Privacy Policy | CLOUTIER Fire Services

Contents

1. Who We Are
2. Information We Collect
3. How We Use Your Information
4. Disclosure of Your Information
5. Payment Processing
6. Cookies and Local Storage
7. Data Retention
8. Security Practices
9. Your Rights (PIPEDA / CASL)
10. Third-Party Services
11. Children's Privacy
12. Changes to This Policy
13. Contact Us

This Privacy Policy applies to all websites, services, and applications operated by CLOUTIER Fire Services, including www.cloutierfireservices.ca, app.cloutierfireservices.ca, quote.cloutierfireservices.ca, tracker.cloutierfireservices.ca, generator.cloutierfireservices.ca, demo.cloutierfireservices.ca, and portal.cloutierfireservices.ca.

Section 01

Who We Are

CLOUTIER Fire Services (referred to as "we", "us", or "our") is a Canadian fire service technology company registered and operating in the Province of Ontario, Canada.

We provide fireground risk assessment software (CFS FireIQ), NFPA training programs delivered through the Ontario Fire College, and professional drone services. Our primary customers are fire departments, municipal governments, and emergency services organizations across Canada and the United States.

Business Address: 1145 King Georges Park Drive, Rosslyn, ON P7K 0V7, Canada

Privacy Contact:

Section 02

Information We Collect

We collect information in the following categories depending on how you interact with our services:

Category	Examples	How Collected
Contact Information	Name, title, department name, email address, phone number, mailing address	Demo request form, quote generator, direct email or phone contact
Payment Information	Credit card details, billing address, payment method	Stripe payment processing — we do not store card data directly
License & Account Information	Department name, license tier, license dates, assigned URL, W3W key	Generated during onboarding and stored in our client tracker
Usage Information	Pages visited, features used, PDF reports generated	Automatically collected via web analytics (Google Analytics)
Technical Information	IP address, browser type, device type, operating system, referring URL	Automatically collected when you access our websites
Location Data	GPS coordinates used for What3Words address generation and weather data	Only when you grant browser location permission in the CFS FireIQ app — not stored on our servers
Communication Records	Emails, phone call notes, demo request details	When you contact us directly or submit a form

We do not collect sensitive personal information such as health data, government identification numbers, financial account numbers, or biometric data.

Section 03

How We Use Your Information

We use the information we collect for the following purposes:

Delivering our services — processing your order, deploying your branded CFS FireIQ application, and providing ongoing support
Processing payments — completing transactions securely through Stripe
Communication — sending order confirmations, onboarding instructions, renewal reminders, and responding to your inquiries
Training delivery — scheduling and administering NFPA training programs and tracking certification records
Drone service coordination — scheduling operations, obtaining required permits, and delivering project deliverables
Improving our services — analyzing usage patterns to improve the CFS FireIQ platform and our other services
Legal compliance — meeting our obligations under applicable Canadian laws including PIPEDA and CASL
Marketing communications — sending product updates, new feature announcements, and relevant fire service content, only with your consent and always with an unsubscribe option

We do not sell your personal information. We do not use your information for automated decision-making that produces legal or similarly significant effects.

Section 04

Disclosure of Your Information

We do not sell, rent, or trade your personal information to third parties. We may share your information only in the following limited circumstances:

Service providers — we share information with trusted third-party providers who assist in operating our services, including Stripe (payment processing), Google (analytics and email), Netlify (web hosting), and Web Hosting Canada (web hosting). These providers are contractually bound to protect your information and use it only for the services they provide to us.
What3Words — when you use the GPS location feature in CFS FireIQ, your coordinates are sent to the What3Words API to generate a three-word address. This is subject to the What3Words Privacy Policy at what3words.com/privacy.
Legal requirements — we may disclose your information where required by law, court order, or government authority, or where necessary to protect the rights, property, or safety of CLOUTIER Fire Services, our clients, or others.
Business transfers — in the event of a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction. We will notify you of any such change.

All third-party service providers we engage are required to handle your information in compliance with applicable privacy laws and our data protection standards.

Section 05

Payment Processing

All payment transactions are processed by Stripe, Inc. — a PCI DSS Level 1 certified payment processor. CLOUTIER Fire Services does not collect, store, or process credit card numbers, CVV codes, or other payment card data directly.

When you make a payment through our Stripe Payment Links or checkout, you are subject to Stripe's Privacy Policy, available at stripe.com/privacy. Stripe may collect and store your payment information, billing address, and transaction history in accordance with their own privacy practices.

We receive confirmation of successful payments from Stripe, including your name, email address, amount paid, and transaction reference number, which we use solely to fulfill your order and maintain our billing records.

Section 06

Cookies and Local Storage

Our websites use the following technologies to improve your experience:

Cookies — small text files stored on your device by your browser. We use cookies for analytics (Google Analytics) and to remember your preferences. You can disable cookies in your browser settings, though some features may not function correctly as a result.
Local Storage — the CFS FireIQ application and Client Tracker use your browser's local storage to save client data and application preferences on your own device. This data is stored locally on your device only and is not transmitted to our servers unless you have configured Google Sheets synchronization.
Google Analytics — we use Google Analytics to understand how visitors use our websites. Google Analytics collects anonymized usage data. You can opt out using the Google Analytics Opt-out Browser Add-on at tools.google.com/dlpage/gaoptout.

