Privacy Policy

Last Updated: October 11, 2024

At ECLQ (“we”, “our” or “the company”), we are committed to protecting your privacy and handling your personal data responsibly and transparently. This Privacy Policy describes how we collect, use, store, and protect your information when you use our B2B database and lead generation services.

1. Information We Collect

1.1 Information You Provide

  • Contact data: first name, last name, email, phone, company, job title
  • Account information: login credentials, communication preferences
  • Business information: industry, company size, prospecting needs, segmentation criteria
  • Payment information: billing data (processed by secure third parties)
  • Communications: content of inquiries, support requests, feedback

1.2 Automatically Collected Information

  • Technical data: IP address, browser type, operating system, internet service provider
  • Usage data: pages visited, browsing time, clicks, site interactions
  • Cookies and similar technologies: we use cookies to improve user experience

1.3 Third-Party Information

  • Public data from legitimate sources for B2B database construction
  • Information from CRM integrations (Salesforce, HubSpot, Pipedrive) when you authorize the connection

2. How We Use Your Information

We use your personal data for the following purposes:

2.1 Service Delivery

  • Process and deliver segmented databases according to your criteria
  • Perform data verification and enrichment
  • Integrate data with your CRM
  • Provide technical support and customer service

2.2 Communication

  • Respond to inquiries and requests
  • Send order confirmations and service updates
  • Share newsletters, success stories, and educational content (with your consent)
  • Notify changes to our services or policies

2.3 Improvement and Analysis

  • Analyze website usage to improve user experience
  • Conduct market research and trend analysis
  • Develop new services and features

2.4 Legal Compliance

  • Comply with legal and regulatory obligations (GDPR, CASL, PIPEDA)
  • Protect our legal rights and prevent fraud
  • Respond to requests from competent authorities

3. Legal Basis for Processing

We process your personal data under the following legal bases:

  • Consent: when you agree to receive marketing communications
  • Contract performance: to provide the services you request
  • Legitimate interest: to improve our services and protect our business
  • Legal obligation: to comply with applicable laws and regulations

4. Sharing Information with Third Parties

We do not sell your personal data. We share information only in the following circumstances:

4.1 Service Providers

  • Hosting and cloud storage providers
  • Payment processors (Stripe, PayPal)
  • Email marketing platforms (with your consent)
  • Web analytics tools (Google Analytics)

4.2 Authorized Integrations

  • CRMs (Salesforce, HubSpot, Pipedrive) when you authorize the integration

4.3 Legal Requirements

  • When required by law or by competent authorities
  • To protect our rights, property, or safety

4.4 Corporate Transfers

  • In case of merger, acquisition, or asset sale (with prior notification)

5. Data Security

We implement technical and organizational security measures to protect your data:

  • SSL/TLS encryption for data transmission
  • Secure storage on protected servers
  • Restricted access to personal data (authorized personnel only)
  • Regular security audits
  • Strong password policies
  • Continuous threat monitoring

Note: No system is 100% secure. We make our best effort to protect your data, but we cannot guarantee absolute security.

6. Data Retention

We retain your personal data for the time necessary to:

  • Active customer data: during the business relationship + 7 years (tax requirements)
  • Prospect data: up to 2 years from last contact (or until you withdraw consent)
  • Marketing data: until you withdraw consent
  • Technical data: up to 12 months

After these periods, we securely delete or anonymize your data.

7. Your Rights

Depending on your location, you have the following rights:

7.1 Rights under GDPR (European Union)

  • Access: request a copy of your personal data
  • Rectification: correct inaccurate or incomplete data
  • Erasure: request deletion of your data (“right to be forgotten”)
  • Restriction: limit the processing of your data
  • Portability: receive your data in structured format
  • Objection: object to the processing of your data
  • Withdraw consent: at any time

7.2 Rights under CASL (Canada)

  • Opt-out: unsubscribe from commercial communications at any time
  • Express consent: to receive commercial electronic messages
  • Clear identification: all commercial messages clearly identify the sender
  • Unsubscribe mechanism: easy and immediate opt-out in every message

7.3 Rights under PIPEDA (Canada)

  • Access: know what personal data we have about you
  • Correction: request correction of inaccurate data
  • Withdrawal of consent: at any time
  • Challenge compliance: question our compliance with PIPEDA principles

7.4 How to Exercise Your Rights

To exercise any of these rights, contact us at:

  • Email: privacy@eclq.lat
  • Subject: “Privacy Request – [Your Right]”

We will respond to your request within 30 days.

