Privacy Policy

1. Interpretation and Definitions

1.1 Interpretation

The words of which the initial letter is capitalized have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.

1.2 Definitions

For the purposes of this Privacy Policy:

• You means the individual accessing or using the Service, or the company, or other legal entity on behalf of which such individual is accessing or using the Service, as applicable. Under GDPR, You may also be referred to as the Data Subject or User.
• Company (referred to as "the Company," "We," "Us," or "Our" in this Policy) refers to MKC Tech LLC, 1209 Mountain Road Pl NE #7882, Albuquerque, NM 87110, USA. For the purpose of GDPR, the Company is the Data Controller.
• Affiliate means an entity that controls, is controlled by, or is under common control with a party, where "control" means ownership of 50% or more of the shares or equity interest.
• Account means a unique account created for You to access our Service or parts of our Service.
• Website refers to MKC Tech LLC, accessible from https://mkctech.net.
• Service refers to the Website and all telecommunications services provided by MKC Tech LLC.
• Country refers to: United States.
• Service Provider means any natural or legal person who processes data on behalf of the Company to facilitate the Service, perform related services, or assist in analyzing how the Service is used. Under GDPR, Service Providers are considered Data Processors.
• Personal Data is any information that relates to an identified or identifiable individual. Under GDPR this includes name, identification number, location data, or online identifiers. Under CCPA this includes any information that identifies, relates to, or could reasonably be linked with You.
• Cookies are small files placed on Your device by a website, containing details of Your browsing history and other data.
• Usage Data refers to data collected automatically, generated by the use of the Service or from the Service infrastructure itself.
• Call Detail Records (CDRs) means records generated in connection with telecommunications calls, including originating and terminating numbers, call duration, date, time, and routing information. CDRs may constitute CPNI and are handled accordingly.
• CPNI means Customer Proprietary Network Information as defined under 47 U.S.C. § 222 and applicable FCC regulations, including information about the quantity, technical configuration, type, destination, location, and amount of use of telecommunications services subscribed to by a customer.
• Do Not Track (DNT) is a concept promoted by U.S. regulatory authorities for the Internet industry to develop a mechanism for allowing users to control tracking of their online activities across websites.
• Business (CCPA) refers to the Company as the legal entity that collects and determines the purposes of processing consumers' personal information and does business in the State of California.
• Consumer (CCPA) means a natural person who is a California resident.
• Sale (CCPA) means selling, renting, releasing, disclosing, or otherwise communicating a Consumer's Personal Information to another business or third party for monetary or other valuable consideration.

2. Collecting and Using Your Personal Data

2.1 Types of Data Collected

Personal Data

While using Our Service, We may ask You to provide certain personally identifiable information, including but not limited to:

• Email address
• First name and last name
• Phone number
• Address, State, Province, ZIP/Postal code, City
• Bank account information in order to pay for products and/or services within the Service
• Call Detail Records (CDRs) and related telecommunications usage information
• Usage Data

When You pay for a product or service via bank transfer, We may also collect: date of birth, passport or National ID card, bank card statement, and other information linking You to an address.

Usage Data

Usage Data is collected automatically when using the Service and may include: Your device's IP address, browser type and version, pages visited, time and date of visit, time spent on pages, unique device identifiers, and other diagnostic data. On mobile devices, this also includes mobile device type, unique device ID, mobile operating system, and mobile browser type.

Telecommunications and Call Data

As a telecommunications services provider, MKC Tech LLC collects and processes certain telecommunications-specific data in connection with the provision of its Services, including:

• Call Detail Records (CDRs), including originating and terminating numbers, call duration, date, time, and call routing information
• SIP signaling data and session information
• Caller ID and caller authentication information, including STIR/SHAKEN attestation data
• Traffic patterns and call volume data used for network management and fraud detection
• IP address and device information associated with VoIP sessions

Telecommunications data that constitutes CPNI is handled in accordance with Section 6 of this Privacy Policy and applicable FCC regulations.

Information from Third-Party Social Media Services

The Company allows You to create an account and log in using Third-Party Social Media Services such as Google, Facebook, or Twitter. If You register through or grant access to a Third-Party Social Media Service, We may collect Personal Data already associated with that account, such as Your name, email address, activities, or contact list, subject to Your permission.

2.2 Tracking Technologies and Cookies

We use Cookies and similar tracking technologies (beacons, tags, and scripts) to track activity on Our Service and store certain information. You can instruct Your browser to refuse all Cookies, though some parts of our Service may not function properly without them.

