Privacy Policy

The data controller for information processed through this website is Northbyte Review Media Inc. We publish informational articles and topic guides about how Canadians are adapting to changing digital environments, and we offer an optional email newsletter for readers who want updates.

Registered address: 401 Bay Street, Suite 1600, Toronto, ON M5H 2Y4, Canada. Phone: +1 (416) 947-9870. General email: [email protected].

Privacy contact (dedicated): [email protected]. If you send a privacy request, we use your message and contact details only to verify the request and respond.

We collect a limited set of personal data that is necessary to operate the website, respond to messages, understand aggregate usage, and run an optional newsletter. We do not request sensitive categories of data (such as health or financial account details) through our forms.

If we add a new form or feature that collects additional data, we will update this policy and describe the new fields and purposes before that change takes effect.

We collect data through the following methods. Each method is tied to a specific need: site delivery, security, analytics, or a reader-initiated request such as subscribing or contacting us.

• Web forms: when you submit an email address to receive newsletter updates, or when you contact us for support or editorial questions.
• Cookies and local storage: used to remember cookie consent choices and other preferences that improve usability. The cookie banner allows you to accept or reject optional cookies.
• Analytics tools: we may use Google Analytics 4 to measure traffic and engagement in aggregate. Analytics cookies are only set if you accept them through the cookie banner.
• Advertising pixels: we may use the Meta Pixel to understand content performance and measure aggregated conversions for campaigns. Marketing cookies are only set if you accept them through the cookie banner.
• Server logs: our hosting infrastructure records requests for security, troubleshooting, and performance monitoring. These logs typically include IP address, timestamps, requested pages, and device information.
• Newsletter signups: if you subscribe, we store your email address and subscription metadata (such as signup time and confirmation status) to deliver emails and comply with unsubscribe requirements.

We do not use pop-ups that block content, and we do not perform automatic redirects. Page content is the same for all users, including search engine crawlers.

Northbyte Review is based in Canada. If you are located in the European Economic Area or the United Kingdom, the General Data Protection Regulation (GDPR) or UK GDPR may apply to our processing. Where GDPR applies, we rely on the legal bases below.

You can withdraw consent at any time. Withdrawing consent does not affect the lawfulness of processing that occurred before the withdrawal.

We use personal data only for purposes that are consistent with running an informational publishing website and a reader-initiated newsletter. The purposes below explain what we do and what we do not do.

• Service delivery: delivering web pages, improving performance, and ensuring features work across devices and browsers.
• Customer support and communications: responding to messages, addressing accessibility issues, and answering questions about articles or subscriptions.
• Newsletter delivery (consent-based): sending the newsletter to subscribers, maintaining suppression lists for unsubscribes, and handling delivery issues.
• Analytics (consent-based where required): understanding which pages are useful, where readers drop off, and which topics are being searched. We rely on aggregated reporting, not invasive profiling.
• Marketing measurement (consent-based): if you accept marketing cookies, we may measure how campaigns perform in aggregate and whether visits result in a newsletter signup.
• Fraud and abuse prevention: protecting the site from automated scraping, malicious activity, and denial-of-service attempts.
• Legal compliance: responding to lawful requests and protecting our rights, users, and systems.

We do not sell personal information. We do not use your newsletter email address to send unrelated commercial offers, and we do not use sensitive personal data for targeting.

We keep personal data only for as long as necessary to fulfill the purpose for which it was collected, including security and legal requirements. Retention can vary depending on the interaction. The periods below are our standard targets.

If you request deletion, we will take reasonable steps to delete personal data associated with you, subject to any legal requirements to retain certain records.

We share personal data only when necessary to operate the site and provide the services you request. We do not sell personal information. When we use service providers, we expect them to process data on our instructions and with appropriate safeguards.

• Hosting and infrastructure providers: to store and deliver website content and logs.
• Email delivery provider (newsletter): to send newsletter emails and manage unsubscribe functionality.
• Analytics providers: such as Google Analytics 4, to measure aggregated website usage when you accept analytics cookies.
• Marketing measurement providers: such as Meta, if marketing cookies are accepted, to measure the effectiveness of campaigns and understand aggregated conversion events.
• Legal and security services: when needed to protect the site, investigate abuse, or comply with lawful requests.

If a third-party provider is involved in processing, we limit access to what is needed for their role and review configurations to reduce unnecessary data collection. Where possible, we use settings that reduce the amount of identifiable data stored in analytics systems.

We are based in Canada and may use service providers that process data in other countries. This means your personal data could be transferred to and processed in jurisdictions outside your province, territory, or country, including the United States or the European Economic Area, depending on the provider and routing.

Where GDPR applies and personal data is transferred from the EEA or UK to a country without an adequacy decision, we rely on appropriate safeguards such as the European Commission Standard Contractual Clauses (SCCs) and, where relevant, additional technical and organizational measures. We also assess providers and configurations to reduce transfer risks when possible.

International transfers can be necessary for reliable website hosting, content delivery, and email delivery. We do not transfer data internationally for hidden purposes or undisclosed profiling.

Depending on where you live, you may have privacy rights under laws such as GDPR, UK GDPR, and Canadian privacy laws. The rights below describe what you can request from us and how to do it. We may need to verify your identity before acting on a request.

• Right of access: request a copy of the personal data we hold about you and information about how it is used.
• Right to rectification: ask us to correct inaccurate or incomplete personal data.
• Right to erasure: ask us to delete personal data when there is no valid reason to keep it.
• Right to restriction: ask us to limit processing in certain situations, such as when you contest accuracy.
• Right to data portability: request a structured, commonly used format of certain data you provided to us, where applicable.
• Right to object: object to processing based on legitimate interests, including certain analytics or security-related processing where applicable.
• Right to withdraw consent: if processing is based on consent (for example, newsletter or optional cookies), you can withdraw it at any time.

How to exercise rights: email [email protected] with the subject line “Privacy Request”. Include the email address you used with us (for example, your newsletter email) and the request type (access, deletion, correction, or objection). If you request deletion of your newsletter subscription, you can also use the unsubscribe link included in every newsletter email.

Complaints: If you are located in the EEA, you have the right to lodge a complaint with your local supervisory authority. If you are located in Canada, you may contact the Office of the Privacy Commissioner of Canada. For readers in Ontario, complaints about certain private-sector organizations may be directed to the Information and Privacy Commissioner of Ontario where applicable.

Cookies are small text files stored on your device. We also use similar technologies such as local storage. Our website uses a cookie consent banner that allows you to accept or reject optional cookies. Strictly necessary items are used to keep the site working and to remember your preferences.

How to manage cookies: You can accept or reject optional cookies using the banner. You can also control cookies through your browser settings (for example, blocking third-party cookies or deleting existing cookies). If you delete site storage, the cookie banner will reappear so you can choose again.

Northbyte Review is not directed to children under 16, and we do not knowingly collect personal information from children under 16. Our newsletter subscription is intended for readers who can provide valid consent to receive email communications.

If you believe a child under 16 has provided us with personal data, please contact [email protected]. We will take steps to delete the information and, where appropriate, remove the address from our mailing list.

We may update this Privacy Policy to reflect changes in our practices, technologies, or legal requirements. When we make updates, we will revise the “Last Updated” date at the top of this page.

If the changes are material, we will provide an additional notice, such as a prominent banner on the website or an email notice to newsletter subscribers (when the change relates to newsletter processing). Continued use of the website after an update means you have read the updated policy.

For questions about this policy or to exercise your privacy rights, contact our privacy team using the dedicated email below. Northbyte Review does not appoint a formal Data Protection Officer for all processing, but we maintain a dedicated privacy contact responsible for handling requests.

If you are contacting us about newsletter data, please include the email address used to subscribe. If you want to stop receiving emails, use the unsubscribe link in the newsletter or email us at the address above. We will process unsubscribe requests promptly and keep a minimal suppression record to ensure you are not emailed again.