← Back to Home

Privacy Policy – MIT HUB

Last Updated: April 2026 | Location: Pune, Maharashtra, India

1. Introduction

MIT HUB ("we", "our", "us") is an independent IT services provider based in Pune, India. We specialize in network infrastructure, system administration, security services, and remote IT support. We are committed to protecting the privacy, confidentiality, and integrity of all personal and organizational data handled during our operations.

2. Scope of Policy

This policy applies to:

  • Clients and their representatives
  • Website visitors
  • Users of our services (remote or onsite)
  • Vendors and partners

3. Information We Collect

3.1 Personal Information

We may collect:

  • Name, email address, phone number
  • Company name and designation
  • Billing and communication details

3.2 Technical & System Information (MSP Context)

During service delivery, we may access or process:

  • IP addresses and network configurations
  • Device details (hostname, OS, BIOS, hardware info)
  • Logs and diagnostic data
  • Security configurations and firewall rules
  • Backup and storage metadata

We do not intentionally collect personal content data unless required for troubleshooting and explicitly authorized.

4. Credential Handling Policy (Important Security Principle)

MIT HUB follows a strict "no credential retention" policy:

  • We do not store, retain, or manage client credentials
  • Any credentials used during setup are:
    • Shared with the customer immediately
    • Required to be changed by the customer

4.1 Support Session Authentication Model

  • Customers must enter credentials themselves
  • Authentication is performed in customer's presence and control
  • No credentials are recorded, stored, or reused

4.2 Post-Support Security Responsibility

  • Customers must change credentials after support
  • Regular credential rotation is strongly recommended

4.3 Customer Responsibility

Customers are solely responsible for:

  • Credential storage and protection
  • Credential rotation and lifecycle management
  • Recovery mechanisms

MIT HUB is not responsible for loss, misuse, or compromise of credentials.

5. Customer Data Responsibility & Backup Policy

5.1 Data Ownership & Custody

All data remains in physical and logical custody of the customer. MIT HUB does not assume ownership or control over customer data.

5.2 No Liability for Data Loss

MIT HUB shall not be responsible for any data loss, including but not limited to:

  • Data corruption
  • Hardware failure (disk, server, storage, etc.)
  • Power failure or electrical issues
  • Malware, ransomware, or virus attacks
  • Theft, unauthorized access, or sabotage
  • Software failure or misconfiguration
  • Any other reason of whatsoever nature

5.3 Customer Backup Responsibility

Customers are fully responsible for:

  • Implementing and maintaining backup systems
  • Ensuring backup integrity and recoverability
  • Periodically testing backups

5.4 Recommended 3-2-1 Backup Rule

Customers are strongly advised to follow the 3-2-1 backup strategy:

  • 3 Copies of Data: 1 primary + 2 backups
  • 2 Different Media Types: Example: HDD + NAS/Object storage
  • 1 Offsite Copy: Cloud backup or remote location

This ensures protection against hardware failure, ransomware, and site-level disasters.

5.5 Infrastructure Responsibility

Customers must provide and maintain:

  • Functional backup storage systems
  • Reliable backup software/tools
  • Uninterrupted power supply (UPS/inverter/generator)
  • Adequate cooling and hardware environment

5.6 Optional Services

Where explicitly agreed in writing, MIT HUB may assist in backup configuration, monitoring setups, and recovery procedures. However, ultimate responsibility remains with the customer.

6. Purpose of Data Collection

We process data strictly for:

  • Delivering IT services and support
  • Network troubleshooting and optimization
  • Security-related activities
  • System configuration and deployment
  • Communication and billing

We do not sell or rent data.

7. Legal Basis for Processing

  • Contractual necessity
  • Legitimate interest
  • Consent (where applicable)
  • Legal obligations

8. Data Access & Control

  • Access is restricted and controlled
  • Remote sessions are authorized, time-bound, and logged (where applicable)

9. Data Sharing

Data may be shared only:

  • With client-approved vendors
  • When legally required

10. Data Retention

  • Data retained only as necessary
  • Secure deletion or anonymization after use

11. Security Measures

  • Access controls
  • Secure communication
  • Network security practices
  • Monitoring and logging

12. Client Responsibilities

Clients are responsible for:

  • Credential security
  • Backup and data protection
  • Providing required infrastructure
  • Defining access scope

13. User Rights

You may:

  • Request access or correction
  • Request deletion
  • Raise complaints

Contact: sales@mithub.in

14. Cookies & Tracking

Minimal, non-intrusive usage only.

15. Cross-Border Data Transfer

Handled with appropriate safeguards where applicable.

16. Incident Response

Prompt notification and mitigation in case of incidents.

17. Changes to Policy

Updates will be published with revised dates.

18. Contact Information

MIT HUB
Pune, Maharashtra, India
Email: 📧 support@mithub.in
Website: 🌐 https://mithub.in

19. Governing Law

  • Information Technology Act, 2000
  • SPDI Rules, 2011