Privacy Policy
Last updated: February 28, 2026
1. Who We Are
ITOdin ("we," "us," or "our") operates the MSP platform available at itodin.com and app.itodin.com. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you use our platform.
2. Information We Collect
Account Information
Name, email address, organization name, billing address, and payment method details when you register for or purchase a subscription.
Device and Endpoint Data
Hardware inventory, software lists, network information, patch status, performance telemetry, and event logs collected from devices where your organization has deployed the ITOdin monitoring agent. This data is collected on behalf of your organization (the data controller) and processed under your direction.
Workforce Monitoring Data
If your organization has enabled the Workforce Monitoring add-on, activity logs, application usage, and (where configured) screenshots may be collected from enrolled endpoints. End users must be notified of monitoring in accordance with applicable law. ITOdin processes this data solely as a data processor under your organization's instructions.
Usage and Log Data
IP addresses, browser type, pages visited, actions taken in the platform, and timestamps for security, audit, and product improvement purposes.
3. How We Use Your Information
- Provide, operate, and improve the ITOdin platform
- Process billing and manage your subscription
- Send transactional emails (account alerts, invoices, password resets)
- Detect, investigate, and prevent security incidents and abuse
- Comply with legal obligations and enforce our Terms of Service
- Generate anonymized, aggregated product analytics
We do not sell your personal data to third parties. We do not use device telemetry or workforce monitoring data for advertising.
4. Data Sharing
Service Providers: We share data with sub-processors such as Stripe (payments), Sentry (error monitoring), and our hosting infrastructure providers, each bound by data processing agreements.
Legal Requirements: We may disclose information when required by law, court order, or to protect the rights, property, or safety of ITOdin, our customers, or the public.
Business Transfers: In the event of a merger, acquisition, or asset sale, customer data may be transferred. We will notify affected users prior to any such transfer.
5. Data Retention
We retain account data for the duration of your subscription and up to 90 days after cancellation to allow data export. Device telemetry is retained for up to 12 months. Workforce activity logs and screenshots are retained according to your organization's configured retention settings (default: 90 days). Billing records are retained for 7 years as required by law.
6. Security
We employ industry-standard safeguards including encryption at rest (AES-256) and in transit (TLS 1.2+), multi-factor authentication, role-based access controls, and regular security reviews. No method of transmission over the internet is 100% secure; we cannot guarantee absolute security but are committed to protecting your data.
7. Your Rights
Depending on your jurisdiction, you may have rights to access, correct, delete, or port your personal data, and to object to or restrict certain processing. To exercise these rights, contact us at privacy@itodin.com. We respond to verified requests within 30 days.
8. Cookies
The marketing site (itodin.com) uses only essential cookies. The application (app.itodin.com) uses session cookies necessary for authentication. We do not use third-party advertising trackers or behavioral analytics cookies.
9. Changes to This Policy
We may update this Privacy Policy from time to time. We will notify you of material changes by email or by posting a notice in the platform at least 14 days before the change takes effect. Continued use of the platform after that date constitutes acceptance of the revised policy.
10. Contact Us
For privacy-related questions or requests, contact us at:
ITOdinEmail: privacy@itodin.com
Phone: +1 (832) 219-7997