Privacy Policy

Privacy Policy for Sidequest Cyber

Effective Date: August 7, 2025

1. Introduction

Welcome to Sidequest Cyber. We are committed to protecting the privacy and security of the information we collect and handle. This Privacy Policy explains how Sidequest Cyber (“we,” “us,” or “our”) collects, uses, discloses, and protects information from our clients, prospective clients, and visitors to our website (https://www.sidequestcyber.com).

This policy distinguishes between two types of information:

  • Website & Marketing Information: Data collected from visitors to our website and through our marketing activities.

  • Client & Service Data: Data that we access, process, or store on behalf of our clients in the course of providing our IT management, cybersecurity, and AI automation services.

By using our website or engaging our services, you agree to the collection and use of information in accordance with this policy.

2. Information We Collect

a) Website & Marketing Information:

When you visit our website, fill out a contact form, or interact with our marketing materials, we may collect:

  • Personal Identification Information: Name, email address, phone number, company name, and job title.

  • Technical Data: IP address, browser type and version, operating system, and other standard technical information.

  • Usage Data: Information about how you use our website, such as pages visited, time spent on pages, and links clicked. This is typically collected via cookies and similar technologies.

b) Client & Service Data:

As an IT-as-a-Service (ITaaS) provider, we may have access to data owned by our clients in order to perform our contractual duties. This may include, but is not limited to:

  • Client Employee Information: Names, email addresses, user credentials, and other data necessary for user account management and support.

  • Client Business Data: Files, documents, emails, application data, and other proprietary business information stored on client systems that we manage.

  • System & Security Logs: Performance data, security event logs, and network traffic data from client devices and infrastructure.

Our access to and handling of Client & Service Data is strictly governed by the Master Service Agreement (MSA) and other contracts executed with our clients. We act as a data processor for this information and our client acts as the data controller.

3. How We Use Your Information

a) Website & Marketing Information:

  • To respond to your inquiries and provide you with information about our services.

  • To schedule consultations and discovery calls.

  • To improve our website and marketing efforts.

  • To send you marketing communications that we believe may be of interest to you, from which you may opt-out at any time.

b) Client & Service Data:

  • To provide, manage, and maintain our contracted services, including IT support, cybersecurity monitoring, and AI automation deployment.

  • To prevent, detect, and respond to security threats and incidents.

  • To perform system maintenance, updates, and backups.

  • To fulfill our contractual obligations and provide reporting to our clients.

We will never use Client & Service Data for our own marketing purposes or for any purpose not explicitly authorized by our client in our service agreement.

4. Data Sharing and Disclosure

We do not sell your personal information. We may share information under the following limited circumstances:

  • With Service Providers: We may share information with trusted third-party vendors who perform services on our behalf, such as data hosting or software providers integral to our service delivery. These vendors are contractually obligated to protect your data and are prohibited from using it for any other purpose.

  • For Legal Compliance: We may disclose information if required to do so by law, in response to a subpoena, court order, or other valid legal process.

  • To Protect Our Rights: We may disclose information where we believe it is necessary to investigate, prevent, or take action regarding potential violations of our policies, suspected fraud, or situations involving potential threats to the safety of any person or property.

  • With Client Authorization: We will only share Client & Service Data with third parties upon the express written consent and direction of our client.

5. Data Security

We take the security of your information very seriously. We implement and maintain robust administrative, technical, and physical security measures designed to protect against unauthorized access, use, modification, and disclosure of the information we control. These measures include:

  • Encryption of data in transit and at rest.

  • Strict access controls and the principle of least privilege.

  • Regular security assessments and vulnerability management.

  • Security awareness training for all our employees.

While we strive to use commercially acceptable means to protect your information, no method of transmission over the Internet or method of electronic storage is 100% secure.

6. Data Retention

We retain Website & Marketing Information for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required or permitted by law.

Client & Service Data is retained in accordance with the terms of our service agreement with each client. Upon termination of our services, we will securely return or destroy client data as directed by the client.

7. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information, such as the right to access, correct, or delete your data. To exercise these rights, please contact us using the information below.

For Client & Service Data, any requests from our clients’ employees or users should be directed to our client (the data controller). We will assist our clients in responding to such requests as required by our service agreements.

8. Cookies and Tracking Technologies

Our website may use cookies to enhance user experience and analyze site traffic. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our website.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the “Effective Date” at the top. We encourage you to review this Privacy Policy periodically for any changes.

10. Contact Us

If you have any questions about this Privacy Policy, please contact us at:

Sidequest Cyber 

info@sidequestcyber.com

Terms of Service for Sidequest Cyber

Effective Date: August 7, 2025

1. Acceptance of Terms

This Terms of Service (“Terms”) agreement is a legally binding contract between you or the entity you represent (“Client,” “you”) and Sidequest Cyber (“we,” “us,” “our”). These Terms govern your access to and use of our IT management, cybersecurity, and AI automation services (collectively, the “Services”). By engaging our Services, you acknowledge that you have read, understood, and agree to be bound by these Terms and our Privacy Policy. If you do not agree with these Terms, you must not use our Services.

2. Description of Services

Sidequest Cyber provides comprehensive IT-as-a-Service (ITaaS) solutions tailored for small to medium-sized businesses. Our Services are detailed in the specific Master Service Agreement (MSA), Statement of Work (SOW), or service proposal executed between you and Sidequest Cyber. These documents will outline the scope, features, and limitations of the Services you have engaged.

3. Client Responsibilities

To enable us to provide our Services effectively, you agree to:

  • Provide timely access to necessary personnel, systems, and information.

  • Ensure that all information provided to us is accurate and complete.

  • Maintain the security of your account credentials and notify us immediately of any unauthorized use.

  • Comply with all applicable laws and regulations in your use of the Services.

  • Designate an authorized representative to act as the primary point of contact for decision-making and approvals.

4. Payment, Fees, and Term

  • Fees: You agree to pay all fees as specified in your MSA or SOW. Fees for subscription-based services are billed in advance on a monthly or annual basis.

  • Payment: All invoices are due upon receipt, unless otherwise specified in your service agreement. Late payments may be subject to interest charges.

  • Taxes: All fees are exclusive of applicable taxes. You are responsible for paying all taxes associated with your purchase of the Services.

  • Term: The initial term of service will be defined in your MSA or SOW. Subscription services will automatically renew for subsequent periods of the same duration unless either party provides written notice of non-renewal at least thirty (30) days prior to the end of the current term.

5. Confidentiality

“Confidential Information” includes all non-public information disclosed by one party to the other, including business strategies, client data, financial information, and proprietary technical information. Both parties agree to:

  • Use Confidential Information only for the purpose of fulfilling their obligations under this agreement.

  • Not disclose Confidential Information to any third party without the prior written consent of the other party.

  • Protect the Confidential Information with the same degree of care they use to protect their own confidential information of a similar nature, but in no event less than reasonable care.

6. Intellectual Property

  • Our IP: We retain all rights, title, and interest in and to our Services, including all related software, documentation, and intellectual property created by us.

  • Your IP: You retain all rights, title, and interest in and to your own data and confidential information (“Client Data”). You grant us a limited, non-exclusive license to access, use, and process your Client Data solely for the purpose of providing the Services to you.

7. Termination

  • For Cause: Either party may terminate this agreement for cause if the other party commits a material breach of these Terms and fails to cure such breach within thirty (30) days of receiving written notice.

  • Effect of Termination: Upon termination, you must immediately pay any outstanding fees owed to us. We will cooperate with you to facilitate a smooth transition, including the secure return or destruction of your Client Data as outlined in our service agreement.

8. Data Deletion Policy

  • Right to Deletion: In accordance with applicable data privacy laws in the United States, you may have the right to request the deletion of your personal information that we have collected.

  • Submitting a Request: To submit a data deletion request, please contact us using the methods provided in the “Contact Us” section of this document. Your request must provide sufficient information to allow us to reasonably verify that you are the person about whom we collected personal information.

  • Verification and Response: We will process verifiable requests within 45 days of receipt, as required by law. If we require more time, we will inform you of the reason and extension period in writing. We cannot respond to your request if we cannot verify your identity or authority to make the request.

  • Exceptions: We may deny your deletion request if retaining the information is necessary for us or our service provider(s) to: complete a transaction, provide a service you requested, comply with a legal obligation, detect security incidents, or for other internal and lawful uses that are compatible with the context in which you provided the information.

  • Client & Service Data: Please note that this policy primarily applies to “Website & Marketing Information” as defined in our Privacy Policy. For “Client & Service Data,” Sidequest Cyber acts as a data processor. Requests for the deletion of data related to our clients’ employees or systems must be directed to the respective client (the data controller), and we will act upon their verified instructions.

9. Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY LAW, SIDEQUEST CYBER SHALL NOT BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, OR ANY LOSS OF PROFITS OR REVENUES, WHETHER INCURRED DIRECTLY OR INDIRECTLY, OR ANY LOSS OF DATA, USE, GOODWILL, OR OTHER INTANGIBLE LOSSES, RESULTING FROM (A) YOUR ACCESS TO OR USE OF OR INABILITY TO ACCESS OR USE THE SERVICES; (B) ANY UNAUTHORIZED ACCESS TO OR USE OF OUR SERVERS AND/OR ANY PERSONAL INFORMATION STORED THEREIN.

IN NO EVENT SHALL SIDEQUEST CYBER’S AGGREGATE LIABILITY FOR ALL CLAIMS RELATING TO THE SERVICES EXCEED THE TOTAL AMOUNT OF FEES PAID BY YOU TO US DURING THE TWELVE (12) MONTHS PRIOR TO THE EVENT GIVING RISE TO THE LIABILITY.

10. Indemnification

You agree to defend, indemnify, and hold harmless Sidequest Cyber, its officers, directors, employees, and agents from and against any and all claims, damages, obligations, losses, liabilities, costs, or debt, and expenses (including but not limited to attorney’s fees) arising from your use of and access to the Services or your violation of any term of these Terms.

11. Governing Law

These Terms shall be governed and construed in accordance with the laws of the Commonwealth of Virginia, United States, without regard to its conflict of law provisions. Any legal suit, action, or proceeding arising out of or related to these Terms or the Services shall be instituted exclusively in the federal or state courts located in Chesterfield County, Virginia.

12. Changes to Terms

We reserve the right, at our sole discretion, to modify or replace these Terms at any time. If a revision is material, we will provide at least thirty (30) days’ notice prior to any new terms taking effect. Your continued use of the Services after any such changes constitutes your acceptance of the new Terms.

13. Contact Us

If you have any questions about these Terms, please contact us at:

Sidequest Cyber 

info@sidequestcyber.com