Data Practices

We retain your data only for as long as necessary to provide our services and comply with legal obligations.

Retention Periods:

• Account Data: Retained while your account is active and for 30 days after deletion
• Transaction Data: Retained for 7 years for tax and legal compliance
• Usage Data: Retained for 2 years for analytics and service improvement
• Support Communications: Retained for 3 years
• Marketing Data: Retained until you opt out or request deletion

After retention periods expire, data is securely deleted or anonymized.

You have the right to request deletion of your personal data. We have procedures in place to securely delete data upon request.

Deletion Process:

• Submit a deletion request via email or through your account settings
• We verify your identity before processing the request
• Data is deleted within 30 days of verification
• Some data may be retained for legal compliance (e.g., transaction records)
• Backup data is deleted within 90 days

To Request Deletion: privacy@toolswift.ca

You have the right to receive a copy of your personal data in a structured, commonly used, and machine-readable format.

Export Options:

• Export account data through your account settings
• Request a complete data export via email

Exportable Data Includes:

• Account information and profile data
• Order history and transaction data
• Product and catalog data
• Customer data
• Analytics and usage data

To Request Export: privacy@toolswift.ca

You have comprehensive rights regarding your personal data under GDPR, CCPA, and other applicable privacy laws.

Your Rights Include:

• Right to Access: Request a copy of your personal data
• Right to Rectification: Correct inaccurate or incomplete data
• Right to Erasure: Request deletion of your data
• Right to Restrict Processing: Limit how we use your data
• Right to Data Portability: Receive your data in a portable format
• Right to Object: Object to certain types of processing
• Right to Withdraw Consent: Withdraw consent for data processing

To exercise these rights, contact us at privacy@toolswift.ca

Your data may be processed and stored in various locations to provide our services effectively.

Primary Processing Locations:

• Primary: Canada (for Canadian customers)
• Backup: United States (encrypted backups)
• CDN: Global edge locations for performance

Data Transfer Safeguards:

• Standard Contractual Clauses (SCCs) for international transfers
• Encryption in transit and at rest
• Compliance with applicable data protection laws
• Regular security assessments of data processors

We implement comprehensive security measures to protect your data throughout its lifecycle.

Security Measures Include:

• Encryption at rest (AES-256) and in transit (TLS 1.3)
• Access controls and authentication
• Regular security audits and assessments
• Data backup and disaster recovery procedures
• Incident response and breach notification procedures
• Employee training on data protection

For more details, see our Security page.

We may share your data with trusted third-party service providers who help us operate our business, subject to strict confidentiality agreements.

Categories of Third Parties:

• Cloud Providers: Hosting and infrastructure services
• Payment Processors: Secure payment processing
• Analytics Providers: Service usage analytics
• Support Tools: Customer support and communication
• Marketing Tools: With your consent

All third-party providers are contractually obligated to protect your data and use it only for specified purposes.

To exercise your data rights or request information about our data practices, please contact us:

• Email: privacy@toolswift.ca
• Support: support@toolswift.ca
• Website: toolswift.ca

We will respond to your request within 30 days, or as required by applicable law.