Privacy Policy

Company: Stratos Command

Effective Date: May 14, 2026
Last Updated: May 14, 2026


1. Introduction

At Stratos Command, we believe trust is built through transparency, security, and accountability. This Privacy Policy explains how we collect, use, store, protect, and disclose information when users interact with our cloud-native IT support, cybersecurity, Microsoft licensing, and managed technology services platform.

This policy is designed to align with recognized privacy standards and modern regulatory expectations, including principles reflected in:

  • The General Data Protection Regulation (GDPR)

  • The California Consumer Privacy Act (CCPA/CPRA)

  • Industry-standard cybersecurity and privacy practices

This Privacy Policy applies to:

  • Website visitors

  • Customers

  • Prospective customers

  • Support contacts

  • Authorized users of client accounts


2. Definitions

“Company”

Refers to Stratos Command, stratoscommand.com, and affiliated service operations.

“User”

Any person or organization accessing the platform or services.

“Personal Data”

Information that identifies or can reasonably identify an individual.

Examples:

  • Full name

  • Email address

  • Phone number

  • Billing details

  • IP address

  • Device identifiers

“Service Data”

Operational and technical information processed while delivering services.

Examples:

  • Support tickets

  • Device metadata

  • Security logs

  • Microsoft 365 tenant information

  • Endpoint protection telemetry


3. Information We Collect

We collect only information reasonably necessary to operate, secure, and improve our services.

A. Information You Provide

When you contact us, register, purchase services, or request support, we may collect:

  • Name

  • Company name

  • Email address

  • Phone number

  • Billing information

  • Support inquiries

  • Technical environment details

  • Account credentials provided for support purposes

B. Automatically Collected Information

When users access our website or systems, we may automatically collect:

  • IP address

  • Browser type

  • Device identifiers

  • Operating system

  • Access timestamps

  • Pages visited

  • Session activity

  • Geographic region estimates

  • Diagnostic and performance logs

C. Service & Security Information

As part of cybersecurity and IT management services, we may process:

  • Endpoint security alerts

  • Threat intelligence events

  • Authentication logs

  • Conditional access data

  • Microsoft Defender telemetry

  • Remote device management metadata

This data is processed strictly for operational security, troubleshooting, and service delivery purposes.


4. How We Use Information

We use collected information to:

Provide Services

  • Deliver managed IT and cloud support

  • Provision Microsoft licensing

  • Maintain cybersecurity protections

  • Respond to technical incidents

Improve Security

  • Detect threats

  • Prevent fraud and abuse

  • Investigate unauthorized access

  • Maintain platform integrity

Communicate With Users

  • Send invoices and account notices

  • Provide support updates

  • Respond to inquiries

  • Notify users of service changes

Improve Performance

  • Analyze system reliability

  • Monitor uptime and service quality

  • Optimize infrastructure and support workflows

Meet Legal Obligations

  • Comply with applicable laws

  • Respond to lawful requests

  • Enforce contractual rights


5. Legal Basis for Processing (GDPR)

Where GDPR applies, we process information under one or more lawful bases:

  • Contractual necessity

  • Legitimate business interests

  • Legal compliance obligations

  • User consent where required

Examples:

  • Processing support tickets to fulfill service agreements

  • Retaining invoices for accounting compliance

  • Monitoring systems to prevent cybersecurity threats


6. Cookies & Tracking Technologies

Our website may use cookies and similar technologies to:

  • Maintain website functionality

  • Analyze traffic and performance

  • Improve user experience

  • Measure marketing effectiveness

Types of Cookies

Essential Cookies

Required for site functionality and security.

Analytics Cookies

Help us understand how visitors use the platform.

Performance Cookies

Used to improve loading times, usability, and reliability.

Users may control cookies through browser settings. Disabling some cookies may affect website functionality.


7. Third-Party Services & Processors

To operate efficiently, we may use trusted third-party providers, including:

  • Microsoft

  • Pax8

  • Stripe

  • GoHighLevel

  • OpenAI

  • Cloudflare

These providers may process limited data necessary for:

  • Payments

  • Security

  • Infrastructure

  • Analytics

  • Support operations

  • Communication delivery

We require vendors to maintain commercially reasonable security and privacy safeguards.


8. Data Sharing

We do not sell personal information.

We may share information only in limited circumstances:

Service Providers

Trusted vendors assisting with operations.

Legal Requirements

When required by law, subpoena, court order, or regulatory obligation.

