Effective Date: 11-09-2025
Company Name: BITORYX (“Company,” “we,” “our,” or “us”)
Website: https://bitoryx.org/
Your trust is important to us. This Privacy Policy explains what data we collect, why we collect it, how we protect it, and the rights you have under U.S. law. It is written to comply with federal and state regulations, including the Gramm-Leach-Bliley Act (GLBA), Payment Card Industry Data Security Standard (PCI DSS), California Consumer Privacy Act (CCPA, if applicable), and other U.S. privacy and data protection laws.
By using our services, you consent to the practices described in this policy.
We collect information directly from you, automatically through our systems, and in some cases from third parties (e.g., payment processors, business partners).
Personal Identifiable Information (PII):
Full name, contact details (address, phone, email)
Identification data when legally required (e.g., driver’s license, EIN, or business registration)
Business-related information for BPO or consulting engagements
Financial Information (PCI DSS–Protected):
Payment card information (collected only through PCI DSS–compliant systems)
Bank account or ACH details (if you choose these payment methods)
Transaction records, invoices, and billing details
Technical & Usage Data:
IP address, browser type, operating system
Log-in details (encrypted), device identifiers
Interaction logs (e.g., support chats, system activity)
Service & Business Data:
IT troubleshooting information (system logs, error reports)
Data related to your business operations provided for consulting, BPO, or telecom/energy support
Energy consumption details and supplier contracts for Energy Protection Plans
We do not knowingly collect data beyond what is necessary to provide and improve our services.
We use your data only for legitimate business purposes, including but not limited to:
Service Delivery: Providing IT repair, tech support, business consulting, BPO, and energy services.
Identity Verification & Fraud Prevention: Confirming your identity when required, preventing misuse, and protecting against fraudulent transactions.
Payment Processing: Securely handling billing, invoicing, and subscription plans through PCI DSS–compliant providers.
Customer Support: Responding to inquiries, service requests, and troubleshooting issues.
Compliance: Meeting U.S. regulatory, legal, and contractual obligations with financial institutions and energy suppliers.
Improvement & Analytics: Analyzing service usage to optimize performance, security, and client experience.
Marketing & Communication: With your consent, sending service updates, promotions, or industry insights.
We do not use sensitive information for purposes unrelated to the services we provide.
As part of our operations and partnerships with financial institutions, we follow:
GLBA (Gramm-Leach-Bliley Act): Safeguarding consumer financial information through strict administrative, technical, and physical security measures.
PCI DSS (Payment Card Industry Data Security Standard): All payment card data is processed only by PCI DSS–compliant vendors; we do not store unencrypted card details.
State Privacy Laws (e.g., CCPA in California): Where applicable, consumers have rights to access, delete, and restrict their personal data.
Federal Trade Commission (FTC) Regulations: Compliance with fair data collection, use, and disclosure standards.
We only share your information under the following circumstances:
With Service Providers: Hosting, analytics, customer support platforms, and payment processors who are bound by strict confidentiality and security agreements.
With Financial Institutions: When necessary for payment processing, regulatory compliance, fraud detection, or verification.
For Legal Obligations: To comply with subpoenas, court orders, or government regulations.
In Corporate Transactions: In mergers, acquisitions, or restructuring, provided the new entity honors this Privacy Policy.
We never sell your personal information to marketers or unrelated third parties.
We employ multi-layered security practices to protect your data:
Encryption: SSL/TLS encryption for all transmissions; sensitive data encrypted at rest.
PCI DSS Compliance: Credit/debit card transactions processed only by PCI DSS–certified gateways.
Access Controls: Role-based access, multi-factor authentication, and audit trails.
Network Protection: Firewalls, intrusion detection, and 24/7 monitoring.
Regular Testing: Vulnerability scans, penetration tests, and system audits.
Employee Training: Mandatory training on data protection, security, and confidentiality.
If a data breach occurs, we will notify affected parties and regulators as required under U.S. law.
Service Data: Retained for as long as your account is active or required to provide services.
Financial Data: Retained as required by law (typically 7 years for accounting/tax compliance).
Business Data: Retained for the duration of our service relationship plus a reasonable period for backup and compliance.
Data no longer needed is securely deleted or anonymized.
Depending on your location, you may have the following rights:
Access: Request a copy of the data we hold about you.
Correction: Request correction of inaccurate or incomplete data.
Deletion: Request deletion of your personal data, subject to regulatory requirements.
Opt-Out: Decline marketing communications at any time.
Restriction: Limit certain types of data processing where legally allowed.
To exercise these rights, contact us at [Support Email].
Our services are not directed to children under 13. We do not knowingly collect personal data from children. If discovered, such data will be promptly deleted.
Our services are primarily intended for U.S. clients. If you access our services from outside the United States, you consent to the transfer and processing of your information in the U.S., where privacy protections may differ.
We may revise this Privacy Policy from time to time. If significant changes are made, we will post an updated version on our website and update the effective date. Continued use of our services constitutes acceptance of the updated policy.
If you have questions, concerns, or requests related to this Privacy Policy, please contact us at:
BITORYX
[Business Address]
[Support Email]
[Support Phone Number]
