Data Privacy and Security Terms

These Data Privacy and Security Terms (“Terms”) govern the collection, use, storage, and protection of personal and business data by Coast IT (“Service Provider”) in connection with the services provided to you (the “Client”). By engaging Coast IT for services, you agree to be bound by these Terms.

1. Data Collection

Coast IT may collect various types of data from the Client, including but not limited to:

  • Personal Information: This includes any identifiable information such as name, email address, phone number, and billing details.
  • Business Information: This encompasses data related to the Client’s business operations, services utilized, and financial transactions.
  • Technical Data: Information collected through the use of our services, including IP addresses, browser types, operating systems, and usage patterns.

2. Purpose of Data Collection

Coast IT collects data for the following purposes:

  • Service Delivery: To provide, maintain, and improve the services offered, including personalized customer support.
  • Billing and Payments: To process payments, issue invoices, and manage account status.
  • Communication: To communicate with the Client regarding updates, promotions, and service-related information.
  • Compliance: To comply with applicable laws, regulations, and industry standards.

3. Data Use

Coast IT will use the collected data in a manner consistent with these Terms and applicable laws. The use of data may include:

  • Analyzing data to improve service offerings and client experience.
  • Monitoring service usage to identify and mitigate potential security risks.
  • Sending transactional and informational communications regarding services.

4. Data Sharing and Disclosure

Coast IT does not sell, rent, or lease personal data to third parties. Data may be shared in the following circumstances:

  • With Service Providers: Coast IT may share data with trusted third-party vendors or service providers who assist in delivering services, provided they agree to protect the data in accordance with these Terms.
  • Legal Compliance: Coast IT may disclose data if required to do so by law or in response to valid requests by public authorities, including subpoenas or court orders.
  • Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of Coast IT’s assets, Client data may be part of the transferred assets. Clients will be notified of any changes in ownership or use of their data.

5. Data Security Measures

Coast IT takes data security seriously and implements reasonable technical and organizational measures to protect Client data from unauthorized access, use, alteration, or destruction. These measures include:

  • Encryption: Data is encrypted in transit and at rest using industry-standard encryption protocols to ensure confidentiality.
  • Access Controls: Access to Client data is restricted to authorized personnel only, based on their role and responsibilities.
  • Regular Security Assessments: Coast IT conducts regular security assessments and audits to identify and remediate vulnerabilities.

6. Client Responsibilities

The Client is responsible for maintaining the confidentiality of their account credentials and for all activities that occur under their account. Clients must:

  • Use strong passwords and change them regularly.
  • Notify Coast IT immediately if they suspect any unauthorized access to their account.
  • Ensure that they do not share sensitive data unnecessarily, especially in communications with third parties.

7. Data Retention

Coast IT will retain Client data only for as long as necessary to fulfill the purposes outlined in these Terms or as required by law. Upon termination of services, Coast IT will securely delete or anonymize the data as applicable.

8. Data Subject Rights

Clients have certain rights regarding their personal data under applicable data protection laws, which may include:

  • The right to access personal data held by Coast IT.
  • The right to request the correction of inaccurate or incomplete data.
  • The right to request the deletion of personal data under certain conditions.
  • The right to object to or restrict the processing of personal data.

To exercise any of these rights, Clients must submit a written request to Coast IT’s designated data protection officer.

The Client Zone or services provided by Coast IT may contain links to third-party websites or applications. Coast IT is not responsible for the privacy practices or the content of those third parties. Clients are encouraged to review the privacy policies of any third-party sites they visit.

10. Governing Law

These Terms shall be governed by and construed in accordance with the laws of the applicable jurisdiction in South Africa.

11. Amendments

Coast IT reserves the right to amend these Data Privacy and Security Terms at any time. Clients will be notified of any significant changes.