution, DDoS attacks, operating Tor nodes, phishing, hosting copyright-protected material without authorisation, or any other prohibited activity. Any amount paid for the remaining period is forfeited in full.
For VPS services, a specific refund policy applies — please refer to the VPS Terms, art. 6 section of this document.
The company guarantees 99.9% uptime for web hosting services. If this guarantee is not met (excluding force majeure), we offer account credits of 10 lei for every 24 hours of downtime.
To request credits, users must open a ticket in the client area within 7 days of the incident.
The company reserves the right to suspend or terminate the user's account in case of violation of these Terms and Conditions or the Acceptable Use Policy, without prior notice.
In case of account suspension or termination, users may lose access to data stored on the company's servers. The company is not responsible for any data loss or damages resulting from account suspension or termination.
The company is not responsible for any data loss, damages or service interruptions caused by improper use of services by users or events beyond the company's control.
In no case shall the company be liable to users or third parties for any indirect, special, incidental or consequential damages.
The company reserves the right to modify these Terms and Conditions at any time, with immediate or subsequent effect, by publishing an updated version on the roleaf.ro website.
Users are responsible for periodically reviewing these Terms and Conditions and accepting them before continuing to use the services.
For questions or clarifications regarding these Terms and Conditions, please contact us at office[at]cloudforest.ro or through the ticketing system in the client area.
Our website complies with the General Data Protection Regulation ("GDPR"), Regulation (EU) 2016/679. The data protection policy is based on the general mandatory principles of the act:
SC CLOUD FOREST INFRASTRUCTURE SRL, VAT: 46309790, with registered office in Buzău, Romania, registered with the Trade Register under number J10/768/2022, respects the confidentiality of your data.
This privacy policy informs you about our practices regarding the collection, use and disclosure of personal information we receive from users of our website.
In the registration and service delivery process, we collect the following personal data:
Personal data is collected for:
Personal data is collected exclusively through online forms available on the roleaf.ro and clienti.roleaf.ro websites.
Collection and processing of personal data is carried out based on:
According to GDPR, users have the following rights:
To exercise these rights, contact us at office[at]cloudforest.ro.
Users' personal data will not be disclosed or transferred to third parties except in cases where:
Personal data is kept for the duration of the contractual relationship and according to legal archiving requirements (minimum 5 years for tax documents).
For questions regarding personal data protection, contact us at office[at]cloudforest.ro.
The Acceptable Use Policy (AUP) establishes the conditions and restrictions applicable to the use of web hosting services offered by SC CLOUD FOREST INFRASTRUCTURE SRL through the roleaf.ro platform.
This policy is designed to ensure a safe and respectful experience for all customers and to protect the integrity and performance of our infrastructure.
Users are responsible for the appropriate use of resources offered, in accordance with the specifications of the chosen hosting package and all applicable laws.
Excessive or abusive use of resources (CPU, memory, bandwidth) that may affect server performance or other users is prohibited.
Publication or distribution of the following is strictly prohibited:
Any illegal activity will be reported to the competent authorities.
Sending unsolicited emails (spam) through our servers is prohibited. This includes:
Users must comply with electronic communications legislation and obtain recipient consent.
Users are responsible for the security of their account and must keep login credentials confidential.
Attempting to gain unauthorized access to other accounts or systems is prohibited, including:
Web hosting plans offer resources in a shared environment. Users must use their resources responsibly, without negatively affecting other users or overall server performance.
Violation of this Policy may result in:
For questions or reports related to this policy, contact us at office[at]cloudforest.ro.
This document establishes the specific terms and conditions applicable to Virtual Private Server (VPS) services offered by SC CLOUD FOREST INFRASTRUCTURE SRL through the roleaf.ro platform. By purchasing or using a VPS service, the customer expressly accepts these terms, which supplement the General Terms and Conditions and the Acceptable Use Policy.
"VPS Service" refers to the virtual private server allocated to the customer, running on the company's own physical infrastructure located in Romania.
"Customer" refers to the natural or legal person who is the holder of the VPS service contract.
"Network Traffic" refers to the totality of data transmitted and received by the VPS server, regardless of protocol or destination.
"IDS" (Intrusion Detection System) refers to the automated systems used by the company to detect intrusions and abusive activities for monitoring its infrastructure.
"Abuse" refers to any use of the VPS service contrary to this document, applicable legislation, or generally accepted internet usage norms.
The customer has full root access to the allocated VPS server and is solely responsible for its configuration, administration and security.
