We are Pakistan’s 1st Digital Product Keys Provider

Privacy Policy

IT Guy’s Privacy Policy outlines the core principles, scope, and legal basis under which it collects, processes, and safeguards user data. It applies to all users who engage with our digital services, including product key purchases, activation support, and web interactions. Your continuous and extended usage of this website and its associated services counts as informed consent to the practices stated herein.

In case of disagreement with any aspect of our privacy policy, the user must discontinue using the product and website services immediately. We hold the absolute right to update our policy at our discretion. All modifications shall take effect immediately upon publication on this website. Your continued use of our services following such updates constitutes binding acceptance of the revised terms.

2. Information We Collect

IT Guy collects a combination of personal, transactional, and technical information strictly necessary to deliver services and support. This includes:

  • Personal Information: Full name, contact details, and billing address.
  • Transaction Data: Payment history, invoices, and license delivery records.
  • Technical Metadata: IP address, browser type, OS version, and device identifiers.
  • Support Logs: Chat transcripts, emails, and troubleshooting session records.

It is stated that IT Guy does not knowingly or intentionally collect or process any of its users’ personal information under the age of 18. All users must confirm their age before any transaction to comply with relevant data and consumer protection laws.

3. How Do We Process Your Information?

We only use your data to fulfill contractual obligations, ensure legal compliance, and protect legitimate business interests. These obligations and situations are listed below:

  • Fulfilling digital key delivery and activation assistance
  • Verifying transactions and detecting fraudulent behavior
  • Providing critical system or account notifications
  • Conducting aggregated performance analysis and service improvement

We do not perform automated profiling or decision-making. Your data is never sold or reused beyond the scope defined in this policy.

4. Data Sharing and Disclosure

We do not rent, sell, or trade your data. Information may be disclosed only in the following cases:

  • Third-Party Service Providers (e.g., payment gateways, remote support platforms) under strict data processing agreements and regulations.
  • Regulatory Compliance: When required by law, court order, or government inquiry.
  • Corporate Restructuring: In case of a merger, acquisition, or transfer of business assets, user data may be included as part of the transferred assets.

All parties receiving your data are required to uphold the same confidentiality and security standards as IT Guy.

5. Cookies and Tracking Technologies

We use cookies, beacons, and log files to enhance the usability features for our users and evaluate the site performance. These tools help us track useful information listed below:

  • Store user preferences for faster navigation or providing relatable services.
  • Monitor session integrity and login states to improve user journeys and experiences.
  • Analyze performance trends and identify technical issues before they become a nuisance for the users.
  • Run secure checkout and fraud detection mechanisms to protect and safeguard users’ interests.

Disabling cookies via your browser is permitted but may interfere with essential functionality, such as secure login or product delivery.

6. Data Retention

We only keep your information for as long as it is needed for legal, operational, or contractual reasons. Besides that, the IT Guy does not store or use your personal information for personal gain. Standard retention periods include:

  • License and purchase records: Retained for a minimum of 6 years
  • Support logs: Retained for up to 12 months
  • Inactive user accounts: Reviewed and purged after 18 months of inactivity

Upon expiry of these timeframes, data is securely deleted or anonymized using certified sanitization protocols.

7. Data Security

We implement a comprehensive, layered security framework designed to prevent unauthorized access, data breaches, and the compromise of personal information. This includes:

  • End-to-end SSL encryption for data transmission
  • Enforced two-factor authentication for admin systems
  • Firewall-segmented infrastructure and anti-malware scanning
  • Role-based access to sensitive data

It is to be noted that we make our best efforts to secure user data/information, but no digital environment is impenetrable. Therefore, it is the sole responsibility of users to safeguard their login credentials, and they must take preventive actions to avoid unauthorized access to their accounts or associated data.

8. Data Transfers and Storage Location

Your information may be stored and processed on secure servers or trusted cloud infrastructure in regions with adequate data protection frameworks. While we primarily operate locally, certain processing activities (such as email delivery or payment authentication) may involve cross-border data transfers.

In such cases, IT Guy ensures that third-party service providers maintain data handling protocols that are compliant with industry-standard security and confidentiality obligations.

9. International Users and Data Breach Protocol

The primary service areas of IT Guy are located in Pakistan, but we may offer services to users globally. If you are located in regions with specific user data protection laws, such as the European Union or the United Kingdom, you consent to your data being processed according to the local jurisdiction of the service area. While not legally bound by GDPR, we follow its core practices, including limited data use, clear consent, and accountability.

In an unfortunate event of a data breach risking user data, we will do the needful by investigating and limiting future risks involved. We will notify users and regulators when required by law. Our response includes corrective actions and full cooperation with relevant authorities to maintain data security and user trust.

10. Your Rights

Depending on the local jurisdiction, you may have the following rights pertaining to your data and personal information:

  • Access: Request a copy of your personal information.
  • Rectification: Correct inaccuracies in your stored user information.
  • Erasure: Submit a request to have your personal data permanently removed from our records, subject to applicable legal and regulatory allowances.
  • Objection: Opt out of non-essential processing or marketing.
  • Consent Withdrawal: Withdraw consent where it served as the legal basis for processing.

All such requests must be submitted via email to: support@itguy.pk. We verify identity before processing any request and may decline unreasonable or unsupported claims.