Contacts
+1 (437) 980-9114
Request Consultation
Call us: +1 (437) 980-9114
🌐
Request Consultation

Privacy Policy

Effective Date: 01 April 2026

Innovate Global Solutions (“IGS,” “we,” “our,” or “us”) is committed to protecting personal information and handling it responsibly in accordance with applicable privacy laws, including Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA) where applicable. PIPEDA requires private-sector organizations engaged in commercial activity to follow fair information principles, including accountability, identifying purposes, consent, limiting collection, limiting use/disclosure/retention, safeguards, openness, access, and complaint handling.

This Privacy Policy explains:

  • what personal information we collect,
  • how we collect it,
  • how we use and disclose it,
  • how we protect and retain it,
  • your choices and rights,
  • and how to contact us with questions or complaints.
Who We Are

Innovate Global Solutions is a cybersecurity and technology risk advisory firm. We provide advisory, consulting, and related services in areas such as cybersecurity advisory, cloud security engineering, governance, risk and compliance, enterprise security architecture, AI governance, and OT security.

Who This Privacy Policy Applies To

This Privacy Policy applies to personal information processed by Innovate Global Solutions in connection with:

  • your use of our website,
  • inquiries and communications,
  • business development and marketing activities,
  • events, webinars, and newsletters,
  • delivery of our services,
  • and other activities forming part of our business operations.
What Personal Information We Collect

Depending on how you interact with us, we may collect the following categories of personal information.

Information you provide directly
  • full name
  • company name
  • job title
  • work email address
  • phone number
  • mailing or business address
  • information submitted through forms, emails, meeting requests, consultation requests, or other communications
  • information you provide when subscribing to updates, events, newsletters, or thought leadership content
Information collected automatically

When you visit our website, we may automatically collect information such as:

  • IP address
  • browser type and version
  • device type
  • operating system
  • referring website
  • date and time of access
  • pages viewed
  • time spent on pages
  • clickstream or usage data
  • approximate location derived from IP address
  • cookie and similar technology data
Information related to professional engagements

If you become a client, vendor, or partner, we may also collect:

  • business contact details
  • contractual records
  • billing or invoicing information
  • engagement-related communications and documentation
  • records relevant to service delivery and relationship management
Information Received from External Sources

We may also receive personal information about you from:

  • your employer or organization
  • professional advisers
  • business partners
  • referral sources
  • publicly available business sources
  • service providers acting on our behalf
  • your interactions with our digital platforms, where permitted by law

This kind of source-based disclosure is commonly included in enterprise privacy notices and improves transparency about how information may come into an organization, not just directly from the individual.

How We Collect Personal Information

We collect personal information:

  • directly from you,
  • automatically through your use of our website and digital tools,
  • from publicly available sources,
  • from service providers acting on our behalf,
  • and from clients, partners, referrals, or other business contacts where appropriate and lawful.
Why We Collect, Use, and Disclose Personal Information

We collect, use, and disclose personal information for purposes such as:

  • responding to inquiries and consultation requests
  • communicating with you about our services
  • managing client, vendor, and partner relationships
  • delivering, supporting, and improving our services
  • operating, securing, maintaining, and improving our website, systems, and business operations
  • understanding website usage and performance
  • sending newsletters, updates, event invitations, and thought leadership, where permitted or with consent
  • complying with legal, regulatory, contractual, and professional obligations
  • protecting our rights, personnel, systems, website, and business operations
  • preventing fraud, misuse, or unauthorized access

We will not use personal information for purposes other than those identified, except with consent or where permitted or required by law.

Consent

Under PIPEDA, organizations must obtain meaningful consent for the collection, use, and disclosure of personal information, subject to limited exceptions. The OPC’s guidance emphasizes that consent must be understandable and tied to clear purposes.

Where required by law, we obtain your knowledge and consent for the collection, use, or disclosure of personal information. Consent may be express or implied depending on the sensitivity of the information and the reasonable expectations in the circumstances.

By contacting us, submitting information to us, using our website, or requesting our services, you consent to our collection, use, and disclosure of your personal information as described in this Privacy Policy, unless a different form of consent is required by law.

You may withdraw consent at any time, subject to legal or contractual restrictions and reasonable notice. Withdrawal of consent may affect our ability to provide certain services or respond to certain requests.

