Effective Date: 27/04/2026
Welcome to Concierge IT. We are committed to protecting your privacy and ensuring the highest level of security for your personal and business data. This policy explains how we collect, use, and safeguard your information in alignment with our “white-glove” service standards.
Personal Identification Information: Name, professional email address, direct phone number, and physical business address provided during consultations or account setup.
Technical & Usage Data: IP addresses, browser types, device identifiers, and interaction data collected via cookies to optimize our website’s performance and user experience.
Operational Client Data: Network configurations, system logs, and business-specific information shared with us for managed IT support, server migrations, and compliance auditing.
Service Delivery: To provide, operate, and maintain our premium IT infrastructure and helpdesk support.
Proactive Communication: To send critical security alerts, system update notifications, and rapid-response support communications.
Regulatory Compliance: To perform necessary audits and ensure your operations meet HIPAA, SOC 2, and OSHA standards.
Service Improvement: To analyze how our tools are used and develop new features tailored to the needs of medical and professional practices.
As a specialized partner for healthcare providers, we recognize the sensitivity of Protected Health Information (PHI).
Encryption: We utilize industry-leading AES-256 encryption for data at rest and TLS 1.2+ for data in transit.
24/7 Monitoring: Our Security Operations Center (SOC) provides round-the-clock surveillance to detect and neutralize threats instantly.
Access Control: We enforce strict Multi-Factor Authentication (MFA) and Least Privilege Access models to ensure only authorized personnel can access sensitive systems.
We retain your data only for as long as necessary to fulfill the services outlined in your agreement or to comply with legal obligations.
Retention: Data is kept according to statutory requirements (e.g., 6 years for HIPAA-related documentation).
Destruction: When data is no longer required, we utilize Department of Defense (DoD) standard wiping methods or physical destruction for hardware to ensure it cannot be recovered.
We never sell, rent, or trade your personal or business data to third parties for marketing purposes. Disclosure only occurs in the following instances:
Service Partners: With trusted vendors such as Microsoft Azure, Cloudways, or SOC providers who are essential to delivering our services.
Legal Necessity: If required by law, subpoena, or to protect the safety and rights of Concierge IT and our clients.
Business Transfers: In the event of a merger or acquisition, your data will remain protected under the same privacy standards.
You have the right to:
Access & Export: Request a copy of the personal data we hold about you.
Correction: Request that we update or correct inaccurate information.
Opt-Out: Unsubscribe from non-essential communications (though critical security alerts will still be sent).
Data Deletion: Request the deletion of your data, subject to legal retention requirements.
Our website uses cookies to distinguish you from other users. You can manage your cookie preferences through your browser settings. Please note that disabling cookies may affect the functionality of certain portal features.
Concierge IT reserves the right to update this Privacy Policy periodically to reflect changes in technology or legal requirements. We will notify you of any significant changes via email or a prominent notice on our website.
If you have any questions regarding this Privacy Policy or our data handling practices, please contact our Data Protection Officer at:
