Privacy Policy

Welcome to Gulf.support. We understand the importance of your privacy and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our cybersecurity services.

Gulf.support provides specialized cybersecurity services, including anti-extortion solutions and online security problem resolution, particularly for social media and other online platforms. Our services are designed to help users address security concerns and recover compromised accounts.

We respect your privacy rights and are committed to transparency regarding the data we collect and how it is used. This Privacy Policy is designed to comply with applicable data protection laws worldwide, including but not limited to the European Union's General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other international privacy regulations.

Please read this Privacy Policy carefully. By accessing or using our website and services, you acknowledge that you have read, understood, and agree to be bound by the terms described in this Privacy Policy. If you do not agree with our policies and practices, please do not use our services.

Who We Are

Gulf.support is a global provider of cybersecurity services focused on helping individuals and organizations resolve online security issues. Our services include assistance with account recovery, anti-extortion solutions, and general cybersecurity support.

Applicability

This Privacy Policy applies to information we collect when you:

• Visit our website at gulf.support
• Submit information through our support forms
• Communicate with us regarding our services
• Use any of our cybersecurity services

At Gulf.support, we collect information that is necessary to provide our cybersecurity services and to assist you with resolving online security issues. This section describes the types of information we collect and how we collect it.

Types of Information We Collect

Information You Provide to Us

When you use our services, you may provide us with certain personal information, including but not limited to:

• Contact Information: Such as your name, email address, phone number, and other contact details you provide when submitting support requests.
• Account Information: Details about your online accounts that require assistance, such as usernames, account identifiers, and information about the security issues you're experiencing. We do not collect or store your passwords.
• Communication Content: Information you share with us when describing your security issues, including details about unauthorized access, extortion attempts, or other cybersecurity concerns.
• Verification Information: Documentation or information you provide to verify your identity or ownership of compromised accounts.

Information We Collect Automatically

With your consent, we may automatically collect certain technical information when you use our services:

• Location Data: Approximate geographic location information that helps us verify the legitimacy of support requests and improve our services.
• IP Addresses: We may collect IP address information to enhance verification processes and protect against fraudulent requests.
• Device Information: Basic information about the devices you use to access our services, such as device type, operating system, and browser type.
• Service Usage Data: Information about how you interact with our services, including the pages you visit, the features you use, and the actions you take.

How We Collect Information

We collect information through the following methods:

• Direct Submission: Information you provide directly to us through:
  • Email communications
  • Support forms on our website
  • Other direct communications with our team
• Automated Collection: With your consent, we may automatically collect technical information as described above when you use our website and services.

What We Do Not Collect

It's important to note what information we do not collect:

• Cookies and Tracking Technologies: We do not use cookies or similar tracking technologies on our website.
• Sensitive Authentication Data: We do not collect or store your passwords or other sensitive authentication credentials.
• Payment Information: If any payment information is required for our services, it is processed through secure third-party payment processors and is not stored on our systems.

Legal Basis for Collecting Information

We collect and process your personal information based on one or more of the following legal grounds:

• Consent: Where you have given us explicit consent to process your personal information for specific purposes.
• Contractual Necessity: Where processing is necessary for the performance of a contract to which you are a party or to take steps at your request before entering into a contract.
• Legitimate Interests: Where processing is necessary for the purposes of the legitimate interests pursued by us or by a third party, except where such interests are overridden by your interests or fundamental rights and freedoms.
• Legal Obligation: Where processing is necessary for compliance with a legal obligation to which we are subject.

Information from Third Parties

In some cases, we may receive information about you from third parties, such as:

• Social media platforms or other online service providers when you authorize them to share information with us for account recovery purposes.
• Law enforcement agencies or other authorized entities in connection with security incidents or investigations.

Retention of Your Information

We retain your personal information only for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, regulatory, accounting, or reporting requirements. The specific retention period depends on the nature of the information and the purpose for which it was collected.

