Home / Legal
Legal

Privacy Policy.

How TruPoint Technology collects, uses, stores, and protects personal information — under PIPEDA and Canadian provincial law.

Effective dateJanuary 1, 2026
Last updatedApril 14, 2026
Governing lawCanada / PIPEDA
Privacy Officerprivacy@trupoint.com

1. Scope

This Privacy Policy applies to information collected through trupoint.com, our customer portal, the TruPoint Private Cloud, and any service or interaction described as a "TruPoint" product. It is written to comply with the Personal Information Protection and Electronic Documents Act (PIPEDA), Quebec's Law 25, and Alberta's PIPA where applicable.

2. Information we collect

2.1 Information you give us

Contact details (name, email, phone, company), inquiries you submit, and information your administrators provide when configuring services.

2.2 Information collected automatically

Server logs, IP address, device fingerprint, and analytics events necessary to operate the platform and detect security incidents.

2.3 Information from clients (data we process on their behalf)

Where we act as a service provider, the data is governed by the Data Processing Addendum, not this Policy.

3. How we use information

  • To deliver, maintain, and secure our services
  • To respond to inquiries and support requests
  • To send service communications (security advisories, status, billing)
  • To send marketing — only with consent, and only with an unsubscribe link
  • To meet our legal, audit, and regulatory obligations

4. Sharing & sub-processors

We do not sell personal information. We share with sub-processors only as needed to deliver the service. Our current sub-processor list is published and updated at least 30 days before any addition.

5. Storage & data sovereignty

Personal information collected through this site is stored in Canada in the TruPoint Private Cloud. Customer-environment data follows the location commitment in your Order Form (Canada-only by default). We do not replicate to non-Canadian regions without written consent.

6. Your rights

You may request access to, correction of, or deletion of your personal information. We respond within 30 days. To exercise these rights, contact our Privacy Officer.

7. Security

We protect personal information using the controls described in our SOC II Type 2 report and ISO 27001 ISMS — including MFA, encryption in transit and at rest, audit logging, and least-privilege access. A SOC II report is available under NDA on request.

8. Cookies

Our website uses essential cookies for session management and an opt-in analytics cookie for usage measurement. You can control cookies in your browser settings.

9. Contact & complaints

Privacy Officer · TruPoint Technology
privacy@trupoint.com · +1 (888) 555-0102
If you are not satisfied with our response, you may contact the Office of the Privacy Commissioner of Canada at priv.gc.ca.