Privacy Policy
Last updated: April 17, 2026
1. Introduction
GigaSphere Inc. ("GigaSphere", "we", "our", or "us") is committed to protecting the privacy and security of the personal information entrusted to us by our clients, employees, contractors, and website visitors. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website at gigasphere.ca or engage with our services.
GigaSphere is headquartered in Montreal, Quebec, Canada and operates across multiple Canadian provinces including Ontario, Manitoba, Alberta, and British Columbia.
2. Legal Framework and Compliance
We comply with all applicable federal and provincial privacy legislation, including:
- PIPEDA - Personal Information Protection and Electronic Documents Act (federal)
- Quebec Law 25 - An Act to modernize legislative provisions as regards the protection of personal information
- GDPR - General Data Protection Regulation, where applicable to individuals in the European Economic Area
- Canadian Human Rights Act
- Provincial privacy and employment standards legislation (Ontario, Manitoba, Quebec, Alberta, British Columbia)
Where provincial or federal law provides greater protections, those statutory standards govern.
3. Information We Collect
3.1 Information You Provide
- Contact details (name, email, phone number) submitted through our contact forms or support ticket system
- Business or organizational information when engaging our cloud infrastructure services
- Employment-related information for employees, contractors, and consultants (governed by employment agreements and our Employee Handbook)
3.2 Information Collected Automatically
- Browser type, operating system, and device information
- IP address and approximate geographic location
- Pages visited, referring URLs, and navigation patterns
- Cookies and similar tracking technologies (see Section 8)
3.3 Information from Third Parties
- Cloud platform usage data from our managed infrastructure services (AWS, Microsoft Azure, Google Cloud)
- Background check results for employment purposes, with consent
4. How We Use Your Information
We use the information we collect for the following purposes:
- Providing, operating, and maintaining our cloud infrastructure and consulting services
- Responding to inquiries and support requests
- Processing employment and contractor engagements
- Administering payroll, tax compliance (CRA), and group insurance benefits
- Conducting security audits and ensuring compliance with IT security policies
- Complying with legal and regulatory obligations
- Improving our website and services
5. Data Security
GigaSphere implements robust administrative, technical, and physical safeguards to protect personal information:
- Encryption: Personal and confidential data is stored in encrypted environments designed to prevent unauthorized access and data breaches
- Access Controls: Role-based access controls limit data access to authorized personnel only
- VPN Requirement: All access to client systems and data requires use of a Virtual Private Network (VPN) with secure encrypted connections
- Password Policy: Complex passwords with alphanumeric and special characters are required and must be rotated regularly
- Approved Platforms: Company and client data is stored only on approved, vetted cloud platforms (Google Cloud, AWS, Azure) hosted in Canadian regions where applicable
- Network Security: Public Wi-Fi networks are prohibited for work-related activities unless secured with strong encryption
- Security Audits: Regular security audits are conducted to verify compliance with our data protection policies
6. Data Breach Response
In the event of a suspected or actual data breach or security incident, GigaSphere follows a strict incident response protocol:
- All personnel are required to report suspected breaches to management within 24 hours
- Affected individuals and relevant regulatory authorities (including the Office of the Privacy Commissioner of Canada) will be notified as required by PIPEDA and applicable provincial legislation
- Timely investigation and remediation measures will be undertaken to mitigate harm
7. Disclosure of Information
We do not sell, rent, or trade your personal information. We may share information in the following circumstances:
- Service Providers: Trusted third-party vendors who assist in delivering our services (e.g., cloud infrastructure providers, insurance administrators), subject to confidentiality agreements
- Legal Requirements: When required by law, regulation, court order, or governmental authority
- Business Transfers: In connection with a merger, acquisition, or sale of assets, with appropriate notice to affected individuals
- Consent: With your explicit consent for any other purpose not described herein
8. Cookies and Tracking Technologies
Our website may use cookies and similar technologies to enhance your browsing experience. These may include:
- Essential Cookies: Required for core website functionality
- Analytics Cookies: Help us understand how visitors interact with our site to improve performance
You may control cookie preferences through your browser settings. Disabling cookies may limit certain features of the website.
9. Data Retention
Personal information is retained only as long as necessary to fulfil the purposes for which it was collected, or as required by applicable law. Employee and contractor records are retained in accordance with Canada Revenue Agency (CRA) requirements and provincial employment standards. When information is no longer required, it is securely deleted or anonymized.
10. Your Rights
Under applicable Canadian privacy legislation, you have the right to:
- Access - Request a copy of the personal information we hold about you
- Correction - Request correction of inaccurate or incomplete information
- Withdrawal of Consent - Withdraw your consent for the collection, use, or disclosure of your personal information, subject to legal and contractual restrictions
- Complaint - File a complaint with the Office of the Privacy Commissioner of Canada or relevant provincial authority
For individuals in the European Economic Area, additional rights under the GDPR may apply, including the right to erasure, data portability, and restriction of processing.
11. Third-Party Services
Our services involve integration with third-party cloud platforms including Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP). Each provider maintains its own privacy practices. We encourage you to review their respective privacy policies. GigaSphere selects and manages these platforms with Canadian data residency requirements in mind.
12. Children's Privacy
Our services are not directed to individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have inadvertently collected such information, we will take steps to delete it promptly.
13. Changes to This Policy
GigaSphere reserves the right to update this Privacy Policy at any time. Changes will be posted on this page with an updated revision date. We encourage you to review this policy periodically. Continued use of our website or services after changes constitutes your acceptance of the revised policy.
14. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our data handling practices, please contact us:
