1. Who We Are
CHK Technology Group LLC ("CHK Tech Group," "we," "our," or "us") is a Managed Service Provider (MSP) headquartered in the United States and operating globally. If you have questions about this notice, contact us at [email protected].
2. Scope of this Policy
This policy covers personal information that we process:
(a) on our public website (chktechgroup.com) and
any customer portals we host; (b) while delivering contracted
IT, cloud or cybersecurity services; and (c) in our marketing and
business operations. It does not cover third-party sites
or services that have their own privacy statements.
3. Information We Collect
- Business contact data - name, title, employer, email, phone.
- Account & authentication data - usernames, roles, audit logs.
- Device & telemetry data - IP address, device identifiers, operating-system details, security event logs.
- Service data we manage on your behalf - files, mailbox contents, configuration backups, etc., strictly under a Master Services Agreement (MSA).
- Marketing interactions - website analytics, newsletter opens, form submissions (with cookie consent).
4. How We Use Information
We process data to:
- Deliver, monitor and support the contracted services.
- Detect, prevent and respond to security incidents.
- Comply with legal or regulatory obligations (e.g., HIPAA, PCI-DSS).
- Invoice, administer accounts, and communicate service notices.
- Improve our offerings and website with aggregated analytics.
- Send relevant product updates or event invitations (opt-out any time).
5. Legal Bases
Depending on jurisdiction, our lawful bases are (i) contractual necessity, (ii) legitimate interest to run a secure MSP business, (iii) consent where required, and (iv) compliance with law.
6. Client Data We Process as an MSP
Customer-owned data that we host, monitor or back up remains your property. We access it only to provide the service, under strict confidentiality and security controls defined in the MSA and accompanying Data Processing Addendum (DPA). We never use client content for advertising or resale.
7. Sharing & Disclosure
We share information only with:
- Trusted sub-processors (e.g., cloud IaaS, backup, ticketing platforms) bound by written contracts,
- Authorized partners or vendors at your request,
- Regulators, courts or law enforcement when legally compelled.
8. International Transfers
If data leaves your region, we rely on Standard Contractual Clauses (SCCs) or other recognized safeguards.
9. Security Measures
We follow industry best practices such as multi-factor authentication, least-privilege access, encryption in transit and at rest, 24x7 SOC monitoring and regular penetration testing.
10. Retention
We keep records only as long as necessary for the purposes above or as required by law/contract, then securely delete or anonymise them.
11. Your Rights
Where applicable (e.g., GDPR, CCPA, LGPD), you may request access, correction, deletion, restriction or portability of your personal data, or object to certain processing. Submit requests to [email protected]. We will verify your identity before fulfilling the request.
12. Cookies & Similar Technologies
Our website uses essential cookies for security and analytics cookies (Google Analytics, Microsoft Clarity) only with your consent. You can disable non-essential cookies at any time in your browser settings.
13. Changes to This Policy
We may update this notice from time to time. The "Last updated" date at the bottom indicates the latest revision. Material changes will be announced on our website or via email.
14. Contact Us
Questions, concerns or complaints? Reach our Data Protection Officer at [email protected]
Last updated: 12 July 2025