8. Cookies and Tracking Technologies

8.1 Types of Cookies We Use

  • Essential cookies: necessary for site functionality
  • Performance cookies: to analyze site usage (Google Analytics)
  • Functionality cookies: to remember your preferences
  • Marketing cookies: to personalize ads (with your consent)

8.2 Cookie Management

You can control cookies through:

  • Your browser settings
  • Our cookie consent banner
  • Third-party opt-out tools

Note: Disabling cookies may affect site functionality.

9. International Transfers

Your data may be transferred and processed in countries outside your jurisdiction, including Canada and Latin America. When we transfer data internationally:

  • We use EU-approved standard contractual clauses
  • We verify that providers comply with adequate protection standards
  • We implement additional security measures when necessary

10. Children’s Privacy

Our services are directed at B2B businesses and professionals. We do not intentionally collect information from individuals under 18 years of age. If we discover we have collected data from a minor, we will delete it immediately.

11. Links to Third-Party Sites

Our website may contain links to third-party sites. We are not responsible for the privacy practices of these sites. We recommend reading their privacy policies.

12. Changes to This Policy

We may update this Privacy Policy periodically. Significant changes will be notified through:

  • Prominent notice on our website
  • Email to active customers
  • Update of the “Last Updated” date at the beginning of this document

We recommend reviewing this policy regularly.

13. Contact

For questions, concerns, or requests related to this Privacy Policy:

ECLQ – Data Privacy Officer
Email: privacy@eclq.lat
Website: https://eclq.lat
Response time: 48 business hours

Supervisory Authority

If you believe we have violated your privacy rights, you have the right to file a complaint with:

  • European Union: Your local data protection authority
  • Canada: Office of the Privacy Commissioner of Canada (OPC)
    • Website: www.priv.gc.ca
    • Toll-free: 1-800-282-1376
    • Email: info@priv.gc.ca

14. CASL Compliance Statement

ECLQ is fully compliant with Canada’s Anti-Spam Legislation (CASL). We:

  • Only send commercial electronic messages (CEMs) with express or implied consent
  • Clearly identify ourselves in all communications
  • Provide accurate sender information and contact details
  • Include a clear and functional unsubscribe mechanism in every message
  • Honor unsubscribe requests within 10 business days
  • Maintain records of consent for all marketing communications

How We Obtain Consent

  • Express consent: Through opt-in forms, checkboxes, or verbal agreement
  • Implied consent: Based on existing business relationships or inquiries within the past 2 years

Your CASL Rights

You have the right to:

  • Unsubscribe from our commercial messages at any time
  • Request information about how we obtained your consent
  • File a complaint with the Canadian Radio-television and Telecommunications Commission (CRTC) if you believe we violated CASL

15. PIPEDA Compliance Statement

ECLQ adheres to the 10 Fair Information Principles outlined in PIPEDA:

  1. Accountability: We are responsible for personal information under our control
  2. Identifying purposes: We clearly state why we collect your data
  3. Consent: We obtain your consent before collecting, using, or disclosing your information
  4. Limiting collection: We only collect information necessary for identified purposes
  5. Limiting use, disclosure, and retention: We use your data only for stated purposes and retain it only as long as necessary
  6. Accuracy: We keep your information accurate, complete, and up-to-date
  7. Safeguards: We protect your information with appropriate security measures
  8. Openness: We make our privacy practices transparent and accessible
  9. Individual access: You can access and verify your personal information
  10. Challenging compliance: You can challenge our compliance with these principles

16. Consent

By using our website and services, you accept the terms of this Privacy Policy. If you do not agree, please do not use our services.

For specific services requiring additional data processing, we will request your express consent separately.

This Privacy Policy is designed to comply with GDPR (General Data Protection Regulation of the EU), CASL (Canadian Anti-Spam Legislation), and PIPEDA (Personal Information Protection and Electronic Documents Act of Canada).

Version: 1.5
Effective date: October 11, 2024