24SevenHUB Digital
Facebook Twitter Instagram Pinterest

for consultation

+44 (784) 8180 131

Privacy Policy

  1. Home
  2. Privacy Policy

Privacy Policy

24SevenHUB.CO (“24SevenHUB”, “we”, “us”, or “our”) provides managed cybersecurity, cloud & DevOps, and website performance/technical SEO services. This Privacy Policy explains how we collect, use, disclose, and protect personal information when we act as:

  • Controller for data collected through our website, forms, emails, webinars, and marketing; and
  • Processor/Service Provider for data we handle on behalf of our clients under a contract (e.g., logs, SIEM/MDR data, scan results).

If you are a client’s end-user, please contact that organization directly to exercise your privacy rights; we support our clients in responding to such requests.

1) Who we are & how to contact us

24SevenHUB.CO
[TWENTY4SEVEN DIGITAL HUB]
Email: conatct@24sevenhub.coTel/WhatsApp: [+234 8114180128]

If you need our Data Protection Officer (DPO) / Privacy Lead: contact@24sevenhub.co

2) Information we collect

A) You provide directly

  • Contact details (name, email, phone, company, role)
  • Account and billing information (addresses, invoices, payment confirmations from processors)
  • Support tickets and communications (chat, email, phone recordings where applicable)
  • Content you upload or send (documents, screenshots, log samples)
  • Job applications (CV/resume, cover letters, interview notes)

B) Collected automatically (site & systems)

  • Device and usage data (IP address, user agent, pages viewed, timestamps, referral URLs)
  • Cookies/SDK events (see Cookies & Analytics)
  • Service telemetry when you are our client (e.g., SIEM/MDR alerts, endpoint status, scan results, uptime events)

C) From third parties

  • Referrals/partners, public sources (LinkedIn/company sites)
  • Payment processors (payment status, not full card numbers)
  • Analytics/advertising and CRM tools (campaign and performance data)

3) Legal bases (GDPR/NDPR)

We process personal data on these bases:

  • Contract – to provide services you requested (assessments, support, deliverables).
  • Legitimate interests – to secure systems, prevent fraud/abuse, improve services, and market to business contacts (B2B) in a proportionate manner.
  • Consent – for non-essential cookies/marketing or where required by law.
  • Legal obligation – to meet tax, accounting, and regulatory requirements.

4) How we use information

  • Provide and operate our services, projects, and portals
  • Security operations: logging, monitoring, incident response, vulnerability management
  • Cloud/DevOps delivery: migrations, CI/CD, observability, backups/DR
  • Website performance & technical SEO delivery
  • Customer support, training, and onboarding
  • Invoicing, account management, and collections
  • Service improvement, quality assurance, and analytics
  • Marketing communications you can opt out of anytime

We do not sell personal information.

5) Cookies & analytics

We use essential cookies for site functionality and may use analytics/marketing tools such as Google Analytics 4, Microsoft Clarity, and CRM pixels. Non-essential cookies run only with consent where required.

You can manage preferences via our cookie banner and your browser settings. For details, see our Cookie Notice (or the cookie section below if you prefer a single document).

Typical categories:

  • Strictly necessary (login, security, load balancing)
  • Performance/analytics (page performance, usage)
  • Marketing (campaign attribution, retargeting – optional)

6) Sharing & disclosures

We share personal information only with:

  • Vetted processors/sub-processors that help us deliver services (hosting, cloud, email, CRM, support desk, security tools, payment processors).
  • Professional advisors (legal, accounting, auditors).
  • Authorities were required by law or to protect rights, safety, or security.
  • Business transfers (merger, acquisition, financing); we will notify you where legally required.

We sign Data Processing Agreements (DPA) with processors and maintain a sub-processor list available on request.

7) International transfers

We operate globally and may transfer data across borders. Where required, we use appropriate safeguards (e.g., Standard Contractual Clauses (SCCs), data localization, or equivalent mechanisms). For NDPR, we comply with transfer requirements and ensure comparable protection in the destination country.

