Dabrily

Privacy Policy

Last updated: January 1, 2025

1. Introduction

Dabrily (“we”, “us”, “our”) is committed to protecting the personal information of our website visitors and clients. This Privacy Policy describes how we collect, use, disclose, and safeguard personal information in accordance with Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA), Québec’s Law 25 (Act respecting the protection of personal information in the private sector), the Canadian Anti-Spam Legislation (CASL), and Ontario’s Personal Health Information Protection Act (PHIPA) for applicable healthcare clients.

By visiting dabrily.com or using our services, you agree to the terms of this Privacy Policy.

2. Privacy Officer

Dabrily has designated a Privacy Officer responsible for compliance with applicable privacy laws:

Ernest Fonjie
Privacy Officer, Dabrily
Email: hello@dabrily.com
Location: Ontario, Canada

3. Information We Collect

We collect personal information that you voluntarily provide when you:

  • Complete our sign-up or contact forms
  • Book a discovery call through Zoho Bookings
  • Subscribe to our blog or email list
  • Communicate with us by email or phone

The types of personal information we may collect include: name, business name, email address, phone number, province, industry, and service interests. We collect only the minimum information necessary for the stated purpose (data minimisation).

We do not collect sensitive personal information (such as financial data or health information) through our standard website forms. Healthcare clients who engage Dabrily for AI Receptionist services are subject to a separate PHIPA data-handling agreement.

4. Cookies and Tracking Technologies

We use cookies and similar technologies to operate and improve our website. You may manage your cookie preferences through the consent banner on your first visit. See our Cookie Policy for full details.

We use Netlify Analytics, which is cookie-free and does not require consent under PIPEDA or Law 25.

5. How We Use Your Information

We use your personal information to:

  • Respond to your inquiries and provide our services
  • Send commercial electronic messages you have consented to receive (CASL)
  • Improve our website and services
  • Comply with legal obligations

We will not use your personal information for any purpose other than those described above without your consent.

6. CASL Consent

Before sending commercial electronic messages (email or SMS), we obtain your express or implied consent as required by CASL. Every commercial message includes an unsubscribe mechanism. Consent is timestamped and stored in our CRM. You may withdraw consent at any time by clicking “Unsubscribe” in any email or by contacting us at hello@dabrily.com.

7. Disclosure of Personal Information

We do not sell your personal information. We may disclose your information to:

  • Zoho Corporation — our CRM, forms, bookings, and email platform provider, acting as a service provider under our instructions
  • Government authorities, where required by law

Zoho Corporation processes data in accordance with applicable privacy laws and our data processing agreements.

8. Retention

We retain personal information only as long as necessary for the purposes described or as required by law. Lead and client records are retained for a maximum of 7 years for tax and legal compliance purposes. Upon request, records will be deleted within 30 days.

9. Your Rights

Under PIPEDA and Québec Law 25, you have the right to:

  • Access the personal information we hold about you
  • Request correction of inaccurate information
  • Request deletion of your personal information
  • Withdraw consent to processing at any time
  • File a complaint with the Office of the Privacy Commissioner of Canada

Québec residents have additional rights under Law 25, including the right to data portability and the right to be informed of automated decision-making.

To exercise any of these rights, contact: hello@dabrily.com

10. Security

We implement technical and organisational measures to protect your personal information against unauthorised access, disclosure, alteration, or destruction. These include encrypted data transmission (HTTPS), access controls, and regular security assessments.

11. Breach Notification

In the event of a privacy breach involving a real risk of significant harm, we will notify affected individuals and the Office of the Privacy Commissioner as required by PIPEDA. For Québec residents, we will also notify the Commission d’accès à l’information (CAI) within 72 hours as required by Law 25.

12. Privacy Impact Assessments (Québec Law 25)

Before implementing projects involving personal information that may pose privacy risks, Dabrily conducts Privacy Impact Assessments (PIAs) as required by Québec Law 25.

13. Changes to This Policy

We may update this Privacy Policy from time to time. We will post the updated policy on this page with a revised date. Continued use of our website after changes constitutes your acceptance of the updated policy.

14. Contact Us

For any privacy-related questions or requests, please contact our Privacy Officer:
hello@dabrily.com