INFINITY JUST A CLICK AWAY...

(438) 544-1163

INFINITY JUST A CLICK AWAY...

Privacy policy - NuaWeb
RGPD compliance and Law 25

Privacy Policy

NuaWeb is committed to protecting your personal information in accordance with the laws of Quebec and Canada.

Last update: September 21, 2025

NuaWeb (hereinafter "we", "us", "our" or "the Company") respects your privacy and is committed to protecting your personal information. This Privacy Policy describes how we collect, use, disclose and protect your information in accordance with Quebec's Act respecting the protection of personal information in the private sector (Bill 25), the Personal Information Protection and Electronic Documents Act (PIPEDA) and the General Data Protection Regulation (GDPR).

Important: By using our services, you consent to the practices described in this policy. If you do not accept these terms, please do not use our services.

Definitions

Personal information

Any information concerning a natural person that enables that person to be identified directly or indirectly, in particular :

  • Last name, first name, e-mail address
  • Telephone number, postal address
  • Browsing and usage data
  • IP address, device identifiers
  • Company and sector information

Services

Our services include the development of artificial intelligence solutions, web applications, management systems, e-commerce platforms and technology consulting services.

Collection of Personal Information

Information you provide directly to us

  • Contact forms: name, e-mail, telephone, message
  • Request a quote: information about your project and company
  • Newsletter: e-mail address and preferences
  • Customer support: communications and support history
  • Account creation: login and user profile

Information collected automatically

  • Browsing data: pages visited, duration, actions
  • Technical information: IP address, browser, operating system
  • Cookies and similar technologies: preferences and browsing behavior
  • Performance analysis: loading speed, errors

Information from third parties

  • Social networks (with your consent)
  • Legitimate business partners
  • Publicly available sources

Legal basis: Collection is based on your explicit consent, contractual performance, our legitimate interests or compliance with legal obligations.

Use of Information

We use your personal information for the following purposes:

Main services

  • Providing our artificial intelligence and development services
  • Handling your requests and communications
  • Manage your account and projects
  • Technical and customer support

Enhancement and customization

  • Analyze usage to improve our services
  • Personalize your user experience
  • Develop new functionalities
  • Optimizing the performance of our platforms

Communication and marketing

  • Inform you of our new services (with consent)
  • Send newsletters and relevant communications
  • Conduct satisfaction surveys
  • Organize events and webinars

Legal compliance

  • Meeting our legal and regulatory obligations
  • Protecting our rights and those of our customers
  • Prevent fraud and illegal activities
  • Respond to requests from the relevant authorities

Sharing and Disclosure

We never sell your personal information. We may share it only in the following circumstances:

Service providers

  • Web hosting and cloud services (Canada/EU only)
  • Secure payment services
  • Analysis and marketing tools (anonymized)
  • Technical support and maintenance

Legal obligations

  • Court orders or government requests
  • Protecting our legal rights
  • Preventing illegal activities
  • Public safety and personal protection

Company transfers

  • Merger, acquisition or sale of assets
  • Corporate restructuring
  • Bankruptcy proceedings

International transfers: All our service providers are located in Canada or the European Union. No transfers to countries without adequate protection.

Data retention

We store your personal information according to the following principles:

Shelf life

  • Contact data: 3 years after last contact
  • Contractual data: 7 years after end of contract
  • Browsing data: 13 months maximum
  • Marketing data: until consent is withdrawn
  • Accounting data: 6 years under Quebec law

Conservation criteria

  • Purpose for which the data was collected
  • Legal and regulatory obligations
  • Limitation of liability and legal protection
  • Legitimate corporate interests

Secure deletion

Once the retention periods have expired, your data is securely and irreversibly deleted, unless a longer retention period is required by law.

Your rights

In accordance with Law 25 and the RGPD, you have the following rights:

Access and transparency rights

  • Right of access: obtain a copy of your personal data
  • Right to information: find out how your data is used
  • Right to portability: receive your data in a structured format

Control rights

  • Right of rectification: correct inaccurate data
  • Right to erasure: request the deletion of your data
  • Right to restrict processing
  • Right to object: oppose processing

Specific rights

  • Withdrawal of consent: at any time and without consequence
  • Unsubscribe from marketing communications
  • Claim: to the Commission d'accès à l'information du Québec

How to exercise your rights: Contact us at privacy@nuaweb.com or by phone at (438) 544-1163. We will respond within 30 days.

Safety measures

We implement appropriate technical and organizational security measures:

Technical safety

  • Encryption: AES-256 for stored data, TLS 1.3 in transit
  • Authentication: multi-factor and strong passwords
  • Controlled access: principle of least privilege
  • Surveillance: 24/7 monitoring and intrusion detection
  • Backups: encrypted and geographically distributed

Organizational security

  • Training: raising staff awareness on a regular basis
  • Policy: strict internal procedures
  • Audits: periodic safety assessments
  • Incident response: violation response plan

Certifications and compliance

  • ISO 27001-certified hosting
  • SOC 2 Type II compliance
  • Compliance with OWASP standards
  • Regular vulnerability assessments

Breach notification: In the event of a data breach likely to present a risk, we will inform you within 72 hours in accordance with the law.

Cookies and Similar Technologies

Types of cookies used

  • Essential cookies: site operation (consent not required)
  • Performance cookies: anonymized analyses (with consent)
  • Functionality cookies: user preferences (with consent)
  • Marketing cookies: targeted advertising (with explicit consent)

Shelf life

  • Session cookies: deleted when the browser is closed
  • Persistent cookies: maximum 13 months
  • Marketing cookies: maximum 6 months

Cookie management

You can manage your preferences via our consent banner or your browser settings. Refusal of non-essential cookies will not affect the basic operation of the site.

Protection of minors

Our services are intended for businesses and professionals. We do not knowingly collect personal information from persons under the age of 16 without appropriate parental consent. If we discover that a minor has provided us with information without consent, we will delete that data immediately.

Changes to the Policy

We may modify this Privacy Policy to reflect changes in our practices, services or legal obligations. Important changes will be notified to you by :

  • E-mail to your registered address
  • Notification on our website
  • Update "last modified" date

Your continued use of our services following notification constitutes your acceptance of the changes.

Questions about this Policy?

Our Data Protection Officer will be happy to answer your questions and deal with your requests.

📧 privacy@nuaweb.com
📞 (438) 544-1163
📍 Montreal, Quebec

2025 NuaWeb. All rights reserved. This policy complies with Quebec's Bill 25, PIPEDA and the GDPR.

299$ 0$