We do not use advertising cookies, tracking pixels for retargeting, or any cookies that track you across third-party websites.

Section 07

Data Retention

We retain your personal information for as long as necessary to fulfill the purposes for which it was collected, and to comply with our legal and regulatory obligations:

Client license records — retained for the duration of your license plus 7 years, in accordance with Canadian business record-keeping requirements
Payment and billing records — retained for 7 years as required by the Canada Revenue Agency
Demo request and lead information — retained for up to 2 years from last contact, or until you request deletion
Training records — retained for the duration required by NFPA certification standards and the Ontario Fire Marshal's office
Email communications — retained for up to 3 years for business continuity and dispute resolution purposes
Website analytics data — retained in anonymized form for up to 26 months as per Google Analytics default settings

When retention periods expire, we securely delete or anonymize your personal information.

Section 08

Security Practices

We take the security of your personal information seriously and implement the following safeguards:

HTTPS encryption — all our websites use SSL/TLS encryption (HTTPS) to protect data transmitted between your browser and our servers
Secure payment processing — all payments are handled by Stripe's PCI DSS Level 1 certified infrastructure. We never handle raw payment card data
Canadian hosting — our web hosting is provided by Web Hosting Canada (WHC), with servers located in Canada
Access controls — access to client information and internal tools is protected by password authentication and is limited to authorized personnel only
Email security — business email is provided through Google Workspace, which includes encryption in transit and at rest
No sensitive data in local storage — our applications do not store payment information, government identification numbers, or health data in browser local storage
Regular updates — we keep our software and platform dependencies updated to protect against known security vulnerabilities

While we implement commercially reasonable security measures, no method of transmission over the internet or electronic storage is 100% secure. We cannot guarantee absolute security, but we are committed to protecting your information to the best of our ability and to notifying affected individuals promptly in the event of a data breach as required by PIPEDA.

Section 09

Your Rights (PIPEDA / CASL)

As a Canadian business, we are governed by the Personal Information Protection and Electronic Documents Act (PIPEDA) and the Canada Anti-Spam Legislation (CASL). Under these laws, you have the following rights:

Right to access — you may request a copy of the personal information we hold about you
Right to correction — you may request that we correct inaccurate or incomplete information
Right to withdrawal of consent — you may withdraw consent for us to use your information at any time, subject to legal and contractual restrictions
Right to unsubscribe — all marketing emails include an unsubscribe link. You may also contact us directly to be removed from our mailing list
Right to deletion — you may request deletion of your personal information, subject to our legal retention obligations
Right to complain — you have the right to file a complaint with the Office of the Privacy Commissioner of Canada at priv.gc.ca if you believe your privacy rights have been violated

For US-based clients, we also endeavour to comply with applicable US state privacy laws. Please contact us if you have questions about your specific rights.

To exercise any of these rights, please contact us using the information in Section 13.

Section 10

Third-Party Services

Our platform integrates with the following third-party services. Each has its own privacy policy governing how they handle your data:

Service	Purpose	Privacy Policy
Stripe	Payment processing	stripe.com/privacy
Google Workspace	Business email and productivity	policies.google.com/privacy
Google Analytics	Website usage analytics	policies.google.com/privacy
Google Sheets	Optional client data sync	policies.google.com/privacy
What3Words	GPS to three-word address conversion	what3words.com/privacy
Web Hosting Canada (WHC)	Web hosting and domain services	whc.ca/en/privacy
Open-Meteo / Environment Canada	Live weather data in CFS FireIQ app	open-meteo.com/en/terms

We are not responsible for the privacy practices of these third-party services. We encourage you to review their privacy policies before using features that interact with them.

Section 11

Children's Privacy

Our services are intended solely for use by fire service professionals, municipal governments, and other organizations. We do not knowingly collect personal information from individuals under the age of 18. If you believe we have inadvertently collected information from a minor, please contact us immediately and we will delete it promptly.

Section 12

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

Update the Last Updated date at the top of this page
Post a notice on our website for 30 days following any material change
Send an email notification to active clients where the changes are significant

Your continued use of our services after any changes to this policy constitutes your acceptance of the updated terms. We encourage you to review this page periodically.

Section 13

Contact Us

For any questions, concerns, or requests regarding this Privacy Policy or your personal information, please contact us:

🏠

CompanyCLOUTIER Fire Services

👤

Privacy OfficerSean Cloutier, Founder & CEO

📍

Address1145 King Georges Park Drive, Rosslyn, ON P7K 0V7, Canada

✉

Email

📱

Phone(807) 632-2787

🌐

Websitewww.cloutierfireservices.ca

We will respond to all privacy-related requests within 30 days as required by PIPEDA. For complaints that are not resolved to your satisfaction, you may contact the Office of the Privacy Commissioner of Canada at 1-800-282-1376 or www.priv.gc.ca.