Sessionwire Privacy Policy

At Sessionwire, we are committed to protecting your privacy. This Privacy Policy explains when and how Sessionwire (“we,” “us,” or “our”) collects, uses, discloses, or processes your personal information when you use our products and services or visit our websites at www.sessionwire.com (our marketing site with platform information, landing pages, and pricing) or support@sessionwire.com (the Sessionwire platform) (“Websites”). Our practices are guided by the principles of Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA) and, where applicable, the European Union’s General Data Protection Regulation (GDPR).

Personal Information Defined: Personal information is any data that can identify or contact you directly—such as your name, email address, mailing address, phone number, and payment details—or other information needed to deliver the products and services you request. In some cases, an IP address may also be considered personal information.

We follow 10 core privacy principles, outlined below, and have established policies, safeguards, and processes to uphold them. This policy also includes a section specific to GDPR rights for EU users.

1 - Accountability

Sessionwire is responsible for the personal information under our control. A Sessionwire representative oversees compliance with this Privacy Policy and PIPEDA, though day-to-day tasks may be handled by authorized team members. Contact us at info@sessionwire.com.

We may engage third parties to assist in delivering our products or services. These third parties, regardless of location, are bound by Data Processing Agreements (DPAs) requiring adherence to PIPEDA, GDPR (where applicable), and Sessionwire’s privacy standards. We conduct periodic reviews to ensure their compliance. Key third parties include Storj Labs Inc. (data hosting), Zoho (user information storage), MongoDB (database storage), Stripe (payment processing), and Sentry (error logging, limited to email addresses and system details like OS and browser versions).

2 - Identifying Purposes

We collect personal information only for clear purposes, explained at or before collection if not already obvious. These primary purposes include:

Delivering the products or services you request;
Processing payments, including recurring ones you authorize;
Communicating about your use of our products or services;
Verifying your registration for access and support; and
Notifying you of critical updates or changes to our offerings.

We also collect log data (e.g., IP address, access times) for security, performance enhancement, and aggregated reporting. This data is stored separately from other personal information.

For secondary purposes, such as:

Informing you about new or updated Sessionwire products and services; or
Inviting you to participate in surveys or feedback collection, you are automatically opted in upon signup but may unsubscribe at any time via the link in our marketing email footers or by updating your preferences at https://studio.sessionwire.io.

We may aggregate your data with others’ to create non-identifiable insights for improving our services (e.g., reporting total subscribers to a third party without naming individuals).

Your personal information will not be shared with third parties without your consent, except:

When necessary to fulfill your service request (e.g., payment processing), with third parties under privacy safeguards;
To comply with legal obligations (e.g., court orders, law enforcement requests);
To resolve contractual disputes related to your use;
To address unlawful account activity; or
To protect user or public safety in emergencies.

Consent

We collect, use, and disclose your personal information with your knowledge and consent, unless permitted or required by law. Sensitive information requires your explicit consent. We do not rent or sell your data unless stated in this policy.

You control secondary uses (e.g., marketing) and can opt out at signup, via email footers, or by updating settings at https://studio.sessionwire.io. For primary uses (e.g., service delivery), withdrawing consent (e.g., terminating your account) requires contacting support@sessionwire.com. We’ll respond within 5 business days.

4 - Limiting Collection

We collect personal information only for identified purposes, using fair and lawful means, such as:

When you sign up for free or paid services;
When you provide payment details;
When you contact us for information; or
When an authorized third party shares your data with us.

Optional information will be clearly marked as such.

We use cookies to enhance services. A cookie consent banner appears when you visit our Websites, allowing you to accept or customize preferences before cookies are set. Persistent cookies store login credentials, while session cookies track usage trends. Blocking cookies via browser settings may limit some features. Third-party website links on our Websites may set their own cookies; review their privacy policies for details.

5 - Limiting Use, Disclosure, and Retention

Your personal information is used or disclosed only for its original purpose, unless you consent otherwise or law permits. Stored files in Sessionwire Vault are encrypted and decryptable only by you. Legal requests for data are verified, and we'll notify you of disclosures where allowed.

We retain your data until you request its deletion or terminate your account, after which it is securely destroyed or de-identified per our protocols. Legal or dispute-resolution needs may extend retention.

6 - Accuracy

We strive to keep your personal information accurate, complete, and up-to-date for its intended purposes. Update your details by signing into your account at https://studio.sessionwire.io or contacting support@sessionwire.com.

7 - Safeguards

We protect your data with industry-standard security suited to its sensitivity. User information is encrypted by partners: Zoho (e.g., AES-256), MongoDB (e.g., TLS), and Stripe (e.g., PCI DSS-compliant). Stored files in Sessionwire Vault are encrypted, accessible only with your key.

You must keep your password secure—we store it encrypted and cannot retrieve it. Reset it via email from the Sign In or Account Info page at https://studio.sessionwire.io. Visit support.sessionwire.com for details.

We log security breaches and notify affected users within 72 hours of awareness if the breach poses significant risk (e.g., identity theft, financial loss, reputational harm), whether from our systems or third-party providers.

8 - Openness

This Privacy Policy summarizes our practices. Updates will be posted here and highlighted for 30 days before taking effect, with no retroactive changes without your approval. For detailed inquiries, email info@sessionwire.com; expect a response within a reasonable timeframe.

9 - Individual Access

Submit written requests to support@sessionwire.com to learn about your personal information’s existence, use, or sharing. We’ll respond within 10 business days, providing access or explaining any legal limits. You may request corrections to inaccurate data.

10 - Challenging Compliance

We investigate privacy complaints. Contact info@sessionwire.com or support@sessionwire.comwith concerns. We aim to resolve issues within 30 days, providing email updates as needed, and may consult experts before a final response. Valid complaints will prompt policy or practice updates.

11 - Data Storage and GDPR Information

We use Storj Labs Inc. to host data in Sessionwire Vault. See their policies:

GDPR-Specific Rights for EU Users

If you’re in the EU, GDPR grants additional rights:

Data Portability: Request your data (e.g., account details) in a machine-readable format (e.g., CSV) for transfer.
Right to Be Forgotten: Request deletion of your data when you stop using our services or withdraw consent, unless legally required to retain it (e.g., tax records).
How to Exercise Rights: Email info@sessionwire.com or support@sessionwire.com with your request and proof of identity (e.g., account email). We’ll respond within 10 business days. If a request can’t be fulfilled due to legal obligations, we’ll explain why.

We process data based on consent or contract necessity. Contact us at the above emails for GDPR questions.

12 - Data Deletion Instructions

Sign into your account within our application. Navigate to the account info page. Click on the 'Delete Account' button. Confirm your decision to delete your account. Please note, this action is irreversible. Your account and associated data will be permanently deleted within 30 days following the confirmation.

For More Information

Reach out with feedback or questions to info@sessionwire.com or support@sessionwire.com, or use the contact form at www.sessionwire.com. Follow us on Instagram (@sessionwire) for updates. We value your trust and aim to address your concerns promptly.