At Gulf.support, we use the information we collect to provide and improve our cybersecurity services. This section explains how we use your information and the circumstances under which we may share it with third parties.

Purposes for Using Your Information

We use your personal information for the following purposes:

1. Providing Our Services

• To deliver the cybersecurity services you request, including anti-extortion solutions and online security problem resolution
• To assist with account recovery and security issue remediation
• To verify your identity and ownership of compromised accounts
• To communicate with you about your support requests and provide updates on their status
• To respond to your inquiries and provide customer support

2. Improving Our Services

• To analyze and enhance the effectiveness of our cybersecurity solutions
• To develop new features, products, and services
• To understand user needs and preferences
• To monitor and improve the overall user experience
• To maintain the security and integrity of our website and services

3. Legal and Security Purposes

• To protect our rights, privacy, safety, or property, and that of our users and others
• To detect, prevent, and address security incidents, fraud, and other illegal activities
• To comply with applicable laws, regulations, legal processes, or enforceable governmental requests
• To enforce our terms of service and other policies

Information Sharing and Disclosure

We are committed to protecting your privacy and do not share your personal information for commercial purposes. However, we may share your information in the following limited circumstances:

1. Service Providers

With your consent, we may share relevant information with the respective service providers (such as Meta, Google, TikTok) when you request help in recovering hacked accounts. This sharing is limited to the information necessary to assist with verification and account recovery processes.

2. Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).

3. Business Transfers

If Gulf.support is involved in a merger, acquisition, or sale of all or a portion of its assets, your information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our website of any change in ownership or uses of your personal information.

4. With Your Consent

We may share your information with third parties when we have your consent to do so.

Data Protection When Sharing Information

When we share your information with third parties, we take steps to ensure that your information is protected:

• We share only the minimum information necessary for the specific purpose
• We require third parties to maintain the confidentiality and security of the information we share
• We ensure that third parties use the information only for the limited purposes for which it was shared
• We comply with applicable data protection laws when transferring data across borders

Aggregated and De-identified Information

We may use and share aggregated or de-identified information that cannot reasonably be used to identify you for various purposes, including:

• Research and analysis
• Service improvement
• Trend analysis
• Statistical reporting

This information is not considered personal information as it cannot be used to identify you individually.

At Gulf.support, we respect and uphold your rights regarding your personal information. This section explains the rights you may have under applicable privacy laws and how you can exercise them.

Your Rights Under Data Protection Laws

Depending on your location, you may have various rights regarding your personal information under applicable data protection laws such as the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other similar regulations. These rights may include:

1. Right to Access

You have the right to request information about the personal data we have collected about you, including:

• The categories of personal information collected
• The sources from which we collected the information
• The purposes for which we use the information
• The categories of third parties with whom we share the information
• The specific pieces of personal information we have collected about you

2. Right to Rectification

You have the right to request that we correct inaccurate or incomplete personal information that we maintain about you.

3. Right to Deletion (Right to be Forgotten)

You have the right to request the deletion of your personal information that we have collected from you and maintained, subject to certain exceptions. We may deny your deletion request if retaining the information is necessary for us to:

• Complete the transaction for which we collected the personal information
• Provide a service that you requested
• Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity
• Comply with a legal obligation
• Make other internal and lawful uses of that information that are compatible with the context in which you provided it

4. Right to Restriction of Processing

You have the right to request that we restrict the processing of your personal information in certain circumstances, such as when you contest the accuracy of your personal information.

5. Right to Data Portability

You have the right to request that we provide you with your personal information in a structured, commonly used, and machine-readable format, and to transmit that information to another controller, where technically feasible.

6. Right to Object to Processing

You have the right to object to the processing of your personal information in certain circumstances, such as when the processing is based on our legitimate interests.

7. Right to Non-Discrimination

You have the right not to be discriminated against for exercising any of your privacy rights. We will not:

• Deny you services
• Charge you different prices or rates for services
• Provide you with a different level or quality of services
• Suggest that you may receive different prices or rates for services or a different level or quality of services

8. Right to Opt-Out of Sale or Sharing

While Gulf.support does not sell your personal information for commercial purposes, you have the right to opt-out of the sale or sharing of your personal information if applicable.

How to Exercise Your Rights

You can exercise your privacy rights by:

1. Submitting a Request: Contact us using the information provided in the "Contact Information" section of this Privacy Policy.
2. Verification Process: To protect your privacy and security, we may need to verify your identity before processing your request. We may request specific information from you to help us confirm your identity and ensure your right to access your personal information (or to exercise any of your other rights).
3. Response Timeline: We will respond to your request within the timeframe required by applicable law, typically within 30 days. If we require more time, we will inform you of the reason and extension period in writing.
4. Authorized Agent: You may designate an authorized agent to make a request on your behalf. We may require verification of your authorized agent's identity and a copy of your written permission authorizing the agent to act on your behalf.

International Data Transfers and Regional Privacy Rights

As Gulf.support serves a global audience, your personal information may be transferred to, stored, and processed in countries other than the country in which you reside. Data protection laws may differ from those of your country of residence.

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you may have additional rights under the GDPR. If you are a California resident, you may have additional rights under the CCPA/CPRA. Similar rights may apply to residents of other jurisdictions under their applicable privacy laws.

Limitations

We may limit your rights in certain circumstances, such as where providing the information would adversely affect the rights and freedoms of others, where the requests are manifestly unfounded or excessive, or where the information is subject to legal privilege. We will inform you of the reasons for not taking action on your request.

No Use of Cookies or Similar Tracking Technologies

At Gulf.support, we prioritize your privacy and data minimization. We want to clearly state that:

• We do not use cookies on our website
• We do not employ browser tracking technologies
• We do not utilize web beacons, pixel tags, or similar tracking mechanisms
• We do not use third-party analytics tools that rely on cookies or similar technologies

This approach aligns with our commitment to collect only the information that is necessary to provide our cybersecurity services.

What Are Cookies?

For informational purposes, cookies are small text files that websites place on your device to store information about your browsing session, preferences, and activities on the site. Many websites use cookies for various purposes, including essential site functionality, analytics, advertising, and personalization.

Third-Party Websites

Please note that our website may contain links to third-party websites, services, or applications that are not operated by us. If you click on a third-party link, you will be directed to that third party's site. We strongly advise you to review the privacy policy of every site you visit, as these third-party sites may use cookies and collect your personal information according to their own privacy policies.

Future Changes

If our practices regarding cookies and tracking technologies change in the future, we will update this Privacy Policy accordingly and notify you of any material changes.

At Gulf.support, we take the security of your personal information very seriously. As a cybersecurity service provider, we understand the importance of implementing robust security measures to protect your data.

Our Security Measures

We have implemented appropriate technical and organizational measures designed to protect the security of your personal information, including:

• Encryption: We use industry-standard encryption technologies to protect data in transit and at rest.
• Access Controls: We maintain strict access controls and authentication procedures to ensure that only authorized personnel can access personal information.
• Secure Infrastructure: Our systems are hosted in secure environments with appropriate physical, technical, and administrative safeguards.
• Regular Security Assessments: We conduct regular security assessments and vulnerability testing to identify and address potential security risks.
• Staff Training: Our team members receive regular training on data protection and security best practices.
• Incident Response Plan: We have developed and maintain a comprehensive incident response plan to address any potential data security incidents promptly.

Data Breach Procedures

In the event of a data breach that affects your personal information, we will:

1. Assess the nature and scope of the incident
2. Take immediate steps to contain and mitigate the breach
3. Investigate the cause of the breach
4. Notify affected individuals in accordance with applicable laws and regulations
5. Implement measures to prevent similar incidents in the future

Your Role in Data Security

While we take significant measures to protect your information, the security of your data also depends on you. We encourage you to:

• Use strong, unique passwords for your online accounts
• Be cautious about sharing sensitive information
• Keep your devices and software updated with the latest security patches
• Be alert to phishing attempts and suspicious communications
• Contact us immediately if you suspect any unauthorized access to your account or misuse of your information

Limitations

While we strive to use commercially acceptable means to protect your personal information, no method of transmission over the Internet or method of electronic storage is 100% secure. We cannot guarantee absolute security of your data.

Gulf.support's services are not directed to individuals under the age of 16. We recognize the importance of protecting children's privacy online and comply with applicable laws and regulations regarding children's data.

Age Restrictions

We do not knowingly collect personal information from children under 16 years of age. If you are under 16, please do not provide any personal information to us through our website or services.

Parental Consent

If you are a parent or guardian and believe that your child has provided us with personal information without your consent, please contact us immediately using the information provided in the "Contact Information" section of this Privacy Policy. If we become aware that we have collected personal information from children without verification of parental consent, we will take steps to remove that information from our servers.

Special Considerations for Different Jurisdictions

Different jurisdictions may have different age thresholds for consent:

• Under the GDPR in the European Union, the age threshold may vary between 13 and 16 years, depending on the member state.
• Under COPPA in the United States, parental consent is required for children under 13 years of age.

We comply with these requirements in the respective jurisdictions.

As Gulf.support operates globally and serves users from around the world, your personal information may be transferred to, stored, and processed in countries other than the country in which you reside.

Cross-Border Data Transfers

When we transfer your personal information to other countries, we take appropriate safeguards to ensure that your information receives an adequate level of protection, regardless of where it is processed.

Legal Basis for International Transfers

We may transfer your personal information internationally on the following legal bases:

• Adequacy Decisions: Transfers to countries that the European Commission or other relevant authorities have determined provide adequate protection for personal data.
• Standard Contractual Clauses: We may use approved standard contractual clauses for transfers to countries without adequacy decisions.
• Consent: Where applicable, we may transfer your data based on your explicit consent to the transfer.
• Contractual Necessity: We may transfer your data when necessary for the performance of a contract between you and Gulf.support.

Data Protection in Different Regions

Different regions have different data protection standards. Regardless of where your data is processed, we strive to provide the same level of protection as would be required in your home country.

Your Rights Regarding International Transfers

You have the right to request information about the international transfer of your personal data and the safeguards we have in place. To exercise this right, please contact us using the information provided in the "Contact Information" section of this Privacy Policy.

We may update this Privacy Policy from time to time to reflect changes in our practices, services, or applicable laws and regulations. This section explains how we will notify you of any changes and what those changes might mean for you.

How We Will Notify You of Changes

When we make material changes to this Privacy Policy, we will:

• Post a notice on our website
• Update the "Last Updated" date at the top of this Privacy Policy
• Provide notification via email for significant changes, if we have your email address
• Obtain your consent when required by applicable law

What Constitutes a Material Change

Material changes may include:

• New or different types of personal information being collected
• New or changed purposes for processing personal information
• New categories of third parties with whom we share personal information
• Changes to your rights regarding your personal information
• Significant changes to our security practices

Reviewing the Privacy Policy

We encourage you to review this Privacy Policy periodically to stay informed about our data practices. Your continued use of our website and services after any changes to this Privacy Policy constitutes your acceptance of the updated terms.

Previous Versions

If you wish to access previous versions of this Privacy Policy, please contact us using the information provided in the "Contact Information" section.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us using the information below.

Data Protection Officer

We have not appointed a Data Protection Officer (DPO).

Complaints

If you have a complaint about our handling of your personal information, please contact us first. We will do our best to resolve your concern.

You also have the right to lodge a complaint with your local data protection authority if you believe that we have not complied with applicable data protection laws.