Privacy Policy

1. Overview

do-IT Consulting ("Company," "we," "us," or "our") operates the website doitconsulting.com (the "Service"). This Privacy Policy explains how we collect, use, disclose, and otherwise process personal information in connection with our website, services, and business operations.

This Privacy Policy applies to information we collect from:

• Visitors to our website
• Current and prospective clients
• Users who interact with our services
• Participants in our consultations and assessments

By accessing or using our Service, you acknowledge that you have read, understood, and agree to be bound by all of its terms.

2. Information We Collect

2.1 Information You Provide Directly

We collect information that you voluntarily provide to us, including:

• Contact Information: Name, email address, phone number, company name, and physical address when you request a consultation, fill out a contact form, or subscribe to communications
• Service Information: Details about your IT infrastructure, systems, and needs that you share during assessments and consultations
• Account Information: Credentials and account settings if you create an account on our platform
• Communication Data: Messages, inquiries, and feedback you send us via email, contact forms, or chat
• Payment Information: Billing address and payment details (processed securely through third-party payment processors)

2.2 Information Collected Automatically

When you visit our website, we automatically collect certain information about your device and interaction with our Service:

• Log Data: IP address, browser type, pages visited, time and date stamps, and referring URL
• Device Information: Device type, operating system, and unique device identifiers
• Usage Information: How you interact with our website, including the features you use and the content you view
• Cookies and Similar Technologies: We use cookies and similar tracking technologies to enhance your experience and analyze website usage

2.3 Information from Third Parties

We may receive information about you from:

• Third-party service providers and partners
• Referrals from existing clients
• Public business records and databases

3. How We Use Your Information

We use the information we collect for various purposes, including:

• Service Delivery: Providing, maintaining, and improving our IT consulting services and technical support
• Communication: Responding to your inquiries, sending updates about our services, and providing customer support
• Client Relationships: Managing client accounts, processing requests, and maintaining ongoing service relationships
• Marketing: Sending promotional materials and newsletters (only with your consent)
• Business Analysis: Understanding usage patterns, improving our website, and conducting analytics
• Legal Compliance: Complying with applicable laws, regulations, and legal obligations
• Security: Detecting and preventing fraud, abuse, and security incidents
• Personalization: Tailoring content and recommendations to your preferences

4. Legal Basis for Processing (GDPR)

If you are in the European Economic Area (EEA), our legal basis for processing your personal information under the GDPR includes:

• Contractual Necessity: Processing necessary to perform services you've contracted with us for
• Legitimate Interests: Our legitimate business interests in operating our services, improving our business, and preventing fraud
• Consent: Your explicit consent for specific processing activities (e.g., marketing communications)
• Legal Obligation: Compliance with applicable legal or regulatory requirements

5. Data Sharing and Disclosure

5.1 We May Share Your Information With:

• Service Providers: Third-party vendors who assist us in delivering our services (e.g., cloud hosting providers, payment processors, communication platforms)
• Business Partners: Partners with whom we provide joint services or integrated solutions
• Legal Requirements: Government agencies, law enforcement, or courts when required by law or if we believe in good faith that disclosure is necessary
• Business Transfers: In the event of merger, acquisition, bankruptcy, or sale of assets, your information may be transferred as part of that transaction

5.2 We Do NOT:

• Sell your personal information to third parties for marketing purposes
• Share your information without legal basis or your consent (except as required by law)
• Disclose confidential client information outside of our organization without authorization

6. Data Retention

We retain your personal information only for as long as necessary to:

• Provide you with our services
• Comply with legal and regulatory obligations
• Resolve disputes and enforce our agreements
• Support our legitimate business interests

Retention periods vary depending on the type of information and the purposes for which we use it. For example:

• Client Service Data: Retained for the duration of our relationship and for 3-7 years afterward for legal and accounting purposes
• Marketing Communications: Retained until you unsubscribe
• Website Analytics: Typically retained for 12-24 months

When information is no longer needed, we securely delete or anonymize it unless retention is required by law.

7. Data Security

We implement comprehensive technical, administrative, and physical security measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit (SSL/TLS) and at rest
• Secure authentication mechanisms and access controls
• Regular security audits and vulnerability assessments
• Employee training on data protection and privacy practices
• Limited access to personal information on a need-to-know basis
• Secure disposal of physical and digital records

8. Your Privacy Rights

8.1 GDPR Rights (EEA Residents)

If you are in the EEA, you have the following rights under the GDPR:

• Right of Access: Request a copy of the personal information we hold about you
• Right to Rectification: Correct inaccurate or incomplete information
• Right to Erasure: Request deletion of your information (subject to certain exceptions)
• Right to Restrict Processing: Limit how we process your information
• Right to Data Portability: Receive your information in a structured, portable format
• Right to Object: Object to certain types of processing, including marketing communications
• Right to Lodge a Complaint: File a complaint with your local data protection authority

8.2 CCPA Rights (California Residents)

If you are a California resident, you have the following rights under the California Consumer Privacy Act (CCPA):

• Right to Know: Request what personal information is collected and how it's used
• Right to Delete: Request deletion of collected information (with limited exceptions)
• Right to Opt-Out: Opt out of the sale or sharing of personal information
• Right to Correct: Request correction of inaccurate personal information
• Right to Non-Discrimination: We will not discriminate against you for exercising your privacy rights

8.3 How to Exercise Your Rights

To exercise any of these rights, please contact us at:

We will respond to your request within 30 days (or as required by applicable law). We may request verification of your identity to protect your privacy and security.

9. Contact Us

If you have questions about this Privacy Policy, concerns about our privacy practices, or wish to exercise your privacy rights, please contact us:

We will make every effort to respond to your inquiry within 30 days. If you are not satisfied with our response, you may have the right to lodge a complaint with your local data protection authority.