Legal Grounds we use for processing personal information

Although this website is drafted primarily for Canadian operations, we may describe our processing grounds in a way that is also understandable for international users.

We process personal information:

  • with consent where required,
  • where necessary to respond to inquiries or provide requested services,
  • where necessary to comply with legal, regulatory, contractual, and professional obligations,
  • and where necessary for legitimate business purposes, provided those purposes are consistent with applicable law.
Cookies and Similar Technologies

We use cookies and similar technologies to:

  • operate and secure our website,
  • support website functionality,
  • analyze performance and usage,
  • improve user experience,
  • and maintain or improve security.

For more information, please see our Cookie Policy.

Analytics, Communications, and Marketing

We may use analytics tools to understand how users interact with our website and improve performance and content. Where permitted by law or with your consent, we may send newsletters, event invitations, insights, or other business communications. You may unsubscribe at any time through the unsubscribe link or by contacting us directly.

We do not sell personal information.

Disclosure of Personal Information

We may disclose personal information to:

  • employees, contractors, and professional advisers who need it for legitimate business purposes
  • service providers who support our operations, such as hosting, analytics, email, CRM, scheduling, document management, IT, or security providers
  • business partners where relevant to a specific request, engagement, or solution
  • regulators, law enforcement, courts, or other authorities where required or permitted by law
  • a purchaser, successor, or assignee in connection with a merger, acquisition, financing, restructuring, or sale of all or part of our business, subject to appropriate safeguards

We require service providers that process personal information on our behalf to protect it appropriately and use it only for authorized purposes.

Cross-Border Processing

Personal information may be stored or processed in Canada or other jurisdictions where we or our service providers operate. When information is processed outside your jurisdiction, it may be subject to the laws of that foreign jurisdiction and may be accessible to courts, regulators, law enforcement, or national security authorities in accordance with those laws.

Where required, we take reasonable steps to ensure appropriate safeguards are in place.

Retention

We retain personal information only as long as necessary for the purposes for which it was collected, to satisfy legal, regulatory, contractual, professional, and operational requirements, and to resolve disputes or enforce agreements.

When personal information is no longer required, we will securely delete, destroy, anonymize, or de-identify it, where appropriate.

Safeguards

PIPEDA requires organizations to protect personal information with safeguards appropriate to its sensitivity.

We use administrative, technical, and physical safeguards appropriate to the sensitivity of the information, including:

  • access controls
  • authentication and identity management
  • encryption where appropriate
  • secure hosting and network protections
  • monitoring and logging
  • vendor management controls
  • secure operational and development practices

No system or method of transmission is completely secure, so we cannot guarantee absolute security.

Accuracy

We take reasonable steps to ensure personal information is as accurate, complete, and up to date as necessary for the purposes for which it is used. Please inform us of changes to your contact details or other relevant information.

Your Rights and Choices

Subject to applicable law, you may have the right to:

  • request access to personal information we hold about you
  • request correction of inaccurate or incomplete personal information
  • withdraw consent where processing is based on consent
  • request information about how your personal information has been used or disclosed
  • opt out of certain communications
  • make a complaint about our privacy practices

We may need to verify your identity before responding. We may decline requests where permitted or required by law.

Social Media and Third-Party Platforms

If you interact with our website or content through social media platforms, embedded services, or third-party tools, those providers may collect information in accordance with their own privacy notices and cookie practices. We are not responsible for the independent privacy practices of third parties.

Third-Party Websites

Our website may contain links to third-party websites or services. We are not responsible for the content, privacy practices, or terms of those third parties. We encourage you to review their policies before providing personal information.

Children’s Privacy

Our website and services are intended for business and professional audiences and are not directed to children. We do not knowingly collect personal information from children through our website.

Complaints

If you have concerns about our privacy practices, please contact us first using the contact details below. If you remain dissatisfied, you may have the right to contact the Office of the Privacy Commissioner of Canada or another applicable privacy regulator. The OPC specifically provides guidance and complaint pathways under PIPEDA.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in law, technology, our services, or our business operations. We will post the updated version on this page and revise the effective date above.

Contact Us

If you have questions, requests, or complaints regarding this Privacy Policy or our privacy practices, please contact us at:

Innovate Global Solutions
Unit – 2203, 242 Rideau Street, Ottawa, ON, K1N 0B7
Email: privacy@innovateglobal.ca