Privacy Policy | 360 Software Ltd

Privacy Policy

360 Software Ltd

Last Updated: January 2025

1. Overview

360 Software Ltd ("360 Software," "we," "us," or "our") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our software development services, hosting solutions, and related services.

Registered Office:
House of Francis, Room 303, Ile Du Port, Mahé, Seychelles
Trading Address:
Regus Business Centre, 1st Floor, Block B, North Park, Black River Park, 2 Fir Street, Observatory, Cape Town, 7925, South Africa

Our Commitment

We are committed to:

  • Being transparent about the information we collect and how we use it
  • Implementing robust security measures to protect your data
  • Respecting your privacy choices and providing you with control over your information
  • Complying with applicable data protection laws and regulations
  • Only collecting information necessary for providing our services

Scope of This Policy

This Privacy Policy applies to all information collected through our services, including websites, software applications, hosting services, and any related services or communications.

2. Information We Collect

We collect information in several ways to provide and improve our services. The types of information we collect include:

Personal Information

Information you provide directly to us, such as:

  • Contact Information: Name, email address, phone number, company name
  • Account Information: Username, password, account preferences
  • Billing Information: Payment details, billing address, tax identification
  • Communication Data: Messages, support tickets, feedback, survey responses
  • Project Data: Information you provide about your software development projects

Technical Information

Information collected automatically when you use our services:

Information Type Examples Purpose
Device Information IP address, browser type, operating system Security, compatibility, optimization
Usage Data Pages visited, features used, time spent Service improvement, analytics
Performance Data Load times, error logs, system performance Technical support, troubleshooting
Location Data General geographic location (country/region) Service optimization, compliance

Business Information

For business clients, we may collect:

  • Company registration details and tax information
  • Business contact information and authorized representatives
  • Project specifications and technical requirements
  • Usage patterns and service performance metrics

Data You Store With Us

As a hosting and software development provider, you may store your own data on our servers. You retain ownership of this data, and we act as a data processor for information you store through our services.

3. How We Use Your Information

We use the information we collect for legitimate business purposes, including:

Service Provision

  • Providing, maintaining, and improving our software development services
  • Managing your account and processing transactions
  • Delivering hosting services and ensuring system reliability
  • Providing technical support and customer service
  • Customizing services to meet your specific requirements

Communication

  • Sending service-related notifications and updates
  • Responding to inquiries and providing support
  • Sending invoices and payment-related communications
  • Providing important security and policy updates

Business Operations

  • Processing payments and managing billing
  • Conducting internal research and analytics
  • Improving our services and developing new features
  • Ensuring compliance with legal obligations
  • Protecting against fraud and security threats

Legal Basis for Processing

We process your information based on: (1) Performance of contract, (2) Legitimate business interests, (3) Legal compliance, and (4) Your consent where required by law.

4. Information Sharing

We do not sell, trade, or otherwise transfer your personal information to third parties without your consent, except as described in this policy.

When We May Share Information

  • Service Providers: With trusted third-party service providers who assist in our operations
  • Legal Requirements: When required by law, court order, or government request
  • Business Protection: To protect our rights, property, or safety, or that of our users
  • Business Transfers: In connection with a merger, acquisition, or sale of assets
  • With Your Consent: When you explicitly authorize such sharing

Third-Party Service Providers

We may work with carefully selected third parties for:

  • Payment processing and billing services
  • Cloud infrastructure and hosting services
  • Analytics and performance monitoring
  • Customer support and communication tools
  • Security and fraud prevention services

Data Processing Agreements

All third-party service providers are bound by strict data processing agreements and are required to maintain appropriate security standards and use your information only as authorized.

No Sale of Personal Data

We do not sell personal information to third parties. We do not engage in data brokering or similar practices where personal information is sold for commercial purposes.

5. Data Security

We implement comprehensive security measures to protect your information against unauthorized access, alteration, disclosure, or destruction.

Technical Safeguards

  • Encryption: Data is encrypted in transit using TLS/SSL and at rest using AES-256
  • Access Controls: Multi-factor authentication and role-based access controls
  • Network Security: Firewalls, intrusion detection, and DDoS protection
  • Regular Updates: Security patches and system updates applied regularly
  • Monitoring: 24/7 security monitoring and incident response capabilities

Organizational Safeguards

  • Background checks and security training for all personnel
  • Strict data access policies and procedures
  • Regular security audits and penetration testing
  • Incident response and breach notification procedures
  • Compliance with industry security standards

Infrastructure Security

  • Secure data centers with physical access controls
  • Redundant systems and regular data backups
  • Geographic distribution across 30+ servers worldwide
  • Business continuity and disaster recovery plans

Security Incident Reporting

In the event of a security incident that may affect your personal information, we will notify you and relevant authorities within 72 hours as required by applicable law.

6. Data Retention

We retain personal information only for as long as necessary to fulfill the purposes for which it was collected and to comply with legal obligations.

Retention Periods

Data Type Retention Period Reason
Account Information Duration of service + 1 year Account management, support
Billing Records 7 years Tax compliance, dispute resolution
Communication Records 3 years Customer support, legal compliance
Technical Logs 1 year Security monitoring, troubleshooting
Marketing Data Until consent withdrawn Marketing communications

Data Deletion

When retention periods expire, we:

  • Permanently delete personal information from our active systems
  • Remove data from backups within 30 days of deletion
  • Use secure deletion methods that make data unrecoverable
  • Maintain records of deletion for compliance purposes

Account Termination

Upon account termination, your data will be permanently deleted within 30 days unless longer retention is required by law or for legitimate business purposes such as dispute resolution.

7. Your Privacy Rights

You have certain rights regarding your personal information, depending on your location and applicable laws.

