Privacy policy.

Overview

Bridge Note ("we," "our," "the firm") is a Canadian business plan service. This privacy policy describes how we collect, use, store, and disclose personal information when you visit this website or engage us to write a business plan. We comply with the federal Personal Information Protection and Electronic Documents Act (PIPEDA) and applicable provincial privacy laws (including Quebec's Law 25, British Columbia's PIPA, and Alberta's PIPA).

What we collect

We collect two categories of personal information:

• Contact and engagement information: When you book a discovery call or email us, we collect your name, email address, phone number (if provided), and the details you share about your business and loan application. This information is provided voluntarily by you.
• Website analytics: When you visit this website we collect basic usage data via first-party cookies — pages viewed, session duration, referring URL, browser type, and approximate location (derived from IP address, not exact). We do not use third-party advertising trackers.

How we use your information

We use personal information for the following purposes:

• · To respond to your inquiry and schedule a discovery call
• · To prepare and deliver a business plan engagement quote and, if engaged, to complete the work
• · To communicate with you about the status of your engagement
• · To improve this website and our service offerings, using aggregated analytics data
• · To comply with applicable legal, regulatory, and tax obligations

We do not sell, rent, or share personal information with third parties for marketing purposes. We do not use personal information to make automated decisions that produce legal or similarly significant effects.

Service providers

We share limited personal information with the following service providers as needed to operate the business:

• · Calendly (scheduling) — receives name, email, and timezone when you book a call
• · Cloudflare (hosting and DNS) — receives IP addresses for the purpose of serving this website
• · Email infrastructure providers — store the content of email correspondence with us

Each provider is contractually obligated to protect your personal information and use it only for the purposes for which it was disclosed. Where service providers operate outside Canada, your personal information may be subject to the laws of those jurisdictions.

Cookies and tracking

We use first-party cookies to remember your consent preferences and to measure aggregate site usage. You can accept or reject non-essential cookies via the consent banner the first time you visit. You can clear stored cookies at any time through your browser settings. Disabling cookies will not prevent you from using the site, but may reset your consent preference on each visit.

Retention

We retain personal information only for as long as is necessary to fulfil the purposes for which it was collected, including any reasonable follow-up period and any retention required by Canadian tax, anti-money-laundering, and professional record-keeping obligations (typically six to seven years from the end of an engagement). Inquiry-only information (where you contact us but do not engage) is deleted within twenty-four months.

Your rights

Under PIPEDA and applicable provincial privacy laws, you have the right to:

• · Access the personal information we hold about you
• · Request correction of inaccurate or incomplete information
• · Request deletion of personal information, subject to our legal retention obligations
• · Withdraw your consent to our use of your personal information at any time
• · Lodge a complaint with the Office of the Privacy Commissioner of Canada or your provincial privacy regulator

To exercise any of these rights, email us at hello@bridgenote.ca. We respond to requests within thirty days.

Security

We take reasonable administrative, technical, and physical safeguards to protect personal information against unauthorized access, disclosure, alteration, and loss. These include encryption in transit (HTTPS), access controls on stored documents, and confidentiality obligations on anyone with access to client files. No internet transmission or electronic storage is ever fully secure, but we maintain practices appropriate to the sensitivity of the information involved.

Changes to this policy

We may update this policy from time to time to reflect changes in our practices or applicable law. The "Last updated" date at the top of this page indicates when the most recent revision was made. Material changes will be flagged on the website.

Contact

Questions about this policy, or about how we handle your personal information? Email hello@bridgenote.ca.