1. Information We Collect
1.1 Personal Information You Provide
We collect information that you voluntarily provide when you interact with our website or engage our services. This includes the personal data you submit through contact forms, consultation requests, service agreements, billing documentation, and email or telephone communications. The types of information may include your full name, business title, email address, telephone number, company name and mailing address, project details, payment information, and any other information you choose to share with us in the course of our professional relationship.
When you request a quote or submit a project inquiry, we may ask for additional technical details about your organization's infrastructure, systems architecture, and technology requirements to provide an accurate assessment and proposal. This information is stored securely and used exclusively for the purpose of evaluating and delivering our services.
1.2 Information Collected Automatically
When you visit our website, certain technical information is automatically collected and recorded in our server logs. This data typically includes your Internet Protocol (IP) address, the type and version of browser you are using, your operating system, the pages you view on our site, the date and time of each visit, the website from which you arrived (referring URL), and similar diagnostic data. We use this information for website analytics, performance monitoring, security analysis, and to improve the overall user experience of our site.
Our web servers may also collect information about your device, including screen resolution, language preferences, and installed plugins, to help us deliver content optimized for your browsing environment.
1.3 Cookies and Similar Technologies
Our website uses cookies, web beacons, pixel tags, and similar tracking technologies to enhance your browsing experience, analyze site traffic patterns, understand user behavior, and support our marketing efforts. Cookies are small text files stored on your device by your web browser. We use both session cookies, which expire when you close your browser, and persistent cookies, which remain on your device until they expire or are deleted.
You have control over cookies through your browser settings. Most browsers allow you to refuse cookies, delete existing cookies, or alert you when a cookie is being placed. Please note that disabling cookies may affect the functionality and performance of our website. For more detailed information about cookies and how to manage them, please visit aboutcookies.org.
2. How We Use Your Information
GDS Pacific uses the information we collect for the following legitimate business purposes:
- To respond to your inquiries, comments, questions, and service requests in a timely and thorough manner
- To provide, maintain, deliver, and improve our computer systems design, integration, and consulting services
- To process transactions, prepare proposals and contracts, send invoices, and manage client accounts and billing
- To communicate important service updates, security advisories, policy changes, and technical notices
- To personalize and enhance your experience on our website by presenting relevant content
- To comply with applicable legal and regulatory obligations, including record-keeping requirements
- To analyze website usage trends and measure the effectiveness of our marketing communications
- To detect, prevent, and address technical issues, security incidents, fraud, and abuse
- To enforce our Terms of Service and other contractual agreements
3. Legal Basis for Processing
We process your personal information based on one or more of the following legal grounds under applicable data protection laws:
- Consent: Where you have given clear consent for us to process your personal data for a specific purpose, such as receiving marketing communications. You have the right to withdraw consent at any time.
- Contractual Necessity: Where processing is necessary for the performance of a contract with you, such as delivering consulting services or processing payments.
- Legal Obligation: Where processing is necessary for compliance with a legal or regulatory obligation to which we are subject.
- Legitimate Interests: Where processing is necessary for our legitimate business interests, such as improving our services, maintaining security, and conducting business operations, provided these interests do not override your rights and freedoms.
4. Information Sharing and Disclosure
GDS Pacific respects the confidentiality of your personal information and does not sell, rent, or trade your data to third parties for their marketing purposes. We may share your information in the following limited circumstances:
Service Providers: We may share information with trusted third-party service providers who perform services on our behalf, such as web hosting, email delivery, payment processing, customer relationship management, analytics, and professional advisory services. These providers are contractually bound to protect your data and may only use it for the specific services they provide to us.
Legal Requirements: We may disclose information when required to do so by law, court order, subpoena, or governmental regulation, or when we believe in good faith that disclosure is necessary to protect our rights, property, or safety, or the rights, property, or safety of others.
Business Transfers: In the event of a merger, acquisition, reorganization, or sale of all or substantially all of our assets, your personal information may be transferred as part of that transaction. We will notify you via email and a prominent notice on our website of any change in ownership or uses of your personal information.
