1. Overview
360 Software Ltd ("360 Software," "we," "us," or "our") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our software development services, hosting solutions, and related services.
Company Registration: 360 Software Ltd is a software development and hosting International Business Company (IBC), registered in the Republic of Seychelles.
Relationship with Terms & Conditions: This Privacy Policy should be read in conjunction with our Terms & Conditions, which govern your use of our services.
Registered Office:
House of Francis, Room 303, Ile Du Port, Mahé, Seychelles
Trading Address:
Regus Business Centre, 1st Floor, Block B, North Park, Black River Park, 2 Fir Street, Observatory, Cape Town, 7925, South Africa
Our Commitment
We are committed to:
- Being transparent about the information we collect and how we use it
- Implementing robust security measures to protect your data
- Respecting your privacy choices and providing you with control over your information
- Complying with applicable data protection laws and regulations
- Only collecting information necessary for providing our services
Scope of This Policy
This Privacy Policy applies to all information collected through our services, including websites, software applications, hosting services, and any related services or communications.
2. Information We Collect
We collect information in several ways to provide and improve our services.
Personal Information
Information you provide directly to us:
- Contact Information: Name, email address, phone number, company name
- Account Information: Username, password, account preferences
- Billing Information: Payment details, billing address, tax identification
- Communication Data: Messages, support tickets, feedback, survey responses
- Project Data: Information you provide about your software development projects
Technical Information
Information collected automatically when you use our services:
| Information Type | Examples | Purpose |
|---|---|---|
| Device Information | IP address, browser type, operating system | Security, compatibility, optimization |
| Usage Data | Pages visited, features used, time spent | Service improvement, analytics |
| Performance Data | Load times, error logs, system performance | Technical support, troubleshooting |
| Location Data | General geographic location (country/region) | Service optimization, compliance |
Business Information
For business clients, we may collect:
- Company registration details and tax information
- Business contact information and authorized representatives
- Project specifications and technical requirements
- Usage patterns and service performance metrics
Data You Store With Us
As a hosting and software development provider, you may store your own data on our servers. You retain ownership of this data, and we act as a data processor for information you store through our services.
3. How We Use Your Information
Service Provision
- Providing, maintaining, and improving our software development services
- Managing your account and processing transactions
- Delivering hosting services and ensuring system reliability
- Providing technical support and customer service
- Customizing services to meet your specific requirements
Communication
- Sending service-related notifications and updates
- Responding to inquiries and providing support
- Sending invoices and payment-related communications
- Providing important security and policy updates
Business Operations
- Processing payments and managing billing
- Conducting internal research and analytics
- Improving our services and developing new features
- Ensuring compliance with legal obligations
- Protecting against fraud and security threats
Legal Basis for Processing
We process your information based on:
- Performance of contract
- Legitimate business interests
- Legal compliance
- Your consent where required by law
4. Information Sharing
We do not sell, trade, or otherwise transfer your personal information to third parties without your consent, except as described in this policy.
When We May Share Information
- Service Providers: With trusted third-party service providers who assist in our operations
- Legal Requirements: When required by law, court order, or government request
- Business Protection: To protect our rights, property, or safety, or that of our users
- Business Transfers: In connection with a merger, acquisition, or sale of assets
- With Your Consent: When you explicitly authorize such sharing
Disclosure Circumstances: As stated in our Terms & Conditions, 360 Software may be required to disclose information in good faith when required by law or by any court, or to protect the rights, property or safety of 360 Software, its customers, or third parties.
No Sale of Personal Data
We do not sell personal information to third parties. We do not engage in data brokering or similar practices where personal information is sold for commercial purposes.
5. Data Security
We implement comprehensive security measures to protect your information against unauthorized access, alteration, disclosure, or destruction.
Technical Safeguards
- Encryption: Data is encrypted in transit using TLS/SSL and at rest using AES-256
- Access Controls: Multi-factor authentication and role-based access controls
- Network Security: Firewalls, intrusion detection, and DDoS protection
- Regular Updates: Security patches and system updates applied regularly
- Monitoring: 24/7 security monitoring and incident response capabilities
Organizational Safeguards
- Background checks and security training for all personnel
- Strict data access policies and procedures
- Regular security audits and penetration testing
- Incident response and breach notification procedures
- Compliance with industry security standards
Infrastructure Security
- Secure data centers with physical access controls
- Redundant systems and regular data backups
- Geographic distribution across 30+ servers worldwide
- Business continuity and disaster recovery plans
Security Incident Reporting
In the event of a security incident that may affect your personal information, we will notify you and relevant authorities within 72 hours as required by applicable law.
