How Canidium Protects Your Privacy

Canidium Privacy Statement

Last Updated: [December 1, 2025]

1. Introduction

Canidium (“we,” “us,” “our”) is committed to protecting your privacy and the personal data we process. This Privacy Statement explains how we collect, use, disclose, secure, and store personal information when you interact with us — including through our websites, digital tools, email communications, events, or when we deliver consulting and implementation services.

This Privacy Statement applies when Canidium acts as a data controller or business (under data protection laws like GDPR or CPRA). It does not apply where we process personal data solely on behalf of our clients as a data processor or service provider; in those cases, we follow the client’s instructions and contractual terms.

By using our websites or providing personal data to Canidium, you acknowledge that you have read this Privacy Statement.

2. What Personal Data We Collect

The type of personal data we collect depends on how you interact with Canidium.

2.1 Data You Provide Directly

We may collect:

Identity Information: name, title, employer, job role;
Contact Information: email, phone number, business address;
Professional Information: department, business responsibilities, industry;
Account Information: preferences, communication choices, form submissions;
Event or Meeting Information: registration details, dietary restrictions (optional), consented recordings or photos; and
Survey or Feedback Responses.

2.2 Data Collected Automatically

When you visit our website or engage with digital tools, we may collect:

IP address;
Browser type and version;
Device identifiers;
Cookies and tracking technologies; and
Usage data (pages viewed, links clicked, referring URLs, time spent).

2.3 Data From Third Parties

We may receive personal data from:

Technology partners (SAP, Xactly, Salesforce, Pricefx, etc.), where legally permitted;
Public sources such as LinkedIn;
Event hosts or sponsorship platforms;
Third-party lead providers or marketing platforms; and
Our service providers (CRM platforms, email tools, analytics tools).

We only collect and use data in ways consistent with this Privacy Statement.

3. How We Use Your Personal Data

We process personal data for the following purposes:

3.1 To Operate, Deliver, and Improve Our Services

Managing client relationships;
Delivering consulting, implementation, and support services;
Scheduling and conducting meetings; and
Providing insights, tools, and customer communications.

3.2 To Communicate With You

Responding to inquiries or requests;
Sending operational updates; and
Providing resources or content you request.

3.3 For Marketing and Business Development

With your consent where required:

Sending newsletters or marketing emails;
Sharing educational content, events, webinars, downloads; and
Personalizing marketing based on your interests.

3.4 To Improve Our Website and Experiences

Analytics and performance monitoring;
Diagnostics, debugging, and security; and
UX improvements.

3.5 To Comply With Legal Requirements

Record-keeping;
Audits;
Regulatory compliance; and
Responding to law enforcement requests.

3.6 For Events (with consent where required)

Managing registration and attendance; and
Using photos or recordings for promotional purposes.

We will not use your data in ways incompatible with these purposes.

4. Legal Basis for Processing (EEA/UK/Switzerland)

Where applicable law requires a legal basis (e.g., under GDPR), we rely on:

Contract Performance: delivering requested services;
Legitimate Interests: business operations, security, analytics, relationship management;
Consent: marketing communications, cookies, recordings; and
Legal Obligations: compliance, enforcement, regulatory requirements.

You may withdraw consent at any time.

5. Data Sharing and Disclosure

We may share your personal data with:

5.1 Service Providers

Vendors who support our operations, including:

Website hosting and analytics;
Email, CRM, and marketing tools;
Cloud storage and collaboration platforms; and
Payment processors (if applicable).

5.2 Technology and Channel Partners

Such as:

SAP;
Salesforce;
Xactly;
Pricefx; and
Other enterprise software providers.

Data is shared only when necessary and permitted.

5.3 Professional Advisors

Lawyers, auditors, consultants, insurers.

5.4 Legal or Regulatory Entities

Where required to:

Protect rights, security, or property;
Comply with legal obligations; and
Respond to lawful requests.

5.5 Corporate Transactions

If Canidium undergoes a merger, acquisition, restructuring, or asset sale, personal data may be transferred as permitted by law.

We do not sell personal data.

6. International Data Transfers

Canidium is based in the United States but works with partners and clients globally. If your personal data is transferred outside your region (e.g., EEA → U.S.), we use safeguards such as:

EU Standard Contractual Clauses;
Adequacy decisions;
Data processing agreements; and
Additional security measures where needed.

7. Data Security

We implement appropriate technical and organizational measures, including:

Access controls and role-based permissions;
Encryption (where applicable);
Network and application security;
Device security protocols;
Employee confidentiality and security training; and
Regular vendor security assessments.

No system is 100% secure, but we take reasonable measures to protect your data.

8. Data Retention

We retain personal data only for as long as necessary to:

Fulfill the purposes described in this policy;
Comply with legal and contractual obligations;
Resolve disputes; and
Enforce agreements.

After retention periods expire, we securely delete or anonymize data.

9. Your Rights

Depending on your jurisdiction, you may have the right to:

General Rights (All Regions)

Access your personal data;
Correct inaccurate data;
Request deletion (“right to be forgotten”);
Restrict or object to certain processing;
Withdraw consent to marketing; and
Request a copy of your data (portability).

GDPR / EEA / UK Rights

Right to lodge a complaint with a supervisory authority, and
Right not to be subject to automated decision-making.

CPRA / California Rights

California residents may also:

Request to know categories and specific pieces of personal data;
Request correction or deletion;
Opt out of sharing for cross-context behavioral advertising;
Limit the use of sensitive personal information;and
Not be discriminated against for exercising rights.

To submit a rights request, email:
privacy@canidium.com

We may verify your identity before fulfilling requests.

10. Cookies and Tracking Technologies

Canidium uses cookies and similar technologies for:

Essential website functionality;
Analytics;
Performance monitoring; and
Marketing personalization (with consent where required).

You may manage cookies via your browser settings or site-specific controls where provided.

A full Cookie Notice can be provided upon request or added to the site.

11. Children’s Privacy

Our services are not directed to children under 16, and we do not knowingly collect personal data from children. If we learn we have done so, we will promptly delete it.

12. Links to Third-Party Sites

Our website may contain links to third-party websites. Canidium is not responsible for the privacy practices or content of these sites. We encourage you to review their privacy policies.

13. Changes to This Privacy Statement

We may update this Privacy Statement periodically to reflect:

Changes in our services;
New legal or regulatory requirements; and
Evolving industry practices.

We will update the “Last Updated” date and, where required, provide additional notice.

14. Contact Us

If you have questions about this Privacy Statement or how your personal data is handled, please contact:

Canidium Data Privacy Officer
Email: privacy@canidium.com
Address: Canidium LLC, 123 S. College Ave, Suite 120, Fort Collins, CO 80524, USA

Privacy Policy