Privacy Policy
Last updated 2026-03-02
1. Data Collection
We collect information necessary to provide our PST recovery services, including contact details, technical information about your files, and payment information. When you submit PST files for recovery, we temporarily store them in secure, encrypted environments. We also collect website usage data through cookies and analytics tools to improve our services. All data collection is limited to what is necessary for service delivery and customer support. We never collect or access personal email content beyond what is required for the technical recovery process.
2. Use of Data
Your personal information is used exclusively to provide PST recovery services, process payments, and communicate about your case. Technical data helps us optimize our recovery algorithms and improve success rates. We may use anonymized statistics for research and development purposes, but never share identifiable information. Email content accessed during recovery is used solely for technical restoration purposes and is never read, analyzed, or used for any other purpose. Our staff are bound by strict confidentiality agreements regarding all client data.
3. Data Storage
All data is stored in SOC 2 Type II certified data centers with military-grade encryption both in transit and at rest. PST files and recovered data are stored on secure servers with restricted access and comprehensive audit logging. We maintain redundant backups during the recovery process to prevent data loss. After successful recovery and client confirmation, all data is permanently deleted from our systems using DoD 5220.22-M standards. We retain minimal business records as required by law, but never store email content long-term.
4. User Rights
You have the right to access, correct, or delete your personal information at any time. You can request details about what data we have collected and how it is being used. During the recovery process, you can request immediate deletion of your files from our systems, though this will terminate the recovery service. You have the right to data portability and can request your information in a standard format. For EU residents, you have additional rights under GDPR, including the right to object to processing and lodge complaints with supervisory authorities.
5. Third-Party Services
We use carefully selected third-party services for payment processing, website analytics, and customer support tools. All third parties are bound by strict data protection agreements and are required to maintain equivalent security standards. We never share email content or sensitive recovery data with third parties. Payment processors handle financial information according to PCI DSS standards. Analytics services receive only anonymized website usage data. We regularly audit all third-party relationships to ensure continued compliance with our privacy standards.
6. Data Security
We implement comprehensive security measures including 256-bit AES encryption, multi-factor authentication, network segmentation, and intrusion detection systems. Our facilities feature physical security controls, environmental monitoring, and restricted access protocols. All staff undergo background checks and regular security training. We maintain incident response procedures and conduct regular security audits and penetration testing. Our security framework complies with ISO 27001 standards and is continuously updated to address emerging threats and vulnerabilities.
7. Children's Privacy
Our services are not directed to children under 13, and we do not knowingly collect personal information from minors. If we discover that we have inadvertently collected information from a child under 13, we will immediately delete such information from our systems. Parents or guardians who believe their child has provided personal information to us should contact us immediately. We recommend that parents monitor their children's internet activities and educate them about providing personal information online.
8. Policy Updates
We may update this Privacy Policy periodically to reflect changes in our practices, technology, or legal requirements. We will notify you of significant changes through email or prominent website notices at least 30 days before implementation. Continued use of our services after policy updates constitutes acceptance of the revised terms. We maintain an archive of previous policy versions for reference. For questions about policy changes or their impact on your data, please contact our privacy team directly.
Contact Information
[email protected]