Effective Date: October 9, 2025

1. Introduction and Scope

This Privacy Policy explains how CritCom (referred to as "we," "us," or "the Service") collects, uses, and protects the personal information of our website visitors and customers.

Our Focus: This policy specifically covers the data we collect to sell, support, and market our SaaS distribution and Bot services to you. It does NOT cover any data that our end-customers input into the SaaS accounts or Bots that they obtain via us.

2. Information We Collect

We collect basic information necessary to communicate with you and conduct our business. This may include:

• Contact Information: Your name, company name, job title, email address, phone number, and physical address.
• Communication Data: Details from our emails, calls, contact forms, and support requests.
• Marketing Data: Your preferences for receiving marketing emails and data about your interaction with our newsletters.
• Technical Data: Your IP address and information about your interaction with our website (collected via cookies and analytics).

How We Collect It: We collect this information directly from you (via web forms, email, phone, contracts) or from publicly available sources relevant to your organization.

3. How We Use Your Information

We use your data for the following clear purposes, based on our legitimate business interest or your consent:

• Service Delivery: Processing your orders.
• Communication: Responding to your questions, sending service updates, and providing support.
• Marketing: Sending you newsletters or promotions (if you have opted in).
• Improvement: Analyzing website traffic to improve our services and marketing efforts.
• Legal Compliance: Fulfilling any legal or regulatory obligations.

4. How We Share Your Information

We do not sell your personal data. We may need to share part of it only with third parties that are essential to providing and supporting the Services you subscribe through us, and only under arrangements intended to safeguard your privacy and data security.

Third-Party Platforms and Integrations:

Our Services may connect with or use third-party platforms such as WhatsApp, Meta, or other technology providers. These platforms have their own privacy policies and data-handling practices, which are independent of ours. We do not control or take responsibility for how these third parties collect, use, or protect your information. We recommend reviewing their respective privacy policies for details on how your data is managed when using their services.

Service Providers:

We may share limited data with trusted service providers who help us operate and improve our Services, including:

• SaaS platform vendorsSecapp (to provision licenses and maintain service functionality)
• Payment processors (to handle billing)
• CRM and email systems (to manage customer communication)
• Hosting and analytics providers (to run and optimize our website and applications)

Legal Requirements:

We may disclose information if required to do so by law, regulation, or a valid government request.

5. Data Security and Retention

We use reasonable technical and organizational safeguards to protect your personal data from loss, misuse, or unauthorized access.

We only retain your personal data for as long as necessary to maintain our customer relationship or as required by law. When the data is no longer needed, we securely delete or anonymize it.

6. Your Rights

You have certain rights over your personal data. You can exercise these rights by contacting us using the details below:

• Access: Request a copy of the personal data we hold about you in our database, if any.
• Correction/Deletion: Request that we correct any incomplete or inaccurate data, or request that we delete your data when it is no longer needed.
• Object/Restrict: Object to how we process your data or ask us to restrict its use, such as opting out of marketing communications.
• Withdraw Consent: Withdraw your consent at any time for any processing based on consent (like newsletters).

We will respond to all valid requests promptly, usually within one month.

7. Contact Information

If you have any questions about this policy or wish to exercise your rights, please contact us:

Attention: Privacy Officer

Email: contact@critcom.ca