Skip to content 
Privacy Policy
Home
Help Center
ITSTHS PVT LTD (“Company”, “we”, “us”, or “our”), headquartered in Islamabad, Pakistan, is committed to protecting the privacy and confidentiality of information entrusted to us. This Privacy Policy explains how we collect, use, process, store, and disclose personal and business information in connection with our services.
1. Scope and Applicability
This Privacy Policy applies to:
- Visitors of our website (www.itsths.com)
- Clients engaging our IT services (including website development, software development, digital marketing, and social media management)
- Individuals who communicate with us or submit information
This policy does not apply to third-party platforms not controlled by us.
2. Our Role: Data Controller vs. Data Processor
Depending on the engagement:
- Data Controller: When we collect and use your information directly (e.g., inquiries, contracts, hiring)
- Data Processor: When we process data on behalf of clients (e.g., managing ad campaigns, handling website data, social media management)
3. Legal Basis for Processing
We process data based on:
- Contractual necessity (to deliver services)
- Consent (e.g., marketing communications, credential sharing)
- Legal obligations
- Legitimate business interests (service improvement, security, operations)
4. Information We Collect
a. Client & Business Information
- Names, company details, email addresses, phone numbers
- Project requirements, communications, contracts
b. Financial Information
- Billing details (processed via third-party providers where possible)
- We do not typically store full credit card details directly
c. Technical & Account Access Information
- Website, hosting, or software credentials (only when necessary)
- Access to platforms such as Google, Meta, or other tools (usually via admin roles or business manager access)
d. Marketing & Analytics Data
- Campaign data, audience insights (only for client purposes)
e. Job Applicant Data
- CVs, resumes, and related information submitted either website, email, or platforms like LinkedIn/Indeed
f. Communication Data
- Emails, chat messages (e.g., WhatsApp), project tools (ClickUp, Jira, Google Drive)
5. How We Use Information
We use information to:
- Deliver and manage IT services
- Communicate with clients and provide support
- Manage accounts, billing, and contracts
- Execute marketing and advertising services strictly per client instructions
- Improve services and internal operations
- Evaluate job applications and hiring processes
We do not use client data (especially marketing audiences or platform data) for our own independent marketing purposes.
6. Credentials & Access Handling
- We prioritize secure access methods such as admin roles, business managers, or delegated permissions
- Where credentials are shared directly, this is done with client consent
- Access is limited to authorized personnel and used strictly for agreed purposes
- Long-term storage of raw credentials is minimized wherever possible
7. Cookies and Tracking
We use cookies to:
- Maintain session login functionality
- Analyze website usage
Users can disable cookies in browser settings; some features may be affected.
8. Data Sharing and Disclosure
We do not sell personal data.
We may share data with:
- Service providers (hosting, cloud storage, project tools)
- Payment processors
- Partners involved in delivering services
- Legal authorities when required by law
9. International Data Transfers
As we work with clients in the UK, US, Gulf countries, and other regions:
- Data may be transferred and processed internationally
- We take reasonable measures to ensure adequate data protection standards
10. Data Storage & Retention
Data is stored using platforms such as:
- Google Drive / Workspace
- Project management tools (ClickUp, Jira)
- Communication platforms (email, WhatsApp)
We retain data only as long as necessary for:
- Service delivery
- Legal and contractual obligations
- Business operations
these are mostly shared on client credentials in case of lose or any mishap, data leak or theft occurs, ITSTHS PVT LTD will not obliged for it
11. Data Security
We implement reasonable safeguards, including:
- Access controls and restricted permissions
- Use of secure platforms and tools
- Internal confidentiality practices
However, no system can guarantee absolute security in case of lose or any mishap, data leak or theft occurs, ITSTHS PVT LTD will not obliged for it
12. Your Rights
Depending on applicable laws,if we have any at the time of request, you may:
- Request access to your data
- Request correction or deletion
- Object to or restrict processing
- Withdraw consent
Requests can be made via the contact details below.
13. Job Applicants
- Applicant data is used only for recruitment purposes
- Information may be retained for future opportunities unless requested otherwise
14. Third-Party Platforms
Our services may involve platforms such as:
- Google, Meta (Facebook), LinkedIn, etc.
We are not responsible for their independent privacy practices.
15. Protection of Minors
Our services may be accessed by individuals under 18 with guardian involvement.
We do not knowingly process minors’ data without appropriate supervision.
16. Changes to This Policy
We may update this Privacy Policy from time to time.
- Updates will be posted on our website
- Continued use of services indicates acceptance
17. Contact Information
ITSTHS PVT LTD
Email: info@itsths.com
Website: www.itsths.com
18. Severability
If any provision is found unenforceable, the remaining provisions will remain in effect.
19. GDPR & UK Data Protection Addendum (For EU/UK Users)
This section applies to individuals located in the European Union (EU), European Economic Area (EEA), and the United Kingdom (UK), in accordance with applicable data protection laws including the General Data Protection Regulation (GDPR) and UK GDPR.
19.1 Lawful Basis for Processing
We process personal data under the following lawful bases:
- Contractual Necessity – to provide agreed services
- Consent – where explicitly provided (e.g., marketing, credentials sharing)
- Legitimate Interests – business operations, service improvement, security
- Legal Obligation – compliance with applicable laws
19.2 Data Subject Rights
If you are located in the EU/UK, you have the right to:
- Access your personal data
- Request correction of inaccurate data
- Request deletion of your data (“right to be forgotten”)
- Restrict or object to processing
- Request data portability
- Withdraw consent at any time
To exercise these rights, contact us at: info@itsths.com
19.3 Data Controller vs Processor
- When we provide services directly → we act as a Data Controller
- When we handle data on behalf of clients → we act as a Data Processor
In processor cases:
- We process data only on documented instructions
- We do not use such data for our own purposes
19.4 International Transfers
As a company based in Pakistan, personal data may be transferred outside the EU/UK.
We take reasonable safeguards such as:
- Using reputable cloud providers (e.g., Google, Microsoft, AWS)
- Limiting access to authorized personnel
- Applying contractual and organizational protections
19.5 Data Retention
We retain personal data only as long as necessary for:
- Service delivery
- Legal and contractual obligations
- Legitimate business purposes
19.6 Data Security
We implement appropriate technical and organizational measures, including:
- Access controls and role-based permissions
- Secure data storage platforms
- Internal confidentiality practices
19.7 Complaints
If you are located in the EU/UK, you have the right to lodge a complaint with your local data protection authority.
However, we encourage you to contact us first at info@itsths.com.so we can resolve your concern.
19.8 Marketing Communications
Where required by law:
- We will obtain your consent before sending marketing communications
- You may opt out at any time using unsubscribe links or by contacting us
19.9 Automated Decision-Making
We do not engage in automated decision-making or profiling that produces legal or significant effects on individuals.