Universal Rights

Regardless of location, you have the right to:

  • Access: Request information about what personal data we hold about you
  • Correction: Request correction of inaccurate or incomplete information
  • Deletion: Request deletion of your personal information (subject to legal requirements)
  • Portability: Receive your data in a structured, machine-readable format
  • Withdrawal: Withdraw consent where processing is based on consent

Additional Rights (GDPR/CCPA)

If you are located in the EU, UK, or California, you may also have rights to:

  • Object: Object to processing based on legitimate interests
  • Restrict: Request restriction of processing in certain circumstances
  • Not be Subject to Automated Decision-Making: Including profiling
  • Non-Discrimination: Not be discriminated against for exercising your rights

How to Exercise Your Rights

To exercise your privacy rights:

  1. Contact us using the information provided at the end of this policy
  2. Provide sufficient information to verify your identity
  3. Specify which rights you wish to exercise
  4. We will respond within 30 days (or as required by applicable law)

No Charge for Requests

We do not charge fees for processing privacy rights requests unless they are excessive or repetitive, in which case we may charge a reasonable administrative fee.

8. Cookies & Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience and improve our services.

Types of Cookies We Use

Cookie Type Purpose Duration
Essential Cookies Enable basic site functionality and security Session/Short-term
Performance Cookies Analyze site performance and usage patterns Up to 2 years
Functional Cookies Remember your preferences and settings Up to 1 year
Security Cookies Detect and prevent security threats Session/Short-term

Managing Cookies

You can control cookies through:

  • Browser Settings: Most browsers allow you to refuse or delete cookies
  • Opt-Out Tools: Use industry opt-out tools for advertising cookies
  • Cookie Preferences: Manage preferences through our cookie consent tool

Impact of Disabling Cookies

Disabling certain cookies may affect your ability to use some features of our services. Essential cookies cannot be disabled as they are necessary for basic functionality.

9. International Data Transfers

As an international service provider with servers worldwide, your information may be transferred to and processed in countries other than your own.

Our Global Infrastructure

  • Servers located across multiple continents for optimal performance
  • Data centers in regions with strong data protection laws
  • Local data processing where required by applicable laws
  • Appropriate safeguards for all international transfers

Transfer Safeguards

When transferring data internationally, we ensure adequate protection through:

  • Adequacy Decisions: Transfers to countries deemed adequate by regulators
  • Standard Contractual Clauses: EU-approved contractual safeguards
  • Binding Corporate Rules: Internal data protection rules
  • Certification Schemes: Participation in recognized data protection programs

Your Control Over Data Location

For enterprise clients, we offer options to specify data residency requirements and can provide hosting in specific geographic regions upon request.

10. Children's Privacy

Our services are not directed to children under the age of 16, and we do not knowingly collect personal information from children.

Age Restrictions

  • Users must be at least 16 years old to use our services
  • Users under 18 require parental consent in some jurisdictions
  • Business accounts must be managed by authorized adult representatives
  • We verify age during account registration processes

If We Learn of Child Data Collection

If we become aware that we have collected personal information from a child under 16 without parental consent, we will:

  • Delete the information as quickly as possible
  • Terminate any associated accounts
  • Notify parents or guardians if contact information is available
  • Review our collection practices to prevent future occurrences

Educational Use

For educational institutions using our services for students under 16, we require appropriate consent and implement additional privacy protections as required by applicable laws such as COPPA or GDPR.

11. Third-Party Services

Our services may integrate with or contain links to third-party services, applications, or websites. This privacy policy does not apply to such third-party services.

Types of Third-Party Integrations

  • Payment Processors: For secure payment processing
  • Analytics Services: For service improvement and analytics
  • Communication Tools: For customer support and messaging
  • Development Tools: For software development and deployment
  • Security Services: For fraud prevention and security monitoring

Your Responsibility

  • Review privacy policies of any third-party services you use
  • Understand how third parties collect and use your information
  • Configure privacy settings on third-party platforms according to your preferences
  • Contact third parties directly for questions about their privacy practices

Third-Party Responsibility

We are not responsible for the privacy practices of third-party services. We encourage you to review their privacy policies before providing any personal information.

12. Policy Changes

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

How We Handle Changes

  • Notification: We will notify you of significant changes via email or service notifications
  • Effective Date: Changes take effect 30 days after notification unless immediate compliance is required
  • Continued Use: Your continued use of our services after changes take effect constitutes acceptance
  • Historical Versions: We maintain records of previous policy versions

Types of Changes

  • Minor Updates: Clarifications, contact information, or formatting changes
  • Material Changes: Changes to data collection, use, or sharing practices
  • Legal Updates: Changes required by new laws or regulations
  • Service Changes: Updates reflecting new features or services

Your Options

If you disagree with changes to this policy, you may discontinue using our services before the changes take effect. We will honor the previous policy terms for any data processing that occurred before the changes.

13. Contact Us

If you have questions about this Privacy Policy or our privacy practices, please contact us using the methods below.

Privacy Contact Information

We're here to help with any privacy-related questions or concerns

Email

support@360softwareservices.com

Privacy inquiries typically responded to within 48 hours

Phone

(+44) 020-3411 7244

Monday - Friday: 9:00 AM - 6:00 PM GMT

Telegram Support

@Software360_bot

24/7 automated support with human escalation

Data Protection Officer

For specific privacy and data protection inquiries, you may contact our Data Protection Officer at the email address above with "DPO" in the subject line.

Supervisory Authority

If you believe we have not addressed your privacy concerns adequately, you have the right to lodge a complaint with the relevant data protection supervisory authority in your jurisdiction.

We Value Your Privacy

Your privacy is important to us. We are committed to addressing your concerns promptly and transparently. Thank you for trusting 360 Software Ltd with your information.

Scroll to Top