1. Introduction
Quantivo LLC („we", „us") respects your privacy. This Privacy Policy explains what data we collect, how we use it, and what rights you have regarding your data.
2. What data we collect
We collect the following data categories:
- Account data — name, email, password (hash), 2FA secret (encrypted)
- Organization data — company name, plan details, WHMCS ID
- Operational data — IP address on login, audit events, device configurations
- Service metrics — server load, latency (without traffic content)
3. How we use data
We use data exclusively for:
- Providing the Service (authentication, device management, VPN access)
- Security (audit log, unauthorized access detection)
- Billing (through WHMCS)
- Communication (service notifications, security alerts)
4. Data sharing
We do not sell data to third parties. We share data only with subcontractors that provide necessary services (OVH for hosting, Resend for email), under strict confidentiality agreements.
5. Data retention
Account data is kept for the duration of Service activity. Audit logs are retained from 30 days to 1 year, depending on plan. Upon deletion request, we delete data within 30 days.
6. Your rights (GDPR)
If you are in the EU, under GDPR you have the right to:
- Access to your data
- Correction of inaccurate data
- Deletion of data („right to be forgotten")
- Portability in machine-readable format
- Object to processing
7. Security
We apply industry-standard security measures — encryption in transit (TLS 1.3), encryption at rest for sensitive data, bcrypt for passwords, regular audits.
8. Contact
For privacy questions or to exercise your rights, write to [email protected].