6. Data Retention
We retain personal information only for as long as necessary to fulfill the purposes for which it was collected and to comply with legal obligations.
Retention Periods
| Data Type | Retention Period | Reason |
|---|---|---|
| Account Information | Duration of service + 1 year | Account management, support |
| Billing Records | 7 years | Tax compliance, dispute resolution |
| Communication Records | 3 years | Customer support, legal compliance |
| Technical Logs | 1 year | Security monitoring, troubleshooting |
| Marketing Data | Until consent withdrawn | Marketing communications |
Data Deletion
When retention periods expire, we:
- Permanently delete personal information from our active systems
- Remove data from backups within 30 days of deletion
- Use secure deletion methods that make data unrecoverable
- Maintain records of deletion for compliance purposes
Account Termination
Important: Account termination and data deletion timelines:
- Non-payment termination: Data removed from servers after 14 days as per our Terms & Conditions
- Voluntary termination: Data deleted within 30 days unless longer retention is required by law
- Legal requirements: Data may be retained longer if required for dispute resolution or legal compliance
7. Your Privacy Rights
You have certain rights regarding your personal information, depending on your location and applicable laws.
Universal Rights
Regardless of location, you have the right to:
- Access: Request information about what personal data we hold about you
- Correction: Request correction of inaccurate or incomplete information
- Deletion: Request deletion of your personal information (subject to legal requirements)
- Portability: Receive your data in a structured, machine-readable format
- Withdrawal: Withdraw consent where processing is based on consent
Additional Rights (GDPR/CCPA)
If you are located in the EU, UK, or California, you may also have rights to:
- Object: Object to processing based on legitimate interests
- Restrict: Request restriction of processing in certain circumstances
- Not be Subject to Automated Decision-Making: Including profiling
- Non-Discrimination: Not be discriminated against for exercising your rights
How to Exercise Your Rights
To exercise your privacy rights:
- Contact us using the information provided at the end of this policy
- Provide sufficient information to verify your identity
- Specify which rights you wish to exercise
- We will respond within 30 days (or as required by applicable law)
No Charge for Requests
We do not charge fees for processing privacy rights requests unless they are excessive or repetitive, in which case we may charge a reasonable administrative fee.
8. Cookies & Tracking Technologies
We use cookies and similar tracking technologies to enhance your experience and improve our services.
Types of Cookies We Use
| Cookie Type | Purpose | Duration |
|---|---|---|
| Essential Cookies | Enable basic site functionality and security | Session/Short-term |
| Performance Cookies | Analyze site performance and usage patterns | Up to 2 years |
| Functional Cookies | Remember your preferences and settings | Up to 1 year |
| Security Cookies | Detect and prevent security threats | Session/Short-term |
Managing Cookies
You can control cookies through:
- Browser Settings: Most browsers allow you to refuse or delete cookies
- Opt-Out Tools: Use industry opt-out tools for advertising cookies
- Cookie Preferences: Manage preferences through our cookie consent tool
Impact of Disabling Cookies
Disabling certain cookies may affect your ability to use some features of our services. Essential cookies cannot be disabled as they are necessary for basic functionality.
9. International Data Transfers
As an international service provider with servers worldwide, your information may be transferred to and processed in countries other than your own.
Our Global Infrastructure
- Servers located across multiple continents for optimal performance
- Data centers in regions with strong data protection laws
- Local data processing where required by applicable laws
- Appropriate safeguards for all international transfers
Transfer Safeguards
When transferring data internationally, we ensure adequate protection through:
- Adequacy Decisions: Transfers to countries deemed adequate by regulators
- Standard Contractual Clauses: EU-approved contractual safeguards
- Binding Corporate Rules: Internal data protection rules
- Certification Schemes: Participation in recognized data protection programs
Your Control Over Data Location
For enterprise clients, we offer options to specify data residency requirements and can provide hosting in specific geographic regions upon request.