The customer is fully responsible for all activities carried out on the VPS server, including activities of third parties to whom access has been granted.
The customer agrees to use the service exclusively for lawful purposes, in compliance with Romanian law, EU regulations and applicable international electronic communications standards.
The customer is responsible for updating and securing the software installed on the VPS server, including promptly remedying security vulnerabilities.
Use of VPS services for any of the activities listed below is strictly prohibited and constitutes grounds for immediate suspension or termination of the service:
3.1. Spam and Unsolicited Communications
3.2. Network Scanning and Reconnaissance
3.3. Malware and Malicious Code
3.4. DoS / DDoS Attacks
3.5. Tor Network and Anonymous Proxies
3.6. Copyrighted Material and Illegal Content
3.7. Fraud and Deceptive Activities
3.8. Unauthorised Access to Systems
3.9. Abusive Cryptocurrency Mining
The company uses automated intrusion and abuse detection systems (IDS — Intrusion Detection Systems) that continuously monitor network traffic and server behaviour across its own infrastructure.
These systems analyse traffic patterns, abnormal data volumes, known signatures of malicious activities and other indicators of compromise or abuse, without accessing the personal content of the customer's data.
Alerts generated by IDS systems, corroborated with traffic data and system logs, constitute the documented basis for any decision to suspend or terminate service. The company retains this data as evidence in the event of reports filed with authorities.
The company may also act on complaints received from third parties (ISPs, anti-abuse organisations, authorities) submitted through standard channels (abuse@, CERT-RO, Spamhaus, AbuseIPDB, etc.).
The company reserves the right to immediately suspend or terminate any VPS service, without prior notice, in any of the following situations:
In serious cases (DDoS, active malware, phishing, CSAM), suspension is carried out immediately, without any grace period or prior warning.
In less serious cases, the company may, at its sole discretion, send a warning notification with a reasonable remediation deadline before suspension.
Data stored on a VPS server suspended or terminated due to abuse may be permanently deleted without possibility of recovery.
VPS services are activated and delivered immediately upon payment confirmation. By activating the VPS service — regardless of the means by which this is done (control panel, API, provisioning confirmation email) — the individual consumer customer expressly declares and confirms that:
VPS activation constitutes proof of the customer's express consent to immediate service delivery and acknowledgement of the loss of the right of withdrawal.
As a voluntary commercial policy and at the company's sole discretion, the company offers the possibility of a refund within 14 calendar days from the date of VPS activation, subject to the cumulative fulfilment of all of the following conditions:
This voluntary commercial facility does not constitute acknowledgement of the existence of a legal right of withdrawal after service activation and may be withdrawn by the company at any time without prior notice.
No refund will be issued — partial or full — in any of the following circumstances:
Confirmation of abusive activities is based on data collected by IDS systems, network logs, internal technical analysis, and/or reports received from third parties (CERT-RO, Spamhaus, AbuseIPDB, etc.), which constitute sufficient evidence for the refusal of any refund.
A customer who has used the VPS service for prohibited activities forfeits all right to a refund, including for unused periods of service, regardless of the duration of the paid subscription and regardless of whether the refund request is made within or after the 14-day period.
Each VPS plan includes a monthly traffic allowance as specified in the chosen plan. Exceeding this limit may result in automatic suspension of network access or the application of additional charges, at the company's discretion.
Persistent use of CPU, RAM or storage resources at maximum capacity, to the detriment of infrastructure stability, may constitute grounds for requesting a plan upgrade or, in case of refusal, for suspension of the service.
The company cooperates with competent authorities (Romanian Police, DIICOT, CERT-RO, Europol, ANCOM) in investigations concerning illegal activities carried out through VPS services.
Upon request from authorities or based on court orders, the company may provide customer identification data, traffic logs and any other information relevant to an investigation.
The company is under no obligation to inform the customer of an authority request if there is a legal prohibition to do so.
Any abuse identified on our servers can be reported to abuse[at]cloudforest.ro. Reports are reviewed within 24 hours on business days.
The company subscribes to the generally accepted principles of combating internet abuse and collaborates with organisations such as Spamhaus, AbuseIPDB and CERT-RO.
The company reserves the right to modify this document at any time. The updated version will be published on the roleaf.ro website with the revision date noted. Continued use of the VPS service after publication of changes constitutes implicit acceptance of the new terms.
For questions related to this document or to report abusive activities, contact us at abuse[at]cloudforest.ro (abuse reports) or office[at]cloudforest.ro (general enquiries).
