Challenge Surveillance Solutions ("we," "us," "our") respects your privacy. This policy explains what personal information we collect through this website, why we collect it, how we use and protect it, and the rights you have in relation to it.
This policy applies to this website only (the public marketing site). Our secure operational platform, accessed via the Login button, is a separate system governed by a separate privacy policy and terms of use, which are provided to customers during onboarding.
We handle personal information in accordance with Canada's Personal Information Protection and Electronic Documents Act (PIPEDA) and applicable provincial privacy legislation.
1. Who We Are
Challenge Surveillance Solutions is a Canadian company providing training and coordination services for public-safety organizations.
Questions or requests about this policy can be directed to our Privacy Officer, Angela McGonnell:
- Email: info@challengesurveillance.com
- Mail: 98 Williams Avenue, Dartmouth, NS B3B 0A1, Canada
- Or via our contact form, category "Admin / Other"
2. Information We Collect
2.1 Information you provide through the contact form
When you submit our contact form, we collect:
- Your name
- Your email address
- The organization you represent
- The category of your inquiry (general, sales, support, or admin)
- The subject and content of your message
2.2 Information collected automatically
When you visit this website, our servers automatically record:
- Your IP address
- Your browser type and operating system
- The pages you visit and the time of your visit
- The referring web page, if any
This information is logged for security, error diagnostics, and to enforce rate limits that protect the site from abuse. IP addresses are retained for up to 30 days, then deleted.
2.3 Cookies and similar technologies
This website does not use tracking cookies, advertising pixels, or analytics cookies. We use a single security cookie (an anti-forgery token) that is required to submit the contact form; it contains no personal information and is deleted when you close your browser session.
3. How We Use Your Information
We use the personal information we collect only for the purposes described below:
- To respond to your inquiries. Contact-form submissions are routed to the appropriate mailbox based on the category you select, where a member of our team reviews and responds.
- To protect the website and our services. Server logs are used to detect and respond to abuse, including automated attacks, and to diagnose technical problems.
- To comply with legal obligations or respond to lawful requests from government authorities.
We do not use your information for advertising, marketing unrelated to your inquiry, or profiling. We do not sell personal information.
4. Who We Share Information With
We do not sell, rent, or trade personal information. We share information only with a limited set of service providers required to operate the website, and only for the purposes described in this policy.
4.1 Service providers
-
Email delivery. Our contact-form emails are transmitted through an SMTP server operated by Liberated Networks (
mail.liberatednetworks.com) on our behalf. - Bot protection (Cloudflare Turnstile). To prevent automated abuse of the contact form, we use Cloudflare Turnstile, which processes limited technical signals (including your IP address) to verify you are a human visitor. Cloudflare, Inc. is based in the United States. More information: Cloudflare Privacy Policy.
- Web fonts (Google Fonts). Typography on this site is served from Google Fonts. When a page loads, your browser requests the font files directly from Google, which receives your IP address as part of that request. Google, Inc. is based in the United States. More information: Google Privacy Policy.
4.2 Cross-border data transfers
Some of the service providers listed above are located in the United States. As a result, limited information (such as your IP address, or information you include in a contact-form message) may be processed outside of Canada and may be accessible to foreign authorities under the laws of the country where the provider operates.
We do not transfer personal information outside of Canada except through these narrowly scoped service providers.
4.3 Legal disclosures
We may disclose personal information if required to do so by law, court order, or lawful request from a government or law-enforcement authority, or to establish, exercise, or defend legal claims.
5. How Long We Keep Information
- Contact-form messages are retained in the recipient mailbox for as long as needed to respond to and follow up on your inquiry, and typically no longer than 24 months, after which they are deleted.
- Server logs containing IP addresses are retained for up to 30 days, then automatically deleted.
If you request deletion of your personal information (see Section 6), we will delete it sooner, subject to any legal or contractual obligation that requires us to retain it.
6. Your Rights
Under PIPEDA and applicable provincial privacy laws, you have the right to:
- Access the personal information we hold about you
- Correct information that is inaccurate or incomplete
- Withdraw your consent to our processing of your personal information, subject to legal or contractual restrictions (note: withdrawing consent may prevent us from responding to your inquiry)
- Make a complaint to the Office of the Privacy Commissioner of Canada (priv.gc.ca) or the equivalent provincial authority if you believe we have mishandled your personal information
To exercise any of these rights, contact us at the address in Section 1. We will respond within 30 days.
7. How We Protect Information
We implement reasonable administrative, technical, and physical safeguards to protect personal information against loss, theft, unauthorized access, disclosure, copying, use, or modification. These include:
- Transport-layer encryption (HTTPS) for all website traffic
- Encrypted transport for outbound email (STARTTLS)
- Server-side rate limiting and bot protection on the contact form
- Restricted access to contact-form mailboxes on a need-to-know basis
No method of transmission or storage is perfectly secure. If we become aware of a breach that poses a real risk of significant harm to affected individuals, we will notify them and the Office of the Privacy Commissioner of Canada as required by PIPEDA's breach-notification rules.
8. Children's Privacy
This website is intended for professionals and organizations, not for children. We do not knowingly collect personal information from individuals under the age of 18.
9. Changes to This Policy
We may update this policy from time to time to reflect changes in our practices or legal obligations. When we do, we will revise the "Last updated" date at the top of this page. Material changes will be highlighted on our home page or via a notice for a reasonable period.
10. The Secure Platform Is Separate
If you access our secure operational platform by logging in, your use of that platform is governed by a separate privacy policy and terms of use provided to you during onboarding. That platform has its own data-handling practices appropriate to the sensitive operational information it processes.