Business Protection

To protect:

  • Users

  • Systems

  • Legal rights

  • Infrastructure security

Corporate Transactions

If the business undergoes merger, acquisition, or restructuring.


9. Data Retention

We retain information only as long as reasonably necessary for:

  • Service delivery

  • Legal compliance

  • Security monitoring

  • Dispute resolution

  • Accounting obligations

Retention periods may vary depending on:

  • Service type

  • Contractual obligations

  • Regulatory requirements

  • Security investigation needs

Inactive account information may be deleted or anonymized after a reasonable retention period.


10. Security Measures

Security is central to our service model.

We maintain commercially reasonable safeguards including:

  • Multi-factor authentication

  • Conditional access controls

  • Endpoint detection and response (EDR)

  • Threat monitoring

  • Encryption in transit

  • Access controls

  • Role-based permissions

  • Security logging

  • Remote device management capabilities

No system can guarantee absolute security, but we continuously improve our controls to reduce risk and respond rapidly to incidents.


11. International Data Transfers

Because cloud infrastructure and support operations may operate globally, user data may be processed outside the user’s country.

Where applicable, we implement safeguards consistent with GDPR and international data transfer standards.


12. User Rights

Depending on jurisdiction, users may have rights to:

  • Access their information

  • Correct inaccurate information

  • Request deletion

  • Restrict processing

  • Object to certain processing

  • Request data portability

California residents may also have rights under CCPA/CPRA.

Users may exercise rights by contacting:
[email protected]

We may verify identity before processing requests.


13. Children’s Privacy

Our services are intended for business and professional use and are not directed toward children under 18.

We do not knowingly collect personal information from minors.


14. Changes to This Policy

We may update this Privacy Policy periodically to reflect:

  • Legal changes

  • Security improvements

  • Operational updates

  • Service modifications

Updated versions will be posted on the website with revised effective dates.


15. Contact Information

For privacy-related questions or requests:

Stratos Command
Website: stratoscommand.com
Email: [email protected]

Privacy Policy

Company: Stratos Command

Effective Date: May 14, 2026
Last Updated: May 14, 2026


1. Introduction

At Stratos Command, we believe trust is built through transparency, security, and accountability. This Privacy Policy explains how we collect, use, store, protect, and disclose information when users interact with our cloud-native IT support, cybersecurity, Microsoft licensing, and managed technology services platform.

This policy is designed to align with recognized privacy standards and modern regulatory expectations, including principles reflected in:

  • The General Data Protection Regulation (GDPR)

  • The California Consumer Privacy Act (CCPA/CPRA)

  • Industry-standard cybersecurity and privacy practices

This Privacy Policy applies to:

  • Website visitors

  • Customers

  • Prospective customers

  • Support contacts

  • Authorized users of client accounts


2. Definitions

“Company”

Refers to Stratos Command, stratoscommand.com, and affiliated service operations.

“User”

Any person or organization accessing the platform or services.

“Personal Data”

Information that identifies or can reasonably identify an individual.

Examples:

  • Full name

  • Email address

  • Phone number

  • Billing details

  • IP address

  • Device identifiers

“Service Data”

Operational and technical information processed while delivering services.

Examples:

  • Support tickets

  • Device metadata

  • Security logs

  • Microsoft 365 tenant information

  • Endpoint protection telemetry


3. Information We Collect

We collect only information reasonably necessary to operate, secure, and improve our services.

A. Information You Provide

When you contact us, register, purchase services, or request support, we may collect:

  • Name

  • Company name

  • Email address

  • Phone number

  • Billing information

  • Support inquiries

  • Technical environment details

  • Account credentials provided for support purposes

B. Automatically Collected Information

When users access our website or systems, we may automatically collect:

  • IP address

  • Browser type

  • Device identifiers

  • Operating system

  • Access timestamps

  • Pages visited

  • Session activity

  • Geographic region estimates

  • Diagnostic and performance logs

C. Service & Security Information

As part of cybersecurity and IT management services, we may process:

  • Endpoint security alerts

  • Threat intelligence events

  • Authentication logs

  • Conditional access data

  • Microsoft Defender telemetry

  • Remote device management metadata

This data is processed strictly for operational security, troubleshooting, and service delivery purposes.


