Privacy Policy

Last Updated: January 6, 2026

Welcome to Rainier IT Solutions, LLC. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services. Please read this policy carefully.

1. Information We Collect

We collect information that you provide directly to us and information that is automatically collected when you use our services.

1.1 Personal Information You Provide

When you interact with our services, we may collect:

• Contact Information: Name, email address, phone number, business address
• Account Credentials: Username and password for customer portals
• Business Information: Company name, industry, number of employees
• Payment Information: Billing address, payment method details (processed securely through third-party payment processors)
• Communication Data: Messages you send through contact forms, chatbots, or support tickets
• Technical Support Data: System configurations, error logs, and diagnostic information when providing IT services

1.2 Automatically Collected Information

When you visit our website or use our services, we automatically collect:

• Device Information: IP address, browser type, operating system, device identifiers
• Usage Data: Pages visited, time spent on pages, click patterns, referring URLs
• Cookies and Tracking Technologies: We use cookies, web beacons, and similar technologies to enhance your experience
• Monitoring Data: When providing managed IT services, we collect system performance metrics, uptime statistics, and security event logs

2. How We Use Your Information

We use the information we collect to:

• Provide Services: Deliver managed IT services, technical support, and monitoring
• Process Transactions: Handle billing, invoicing, and payment processing
• Communicate: Respond to inquiries, send service updates, and provide customer support
• Improve Services: Analyze usage patterns to enhance our website and service offerings
• Security: Detect and prevent security incidents, fraud, and malicious activity
• Compliance: Meet legal obligations and enforce our terms and policies
• Marketing: Send promotional communications about our services (you can opt out at any time)

3. How We Share Your Information

We do not sell your personal information. We may share your information in the following circumstances:

3.1 Service Providers

We work with third-party service providers who assist us in operating our business:

• Payment Processors: Stripe, Invoice Ninja (for billing and payments)
• Cloud Infrastructure: Google Cloud Platform (for hosting services)
• AI Services: Google Gemini API (for chatbot functionality)
• Communication Tools: Zammad (for support ticketing), email service providers
• Monitoring: TacticalRMM, Uptime Kuma (for system monitoring)

These providers are contractually obligated to protect your information and use it only for the purposes we specify.

3.2 Legal Requirements

We may disclose your information when required by law or to:

• Comply with legal processes, court orders, or government requests
• Enforce our Terms of Service or other agreements
• Protect our rights, property, or safety, or that of our users or the public
• Detect, prevent, or address fraud, security, or technical issues

3.3 Business Transfers

If Rainier IT Solutions is involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you of any such change in ownership or control.

4. Data Security

We implement industry-standard security measures to protect your information:

• Encryption: Data transmitted over HTTPS with SSL/TLS encryption
• Access Controls: Limited access to personal information on a need-to-know basis
• Authentication: OAuth2/OpenID Connect for secure customer portal access
• Monitoring: Security monitoring, intrusion detection, and regular security audits
• Backups: Regular encrypted backups stored securely

However, no system is completely secure. While we strive to protect your information, we cannot guarantee absolute security.

5. Data Retention

We retain your personal information for as long as necessary to:

• Provide services to you
• Comply with legal obligations (tax records, contracts, etc.)
• Resolve disputes and enforce agreements
• Meet legitimate business purposes

When information is no longer needed, we securely delete or anonymize it. Client data from managed IT services is retained according to service agreements, typically for a minimum retention period after service termination.

6. Your Privacy Rights

Depending on your location, you may have the following rights regarding your personal information:

6.1 Access and Portability

You can request a copy of the personal information we hold about you in a structured, commonly used format.

6.2 Correction

You can request correction of inaccurate or incomplete personal information.

6.3 Deletion

You can request deletion of your personal information, subject to legal retention requirements and legitimate business needs.

6.4 Opt-Out

You can opt out of marketing communications by clicking "unsubscribe" in our emails or contacting us directly.

6.5 Do Not Track

Our website does not currently respond to "Do Not Track" signals, but you can manage cookies through your browser settings.

To exercise these rights, please contact us at [email protected]. We will respond within 30 days.

7. Cookies and Tracking Technologies

We use cookies and similar technologies to:

• Essential Cookies: Required for website functionality and security
• Analytics Cookies: Help us understand how visitors use our website
• Preference Cookies: Remember your settings and preferences
• Marketing Cookies: Track advertising effectiveness (with your consent)

You can control cookies through your browser settings. Note that disabling certain cookies may affect website functionality.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

8. Third-Party Links

Our website may contain links to third-party websites or services. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any personal information.

9. Children's Privacy

Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If you believe we have inadvertently collected information from a child, please contact us immediately.

10. International Data Transfers

Your information may be transferred to and processed in the United States or other countries where our service providers operate. These countries may have different data protection laws than your jurisdiction. By using our services, you consent to such transfers.

11. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

• Right to know what personal information is collected, used, shared, or sold
• Right to delete personal information (subject to exceptions)
• Right to opt out of the sale of personal information (we do not sell personal information)
• Right to non-discrimination for exercising your CCPA rights

12. European Privacy Rights (GDPR)

If you are in the European Economic Area (EEA), you have rights under the General Data Protection Regulation (GDPR):

• Right to access, rectify, erase, and restrict processing of your data
• Right to data portability
• Right to object to processing based on legitimate interests
• Right to withdraw consent at any time
• Right to lodge a complaint with a supervisory authority

Our legal basis for processing your information includes: consent, contractual necessity, legal obligations, and legitimate interests.

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by:

• Posting the updated policy on our website with a new "Last Updated" date
• Sending email notifications to active customers
• Displaying a prominent notice on our website

Your continued use of our services after changes become effective constitutes acceptance of the updated policy.

14. Data Breach Notification

In the event of a data breach that affects your personal information, we will notify you and relevant authorities as required by applicable law, typically within 72 hours of discovery.