Privacy Policy

Effective Date: January 1, 2026

Last Updated: May 8, 2026

CGetty Technologies LLC (“CGetty,” “Company,” “we,” “us,” or “our”) is a Pennsylvania limited liability company providing information technology, cybersecurity consulting, remote support, and related professional services.

We are committed to protecting the confidentiality, integrity, and availability of information entrusted to us. This Privacy Policy explains how we collect, use, disclose, safeguard, and retain information when you visit our website, request services, or otherwise interact with us.

By accessing our website or engaging our services, you acknowledge and agree to this Privacy Policy.

1. Scope of This Policy

This Privacy Policy applies to:

  • Visitors to our website
  • Prospective clients submitting inquiries
  • Clients receiving professional services
  • Individuals communicating with us electronically

This policy does not apply to third-party platforms, vendors, or services that we do not control. For example, when you click a link to a vendor’s website (Microsoft, GoDaddy, etc.), or use a third-party service in connection with CGetty engagements (such as Microsoft 365, cloud storage providers, or payment processors), the privacy practices of those vendors apply to information processed within their environments.

2. Information We Collect

A. Information You Provide Voluntarily

We may collect information including:

  • Full name
  • Business name
  • Email address
  • Telephone number
  • Company size and industry
  • Service descriptions or technical needs
  • Billing information
  • Any information submitted through forms, estimates, or contracts

You are responsible for ensuring that the information you provide is accurate and lawful to share.

B. Automatically Collected Information

When you visit our website, we may automatically collect:

  • IP address
  • Device type
  • Operating system
  • Browser type and version
  • Date/time stamps
  • Referring URLs
  • Website usage metrics

This data is used for analytics, security monitoring, and operational improvement.

C. Client System and Technical Data (Service-Based Access)

When providing IT or cybersecurity services, we may access or process:

  • Network configurations
  • System logs
  • Security alerts
  • Device identifiers
  • Backup status information
  • Software and license data
  • User account structures

Access is limited to what is reasonably necessary to perform contracted services.

We do not claim ownership of client data.

3. How We Use Information

We process information for legitimate business purposes including:

  • Responding to service inquiries
  • Delivering contracted services
  • Troubleshooting and security monitoring
  • Generating invoices and processing payments
  • Maintaining client records
  • Legal compliance
  • Fraud prevention
  • Protecting the Company’s rights and property

We do not sell personal information.

4. Legal Basis for Processing (U.S. Compliance Framework)

We process information consistent with U.S. privacy norms and based on:

  • The contractual basis of the engagement
  • Legitimate business interests
  • Legal obligations under federal or Pennsylvania law
  • Consent, where applicable

CGetty Technologies LLC operates within the United States and complies with applicable federal and Pennsylvania data protection and consumer protection laws.

5. Pennsylvania & U.S. Regulatory Considerations

As a Pennsylvania-based entity, we comply with:

  • Pennsylvania Breach of Personal Information Notification Act
  • Federal Trade Commission Act (unfair or deceptive practices)
  • Applicable IRS and financial record retention requirements
  • Contractual confidentiality obligations

If a data breach involving personal information occurs, notification will be made as required under applicable law.

6. Data Sharing and Disclosure

We may disclose information for:

  • Service delivery
  • Legal compliance
  • Fraud prevention
  • Protecting the Company’s rights and property

We do not sell, rent, or trade personal information.

We do not share information for cross-context behavioral advertising.

7. Data Security Practices

CGetty Technologies LLC operates with a security-first mindset and applies industry-standard safeguards including:

  • Multi-Factor Authentication (MFA)
  • Role-based access controls
  • Encryption of data at rest and in transit using industry-standard protocols where applicable to the engagement
  • Secure remote access solutions
  • Logging and monitoring
  • Device hardening
  • Password management controls

However, no system can guarantee absolute security. By engaging our services, you acknowledge that cybersecurity risk can be reduced but not eliminated.

8. Data Retention

We retain information only for:

  • The duration of the service relationship
  • Legal, accounting, and tax obligations
  • Legitimate business documentation purposes

Client system data accessed during service delivery is not retained beyond what is operationally necessary.

9. Client Responsibilities

Clients remain responsible for:

  • Maintaining appropriate backups
  • Regulatory compliance within their industry
  • Business continuity planning
  • Data classification and ownership

Unless explicitly contracted as a managed service provider (MSP), CGetty provides services on a best-effort basis.

10. California Resident Rights — Voluntary Disclosure

Although CGetty Technologies LLC primarily operates within Pennsylvania and the United States and does not currently meet the statutory thresholds for California Consumer Privacy Act (CCPA) coverage, we voluntarily extend the following transparency principles to California residents as a courtesy.

If applicable, California residents may request:

  • Disclosure of personal information collected
  • Deletion of personal information
  • Correction of inaccurate information
  • Opt-out of any sale of personal information (we do not sell personal information)
  • Non-discrimination for exercising privacy rights

To submit a request, contact us using the information below. Identity verification may be required before fulfilling any request.

11. Cookies and Website Tracking

Our website may use the following types of cookies:

  • First-party functional cookies necessary for site operation
  • Anonymous analytics cookies to measure site traffic and improve performance

We do not use cross-context behavioral advertising cookies, and we do not share cookie-derived data with advertising networks. Users may disable cookies via browser settings. Our website does not currently respond to “Do Not Track” browser signals.

12. Third-Party Services

Our website or services may integrate with third-party tools. We are not responsible for the privacy practices of those third parties. Clients should review vendor privacy policies independently.

13. Children’s Privacy

Our services are intended for business and professional use. We do not direct services to children under the age of 13 (in compliance with the Children’s Online Privacy Protection Act, COPPA), and we do not knowingly collect personal information from minors under the age of 18 without verifiable parental or guardian consent.

14. Limitation of Liability

Limitations of liability for matters relating to data, privacy, or security are governed by Section 7 (Limitation of Liability) of our Terms of Service. The caps and exclusions in that section apply to claims arising under this Privacy Policy.

15. Changes to This Privacy Policy

We reserve the right to update this Privacy Policy at any time. Updated versions will be posted with a revised “Last Updated” date.

Continued use of our website or services constitutes acceptance of the updated policy.

16. Contact Information

Questions regarding this Policy may be directed to:

CGetty Technologies LLC

Phone: (814) 273-6101

Email: info@cgetty.com

Website: https://www.cgetty.com

Security Commitment Statement

CGetty Technologies LLC operates with a security-first mindset. We apply industry best practices including least privilege access, encryption, logging, and multi-factor authentication to protect client information at all times.

We approach every engagement with the understanding that trust is earned through responsible data stewardship.