At SERVEITPRO, we are committed to protecting your personal information and your business data. We understand that as your IT provider, you trust us with access to your most critical systems. This Privacy Policy explains what information we collect, how we use it, and the rigorous standards we maintain to keep it safe.
What information do we collect?We collect personal and technical information that you voluntarily provide to us when you register for our services, request support, or participate in our surveys.Personal Contact Data: Names, email addresses, phone numbers, and job titles of your authorized staff.Business Technical Data: IP addresses, device identifiers (MAC addresses), operating system logs, and network configuration details required to provide IT support.Credentials: Usernames and passwords for your servers, applications, and third-party vendors (stored in our encrypted password management system).Payment Data: Billing addresses and credit card details (processed securely via our PCI-compliant payment gateway; we do not store raw credit card numbers).
We use your information strictly for legitimate business purposes:Service Delivery: To remotely access, diagnose, and repair your computer systems and networks.Security Monitoring: To identify and block cyber threats (malware, ransomware) attempting to access your infrastructure.Communication: To send you service alerts, ticket updates, invoice receipts, and critical security advisories.Procurement: To purchase hardware or software licenses on your behalf from third-party vendors (e.g., Microsoft, Dell).
We keep your information only for as long as necessary to fulfill the purposes outlined in this privacy policy, unless a longer retention period is required by law (such as for tax or accounting requirements).
Client Credentials: Retained only while your Managed Services agreement is active. Upon termination, passwords are transferred to you and purged from our systems.
Ticket History: Retained for 7 years to track recurring technical issues and service history.
System Logs: Security logs are typically retained for 90 days to 1 year for forensic analysis.
Billing Records: Retained for 7 years as required by the Canada Revenue Agency (CRA).
Depending on your location, you have specific rights regarding your personal information:Right to Access: You may request a copy of the personal information we hold about you.Right to Correction: You may request that we correct any inaccurate or incomplete data.Right to Deletion: You may ask us to delete your personal information, subject to legal retention obligations.Right to Withdraw Consent: You may unsubscribe from our marketing communications at any time by clicking the "unsubscribe" link in our emails.
We have implemented appropriate technical and organizational security measures designed to protect the security of any personal information we process.
Encryption: All sensitive data is encrypted both in transit (TLS) and at rest (AES-256)
Access Control: We utilize strict Role-Based Access Control (RBAC) and Multi-Factor Authentication (MFA) for all our internal staff.
Vendor Vetting: We only partner with third-party software providers who meet rigorous compliance standards (SOC 2, ISO 27001).
Regular Audits: We conduct regular internal security reviews to identify and address potential vulnerabilities.
.svg)
