Privacy Policy

NTRefresh respects your privacy. This policy explains what we collect, how we use it, and your choices. It applies to our website (ntrefresh.com and sub‑pages like /services and /contact-us) and to our support interactions (phone, email, remote sessions, and on‑site service).

1) Information we collect

Information you provide

• Contact details you submit via forms or email (name, business name, phone, email, message content).
• Support information during a ticket, call, or visit (device names, usernames, configuration notes, screenshots, logs).
• Billing details if we invoice you (billing contact, business address, and payment references processed by our payment provider).

Information collected automatically

• Basic analytics and logs (IP address, pages viewed, timestamps, referrer/UTM, device/browser type) to improve stability and content.

Information collected during service work

• Diagnostic/telemetry data from systems you authorize us to manage (OS version, hardware identifiers, update/EDR status, error codes).
• Remote support session metadata (session time, technician, device name) and, if enabled, session recordings with notice.
• Data recovery engagements: temporary working copies/bit‑images may be created to attempt recovery.

We do not intentionally collect sensitive categories via the website. If such data exists on your systems, we access it only as needed to perform an authorized task.

2) How we use information

• To respond to inquiries, schedule work, and provide support.
• To secure, manage, and monitor systems you authorize us to manage.
• To improve our website, services, quality, and training.
• To send service‑related communications (ticket updates, maintenance notices). Marketing is rare and opt‑out is available.

We do not sell your personal information or share it for cross‑context behavioral advertising.

3) When we share information

• Service providers under contract (hosting, email, ticketing/PSA/RMM, payment processing, analytics). They must protect data and use it only to provide their service.
• Your vendors when you ask us to coordinate (e.g., ISP, Microsoft/Google, hardware warranty support).
• Legal/safety when required to comply with law, enforce agreements, or protect rights/safety.

4) Cookies & analytics

Our site may use essential cookies for security/session management and basic analytics (e.g., page performance). You can control cookies in your browser settings. If we add marketing or remarketing cookies, we will update this policy.

5) Data retention

• Website contact inquiries: 24 months.
• Support tickets/configuration notes: typically 3–7 years as part of service records (or shorter per contract).
• Remote session metadata/recordings (if used): up to 12 months.
• Data recovery working copies: deleted within 30 days after delivery of results or sooner upon written request.
• Client backups we manage follow your agreed backup policy.

6) Security

We use reasonable administrative, technical, and physical safeguards appropriate to the data we handle (e.g., MFA, role‑based access, encryption in transit, secure deletion procedures). No method is perfect; please contact us if you believe your interaction with us is no longer secure.

7) Your choices & rights

• Access/Update/Delete: Request a copy, correction, or deletion of your personal information (subject to legal/contractual requirements).
• Marketing opt‑out: Opt out of non‑essential email/SMS at any time.
• Cookie controls: Manage cookies in your browser settings.

California residents (CPRA)

If you are a California resident, you may request access to, deletion of, or correction of your personal information; opt out of its sale or sharing; and limit the use/disclosure of sensitive personal information. We do not sell or share personal information for cross‑context behavioral advertising. Use the contact options below to exercise your rights.

EEA/UK residents (GDPR)

Legal bases typically include contract (to provide services), legitimate interests (to secure/improve services), and consent (where required). You may have rights to object, restrict processing, or lodge a complaint with a supervisory authority.

8) Children’s privacy

Our website and services are intended for business users and are not directed to children under 13. We do not knowingly collect personal information from children.

9) Changes to this policy

We may update this policy from time to time. The date at the top reflects the latest version. Material changes will be highlighted for a reasonable period.

10) How to contact us

• Phone: (845) 540‑8893
• Email: info@ntrefresh.com (or use our contact form)