Does your website use third-party services? Get GDPR compliant in minutes.
Try FlowConsentFree plan · 10-min setup
Hostinger is a Lithuania based web hosting provider offering shared, VPS and cloud hosting services. On its corporate website hostinger.com it sets first-party cookies for session management, marketing and analytics.
Hostinger is a global web hosting company headquartered in Kaunas, Lithuania. It provides shared hosting, VPS, cloud hosting, domain registration and website builder services to millions of customers worldwide. As both a hosting provider and operator of the hostinger.com corporate site, it acts as a data processor for customer-hosted content and as a data controller for its own marketing site.
On hostinger.com the platform sets first-party cookies for authentication, shopping cart persistence, A/B testing, affiliate tracking and analytics. Third-party tags from Google Analytics, Google Ads, Meta Pixel and TikTok may also be loaded after consent.
Hostinger operates its own data centres and uses AWS in regions across the EU, United States, United Kingdom, Singapore, Brazil and India. Customers can typically select a primary region, but support, billing and analytics data may be processed in Lithuania and the US.
Get GDPR compliant in 10 minutes
Free plan available · No credit card required
The hosting service itself is processed under contract performance. Strictly necessary cookies rely on legitimate interest, while marketing and analytics cookies require prior, freely given consent under the ePrivacy Directive and Article 6(1)(a) GDPR.
Sign a Data Processing Agreement with Hostinger, document Standard Contractual Clauses for non-EU transfers, configure your CMP to block non-essential cookies before consent, and disclose Hostinger as a sub-processor in your privacy notice.
Websites using Hostinger must obtain user consent under GDPR regulations.
DPIA considerations
A DPIA is generally not required for using Hostinger as a hosting provider for ordinary websites. It may be required if the hosted application processes special category data at scale or involves systematic monitoring. Always document the hosting location, sub-processors and security measures.
Sample consent text
We use Hostinger to host our website and set marketing and analytics cookies on our domain. Do you consent to non-essential cookies being placed for these purposes?
Third-party domains contacted
hostinger.comhostinger.ioh-cdn.comawstrack.mecloudfront.netCookies placed
| Name | Type | Duration | Purpose |
|---|---|---|---|
| hostinger_session | necessary | Session | Maintains the authenticated user session on hostinger.com |
| XSRF-TOKEN | necessary | 2 hours | CSRF protection token for form submissions on hostinger.com |
| hostinger_country | preferences | 30 days | Stores the visitor country to display localised pricing and language |
| h_locale | preferences | 1 year | Stores the selected language preference for the hostinger.com interface |
| _ga | analytics | 2 years | Google Analytics user identifier used to distinguish unique visitors |
| _gid | analytics | 24 hours | Google Analytics session identifier used to distinguish users |
| hostinger_affiliate | marketing | 30 days | Tracks referrals from affiliate partners for commission attribution |
| _fbp | marketing | 3 months | Meta Pixel cookie for advertising and conversion tracking |
Hostinger collects user analytics data — you legally need a consent banner. Try FlowConsent free.
On hostinger.com, Hostinger sets first-party session cookies for authentication and shopping cart, plus marketing and analytics cookies for affiliate attribution and A/B testing. The hosted website itself does not set Hostinger cookies, only the cookies that you configure in your own application.
Consent is not required to simply host your site on Hostinger, since the hosting service is contract performance. Consent is required for the marketing and analytics cookies on hostinger.com and for any third-party tags you load on top of your hosted site.
For the hosting service itself the basis is contract performance under Article 6(1)(b) GDPR. Strictly necessary cookies rely on legitimate interest, while marketing and analytics cookies rely on the user's consent under Article 6(1)(a) GDPR and the ePrivacy Directive.
Yes. Depending on the chosen data centre and analytics partners, data can be transferred to the United States, United Kingdom, Singapore, Brazil and India. Hostinger relies on Standard Contractual Clauses and, where applicable, the EU US Data Privacy Framework for transfers.
A DPIA is generally not required just because you use Hostinger. It may be required if your hosted application processes special category data at scale, monitors users systematically or makes automated decisions with legal effects.
Sign the Hostinger Data Processing Agreement, choose an EU data centre when possible, document Standard Contractual Clauses, and configure your CMP to block non-essential cookies before consent. Keep an up to date list of Hostinger sub-processors.
Yes. EU based hosts such as OVHcloud, Scaleway, Infomaniak, Hetzner and IONOS offer comparable shared, VPS and cloud hosting with infrastructure located within the EU. They reduce third country transfer concerns.
List Hostinger as your hosting sub-processor, describe the categories of data it processes, the data centre location and applicable transfer safeguards. Add a link to Hostinger's privacy policy and DPA.