Privacy Policy
Draft, pending legal review.
This policy describes how SafePass collects, uses, retains, and shares your personal information. It is aligned with PIPEDA and the privacy laws of the Canadian provinces.
What we collect
Account information (email, phone, name), deal details, evidence files you upload to a deal, identity verification artifacts (held by our verification provider), and operational logs needed to run the service.
Why we collect it
To run the protected payment flow, verify identity proportionate to deal size, prevent fraud, and respond to disputes.
Who we share it with
Our payment partner (to facilitate the held-funds flow), our identity verification provider, and our email or SMS providers. We do not sell personal information.
Retention
Audit logs, payment records, and dispute decisions are retained for the regulatory minimum of seven years. Other records are retained for the life of your account plus two years unless you request deletion.
Your rights
You can request access, correction, or deletion of your personal information, subject to our regulatory retention obligations.
Contact
Privacy questions: privacy@safepass.ca (placeholder).