Cookies may be Session Cookies (deleted when You close Your browser) or Persistent Cookies (remaining on Your device until expiry or deletion). We use the following categories:

• Necessary / Essential Cookies: Authenticate users and prevent fraudulent account use. Required for core service functionality.
• Cookie Consent Cookies: Identify if users have accepted the use of cookies on the Website.
• Functionality Cookies: Remember choices (login details, language preference) to provide a personalized experience.
• Tracking & Performance Cookies: Track website traffic and user behavior to analyze and improve the Service.

2.3 Use of Your Personal Data

The Company may use Personal Data for the following purposes:

• To provide and maintain our Service, including monitoring usage of our Service
• To manage Your Account and registration as a user
• For the performance of a contract, including the purchase and delivery of Services
• To contact You by email, telephone, SMS, or push notification regarding updates, security matters, or contracted services
• To provide news, special offers, and information about similar goods or services (where You have not opted out)
• To manage Your requests and support inquiries
• To detect, prevent, and investigate fraud, robocalling, caller ID spoofing, and other unlawful use of our network
• To comply with FCC traceback requests, law enforcement inquiries, and regulatory obligations
• To fulfill CPNI-related obligations under 47 U.S.C. § 222 and FCC regulations

2.4 Sharing Your Personal Data

We may share Your personal information in the following situations:

• With Service Providers: to monitor and analyze the Service, contact You, process payments, or support Service delivery
• For Business Transfers: in connection with any merger, acquisition, or sale of Company assets
• With Affiliates: who are required to honor this Privacy Policy
• With Business Partners: to offer certain products, services, or promotions
• With Upstream Carriers and Network Partners: to the extent necessary to provision and deliver telecommunications services, respond to traceback requests, or comply with FCC robocall mitigation obligations
• With Law Enforcement and Regulators: as required by law, court order, FCC directive, or government authority, including in response to lawful traceback requests
• With Other Users: when You interact in public areas of the Service

3. Retention of Your Personal Data

The Company will retain Your Personal Data only for as long as necessary for the purposes set out in this Privacy Policy. We retain and use Your Personal Data to comply with legal obligations, resolve disputes, and enforce our agreements.

Call Detail Records (CDRs) and related telecommunications records are retained for a minimum of twenty-four (24) months in accordance with FCC regulations and our upstream carrier obligations, or longer if required by any ongoing investigation, legal proceeding, or regulatory requirement.

Usage Data is generally retained for a shorter period, except where it is used to strengthen security, improve functionality, or where we are legally obligated to retain it longer.

4. Transfer of Your Personal Data

Your information, including Personal Data, is processed at the Company's operating offices and any other places where the parties involved in processing are located. This means Your information may be transferred to and maintained on computers located outside Your state, province, country, or other governmental jurisdiction where data protection laws may differ from those of Your jurisdiction.

Your consent to this Privacy Policy, followed by Your submission of information, represents Your agreement to that transfer. The Company will take all steps reasonably necessary to ensure Your data is treated securely and in accordance with this Privacy Policy, and no transfer of Personal Data will take place to an organization or country unless adequate controls are in place.

5. Disclosure of Your Personal Data

5.1 Business Transactions

If the Company is involved in a merger, acquisition, or asset sale, Your Personal Data may be transferred. We will provide notice before Your Personal Data is transferred and becomes subject to a different Privacy Policy.

5.2 Law Enforcement and Regulatory Authorities

Under certain circumstances, the Company may be required to disclose Your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g., a court, government agency, the FCC, or law enforcement). This includes cooperation with FCC-authorized traceback requests and robocall investigations under the TRACED Act.

5.3 Other Legal Requirements

The Company may disclose Your Personal Data in the good-faith belief that such action is necessary to:

• Comply with a legal obligation
• Protect and defend the rights or property of the Company
• Prevent or investigate possible wrongdoing in connection with the Service
• Protect the personal safety of Users of the Service or the public
• Protect against legal liability

7. Security of Your Personal Data

The security of Your Personal Data is important to Us. We strive to use commercially acceptable means to protect Your Personal Data, including encryption, access controls, and secure network infrastructure. However, no method of transmission over the Internet or method of electronic storage is 100% secure, and We cannot guarantee absolute security.

Service Providers have access to Your Personal Data only to perform their tasks on Our behalf and are obligated not to disclose or use it for any other purpose.

8. Detailed Information on Data Processing

8.1 Analytics

Google Analytics is a web analytics service offered by Google that tracks and reports website traffic. Google uses the data collected to track and monitor the use of our Service, and may use the collected data to contextualize and personalize ads of its own advertising network. You can opt-out by installing the Google Analytics opt-out browser add-on.

8.2 Email Marketing

We may use Your Personal Data to contact You with newsletters, marketing, or promotional materials. You may opt-out at any time by following the unsubscribe link in any email We send or by contacting Us directly.

8.3 Payments

We use Stripe for payment processing. We do not store or collect Your payment card details; that information is provided directly to Stripe, whose use of Personal Information is governed by their Privacy Policy and PCI-DSS compliance standards.

8.4 Fraud Detection and Traffic Monitoring

We use third-party fraud detection and traffic monitoring tools to monitor telecommunications traffic on our network in real time for signs of unlawful robocalling, caller ID spoofing, and other abusive activity. Data processed through these tools may include call metadata, CDRs, IP addresses, and SIP session data. This monitoring is conducted in furtherance of our FCC robocall mitigation obligations and our commitment to network integrity.

10. GDPR Privacy

10.1 Legal Basis for Processing Personal Data under GDPR

We may process Personal Data under the following legal bases:

• Consent: You have given explicit consent for processing for one or more specific purposes
• Performance of a contract: processing is necessary to perform an agreement with You or for pre-contractual obligations
• Legal obligations: processing is necessary for compliance with a legal obligation to which the Company is subject
• Vital interests: processing is necessary to protect Your vital interests or those of another natural person
• Public interests: processing is related to a task carried out in the public interest or in exercise of official authority
• Legitimate interests: processing is necessary for the purposes of the legitimate interests pursued by the Company

10.2 Your Rights under the GDPR

If You are within the EU/EEA, You have the following rights:

• Request access to Your Personal Data (the right to access, update, or delete information We hold about You)
• Request correction of incomplete or inaccurate Personal Data
• Object to processing of Your Personal Data where We rely on legitimate interest as the legal basis
• Request erasure of Your Personal Data when there is no good reason for continued processing
• Request transfer of Your Personal Data in a structured, commonly used, machine-readable format
• Withdraw Your consent at any time (without affecting the lawfulness of processing based on consent before its withdrawal)

To exercise any of these rights, contact Us. We may ask You to verify Your identity before responding. You also have the right to complain to a Data Protection Authority in your EEA jurisdiction.

11. CCPA Privacy

11.1 Your Rights under the CCPA

If You are a California resident, You have the following rights:

• The right to notice: to be informed of categories of Personal Data collected and purposes for which it is used
• The right to access/request: to obtain information about disclosures of Your Personal Data in the past 12 months
• The right to say no to the sale of Personal Data: to direct the Company not to sell Your Personal Data to third parties
• The right to know about Your Personal Data: categories collected, sources, business purposes, categories of third parties with whom shared, and specific pieces collected
• The right to delete Personal Data collected in the past 12 months
• The right not to be discriminated against for exercising any of Your CCPA rights

11.2 Exercising Your CCPA Rights

California residents may exercise their rights by emailing support@mkctech.net. We will respond within 45 days of a verifiable request, with a possible 45-day extension where reasonably necessary.

11.3 Do Not Sell My Personal Information

We do not sell personal information. However, Service Providers we partner with may use technology on the Service that "sells" personal information as defined by the CCPA. You may opt out via our Cookie Consent banner or by adjusting Your device's ad tracking settings.

12. Do Not Track Policy (CalOPPA)

Our Service does not respond to Do Not Track signals. However, some third-party websites do keep track of Your browsing activities. If You visit such websites, You can set Your browser preferences to inform websites that You do not want to be tracked.

13. Children's Privacy

Our Service does not address anyone under the age of 13. We do not knowingly collect personally identifiable information from anyone under the age of 13. If You are a parent or guardian and believe Your child has provided Us with Personal Data, please contact Us immediately. If We become aware of such collection without verified parental consent, We will take steps to remove that information from Our servers.

We may also limit how We collect, use, and store information of Users between 13 and 18 years old. Where consent from a parent is required by applicable law, We will require such consent before collecting and using the information.

14. Links to Other Websites

Our Service may contain links to other websites not operated by Us. If You click on a third-party link, You will be directed to that third party's site. We strongly advise You to review the Privacy Policy of every site You visit. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

15. Changes to This Privacy Policy

We may update Our Privacy Policy from time to time. We will notify You of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. Where changes are material, We will notify You via email and/or a prominent notice on Our Service prior to the change becoming effective.

You are advised to review this Privacy Policy periodically. Changes are effective when posted on this page.