4. How We Use Information

We use collected information to:

Provide Services

  • Deliver managed IT and cloud support

  • Provision Microsoft licensing

  • Maintain cybersecurity protections

  • Respond to technical incidents

Improve Security

  • Detect threats

  • Prevent fraud and abuse

  • Investigate unauthorized access

  • Maintain platform integrity

Communicate With Users

  • Send invoices and account notices

  • Provide support updates

  • Respond to inquiries

  • Notify users of service changes

Improve Performance

  • Analyze system reliability

  • Monitor uptime and service quality

  • Optimize infrastructure and support workflows

Meet Legal Obligations

  • Comply with applicable laws

  • Respond to lawful requests

  • Enforce contractual rights


5. Legal Basis for Processing (GDPR)

Where GDPR applies, we process information under one or more lawful bases:

  • Contractual necessity

  • Legitimate business interests

  • Legal compliance obligations

  • User consent where required

Examples:

  • Processing support tickets to fulfill service agreements

  • Retaining invoices for accounting compliance

  • Monitoring systems to prevent cybersecurity threats


6. Cookies & Tracking Technologies

Our website may use cookies and similar technologies to:

  • Maintain website functionality

  • Analyze traffic and performance

  • Improve user experience

  • Measure marketing effectiveness

Types of Cookies

Essential Cookies

Required for site functionality and security.

Analytics Cookies

Help us understand how visitors use the platform.

Performance Cookies

Used to improve loading times, usability, and reliability.

Users may control cookies through browser settings. Disabling some cookies may affect website functionality.


7. Third-Party Services & Processors

To operate efficiently, we may use trusted third-party providers, including:

  • Microsoft

  • Pax8

  • Stripe

  • GoHighLevel

  • OpenAI

  • Cloudflare

These providers may process limited data necessary for:

  • Payments

  • Security

  • Infrastructure

  • Analytics

  • Support operations

  • Communication delivery

We require vendors to maintain commercially reasonable security and privacy safeguards.


8. Data Sharing

We do not sell personal information.

We may share information only in limited circumstances:

Service Providers

Trusted vendors assisting with operations.

Legal Requirements

When required by law, subpoena, court order, or regulatory obligation.

Business Protection

To protect:

  • Users

  • Systems

  • Legal rights

  • Infrastructure security

Corporate Transactions

If the business undergoes merger, acquisition, or restructuring.


9. Data Retention

We retain information only as long as reasonably necessary for:

  • Service delivery

  • Legal compliance

  • Security monitoring

  • Dispute resolution

  • Accounting obligations

Retention periods may vary depending on:

  • Service type

  • Contractual obligations

  • Regulatory requirements

  • Security investigation needs

Inactive account information may be deleted or anonymized after a reasonable retention period.


10. Security Measures

Security is central to our service model.

We maintain commercially reasonable safeguards including:

  • Multi-factor authentication

  • Conditional access controls

  • Endpoint detection and response (EDR)

  • Threat monitoring

  • Encryption in transit

  • Access controls

  • Role-based permissions

  • Security logging

  • Remote device management capabilities

No system can guarantee absolute security, but we continuously improve our controls to reduce risk and respond rapidly to incidents.


11. International Data Transfers

Because cloud infrastructure and support operations may operate globally, user data may be processed outside the user’s country.

Where applicable, we implement safeguards consistent with GDPR and international data transfer standards.


12. User Rights

Depending on jurisdiction, users may have rights to:

  • Access their information

  • Correct inaccurate information

  • Request deletion

  • Restrict processing

  • Object to certain processing

  • Request data portability

California residents may also have rights under CCPA/CPRA.

Users may exercise rights by contacting:
[email protected]

We may verify identity before processing requests.


13. Children’s Privacy

Our services are intended for business and professional use and are not directed toward children under 18.

We do not knowingly collect personal information from minors.


14. Changes to This Policy

We may update this Privacy Policy periodically to reflect:

  • Legal changes

  • Security improvements

  • Operational updates

  • Service modifications

Updated versions will be posted on the website with revised effective dates.


15. Contact Information

For privacy-related questions or requests:

Stratos Command
Website: stratoscommand.com
Email: [email protected]

Cloud-native IT engineering for the post-legacy era. Elite security. Transparent pricing. Zero truck rolls.

© 2026 Stratos Command. All rights reserved.

Official Microsoft CSP Partner via Pax8

Cloud-native IT engineering for the post-legacy era. Elite security. Transparent pricing. Zero truck rolls.

© 2026 Stratos Command. All rights reserved.

Official Microsoft CSP Partner via Pax8