1. Who we are (data controller)
Canada Web Insights is a Canadian informational website that publishes neutral, article-style content about how digital tools and online platforms are being explored in Canada. For the purposes of data protection law, the data controller (the entity that determines why and how your personal information is processed) is Canada Web Insights Media Inc.
Registered address: 200 Bay St., Toronto, ON M5J 2J2, Canada. General contact: [email protected]. Privacy contact (for requests described in this policy): [email protected]. Phone: +1 (416) 360-7480.
This policy is written in plain language for accessibility. If you need this policy in an alternate format, please contact us via /contact/ and we will work with you to provide a readable version.
2. Personal data we collect
We collect only the information needed to operate this website, respond to messages, and understand how visitors use our content. Depending on how you interact with the site, we may collect the following categories of data:
Information you provide
- Full name (if you choose to provide it in a form)
- Email address (used to respond to your message)
- Phone number (optional, if you prefer a call-back)
- Message content (including any information you include in the text)
Information collected automatically
- IP address (typically stored in server logs for security and troubleshooting)
- Browser and device information (device type, operating system, browser version, language)
- Usage data (pages visited, time on page, referring page, and general interaction events)
- Cookie and local storage identifiers (used to remember cookie choices)
We do not request sensitive personal data through our standard site forms. Please do not include sensitive information (for example, health details, financial account numbers, or government ID numbers) in messages to us. If you send such information anyway, we will handle it as part of your message for the purpose of responding, but we may redact or delete it when it is not needed.
3. How we collect personal data
We collect data in a limited number of ways that are typical for a content website:
Web forms and direct contact
When you use our contact form on /contact/ or email us directly, you provide personal data such as your name, email, and message. We use this information to respond and keep minimal records for follow-up and quality control.
Cookies, local storage, and similar technologies
We use local storage to remember whether you accepted or rejected non-essential cookies. If you accept analytics cookies, we may also use cookies or similar identifiers to measure aggregate website usage. You can control this choice through the cookie banner.
Server logs
Like most websites, our hosting infrastructure processes basic connection information, including your IP address, the requested page, timestamps, and user-agent details. This information supports security monitoring, error diagnosis, and performance management.
Analytics tools (optional)
If you choose to accept analytics cookies, we may use Google Analytics 4 (GA4) to understand aggregate content performance (for example, which articles are read most). We configure analytics to support reporting and site improvements rather than individualized profiling. We do not use analytics to identify you by name.
We may also use the Meta Pixel for marketing measurement if we run ads for informational content. If deployed, it is used to measure general campaign performance and support audience delivery. It is enabled only when you accept marketing cookies in the banner. If we are not running campaigns at a given time, the pixel may not be present.
4. Legal basis for processing (GDPR Article 6)
Canada Web Insights is based in Canada, and we also aim to respect privacy expectations for visitors who may be located in the European Economic Area (EEA) or the United Kingdom. Where GDPR applies, we process personal data only when we have a legal basis. Our typical legal bases are:
When processing is based on consent, you can withdraw consent by rejecting cookies (for non-essential categories) through the cookie banner. Withdrawing consent does not affect the lawfulness of processing based on consent before its withdrawal.
5. Purposes of processing
We process personal data for the following purposes. Each purpose is intended to be specific, limited, and understandable:
To respond to messages, clarify requests, and keep limited history so we can continue a conversation without asking you to repeat details.
To protect the site from automated abuse, detect suspicious traffic patterns, and diagnose errors that could affect availability or integrity.
If you accept analytics cookies, we use aggregated measurements (for example, page popularity and engagement time) to improve readability, navigation, and topic selection.
To keep records required by law, respond to lawful requests, and enforce our site terms. See /terms/.
We do not sell personal information. We do not use personal information to make decisions that have legal or similarly significant effects on you (for example, automated decision-making related to credit, employment, or eligibility).
6. Retention periods
We keep personal data only as long as necessary for the purpose it was collected. Retention varies by category:
Form submissions and email communications
We typically retain contact form submissions and related email threads for up to 2 years, so we can handle follow-up, audit requests, and maintain continuity. If you ask us to delete a message earlier, we will evaluate the request and delete or anonymize data unless we must keep it for legal reasons.
Analytics data
If analytics cookies are enabled by your consent, we retain analytics data for 14 months to support year-over-year comparisons and ongoing improvements. Aggregated reports may be retained longer because they do not identify individuals.
Cookie banner preference
Your cookie choice is stored in your browser local storage until you clear it (for example, by clearing site data in your browser). The preference value is used only to remember your selection and does not identify you by name.
Server logs
Server logs are typically retained for up to 30 days, unless we need to keep a subset longer to investigate security incidents or repeated abuse. In those cases, we retain the relevant entries for as long as necessary to address the incident and comply with legal obligations.
8. International data transfers
We are based in Canada, and some service providers we use may process data in other countries, including the United States or the European Union, depending on infrastructure and routing. This means personal information may be transferred across borders.
Where GDPR applies and data is transferred outside the EEA to a country without an adequacy decision, we rely on appropriate safeguards such as Standard Contractual Clauses (SCCs) and additional technical and organizational measures when applicable. The exact safeguards depend on the provider and the transfer context.
You can request more information about transfer safeguards by emailing [email protected]. We will respond in a reasonable timeframe and may ask for details to verify your request.
9. Your privacy rights and how to exercise them
Depending on your location and applicable law, you may have rights related to your personal information. Where GDPR applies, you have the following rights:
Access
You can request a copy of the personal data we hold about you, and information about how it is processed.
Rectification
You can ask us to correct inaccurate or incomplete information (for example, if you contacted us using the wrong email address).
Erasure
You can ask us to delete personal data where there is no valid reason for us to keep it. Some data may need to be retained for legal or security reasons.
Restriction
You can request that we limit processing of your data in certain situations, such as while a dispute about accuracy is being resolved.
Portability
You can request personal data you provided to us in a structured, commonly used, machine-readable format, where applicable.
Object
You can object to processing based on legitimate interests. We will assess your request and stop processing unless we have compelling legitimate grounds.
Withdrawing consent
If processing is based on consent (for example, analytics or marketing cookies), you can withdraw consent at any time by rejecting cookies. On this site, cookie consent is stored in your browser. To reset your choice, clear site storage in your browser settings and reload the page to see the banner again.
How to submit a rights request
To submit a request, email [email protected] or use the form at /contact/. Please include enough information for us to locate relevant records (for example, the email address you used to contact us and the approximate date).
We may request additional information to verify your identity before fulfilling a request. We do this to protect your data from unauthorized access. We aim to respond within 30 days, and sooner when feasible.
Right to complain
If you are in the EEA and believe we have not addressed your concern, you have the right to lodge a complaint with a supervisory authority. If you are in Ireland, the supervisory authority is the Data Protection Commission (DPC). If you are elsewhere in the EEA, you can contact your local authority.
If you are in Canada, you can also contact the Office of the Privacy Commissioner of Canada (OPC) about privacy concerns. We encourage you to contact us first so we can try to resolve the issue directly.
11. Children’s privacy
This website is not directed to children under 16. We do not knowingly collect personal information from children under 16 through our forms. If you believe that a child has provided personal information to us, please contact [email protected], and we will take reasonable steps to delete the information from our systems, unless retention is required for legal reasons.
12. Updates to this policy
We may update this Privacy Policy to reflect changes in how the site operates, changes in legal requirements, or changes in our processors. When we update the policy, we will revise the “Last Updated” date at the top of this page.
If a change is significant, we may also provide a prominent notice on the website. If you have contacted us and a change materially affects how we use your contact information, we may notify you by email when appropriate.
13. Contact / privacy inbox
For privacy questions, rights requests, or data deletion requests, please contact our privacy inbox: [email protected]. You can also contact us by mail at Canada Web Insights Media Inc., 200 Bay St., Toronto, ON M5J 2J2, Canada.
If you prefer using a web form, you may submit a request through /contact/. Please include “Privacy Request” in your message subject and specify what you would like us to do (access, deletion, correction, or general question).
Unsubscribe and deletion options
If you have provided an email address to contact us, you can request deletion of those communications by emailing the privacy inbox. If you previously accepted cookies and want to remove the stored choice, clear site data in your browser. If analytics or marketing cookies were enabled, clearing cookies in your browser will remove those identifiers from your device.
For related site rules, see /terms/.