Privacy policy

Privacy Policy

Last Updated: 5/14/2026

Introduction

This Privacy Policy explains how Otech we collects, uses, processes, and discloses your information across our software engineering services platform.

Information We Collect

1. Information You Provide

Personal Information

  • Name and contact details

  • Email address

  • Phone number

  • Billing address

  • Payment information

  • Company details (if applicable)

Project Information

  • Technical requirements and specifications

  • Project briefs and scope documents

  • Source code and technical assets

  • Feedback and communications

  • API keys and credentials (securely stored)

  • Database schemas and architecture documents

  • Client-supplied content and materials

2. Information Automatically Collected

Website Usage

  • IP address

  • Browser type

  • Device information

  • Operating system

  • Pages visited

  • Time spent on pages

  • Referring website

  • Date and time of visits

Cookies and Tracking

  • Essential cookies for website functionality

  • Analytics cookies for performance measurement

  • Preference cookies for user experience

  • Marketing cookies (with consent)

How We Use Your Information

1. Service Delivery

  • Process development requests

  • Manage project services

  • Handle project communications

  • Deliver completed work and source code

  • Process payments

  • Provide technical support

2. Service Improvement

  • Analyze user behavior

  • Improve website functionality

  • Enhance service offerings

  • Optimize user experience

  • Debug technical issues

3. Communication

  • Service updates and notifications

  • Project status updates

  • Project information

  • Marketing communications (with consent)

  • Newsletter distribution (opt-in only)

Data Storage and Security

1. Data Storage

  • Secure cloud storage providers (AWS, Google Cloud)

  • Industry-standard encryption (AES-256)

  • Regular security audits

  • Limited staff access with role-based permissions

  • Secure backup systems with redundancy

2. Data Retention

  • Active client data retained during service period

  • Archived project data kept for 7 years

  • Financial records kept as required by law

  • Source code retained per contract agreement

  • Option to request data deletion after project completion

3. Security Measures

  • SSL/TLS encryption for all data transmission

  • Secure password policies with complexity requirements

  • Two-factor authentication for all accounts

  • Regular security updates and patches

  • Employee security training and NDA agreements

  • Secure code repositories with access controls

  • Encrypted database backups

Information Sharing

1. Third-Party Service Providers

  • Payment processors (Stripe, PayPal)

  • Cloud storage services (AWS, Google Cloud)

  • Email service providers

  • Analytics tools (Google Analytics)

  • Project management software

  • Version control systems (GitHub, GitLab)

2. Legal Requirements

  • Court orders

  • Legal obligations under Florida and US federal law

  • Government requests

  • Rights protection

  • Terms enforcement

  • Security incident reporting as required by law

Your Rights and Choices

1. Access Rights

  • View personal data

  • Request data copies

  • Update information

  • Correct inaccuracies

  • Download your data

  • Request source code and project files per contract terms

2. Control Options

  • Opt-out of marketing communications

  • Cookie preferences

  • Newsletter unsubscribe

  • Account deletion

  • Data removal requests (subject to legal retention requirements)

Children's Privacy

  • No services offered to individuals under 18

  • No knowing collection of minor data

  • Parent/guardian consent required for any users under 18

  • Immediate data deletion if minor's data discovered

International Data Transfers

  • Services primarily operated in the United States (Fort Lauderdale, Florida)

  • Cross-border data transfers when working with international clients

  • Standard contractual clauses for EU clients

  • Compliance with international privacy standards

  • Data protection agreements with international partners

Changes to Privacy Policy

  • Right to update policy as needed

  • Notice of material changes via email

  • Email notification of significant updates

  • 30-day notice when possible

  • Continued use of services implies acceptance of updated policy

Contact Information

For privacy-related inquiries:

Otech
Fort Lauderdale, Florida
Email: support@otechlab.com


Specific Rights by Region

1. European Users (GDPR)

  • Right to access

  • Right to rectification

  • Right to erasure ("right to be forgotten")

  • Right to restrict processing

  • Right to data portability

  • Right to object

  • Rights related to automated decision making and profiling

2. California Users (CCPA/CPRA)

  • Right to know what personal information is collected

  • Right to know whether personal information is sold or disclosed

  • Right to say no to the sale of personal information

  • Right to access personal information

  • Right to delete personal information

  • Right to correct inaccurate personal information

  • Right to equal service and price, even if you exercise your privacy rights

3. Florida Residents

  • Rights under Florida Information Protection Act (FIPA)

  • Data breach notification within required timeframes

  • Protection of Social Security numbers and financial information

4. Other US States

  • Compliance with Virginia CDPA

  • Compliance with Colorado CPA

  • Compliance with Connecticut CTDPA

  • Compliance with Utah UCPA

  • Additional rights as required by state law

5. Other Regions

  • Additional rights as required by local law

  • Compliance with regional requirements

  • Local data protection standards

Compliance and Certification

  • GDPR compliance for EU clients

  • CCPA/CPRA compliance for California clients

  • Florida Information Protection Act (FIPA) compliance

  • SOC 2 Type II compliance (in progress)

  • OWASP security standards

  • Industry best practices for software development

Data Breach Notification

In the event of a data breach affecting your personal information:

  • We will notify affected users within 30 days of discovery

  • Notification will include nature of breach, data affected, and remediation steps

  • We will comply with all applicable state and federal breach notification laws

  • Law enforcement and regulatory authorities will be notified as required

Governing Law

This Privacy Policy is governed by the laws of the State of Florida and the United States, without regard to conflict of law principles. Any disputes will be resolved in the courts of Broward County, Florida.

By using Otech's services, you acknowledge that you have read and understood this Privacy Policy and agree to its terms.

Kora

New Release