Privacy Policy

Rocky Mountain IT ("we," "our," or "us") provides managed IT services and technology support for both business and residential clients. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you visit rockymountaininfotech.com or engage with our services.

By using our website or services, you agree to the collection and use of information in accordance with this policy. If you do not agree, please discontinue use of our site and services.

Information We Collect

We collect information in several ways: directly from you when you provide it, automatically as you navigate our site, and through third-party services. The types of information we may collect include:

How We Use Your Information

We use the information we collect to:

• Provide, operate, and improve our IT services and website
• Process transactions and send related information, including purchase confirmations and invoices
• Create and manage your account
• Respond to inquiries, support requests, and technical issues
• Send administrative communications such as service updates, security alerts, and policy changes
• Send promotional communications (with your consent; you may opt out at any time)
• Monitor and analyze site usage trends to improve user experience
• Detect, prevent, and address technical issues, fraud, or security vulnerabilities
• Comply with legal obligations

Cookies & Analytics

Our website uses cookies and similar tracking technologies to enhance your browsing experience and collect analytics data.

What are cookies? Cookies are small text files placed on your device by a website. They help us remember your preferences, understand how visitors use our site, and deliver relevant content.

We use the following types of cookies:

• Essential cookies – Required for the site to function (e.g., session management, security). Cannot be disabled.
• Analytics cookies – Help us understand traffic patterns (e.g., Google Analytics). Collected data is aggregated and anonymized where possible.
• Functional cookies – Remember your preferences (e.g., language, form data) to improve your experience.
• Marketing cookies – May be used to deliver relevant ads or track campaign effectiveness. These are only placed with your consent.

Payment Information

When you purchase services from Rocky Mountain IT, payment information (such as credit card numbers and billing addresses) is collected and processed by our third-party payment processor. We do not store full payment card numbers on our servers.

Our payment processors are PCI-DSS compliant, meaning they meet the security standards established by the Payment Card Industry Data Security Standard to protect your financial data.

We retain transaction records (amount, date, service purchased) for accounting, tax, and dispute-resolution purposes.

Account Information

If you create an account on our website, we collect and store the information you provide during registration, including your name, email address, and a hashed version of your password.

You are responsible for maintaining the confidentiality of your account credentials. Please notify us immediately if you suspect unauthorized access to your account. We will never ask for your password via email or phone.

You may update or delete your account information at any time by logging in to your account or contacting us directly.

How We Share Your Information

We do not sell, trade, or rent your personal information to third parties. We may share your information in the following limited circumstances:

• Service providers – Trusted vendors who assist us in operating our website and delivering services (e.g., payment processors, cloud hosting, analytics). They are contractually obligated to keep your data confidential.
• Legal compliance – When required by law, subpoena, court order, or government request, or to protect the rights, property, or safety of Rocky Mountain IT, our clients, or the public.
• Business transfers – In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you before your data becomes subject to a different privacy policy.
• With your consent – In any other case where you have given explicit permission.

Data Retention

We retain your personal information for as long as necessary to provide our services, fulfill the purposes described in this policy, and comply with legal, accounting, or reporting obligations.

Account information is retained for the duration of the account's active status, plus a reasonable period afterward in case of disputes or legal requirements. Transaction records are typically retained for seven (7) years to comply with financial regulations.

You may request deletion of your data at any time (see Your Rights & Choices below). Some data may be retained in anonymized form for analytics or legal compliance purposes.

Your Rights & Choices

Depending on your location, you may have the following rights regarding your personal information:

• Access – Request a copy of the personal data we hold about you.
• Correction – Request that we correct inaccurate or incomplete information.
• Deletion – Request that we delete your personal data ("right to be forgotten"), subject to certain legal exceptions.
• Portability – Request that we provide your data in a portable, machine-readable format.
• Opt-out of marketing – Unsubscribe from marketing emails at any time using the unsubscribe link in any email, or by contacting us directly.
• Cookie preferences – Manage cookie consent through your browser settings or our cookie consent tool.
• Restrict processing – Request that we limit how we use your data in certain circumstances.

To exercise any of these rights, please contact us at the information provided below. We will respond within 30 days.

Security

As an IT services provider, security is central to everything we do. We implement industry-standard technical and organizational measures to protect your personal information against unauthorized access, loss, destruction, or alteration. These measures include:

• SSL/TLS encryption for all data transmitted to and from our website
• Encrypted storage of sensitive data at rest
• Access controls limiting data access to authorized personnel only
• Regular security assessments and monitoring
• Secure, PCI-DSS compliant payment processing

No method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. If you believe your information has been compromised, please contact us immediately.

Children's Privacy

Our services are not directed to children under the age of 13. We do not knowingly collect personally identifiable information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately and we will take steps to remove that information from our systems.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or service offerings. When we make material changes, we will update the Effective Date at the top of this page and, where appropriate, notify you by email or a prominent notice on our website.

We encourage you to review this policy periodically to stay informed about how we protect your information. Your continued use of our website or services after changes are posted constitutes your acceptance of the revised policy.