Privacy & Data

Last updated: 17 Oct 2025

This policy explains how ECHO AirDocs (“we/us”) collects, uses, shares, and protects personal information. We operate in Canada and handle data in accordance with PIPIDA and CASL rights where applicable.

1. Contact

         Email: erica@echoairdocs.ca

         Phone: 403-852-8918

2. What We Collect

  • Inquiry data: name email, phone, company, service interest, short messages.

  • Operational data: documents/records you provide as part of an engagement (may include personal information contained within files).

  • Technical data: pages viewed and cookie/analytics data.

  • Communications: emails and related correspondence.

We do not intentionally collect data of minors.

3. Why We Use It

  • To respond to inquiries, provide quotes, and deliver Services.

  • To secure our systems, manage chain-of-custody, and prevent abuse.

  • To improve our site and Services (analytics).

  • To comply with legal/regulatory obligations and enforce our terms.

  • Limited marketing or service announcements (you can opt out).

4. Legal (how processing is permitted)

  • Consent (forms and opt-in communications

  • Contract (to delivery Services you request)

  • Legitimate interests (security, analytics, quality improvement)

  • Legal obligation (e.g. taxes)

5. Cookies & Analytics

        We use necessary cookies and may use analytics tools (e.g.: Squarespace/Google Analytics). The cookie banner lets you manage preferences. Turning off analytics                  won’t affect essential site functionality.

6. Sharing & Transfers

        We share data with service providers (hosting, storage, email, analytics, shipping) under confidentiality and data-processing terms. Data may be processed in Canada                and other countries where our providers operate. We do not sell personal information.

7. Records We Digitize

       Client-supplied records are processed under your instructions and as per the agreed upon scope of work per the contract. We treat them as confidential and use                         encryption in transit/at rest where supported. Originals remain yours; you are responsible for retaining the governing paper records.

8. Retention

  • Inquiries: up to 24 months from last contact (unless you ask for earlier deletion, subject to legal holds).

  • Project files: per contract and regulatory requirements, then securely deleted or archived.

  • Backups/logs: per provider rotation cycles and internal daily/weekly/monthly backup cycle procedure.

9. Security

       We use reasonable administrative, technical, and physical safeguards including role-based access, reputable cloud storage, and secure delivery links. No method is                   100% secure; avoid transmitting sensitive data by unsecured email.

10. CASL (anti-spam)

       We send commercial electronic messages only with consent or as otherwise permitted by law. You can opt out via unsubscribe links or by emailing us.

11. Data Incidence Response

       If we become aware of a breach posing a real risk of significant harm, we will investigate, notify affected individuals as required, and take steps to mitigate.

12. Third-Party Links

       Our site may link to third-party websites. Their privacy practices are their own.

13. Changes

       We may update this policy. We will revise the “Last updated” date and, if changes are material, provide a more prominent notice.