5. Data Retention
We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, and reporting requirements. The retention period varies depending on the type of data and the purpose of processing. Generally, client records and related communications are retained for the duration of our business relationship plus a period of up to seven years following the last engagement to comply with applicable legal and regulatory obligations.
When personal information is no longer required, we securely delete or anonymize it using industry-standard data destruction methods. We regularly review our data retention practices to ensure compliance with applicable laws and our internal policies.
6. Data Security
We implement a comprehensive set of technical, administrative, and physical security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:
- Encryption of data in transit using TLS/SSL protocols and encryption of sensitive data at rest
- Strict access controls and authentication requirements for our systems and databases
- Regular security assessments, vulnerability scans, and penetration testing
- Employee training on data protection, privacy, and information security practices
- Incident response and breach notification procedures
- Secure data centers with physical access controls and environmental safeguards
While we strive to protect your personal information, no method of electronic storage or transmission over the Internet is completely secure. We cannot guarantee absolute security, but we are committed to taking all reasonable steps to safeguard your data.
7. Your Rights and Choices
Depending on your jurisdiction of residence, you may have the following rights regarding your personal information:
- Right of Access: You may request confirmation of whether we process your personal data and, if so, request a copy of that data along with information about how it is processed.
- Right to Rectification: You may request correction of any inaccurate or incomplete personal data we hold about you.
- Right to Erasure: You may request deletion of your personal data where it is no longer necessary for the purposes for which it was collected, or where you withdraw consent and no other legal basis for processing exists.
- Right to Restrict Processing: You may request restriction of processing in certain circumstances, such as when you contest the accuracy of the data or object to processing.
- Right to Data Portability: You may request receipt of your personal data in a structured, commonly used, machine-readable format, and have the right to transmit that data to another controller where technically feasible.
- Right to Object: You may object to processing based on legitimate interests or for direct marketing purposes.
- Right to Withdraw Consent: Where processing is based on consent, you have the right to withdraw that consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.
To exercise any of these rights, please contact us at help@gdspacific.lat. We will respond to your request within thirty days as required by applicable law. We may need to verify your identity before processing your request.
8. International Data Transfers
As a consulting firm operating across North America, your personal information may be processed in Canada, the United States, or other countries where our service providers are located. We ensure that any cross-border transfer of personal data is subject to appropriate safeguards consistent with applicable data protection laws. These safeguards may include standard contractual clauses approved by relevant regulatory authorities, binding corporate rules, or equivalent data protection mechanisms that provide an adequate level of protection.
9. Children Privacy
Our website and services are directed to businesses and professionals and are not intended for use by individuals under the age of 18. We do not knowingly collect, use, or disclose personal information from minors. If we become aware that a minor has provided us with personal data without parental consent, we will take immediate steps to delete that information from our systems. Parents or guardians who believe their child has provided us with personal information should contact us at help@gdspacific.lat so we can take appropriate action.
10. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our business practices, legal and regulatory requirements, industry standards, or technology. When we make material changes, we will revise the Last Updated date at the top of this page and, where appropriate, provide additional notice via email or a prominent notice on our website. We encourage you to review this policy periodically to stay informed about how we are protecting your information. Your continued use of our website after any changes takes effect constitutes your acceptance of the revised policy.
11. Contact Information
If you have any questions, concerns, complaints, or requests regarding this Privacy Policy or our data handling practices, please do not hesitate to contact us:
GDS Pacific Consulting Ltd.
218-2020 McNicoll Ave
Scarborough, Ontario M1V 0B5
Canada
Email: help@gdspacific.lat
Phone: +1 (262) 382-4737
We are committed to resolving any privacy concerns promptly, transparently, and fairly. If you are unsatisfied with our response to a privacy complaint, you may have the right to lodge a complaint with the Office of the Privacy Commissioner of Canada or your local data protection authority. We will cooperate fully with any such authority in the resolution of your complaint.