Privacy Policy

Effective Date: December 24, 2025 | Last Reviewed: January 5, 2026

1. Introduction

This Privacy Policy explains how Federico A Cetraro Consulting Services ("we", "us", "Provider"), a sole proprietorship registered in Nova Scotia, Canada, operated by Federico Cetraro, collects, uses, stores, and protects your personal information when you use our website and services.

We are committed to protecting your privacy and handling your data in an open and transparent manner. This policy complies with applicable Canadian privacy laws.

2. Information We Collect

2.1 Personal Information Collected:

  • Email Address (required) - Used for service delivery, booking confirmations, and support communications
  • First Name (optional) - Used for personalization of emails and communications
  • Payment Transaction Records (required by law) - Transaction ID, amount, date, payment method, package purchased
  • Package Usage Data - Number of sessions booked, used, and remaining; expiration dates
  • Booking Information - Session dates and times (when you book via online scheduling system)
  • Feedback Information (optional) - Name, company, title, rating, testimonial text (if you submit feedback)

Important: We collect the minimum information necessary to provide our services. We do not require full legal names, phone numbers, physical addresses, or government IDs.

2.2 Information We DO NOT Collect or Retain:

  • Full legal names - Anonymized after service delivery if provided
  • Session recordings - We do not record video sessions
  • Session transcripts - We do not transcribe or store conversation content
  • Pitch/code review submissions - Deleted after delivery unless explicit consent for testimonials
  • Payment card details - Processed and stored by third-party payment providers, never by us
  • Bank account information - Processed by third-party providers, never stored by us
  • Cryptocurrency wallet addresses - Not stored after payment confirmation

2.3 Technical Information:

  • IP Address - Temporarily logged for rate limiting and fraud prevention (not permanently stored)
  • Browser Type - Standard HTTP headers for compatibility
  • Device Information - Basic device type for responsive design (not tracked)

3. How We Use Your Information

We use your personal information only for the following purposes:

  • Service Delivery - Sending booking links, session confirmations, package codes, and deliverables via email
  • Payment Processing - Processing payments, confirming transactions, and issuing refunds (if applicable)
  • Support - Responding to inquiries, resolving issues, and providing customer assistance
  • Legal Compliance - Maintaining transaction records for tax reporting (Canada Revenue Agency requirement)
  • Fraud Prevention - Detecting and preventing payment fraud, chargebacks, and abuse

We DO NOT: Sell your data, share it with third parties for marketing, use it for advertising, or send promotional emails (except service-related communications).

4. Data Storage and Security

4.1 Where Your Data is Stored:

  • Secure Cloud Infrastructure - Payment records, package usage data, booking information stored using industry-standard cloud services
  • Email Service Providers - Email delivery logs (email addresses only, no content stored)
  • Payment Processors - Payment transaction records subject to their respective privacy policies

4.2 Data Security Measures:

  • All data encrypted in transit (HTTPS/TLS)
  • Access controls and security rules restrict access to authorized functions only
  • Payment data processed through PCI-compliant providers
  • No payment card details stored on our servers
  • Authentication required for all administrative functions

4.3 Data Location: Your data is stored on servers located in North America and Europe using industry-standard cloud infrastructure. By using our services, you consent to this international data transfer.

5. Data Retention

5.1 Retention Periods:

  • Payment Transaction Records: 7 years (required by Canada Revenue Agency for tax compliance)
  • Email Addresses: Retained indefinitely for ongoing support unless deletion requested
  • Package Usage Data: Retained for duration of package validity plus 1 year
  • Booking Information: Retained for 1 year after session completion
  • Feedback/Testimonials: Retained indefinitely if consent provided; deleted otherwise

5.2 Data Deletion: You may request deletion of your personal data by contacting notifications@cetraro.solutions. Note that we must retain payment transaction records for 7 years for tax/legal compliance.

6. Third-Party Services

We use the following types of third-party services that process your data:

6.1 Payment Processors:

  • Process card payments, Apple Pay, Google Pay, and bank transfers
  • Store payment details (not accessible to us)
  • Subject to their respective privacy policies
  • PCI-DSS compliant for card data security

6.2 Scheduling Services:

  • Manage session booking and scheduling
  • Store booking times and email addresses
  • Subject to their respective privacy policies

6.3 Email Service Providers:

  • Send transactional emails (confirmations, booking links)
  • Log email delivery status (no email content stored)
  • Subject to their respective privacy policies

6.4 Market Data Providers:

  • Provide live cryptocurrency price data
  • No personal information shared

7. Cookies and Tracking

We DO NOT use:

  • Advertising cookies
  • Third-party analytics (Google Analytics, Facebook Pixel, etc.)
  • Cross-site tracking
  • Behavioral profiling

We DO use:

  • Session Storage (LocalStorage): To remember your legal terms acceptance (stores only a timestamp, no personal data)
  • Security Tools: For fraud prevention and security verification (no tracking or profiling)

8. Your Privacy Rights

Under applicable privacy laws, you have the following rights:

8.1 Right to Access: Request a copy of your personal data we hold.

8.2 Right to Correction: Request correction of inaccurate or incomplete data.

8.3 Right to Deletion: Request deletion of your data (subject to legal retention requirements).

8.4 Right to Data Portability: Request your data in a structured, machine-readable format.

8.5 Right to Withdraw Consent: Withdraw consent for data processing (may prevent service delivery).

To exercise these rights, contact: notifications@cetraro.solutions

9. Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you are under 18, do not use our services or provide any personal information.

10. International Users

Our services are operated from Nova Scotia, Canada. If you are accessing our services from outside Canada, please be aware that your data may be transferred to and stored in Canada, the United States, and Europe using industry-standard cloud infrastructure and service providers.

By using our services, you consent to this international data transfer and processing.

11. Data Breach Notification

In the event of a data breach that may affect your personal information, we will notify you via email within 72 hours of discovering the breach, as required by law.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Material changes will be communicated via email to all active users. Continued use of our services after changes constitutes acceptance of the updated policy.

Last Updated: December 24, 2025

13. Contact Information

Privacy Questions or Requests:

Email: notifications@cetraro.solutions

Subject Line: "Privacy Inquiry" or "Data Request"

Response Time: We will respond to privacy requests within 30 days.

14. Governing Law

This Privacy Policy is governed by the privacy laws of Nova Scotia, Canada, including the Personal Information Protection and Electronic Documents Act (PIPEDA).

Return Home