Privacy Notice

Introduction

Welcome! Your privacy matters to me, and I want to ensure you understand how I handle your personal data. This notice explains what data I collect, why I collect it, and how I protect it.

What Data Do I Collect?

I collect only the necessary personal information from you, such as:

  • Information needed for product and service purchases

  • Your name, email address, company, and contact information

  • Feedback you have provided from any services offered

  • Correspondence you have with me

  • Your social media accounts if you interact with me on my profiles

  • Technical information such as your IP address and browser when using my site

  • Information related to or required by a professional service I am providing you

How Do I Collect Your Data?

I collect data when you (or your employer):

  • Book a meeting with me through my scheduler

  • Contact me via email, phone, or website

  • Connect, contact, or follow me on social media

  • Sign up for my newsletter or updates

  • Engage me for services or enrol for an event

  • Click through to my website from ads or social media content

  • Attend my events

  • Browse my website

  • Purchase products through my reseller partnerships

  • Enroll in my online courses

Why Do I Process Your Data?

I only process your data:

  • Where I am required to do so by law

  • Where you have provided consent for me to do so (such as for marketing and updates)

  • Where we are pursuing a contractual agreement, services, talks, courses, or products

  • Where there is a legitimate interest to do so, such as improving my offerings or securing your data

How Do I Use Your Data?

Depending on the circumstance, I process your data to:

  • Comply with legal obligations

  • Communicate with you

  • Manage our relationship

  • Keep you up to date with services, events, and offerings

  • Provide services and advisory you requested

  • Conduct research and development

  • Improve my service offerings

  • Manage product purchases and affiliate agreements

  • Refer you to partners and associates if requested

  • Use AI-assisted tools to support drafting of advisory deliverables and technical outputs — no personal information of individuals is entered into these tools

Data Sharing and Third-Party Recipients

Some of my services may require sharing with another partner. As such, I may share your data with:

  • Technology vendors whose products you purchase as part of my professional services

  • Additional subject matter experts that I need to engage (with your consent) for the services you have hired me for

  • Legal or regulatory authorities when required

To run my business, I make use of several reputable technology and professional service providers who may be sub-processors of your information. I will always ensure that these service providers are bound by contractual agreements that ensure implementing security safeguards. These service providers include:

  • Microsoft 365 services for productivity, meetings, email, forms, and file storage

  • Calendly for appointment bookings

  • Zoho for Customer Relationship Management

  • Zoho, Linktree, and Squarespace for marketing emails, updates, and landing pages

  • Zoom and Teams for online meetings and presentations

  • Quickbooks and Zoho (and my accountants) for billing and invoicing

  • Stripe, Squarespace, PayPal, and Wise for payment services

  • Squarespace for website hosting

  • ScoreApp for online assessments

  • Zenler for learning management

  • LinkedIn and Reddit for social media marketing

  • Anthropic (Claude and Claude Code) for AI-assisted drafting, research, advisory analysis, and development tasks. As a policy, no personal information of individuals is submitted to Anthropic.

  • Acronis for backups and archiving services

In some circumstances, you may be engaging directly with a partner of mine. In these cases, you will need to review the affiliate partner or technology vendor’s privacy notice for more information.

I am a reseller or partner for:

  • 1Password

  • AltitudeSync (Acronis)

I will never sell your data or use it for unrelated marketing. Should I receive a law enforcement request for your information, I will, unless prohibited by law, push back on these requests and refer the requester directly to you.

How Long Do I Retain Your Data?

I keep your data only for as long as necessary—typically for the duration of service and any applicable legal retention periods that apply to the information.

If your service agreement with me reaches its natural conclusion or is terminated for any reason, I will retain your information for three years after termination unless otherwise instructed, in order for you to re-engage me for additional services without hassle or rework.

I may retain information for longer should you provide consent for me to do so or where the information has been anonymized and you are no longer able to be identified.

Your Data Protection Rights

Depending on your location and jurisdiction, you have rights under data protection laws that may include:

  • Accessing the data I hold about you

  • Requesting corrections or deletions

  • Restricting or objecting to certain data processing

  • Portability (transferring your data elsewhere)

If you’d like to exercise any of these rights and put in a request to do so, please use my contact form to do so or email me at the address below.

How Do I Protect Your Data?

Data security is of paramount importance to me. I make sure that supplementary security measures are in place for all of my systems, and follow good practice in terms of password management, using reputable providers, and keeping access limited to those who are authorized. Should you wish to find out more about my security practices, please reach out using the email address on this page.

International Data Transfers

Your information may be stored and processed outside of the country or region where it was originally collected. Some of these countries may offer fewer rights regarding your personal information than you have in your country of residence. I ensure that I enter into agreements with all service providers to ensure that appropriate safeguards are in place at all times. Wherever possible, I try to host your information with service providers in Canada.

Cookies and Tracking Technologies

My website and landing pages make use of cookies and other forms of tracking. In all cases, I provide notice and choices for managing them. Please click on the appropriate cookie banner to manage your consent preferences.

Marketing Preferences and Communications

You’ll only receive marketing communications if you’ve opted in. You can change your preferences anytime by selecting the opt-out link at the bottom of communications. You are also welcome to use the contact form on this page to exercise your right to opt out of marketing communications.

In some instances, communications are not commercial in nature and may be a required part of our engagement. In these cases, you are not able to opt out automatically. Please contact me directly if you have a concern about service-related messages.

Changes to This Privacy Notice

I may update this notice from time to time. Any changes will be posted here. This notice was last updated on the 6th of March, 2026.

How to Contact ME

If you have any questions or concerns about privacy, feel free to reach out by email at privacy [at] rossgsaunders.com.