Contact
Client Area

Privacy Policy

Effective Date: [January 22, 2018]


Last Updated: [November 19, 2025]

About US

WebFoundr Inc. (“WebFoundr,” “we,” “us,” or “our”) offers comprehensive, fully managed IT services, encompassing Domain and hosting, Website design and development, App development, SEO, Digital marketing, Sales solutions, IT consulting, Cloud Solutions, AI consulting, and Security Audits. Our company is headquartered in Ottawa, Ontario, Canada.

We highly value our customers’ privacy and are committed to protecting the personal information of our clients and visitors who use our websites, products, or services (collectively, our “Users”).

This Privacy Policy provides details about how your personal information is collected, shared, and used by us. You can learn more about our organization at https://webfoundr.com.

If you have any questions about this Privacy Policy or our practices described herein, you may contact:

Email: support@webfoundr.com
Address: WebFoundr Canada Inc., 300 March Road, Ottawa, Ontario, Canada K2K2E2
Phone: +1 613-794-4763

COVERED ENTITIES

For this policy, the covered entities to which it applies are:


  • Our website: https://webfoundr.com/
  • Our client portal: https://webfoundr.com/account/
  • Our blog: https://webfoundr.com/blog/
  • All subdomains of webfoundr.com


 

This Privacy Policy covers personal information, including any information we collect, use, and share from you, as described below. This Privacy Policy does not cover how our Users may use data that they collect using our services.

1. INFORMATION WE COLLECT FROM YOU

1.1 Website Visitors

Like most website operators, WebFoundr collects non-personally-identifying information of the sort that web browsers and servers typically make available, including:

  • Browser type and version
  • Language preference
  • Referring website
  • Date and time of each visitor request
  • Pages viewed on our website
  • Operating system
  • Screen resolution
  • Time spent on pages

Our purpose in collecting non-personally identifying information is to better understand how WebFoundr’s visitors use our website and to improve their experience.

WebFoundr also collects potentially personally-identifying information, including:

  • Email addresses (when provided via forms)
  • Names (when provided)
  • Phone numbers (when provided)
  • Internet Protocol (IP) addresses for all visitors
  • Location information based on IP address
  • Device identifiers

1.2 Signing Up For Services; User Information

To provide our fully managed IT services, Domain and hosting, Website design and development, App development, Search engine optimization, Digital marketing services, and Sales solutions, we collect the following information:

Account Information:

  • Full name
  • Company name
  • Email address
  • Phone number
  • Billing address
  • Service address (if different)
  • Username and password
  • Industry/business type
  • Website URL

 

Payment Information:

  • Credit card details
  • Bank account information (for ACH payments)
  • Billing history
  • PayPal account (if used)
  • Tax identification numbers (where required)

 

Technical Information:

  • Domain names
  • Server access logs
  • FTP/SSH credentials
  • Database information
  • API keys and integrations
  • SSL certificate information

 

Communication Information:

  • Support ticket history
  • Email communications
  • Phone call recordings (for quality assurance)
  • Chat transcripts
  • Meeting notes

1.3 Domain Registrations

When you purchase domain registration services through our partners, we are required to collect the following WHOIS information:

Registrant Information:

  • Name
  • Organization
  • Address
  • Email
  • Phone number
  • Fax (optional)

 

Administrative, Technical, and Billing Contacts:

  • Same information as registrant (may be different individuals)

This collection is necessary to comply with ICANN (Internet Corporation for Assigned Names and Numbers) requirements and registry obligations.

1.4 Marketing and Analytics Information

We collect information about your interaction with our marketing efforts:

  • Email open rates and click-through rates
  • Ad campaign interactions
  • Social media engagement
  • Webinar attendance
  • Content downloads
  • Newsletter subscriptions

2. HOW WE USE YOUR INFORMATION

We have a legitimate interest in running a successful and efficient business. We use the information we collect for the following purposes:

2.1 Service Delivery

  • Provide requested services (Hosting, Web & App development, Search engine optimization, Digital marketing, Sales Services)
  • Process transactions and billing
  • Manage your account
  • Provide customer support
  • Send service-related communications
  • Monitor service performance
  • Prevent fraud and abuse
  • Enforce our terms of service

2.2 Service Improvement and Development

  • Analyze usage patterns
  • Improve existing services
  • Develop new features and services
  • Personalize user experience
  • Conduct research and analysis
  • Fix bugs and technical issues
  • Optimize website and service performance

2.3 Marketing and Communications

With your consent, where required:

  • Send promotional emails about our services
  • Provide targeted advertisements
  • Share product updates and new features
  • Send industry news and tips
  • Invite you to events or webinars
  • Conduct customer surveys
  • Retarget advertising on third-party platforms

2.4 Legal and Compliance

  • Comply with legal obligations
  • Respond to legal requests and subpoenas
  • Enforce our agreements and policies
  • Protect rights, property, and safety
  • Prevent illegal activities
  • Resolve disputes
  • Comply with tax and accounting requirements

2.5 Business Operations

  • Business planning and reporting
  • Risk assessment and management
  • Audit and accounting purposes
  • Insurance claims processing
  • Merger, acquisition, or sale preparations
  • Training and quality assurance

