Privacy policy

Who We Are

Field Effect is a cybersecurity company based in Canada (“Field Effect”, “we”, “our”, or “us”). We help businesses protect their data, systems, and networks from cyber threats. When you use our website, products, or services, we may collect and use some of your personal information. This policy explains how we do that, and how we keep your information safe.

We believe in being clear and honest about how we handle your data. If you ever have questions, you can reach out to us directly. We’re here to help.

Field Effect complies with applicable privacy laws in the regions where we operate, including the General Data Protection Regulation (GDPR) in the EU/UK, the California Consumer Privacy Act (CCPA/CPRA) in the United States, and the Personal Information Protection and Electronic Documents Act (PIPEDA) in Canada.

What Information We Collect

We collect personal information to help us provide and improve our services. The types of information we may collect may include:

• Contact details like your name, email address, phone number, and company name.

• Account information if you create an account or use our products, such as login credentials and usage data.

• Payment details when you purchase something from us, including billing information.

• Technical data like your IP address, browser type, device information, and how you interact with our website.

• Support and communication records when you contact us for help or send us feedback.

Third-Party Collection

If permitted by law, we may collect information about you from third parties, such as business or marketing partners, social media platforms, event organizers, commercial lead providers, and publicly available sources.

We may also receive personal information from our customers when they use our products and services. This can include data stored in third-party environments, such as cloud platforms used by our customers.

How We Use Your Information

We use the personal information we collect to:

• Provide and support our products and services

• Respond to your questions or requests

• Improve how our website and services work

• Keep our systems secure and reliable

• Meet legal, regulatory, or contractual obligations

• Send marketing and promotional communications (which you may opt out of)

We only use your information for the reasons we collected it. If we ever need to use it for something else, we’ll let you know and explain why.

Sharing Your Information

We sometimes share your personal information with trusted third parties who help us deliver our services. These may include:

• Cloud service providers

• Payment processors

• Customer support platforms

• Legal or regulatory authorities (if required by law)

For clarity, this sharing does not include mobile opt-in information, SMS consent data, or phone numbers collected for SMS communications, which are governed by the SMS Privacy Notice below and are never shared with third parties.

We only share what’s necessary, and we make sure these partners follow strong privacy and security standards. We don’t sell your personal information to anyone.

SMS Privacy Notice

Notwithstanding any other provision in this Privacy Policy, Field Effect does not share, sell, rent, lease, or disclose mobile opt-in information, SMS consent data, or phone numbers collected for SMS communications with any third parties for marketing, promotional, advertising, or non-operational purposes.

Mobile opt-in information is used solely to support direct, one-to-one business communications initiated by Field Effect employees and to comply with applicable legal and regulatory requirements.

International Transfers

Sometimes, we may store or process your personal information outside of your home country. For example, we may use cloud services or support tools based in other regions.

When we transfer data internationally, we take steps to protect it. This includes using strong encryption during transfer and storage and applying safeguards like data processing agreements and standard contractual clauses where appropriate.

We aim to follow the privacy laws that apply to your region and take reasonable measures to keep your information secure and handled properly.

Your Rights

Depending on where you live, you may have certain rights over your personal information. These can include:

• Access to your personal information. 

• Correction of inaccurate or outdated information. 

• Deletion of your personal information, unless we are required to retain it by law. 

• Withdrawal of consent at any time, where consent is the basis for processing.

• Objection to certain uses of your information. 

• Receipt of your information in a portable format. 

• Lodging a complaint with a supervisory authority or your local privacy regulator. 

• Requesting that we do not sell or share your personal information, and protection from discrimination for exercising your rights.

If you want to use any of these rights, just contact us at privacy@fieldeffect.com. We’ll respond as quickly as we can, typically within 30 days, or as required by law.

Cookies and Tracking

Our website uses cookies and similar tools to help it work better and to understand how people use it. Cookies are small files stored on your device that remember things like your preferences or login status.

We use cookies to:

• Keep the website running smoothly

• Remember your settings

• See how people use our website so we can improve it

You can choose to turn off cookies in your browser settings. Some parts of the website may not work as well without them.

We don’t use cookies to track you across other websites, and we don’t sell this data to anyone.

Data Security

We take data security seriously. We use strong encryption to protect your personal information during transfer and storage. Our systems are designed to prevent unauthorized access, and we regularly review and update our security practices.

Only authorized team members can access personal data, and only when it's necessary to do their jobs. We also work with trusted service providers who meet high security standards.

Our systems and processes are regularly reviewed by independent auditors as part of our ISO 27001 and SOC 2 audit programs.

We are committed to maintaining the security of your information and put extensive measures in place to do so.

How Long We Keep Your Data

We keep your personal information only as long as required. This depends on why we collected it, what services you’re using, and what the law requires.

When we no longer need your information, we securely delete or anonymize it. If legal rules require us to keep it longer, we follow those rules and continue to protect your data during that time.

If you request deletion of your personal information, we will process your request within the timeframe required by applicable law.

What Happens If There’s a Data Breach

If we discover that your personal information has been accessed or disclosed without authorization, we will act quickly to investigate and contain the issue. We will notify affected individuals as soon as possible, following the requirements of applicable privacy laws.

Our notification will include:

• What happened and what information was involved

• What steps we are taking to address the breach

• What you can do to protect yourself

• How to contact us for more information

We take data protection seriously and will always keep you informed if your information is at risk.

Updating this Policy

This policy has been designed to rarely require updates. However, Field Effect may revise it from time to time to reflect changes in our practices or legal requirements. When we do, we’ll update the date below and post the revised version here.

Contact Us

If you have questions about this privacy policy or how we handle your personal information, you can contact us directly.

Email: privacy@fieldeffect.com

Mailing Address:
Field Effect Software Inc.
825 Exhibition Way #207
Ottawa, Ontario, Canada
K1S 5J3

We’re here to help and will do our best to respond quickly.

Version 5.0: February 24, 2026