Privacy Policy

Ohio Valley Cyber Privacy Policy

Ohio Valley Cyber is committed to protecting the privacy of its customers and ensuring

the security of the data we collect. This Privacy Policy outlines how we handle, store, and

protect your information in compliance with ISO 27001, ISO 27018, and NIST guidelines.

1. Data Collected:

We collect Personally Identifiable Information (PII) such as your name, address, phone

number, and email address. No sensitive financial information is collected beyond what is

necessary for processing payments.

2. Purpose of Data Collection:

All data collected is used solely for the purpose of providing services to our customers.

We do not share your data with third parties or sell your information.

3. Data Retention:

We retain data for as long as it is necessary to provide relevant services or for a maximum

of three years, whichever comes first. After this period, inactive information will be securely deleted.

4. Data Security:

All collected data is encrypted and stored in a secure manner consistent with NIST guidelines.

Technical and organizational measures are in place to prevent unauthorized access, modification,

or disclosure.

5. Changes to the Privacy Policy:

Any changes to this Privacy Policy will be communicated to customers via email notification.

6. Customer Rights:

Customers have the right to request access to, modification, or deletion of their data.

For any inquiries or requests, please contact us at privacy@ohiovalleycyber.org.

7. Point of Contact:

If you have questions or concerns about this Privacy Policy or the handling of your data,

please email us at privacy@ohiovalleycyber.org.

8. Compliance:

Ohio Valley Cyber adheres to the standards set by ISO 27001, ISO 27018, and NIST guidelines to

ensure the highest level of data protection and security.

By using our services, you agree to the collection and use of your data as described in this Privacy

Policy.

Effective Date: November 22, 2024