3. DISCLOSURE OF INFORMATION

3.1 Service Providers

We share information with third-party vendors who help us provide our services:

  • Hosting Infrastructure: Data center providers for server operations
  • Payment Processors: Stripe, PayPal, and banks for transaction processing
  • Email Service Providers: For transactional and marketing emails
  • Analytics Providers: Google Analytics, heat mapping tools
  • Support Tools: Ticketing systems, live chat platforms
  • Security Services: DDoS protection, SSL providers, security scanning
  • Backup Services: Cloud backup providers
  • Domain Registrars: For domain registration services
  • Marketing Platforms: Google Ads, Facebook/Meta, LinkedIn

3.2 Domain Registration Disclosures

Public WHOIS: Domain registration information may be publicly accessible through WHOIS databases as required by ICANN policies, unless privacy protection is enabled.

Transfer Out: If you transfer a domain away from us, your registrant email may be temporarily published in WHOIS for approximately 5 days as required by ICANN.

Registry Requirements: We may share registration data with domain registries as required by our registrar agreements.

Data Escrow: ICANN requires us to escrow domain registration data with approved third-party providers.

3.3 Legal Disclosures

We may disclose information when required by:

  • Court orders or subpoenas
  • Government investigations
  • Law enforcement requests
  • National security requirements
  • Legal proceedings
  • To protect our rights or property
  • To prevent fraud or cybersecurity threats
  • Emergency circumstances involving danger

3.4 Business Transfers

In connection with any merger, acquisition, financing, or sale of assets, your information may be transferred to the acquiring entity. We will notify you via email and/or prominent notice on our website of any change in ownership.

3.5 Aggregated or De-identified Data

We may share aggregated or de-identified information that cannot reasonably identify you for:

  • Industry research
  • Marketing analysis
  • Service improvement
  • Public reports or case studies

3.6 With Your Consent

We may share your information for other purposes with your explicit consent, such as:

  • Case studies or testimonials
  • Referral programs
  • Joint marketing initiatives
  • Partner integrations

4. COOKIES AND TRACKING TECHNOLOGIES

4.1 Types of Cookies We Use

Essential Cookies: Required for website functionality

  • Session management
  • Authentication
  • Security features
  • Load balancing
  • Shopping cart functionality

Analytics Cookies: Help us understand usage patterns

  • Google Analytics (with IP anonymization)
  • Conversion tracking
  • Heat mapping tools
  • A/B testing platforms
  • Server-side analytics

Marketing/Advertising Cookies: Used for targeted advertising

  • Google Ads remarketing
  • Facebook/Meta Pixel
  • LinkedIn Insight Tag
  • Conversion tracking pixels
  • Interest-based advertising

Preference Cookies: Remember your choices

  • Language preferences
  • Display settings
  • Communication preferences
  • Recently viewed items

4.2 Third-Party Cookies

Third-party services may set their own cookies, including:

  • Google Analytics
  • Facebook/Meta
  • YouTube (for embedded videos)
  • Social media share buttons
  • Live chat widgets

4.3 Managing Cookies

You can control cookies through:

  • Browser settings (www.aboutcookies.org)
  • Our cookie consent banner
  • Opt-out links in emails
  • Ad preference managers:
    • http://optout.networkadvertising.org (US)
    • http://www.youronlinechoices.eu (EU)

4.4 Other Tracking Technologies

We may also use:

  • Web beacons/pixels in emails
  • Server logs
  • Local storage
  • Device fingerprinting (with consent)
  • Session recording (anonymized)

5. DATA SECURITY

5.1 Security Measures

We implement appropriate technical and organizational measures:

Technical Safeguards:

  • SSL/TLS encryption for data in transit
  • Encryption at rest for sensitive data
  • Firewalls and intrusion detection
  • Regular security updates and patches
  • Access controls and authentication
  • Secure coding practices
  • Regular vulnerability scanning
  • DDoS protection

 

Organizational Safeguards:

  • Employee training and awareness
  • Access on a need-to-know basis
  • Confidentiality agreements
  • Regular security audits
  • Incident response procedures
  • Vendor security assessments
  • Physical security for offices

5.2 Your Security Responsibilities

You are responsible for:

  • Maintaining strong, unique passwords
  • Keeping login credentials confidential
  • Enabling two-factor authentication when available
  • Promptly reporting suspicious activity
  • Keeping your systems and software updated
  • Using secure networks when accessing services

5.3 No Guarantee

While we strive to protect your information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

6. DATA RETENTION

We retain personal information for as long as necessary to:

  • Provide requested services
  • Comply with legal obligations
  • Resolve disputes
  • Enforce agreements
  • Support business operations

6.1 Specific Retention Periods

  • Account Data: Duration of service plus 2 years
  • Payment Records: 7 years for tax/accounting purposes
  • Support Tickets: 3 years from resolution
  • Server Logs: 90 days
  • Marketing Data: Until consent is withdrawn or 3 years of inactivity
  • Backup Data: 30 days rolling retention
  • Legal Hold Data: As required by legal process

6.2 Data Deletion

Upon account termination or request:

  • Active data is deleted within 30 days
  • Backups purged within 90 days
  • Some data may be retained for legal/compliance
  • Anonymized data may be retained indefinitely

7. INTERNATIONAL DATA TRANSFERS

7.1 Data Location

Our primary servers are located in:

  • Canada (primary)
  • United States (backup and CDN)

By using our services, you consent to the transfer and processing of your data in these jurisdictions.

