← Back to website

Privacy Policy

Effective Date: August 21, 2025
Last Updated: August 21, 2025
Français English

1. Introduction

InfoSec Sécurité de l'information Inc. ("InfoSec", "we", "our") is committed to protecting the privacy and security of your personal information. This privacy policy explains how we collect, use, disclose, and protect your personal information in compliance with Quebec's Act 25 respecting the protection of personal information in the private sector (Law 25) and the General Data Protection Regulation (GDPR).

2. Data Controller

InfoSec Sécurité de l'information Inc.
585, boulevard René-Lévesque Ouest, bureau 900
Quebec City, QC G1K 3J2, Canada
Phone: +1-418-476-3180
Email: info@infosecurite.com

3. Information We Collect

3.1 Information Provided Directly

  • First and last name
  • Email address
  • Phone number
  • Messages and communications you send us

3.2 Information Collected Automatically

  • IP address (for security and fraud prevention)
  • Submission timestamp
  • Page URL visited
  • Referrer page
  • Screen resolution
  • Timezone
  • Browser language
  • User agent (browser information)
  • CSRF security tokens
  • Session metadata for security

4. Purposes of Processing

We use your personal information to:

  • Provide our services: Respond to your inquiries, provide cybersecurity consulting
  • Communication: Contact you regarding our services, answer your questions
  • Improvement: Analyze website usage to improve our services
  • Legal compliance: Meet our legal and regulatory obligations
  • Security: Protect our website against threats and fraud

5. Legal Basis for Processing (GDPR)

  • Consent: For marketing communications (Art. 6(1)(a) GDPR)
  • Contract performance: To provide our services (Art. 6(1)(b) GDPR)
  • Legitimate interests: For security and service improvement (Art. 6(1)(f) GDPR)
  • Legal obligation: To comply with legal requirements (Art. 6(1)(c) GDPR)

6. Information Sharing

We never sell your personal information. We may share it only in the following cases:

  • Service providers: Technical providers who help us maintain our website
  • Legal obligations: When required by law or court order
  • Rights protection: To protect our rights, property, or safety

7. Data Security

We implement appropriate technical and organizational security measures to protect your personal information, including:

  • Data encryption in transit and at rest
  • Restricted access to personal information
  • Staff training on data protection
  • Security incident monitoring and detection
  • Regular secure backups

8. Data Retention

We retain your personal information only as long as necessary for the purposes described in this policy or as required by law:

  • Contact data: 7 years after last interaction
  • Technical data and security metadata: Maximum 90 days
  • CSRF security tokens: Maximum 15 minutes
  • Communications: 3 years after end of business relationship

9. Your Rights

In accordance with Law 25 and GDPR, you have the following rights:

  • Right of access: Know what information we hold about you
  • Right of rectification: Correct inaccurate information
  • Right of erasure: Request deletion of your data
  • Right to data portability: Retrieve your data in a structured format
  • Right to object: Object to certain processing
  • Right to restriction: Limit the processing of your data
  • Right to withdraw consent: Withdraw your consent at any time

To exercise these rights, contact us at: privacy@infosecurite.com

10. International Transfers

Your personal information is primarily stored in Canada. In case of transfers to other countries, we ensure appropriate safeguards are in place to protect your data.

11. Cookies and Similar Technologies

Our website uses cookies and similar technologies to enhance your experience. We use:

  • Essential cookies: Necessary for website functionality
  • Preference cookies: To remember your settings (theme, language)
  • Analytics cookies: To understand how you use our site

You can manage your cookie preferences through your browser settings.

12. Changes to This Policy

We may update this privacy policy occasionally. Significant changes will be communicated via our website. We encourage you to review this page regularly.

13. Contact and Complaints

For any questions about this policy or to exercise your rights:

Data Protection Officer:
InfoSec Sécurité de l'information Inc.
Email: privacy@infosecurite.com
Phone: +1-418-476-3180

You also have the right to lodge a complaint with data protection authorities:

  • Quebec: Commission d'accès à l'information du Québec (CAI)
  • Europe: Competent supervisory authority in your country of residence

© 2025 InfoSec Sécurité de l'information Inc. All rights reserved.

Privacy Policy compliant with Quebec's Law 25 and GDPR