Privacy

Privacy Policy

How DataPulse AI Inc. handles personal information under Canada's Personal Information Protection and Electronic Documents Act (PIPEDA). Last updated: 07 July 2026.

1. Who we are

DataPulse AI Inc. ("DataPulse AI", "we", "us" or "our") is an applied-AI studio and data consultancy based in Toronto, Ontario, Canada. We design and build custom machine-learning models, analytics dashboards, data pipelines and LLM applications for organizations. This policy describes how we collect, use, disclose and protect personal information when you visit our website at datapulseai.pro, contact us, or engage our professional services.

Organization identity:
DataPulse AI Inc.
250 Yonge Street, Suite 2000, Toronto, ON M5B 2L7, Canada
Email: [email protected]
General enquiries: [email protected]
Phone: +1 (416) 588-0473
BN: 824157093 RC0001

2. Scope

This policy applies to personal information we collect through our website, contact forms, email correspondence, discovery calls and client engagements. It does not cover third-party websites linked from our site. When we process client data on behalf of an organization under a services agreement, we act as a service provider to that organization; the client's own privacy policies and data processing terms govern end-user data, supplemented by our contractual obligations.

We are not a data broker. We do not sell personal information. We do not purchase lists of personal data for resale. Data, in our business name, means your organization's information worked on for you — not a marketplace product.

3. What personal information we collect

Depending on how you interact with us, we may collect:

  • Contact and identity information: name, email address, phone number, job title, company or organization name, mailing address.
  • Enquiry and communications content: messages you send via our contact form, email or other channels, including project requirements and technical context you choose to share.
  • Website usage information: if you consent to analytics cookies, aggregated data such as pages visited, referral source, browser type, device type and approximate geographic region derived from IP address.
  • Cookie consent preferences: your choices regarding necessary and analytics cookies, stored for six months.
  • Client engagement records: contracts, statements of work, invoices, meeting notes, deliverables metadata and support correspondence related to professional services.
  • Technical access logs: server logs that may include IP addresses, timestamps and requested URLs for security and troubleshooting.

We collect only information reasonably necessary for the purposes described below. We do not collect health information, heart-rate data or fitness metrics — our use of "Pulse" in branding refers to data and system signals, not medical readings.

4. How we collect information

We collect personal information when:

  • You submit our contact form (with explicit PIPEDA consent checkbox);
  • You email us or call our Toronto office;
  • You enter a client engagement and provide information for project delivery;
  • You consent to analytics cookies on our website;
  • Our systems automatically generate technical logs when you browse the site.

We may also receive information from referral partners or event registrations with your knowledge, but we do not purchase consumer data lists.

5. Purposes of collection and legal bases

Under PIPEDA, we identify purposes before or at the time of collection and limit use to those purposes or compatible ones. Our primary purposes are:

  • Responding to enquiries: to read, assess and reply to your messages about data audits, projects or partnerships.
  • Delivering professional services: to perform AI strategy, machine-learning development, analytics, data engineering, LLM applications, monitoring and related consulting under contract.
  • Contract administration: billing in CAD, project management, support and retainer services.
  • Website operation and security: maintaining site functionality, preventing abuse and diagnosing technical faults.
  • Analytics (with consent): understanding how visitors use our site so we can improve content and structure.
  • Legal and compliance: meeting tax, corporate and regulatory obligations; responding to lawful requests.

For contact form submissions, we rely on your express consent (consent_pipeda checkbox). For client services, processing is necessary to perform a contract or take pre-contractual steps at your request. For necessary cookies and security logs, processing is based on legitimate operational interests balanced against your privacy rights.

6. Client data and model data

When engaged by a client, we may access organizational datasets, documents, code repositories and system outputs strictly to deliver agreed services. Such data is:

  • Used only for the client's project scope — not to train models for other clients unless explicitly agreed;
  • Stored in environments specified in the statement of work (client cloud, our secure project environment or hybrid);
  • Subject to access controls, logging and encryption in transit where applicable;
  • Returned or deleted per contract terms at project end or on request.

Model artefacts (weights, embeddings, evaluation reports) belong to the client per our standard IP terms unless otherwise agreed. We document retention schedules for interim copies used during MLOps and monitoring engagements.

7. Disclosure to third parties

We do not sell or rent personal information. We may disclose information to:

  • Service providers: hosting, email delivery, analytics (if consented), cloud infrastructure and subcontracted specialists bound by confidentiality and data protection terms;
  • Professional advisers: lawyers, accountants or insurers under confidentiality;
  • Authorities: when required by law or to protect rights, safety and security.

Some service providers may process data outside Canada. When they do, we assess safeguards and contractual protections consistent with PIPEDA's cross-border accountability requirements. Details available on request for enterprise clients.

8. Retention

We retain personal information only as long as necessary for the purposes collected:

  • Contact form enquiries: up to 24 months after last meaningful contact, unless a client relationship continues;
  • Client project records: duration of engagement plus up to seven years for legal, tax and contractual purposes;
  • Analytics data: per vendor default cycles, typically 14–26 months, subject to your cookie choices;
  • Cookie consent records: six months, then re-prompted;
  • Server security logs: up to 90 days unless needed for incident investigation.

When retention ends, we delete or anonymize information where feasible.

9. Security safeguards

We implement reasonable administrative, technical and physical safeguards appropriate to the sensitivity of information handled — including access controls, encrypted connections (HTTPS), least-privilege accounts, secure development practices for client systems and staff confidentiality obligations. No method of transmission or storage is perfectly secure; we commit to notifying affected parties and regulators where required if a breach creates a real risk of significant harm.

10. Your rights under PIPEDA

Subject to limited exceptions, you have the right to:

  • Access personal information we hold about you and receive an explanation of how it has been used;
  • Correct inaccuracies in your personal information;
  • Withdraw consent where processing is consent-based (e.g., marketing or analytics), understanding that withdrawal may limit services;
  • Challenge compliance with our privacy practices.

To exercise these rights, contact [email protected]. We will respond within 30 days in most cases. We may verify your identity before releasing information.

11. Office of the Privacy Commissioner of Canada

If you believe we have not addressed your concern adequately, you may contact:

Office of the Privacy Commissioner of Canada
30 Victoria Street, Gatineau, QC K1A 1H3
Toll-free: 1-800-282-1376
Website: www.priv.gc.ca

12. Cookies and similar technologies

We use cookies as described in our Cookie Policy. Necessary cookies support basic operation. Analytics cookies are optional and set only with your consent via our cookie banner. You may change preferences at any time by clearing cookies and revisiting the site, or through browser settings.

13. Children's privacy

Our services are directed to business professionals. We do not knowingly collect personal information from individuals under 16. If you believe a minor has submitted information, contact us and we will delete it promptly.

14. Automated decision-making

Our website does not make automated decisions with legal or similarly significant effects on visitors. In client projects, machine-learning models may inform decisions within client systems; such use is governed by client agreements, human-in-the-loop design and responsible AI practices — not by this website policy.

15. Changes to this policy

We may update this policy to reflect legal, technical or business changes. Material updates will be posted on this page with a revised "Last updated" date. For active clients, we will provide additional notice where changes affect project data handling materially.

16. Contact our privacy team

Questions about this policy or our PIPEDA practices:

Privacy Officer — DataPulse AI Inc.
[email protected]
250 Yonge Street, Suite 2000, Toronto, ON M5B 2L7, Canada