10. Children's Privacy
Our services are not directed to children under the age of 16, and we do not knowingly collect personal information from children.
Age Restrictions
- Users must be at least 16 years old to use our services
- Users under 18 require parental consent in some jurisdictions
- Business accounts must be managed by authorized adult representatives
- We verify age during account registration processes
If We Learn of Child Data Collection
If we become aware that we have collected personal information from a child under 16 without parental consent, we will:
- Delete the information as quickly as possible
- Terminate any associated accounts
- Notify parents or guardians if contact information is available
- Review our collection practices to prevent future occurrences
Educational Use
For educational institutions using our services for students under 16, we require appropriate consent and implement additional privacy protections as required by applicable laws such as COPPA or GDPR.
11. Third-Party Services
Our services may integrate with or contain links to third-party services, applications, or websites. This privacy policy does not apply to such third-party services.
Types of Third-Party Integrations
- Payment Processors: For secure payment processing
- Analytics Services: For service improvement and analytics
- Communication Tools: For customer support and messaging
- Development Tools: For software development and deployment
- Security Services: For fraud prevention and security monitoring
Your Responsibility
- Review privacy policies of any third-party services you use
- Understand how third parties collect and use your information
- Configure privacy settings on third-party platforms according to your preferences
- Contact third parties directly for questions about their privacy practices
Third-Party Responsibility
We are not responsible for the privacy practices of third-party services. We encourage you to review their privacy policies before providing any personal information.
12. Policy Changes
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.
How We Handle Changes
- Notification: We will notify you of significant changes via email or service notifications
- Effective Date: Changes take effect 30 days after notification unless immediate compliance is required
- Continued Use: Your continued use of our services after changes take effect constitutes acceptance
- Historical Versions: We maintain records of previous policy versions
As stated in our Terms & Conditions: 360 Software reserves the right to change, modify, add or remove portions of these terms at any time. 360 Software will inform every time a change is made. If you use the software after a change is informed, it means the term is agreed.
Types of Changes
- Minor Updates: Clarifications, contact information, or formatting changes
- Material Changes: Changes to data collection, use, or sharing practices
- Legal Updates: Changes required by new laws or regulations
- Service Changes: Updates reflecting new features or services
Your Options
If you disagree with changes to this policy, you may discontinue using our services before the changes take effect. We will honor the previous policy terms for any data processing that occurred before the changes.
13. Governing Law and Jurisdiction
Applicable Law: This Privacy Policy and all matters relating to your privacy are governed by and construed in accordance with the laws of the Republic of Seychelles, without regard to conflict of law principles.
Jurisdiction: Any disputes arising from or relating to this Privacy Policy or our privacy practices must be resolved through the courts of Seychelles. By using our services, you consent to the exclusive jurisdiction of Seychelles courts.
Alignment with Terms & Conditions: This aligns with Section 10 of our Terms & Conditions which establishes Seychelles law and jurisdiction for all matters related to our services.
14. Contact Us
If you have questions about this Privacy Policy or our privacy practices, please contact us using the methods below.
support@360softwareservicesltd.com
sales@360softwareservicesltd.com
Privacy inquiries typically responded to within 48 hours
(+44) 020-3411 7244
Monday - Friday: 9:00 AM - 6:00 PM GMT
+(34) 901 666 502
@Software360_bot
24/7 automated support with human escalation
360 Software Ltd
House of Francis, Room 303
Ile Du Port, Mahé
Seychelles
Regus Business Centre
1st Floor, Block B, North Park
Black River Park, 2 Fir Street
Observatory, Cape Town, 7925
South Africa
Data Protection Officer
For specific privacy and data protection inquiries, you may contact our Data Protection Officer at the email address above with "DPO" in the subject line.
Supervisory Authority
If you believe we have not addressed your privacy concerns adequately, you have the right to lodge a complaint with the relevant data protection supervisory authority in your jurisdiction.
We Value Your Privacy
Your privacy is important to us. We are committed to addressing your concerns promptly and transparently. Thank you for trusting 360 Software Ltd with your information.