8) Data retention

We keep personal information only as long as needed for the purposes above, the contract, or as required by law. Typical retention:

  • Client project data: per contract or deletion request at end of engagement
  • Security logs/telemetry: 90–365 days (or as agreed in SLA)
  • Billing/tax records: 5–7 years (jurisdiction dependent)
  • Marketing contacts: until you unsubscribe or we deem the data inactive

Upon expiry, we securely delete or anonymize data. You may request earlier deletion where permitted by law.

9) Security

We apply administrative, technical, and physical safeguards, including but not limited to:

  • Role-based access control (least privilege), MFA, and activity logging
  • Encryption in transit (TLS) and at rest where supported
  • Network segmentation, firewall/WAF, DDoS and bot protections
  • Vulnerability management, patching, and vendor review
  • Incident response plan and breach notification procedures

No system is 100% secure; if we detect a breach affecting your data, we will notify you and regulators consistent with applicable laws (generally within 72 hours where required).

10) Your privacy rights

Depending on your location (e.g., NDPR, GDPR, and similar laws), you may have rights to:

  • Access, correct, or update your personal data
  • Delete or restrict processing; object to processing (including direct marketing)
  • Data portability
  • Withdraw consent at any time (does not affect prior processing)
  • Complain with a supervisory authority (e.g., NITDA in Nigeria, your EU authority)

How to exercise: email contact@24sevenhub.co. We may need to verify your identity. We aim to respond within one month (may extend where complex, as permitted by law).

California/US visitors: If applicable, you may have rights to know/access, correct, delete, and opt-out of “sale”/“sharing” for targeted ads. We do not sell personal data. If we begin retargeting that qualifies as “sharing,” a “Do Not Sell or Share My Personal Information” link will be provided.

11) Children’s data

Our services target businesses and professionals. We do not knowingly collect data from children under the age of 13 (or the age defined by local law). If you believe a child provided data, contact us for deletion.

12) Processor role for client data

When we operate MDR/SIEM, perform penetration tests, or handle logs/telemetry for clients, we act as a processor/service provider. Our processing is governed by a Master Services Agreement (MSA) and DPA, which define scope, security, sub-processors, retention, and deletion upon termination.

13) Third-party links

Our site may link to other websites or tools. We’re not responsible for their privacy practices. Review their policies before providing personal information.

14) Automated decision-making

We do not make decisions producing legal or similarly significant effects solely by automated processing. We may use automated scoring for security alerts to prioritize investigation; human review follows.

15) Changes to this policy

We may update this Privacy Policy from time to time. We’ll post the new version with a new “Last updated” date and, where appropriate, notify you by email or banner.

16) How to reach us

Privacy requests: contact@24sevenhub.co
DPO/Privacy Lead: contact@24sevenhub.co
General: contact@24sevenhub.co+44 (784) 81801 31 || +234-8114180128]

17) Region-specific notes (optional to include on the page)

  • Nigeria (NDPR): You may complain to the National Information Technology Development Agency (NITDA) if you’re unsatisfied with our response. We maintain NDPR-aligned policies, lawful bases, and breach notification practices.
  • EU/EEA (GDPR): We identify a lawful basis for each processing activity, use SCCs for transfers where needed, and honor data subject rights under GDPR Articles 12–22. If required, we will appoint an EU representative and list their contact details here.
  • UK (UK GDPR): If we start targeting UK residents systematically, we will appoint a UK representative and list details here.

18) Cookie Notice (inline summary)

What are cookies? Small files placed on your device to remember settings and understand usage.

Your choices: Manage via our cookie banner, browser settings, or platform opt-outs. Blocking some cookies may affect site features.

Typical cookies/services we may use:

  • Essential: session ID, CSRF, load balancer
  • Analytics: Google Analytics 4, Microsoft Clarity
  • Marketing: CRM/ads pixels (only with consent where required)

If you prefer a separate Cookie Policy page, we can split this section and link to it from the banner.

Legal note

This policy is provided for general informational purposes and does not constitute legal advice. Please review with counsel to adapt to your specific operations, jurisdictions, and contracts.