7.2 Transfer Safeguards

For international transfers, we ensure appropriate safeguards:

  • Standard contractual clauses, where required
  • Adequacy decisions, where applicable
  • Explicit consent for transfers
  • Technical measures to protect data

7.3 Your Acknowledgment

Data protection laws vary by country. Your data may be subject to access by government authorities in the countries where we operate or store data.

8. YOUR PRIVACY RIGHTS

8.1 Access and Portability

You have the right to:

  • Request a copy of your personal information
  • Receive data in a structured, machine-readable format
  • Transfer data to another service provider

8.2 Correction and Update

  • Update account information through the client portal
  • Request correction of inaccurate data
  • Supplement incomplete information

8.3 Deletion and Erasure

You may request deletion of your personal information, subject to:

  • Legal retention requirements
  • Ongoing service obligations
  • Legitimate business needs
  • Active disputes or investigations

8.4 Restriction and Objection

  • Restrict processing of your data
  • Object to marketing communications
  • Opt out of non-essential data processing

8.5 Consent Withdrawal

  • Withdraw consent for marketing
  • Disable non-essential cookies
  • Opt out of data sharing

8.6 Exercising Your Rights

To exercise any rights, contact:

  • Email: support@webfoundr.com
  • Portal: Submit a privacy request ticket
  • Phone: [+1 613-794-4763]

We will respond within 30 days and may require identity verification.

9. JURISDICTION-SPECIFIC RIGHTS

9.1 Canadian Residents (PIPEDA)

Under the Personal Information Protection and Electronic Documents Act:

  • Right to access personal information
  • Right to challenge accuracy
  • Right to know how information is used
  • Right to file a complaint with the Privacy Commissioner

9.2 European Residents (GDPR)

If you are in the EEA, you have additional rights:

  • Right to complain with the supervisory authority
  • Right to data portability
  • Right to be forgotten
  • Right to object to automated decision-making

Data Protection Officer: dpo@webfoundr.com

9.3 California Residents (CCPA)

California residents have rights under the California Consumer Privacy Act:

  • Right to know what information is collected
  • Right to delete personal information
  • Right to opt-out of sale (we do not sell data)
  • Right to non-discrimination

9.4 Do Not Track

We currently do not respond to Do Not Track browser signals. You can control tracking through cookie settings and opt-out mechanisms described in this policy.

10. CHILDREN’S PRIVACY

Our services are not directed at children under 16. We do not knowingly collect information from children. If we learn we have collected information from a child under 16, we will promptly delete it.

Parents who believe we have inadvertently collected their child’s information should contact privacy@webfoundr.com immediately.

11. THIRD-PARTY LINKS AND SERVICES

Our services may contain links to third-party websites. We are not responsible for their privacy practices. We encourage you to review their privacy policies before providing personal information.

When you use integrated third-party services (like Google Analytics or Facebook), those services may collect information directly. Their use of information is governed by their respective privacy policies.

12. MARKETING COMMUNICATIONS

12.1 Types of Marketing

We may send you:

  • Service announcements and updates
  • Promotional offers and discounts
  • Industry news and educational content
  • Event invitations
  • Customer surveys
  • Partner offers (with consent)

12.2 Opting Out

You can opt out of marketing communications by:

  • Clicking “unsubscribe” in any marketing email
  • Updating preferences in your account
  • Contacting support@webfoundr.com
  • Calling [+1 613-794-4763]

Note: You cannot opt out of transactional emails (receipts, security alerts, service notices).

12.3 Communication Preferences

You can manage preferences for:

  • Email frequency
  • Types of content
  • Communication channels
  • Partner communications

13. CHANGES TO THIS POLICY

We may update this Privacy Policy from time to time. We will notify you of material changes by:

  • Posting the updated policy on our website
  • Updating the “Last Updated” date
  • Sending email notification to affected users
  • Requiring acknowledgment for significant changes

Your continued use after changes constitutes acceptance of the revised policy.

14. CONTACT INFORMATION

For privacy-related questions, concerns, or requests:

WebFoundr Inc.
Privacy Department
[300 March Rd, Kanata, ON]
Ottawa, Ontario, Canada [K2K 2E4]

Email: privacy@webfoundr.com
Phone: [+1 613-794-4763]
Support Hours: Monday-Friday, 9 AM – 5 PM EST

For other inquiries:

  • General Support: support@webfoundr.com
  • Legal Matters: legal@webfoundr.com
  • Data Protection Officer: dpo@webfoundr.com

By using our services, you acknowledge that you have read and understood this Privacy Policy and agree to its terms.

This Privacy Policy is written in English. Translations may be provided for convenience, but the English version shall prevail in case of any discrepancy.