Privacy Statement – Prairie Cyber Security
Effective date: [01-01-2026]
Last updated: [06-03-2026]
Prairie Cyber Security (“Prairie Cyber Security,” “we,” “us,” “our”) respects your privacy. This Privacy Statement explains how we collect, use, store, and protect personal information when you visit our website, submit a form (including our Free Risk Assessment), or communicate with us.
This website is intended for business users and small-to-mid-sized organizations in Winnipeg and across the Canadian Prairies.
1) Information we collect
Information you provide
When you submit a form on our website (including our Free Risk Assessment), we may collect:
Name, business email, phone number, job title/role, company name
Details you include in your message or risk assessment submission (typically business/security posture information)
Any files you choose to upload (if a file upload feature is available)
Please do not submit sensitive personal information (e.g., health information, government ID numbers, or payment card details) through website forms.
Information collected automatically
When you browse our website, we may collect technical and usage information, such as:
IP address, device type, browser type, operating system
Pages viewed, time on page, referral source, and general location (city/region)
Security logs used to protect our website and prevent abuse
2) How we use your information
We use information we collect to:
Respond to your inquiry and provide requested information
Deliver and follow up on your Free Cyber Risk Assessment request
Improve our website and understand how visitors use it
Protect our website and systems from fraud, abuse, and security threats
Provide marketing communications (only where you have provided consent and with an unsubscribe option)
Maintain business records and meet legal, regulatory, and insurance-related obligations
3) Marketing communications (CASL)
If you provide consent through a form submission, we may send you marketing communications about our services. Any marketing emails we send will include an unsubscribe option, in compliance with Canada’s Anti-Spam Legislation (CASL). You can unsubscribe at any time.
4) Analytics, advertising, and cookies
Cookies and consent
We use a cookie consent banner/tool on our website. Depending on your choices, cookies may be used for:
Essential functionality (required for the website to work properly)
Analytics (to measure and improve performance)
Advertising/marketing (to measure ad performance and support remarketing/retargeting)
You can also control cookies through your browser settings.
Google Analytics - We use Google Analytics to understand website traffic and usage patterns.
Meta/Facebook Pixel - We use the Meta (Facebook) Pixel to measure the effectiveness of advertising and to support remarketing/retargeting where enabled by your cookie preferences and applicable law.
5) Recordings (Zoom)
Meetings scheduled as a result of your form submissions may occur via Zoom, and may be recorded. Where a meeting will be recorded, we will provide notice and/or obtain consent as required. If you prefer not to be recorded, you can request that recording be disabled.
6) Sharing and disclosure of information
We do not sell your personal information.
We generally do not share personal information with third parties except in limited circumstances, including:
Service providers we use to operate our business and website (for example: website hosting, email systems, ticketing systems, Google Analytics, Meta/Facebook Pixel, cloud services, and tools like Google Sheets used to manage submissions). These providers may process information only to provide services to us.
Insurance providers, where client or incident-related information must be shared as needed if an insurer requests it as part of a claim review or potential settlement.
Legal or regulatory requirements, where disclosure is required by law, court order, or to protect our rights, our customers, or the public.
7) Data storage and cross-border processing
Information may be stored and processed in cloud services and may be hosted outside Canada and North America. When information is processed in other countries, it may be subject to the laws of those jurisdictions.
8) Safeguards
We use reasonable administrative, technical, and organizational safeguards appropriate to the sensitivity of the information to protect it against loss, theft, unauthorized access, disclosure, copying, use, or modification. No method of transmission or storage is 100% secure, but we work to protect your information using industry-aligned practices.
9) Retention
We retain inquiries, submissions, and related communications for up to 7 years, unless a longer period is required or permitted by law, insurance, or contractual obligations. We may retain information longer in a de-identified or aggregated form for analytics and business planning.
10) Your choices and access
You may request access to, correction of, or information about the personal information we hold about you, subject to applicable legal exceptions. You may also withdraw consent for marketing communications at any time by unsubscribing or contacting us.
11) Third-party links
Our website may contain links to third-party websites or services. Their privacy practices are governed by their own policies, not ours.
12) Children’s privacy
Our website is not directed to children, and we do not knowingly collect personal information from children.
13) Changes to this Privacy Statement
We may update this Privacy Statement from time to time. Changes will be posted on this page with an updated effective/last updated date. If we add new features (for example, a live chat function), we will update this Privacy Statement accordingly.
14) Contact (Privacy)
If you have questions or requests related to privacy, contact:
Ralf Klenke, President
Email: rklenke@prairiecybersecurity.com
15) Legal framework
Prairie Cyber Security handles personal information in accordance with applicable Canadian privacy law, including PIPEDA, which applies to private-sector organizations in Manitoba engaged in commercial activities.
Where required, we also follow PIPEDA’s breach notification and record-keeping requirements.
(Manitoba’s public-sector access and privacy law does not generally apply to private-sector businesses.)
