Privacy

Connect Rocket Communications Inc. Privacy Policy (Version 4.0)

Effective Date: September 1, 2025

Previous version: Archive

1. Introduction and Scope

Connect Rocket Communications Inc. (“Connect Rocket,” “we,” “us,” or “our”) provides cloud-based communication tools through our website at www.connectrocket.com and associated mobile applications (collectively “Services”). This policy governs our handling of personal information - defined as data that identifies or relates to you as an individual.

By accessing or using our Services, you acknowledge reading and consenting to these practices. We may periodically update this policy to reflect operational or legal changes, notifying users of material revisions through email or prominent in-service notices. We commit to never retroactively reducing your rights or using information in materially inconsistent ways without explicit consent.

2. Information Collection Practices

We collect only information reasonably necessary for delivering Services, fulfilling contractual obligations, and complying with legal requirements. This includes the following specific categories:

a) Identifiers and Contact Details

Collected when: You register and configure accounts, submit forms, or contact support.
Includes: Full name, email address, phone number(s), job title.
Example use case: We require your email to establish your account but would never request your marital status.

b) Commercial Transaction Records

Collected when: Processing payments for the Services.
Includes: Billing address, payment card last 4 digits (processed through PCI compliant supplier), subscription history.
Example use case: We collect billing addresses solely for tax compliance and fraud prevention, never for marketing profiling.

c) Technical Operation Data

Collected automatically: Through secure protocols during Service usage.
Includes: IP addresses, device types, operating systems, browser versions, crash logs.
Example use case: We capture IP addresses temporarily to prevent brute-force login attacks.

d) Communications Content

Collected when: You submit support requests or use communications features.
Includes: Support ticket text, chat transcripts, call logs, audio recordings, file uploads.
Example use case: We retain call logs to facilitate accurate billing and to permit auditing by Customers.

Withholding essential information (such as contact details for account creation) may prevent Service delivery.

3. Purpose-Limited Information Use

We use personal information exclusively for these operational purposes, with each category tied to specific functions:

a) Identifiers and Contact Details serve to:

Authenticate user access to Services.
Deliver critical system notifications (e.g., system updates, security alerts).
Route support requests to appropriate personnel.

b) Commercial Transaction Records enable:

Payment processing through PCI-DSS Level 1 compliant gateways.
Tax compliance under Canada’s Income Tax Act.

c) Technical Operation Data is utilized for:

Network security monitoring (e.g., detecting DDoS attacks).
Diagnosing regional service disruptions.
Aggregating anonymous usage trends for capacity planning.

d) Communications Content supports:

Resolving technical issues reported by users.
Allowing users to conduct audits and run reports.
Improving documentation based on recurring queries.

Where legally mandated, we process information for regulatory compliance such as court orders or privacy breach reporting to the Office of the Information and Privacy Commissioner for British Columbia.

Information sharing occurs only under necessary circumstances. Internally, access is restricted to personnel with legitimate operational needs. Externally, we share with: service providers bound by strict confidentiality agreements (e.g., payment processors for transactions); legal authorities when required by warrants or court orders; and successor entities during business transitions like mergers, with advance user notification. Testimonials featuring your name or likeness require explicit separate consent, revocable anytime by contacting our Chief Privacy Officer.

5. Data Storage, Transfers and Security Measures

Information resides primarily on Canadian servers. For technical functions like voice call and SMS routing, data may transit through jurisdictions including the United States under contractual safeguards ensuring equivalent protection standards, including AES-256 encryption during transit and strict access controls. Our security framework encompasses mandatory employee privacy training, role-based access restrictions, and secured data centers with 24/7 monitoring. Understanding that no electronic system is infallible, we commit to notifying you without unreasonable delay of any confirmed breach posing a real risk of significant harm to your rights, alongside protective recommendations. Users must maintain password confidentiality per our terms of service.

6. Information Retention Framework

We retain personal information only for as long as necessary to fulfill the purposes outlined in this policy, including ongoing service delivery, legal obligations, and legitimate business needs. Our retention periods balance:

Operational requirements (e.g., active accounts or unresolved support cases).
Legal mandates (including tax/compliance regulations).
Risk assessment (considering sensitivity and potential harm).
Technical feasibility of secure deletion.

Data is securely destroyed using methods proportionate to its sensitivity:

Low-risk information (e.g., newsletter preferences): Standard deletion.
High-risk data (e.g., payment details): Advanced methods like cryptographic erasure.
Archived/backup systems: Scheduled purging with access revocation.

Where immediate deletion is constrained by technical systems or legal requirements, we implement strict access controls and encryption until permanent destruction becomes practicable.

You may request specifics about retention timelines for your data by contacting our Chief Privacy Officer.

7. Your Legal Rights

Under British Columbia’s Personal Information Protection Act, you may:

Request confirmation of data processing and obtain copies of personal information.
Seek correction of inaccurate records (e.g., updating outdated contact details).
Withdraw consent for non-essential processing (e.g., optional usage analytics).
Request erasure where legally permissible (e.g., data no longer needed for original purpose).

Contact our Chief Privacy Officer to exercise these rights. We respond within 30 calendar days and verify identity through government-issued ID matching or existing authentication protocols to prevent fraud. We never sell personal information and prohibit service degradation against users exercising privacy rights.

8. Cookies and Tracking Technologies

Our Services use cookies in these specific ways:

Essential operation cookies: Maintain user sessions and prevent cross-site request forgery (cannot be disabled).
Performance cookies: We do not currently use performance cookies.
Preference cookies: We do not currently use preference cookies.

9. Additional Provisions

External links on our marketing website lead to third-party platforms (social media websites, as an example) whose privacy practices we do not control.

We do not knowingly collect information from minors under 18; suspected unintentional collection should be reported for immediate investigation and deletion.

Service-critical notices (policy updates, security alerts) are delivered via registered contact email, while promotional communications require separate opt-in consent under Canada’s Anti-Spam Legislation and include one-click unsubscribe.

10. Contact and Complaints

Direct privacy inquiries or requests to:
Connect Rocket Communications Inc.
PO Box 2727, Garibaldi Highlands, BC V0N 1T0V

Via email
Phone: 1-888-635-1415

We investigate all complaints within 30 business days and cooperate fully with the Office of the Information and Privacy Commissioner for British Columbia for unresolved matters.