Privacy Policy

Last updated: October 6, 2025

Welcome to SwiftOutbound (“we”, “us”, “our”). We respect your privacy and are committed to protecting the personal information you share with us. This Privacy Policy describes how we collect, use, disclose, and safeguard your personal information, including via analytics tools (GA4, Microsoft Clarity), in a manner consistent with the Personal Information Protection and Electronic Documents Act (PIPEDA).

By accessing or using our website (https://swiftoutbound.com), you consent to the practices described in this Privacy Policy.

1. Scope & Application

  • This policy applies to all personal information we collect through our website, services, communications, and other interactions with you.

  • We are a private-sector organization offering business/marketing services, and as such we are subject to PIPEDA for personal information collected, used, or disclosed in the course of commercial activity. priv.gc.ca+1

  • If you are located in Canada or are a Canadian resident, your rights under PIPEDA apply. If you’re elsewhere, elements of other privacy laws may also apply — this policy is focused on PIPEDA compliance.


2. Accountability & Contact Information

We designate an individual who is accountable for our privacy practices. You may direct any questions, concerns, or requests to:


Privacy Officer / Contact
Name / Title: Ryan Ing, Founder
Email: ryan@swiftoutbound.com


We will respond to privacy inquiries, access requests, or requests for correction within a reasonable timeframe.


3. What Personal Information We Collect

We collect different types of personal information depending on how you interact with us. Some categories include:


Identifiers - IP address, cookie identifiers, device identifiers

Usage & analytics data - Page views, session duration, clicks, scroll behavior, heatmaps, session replay (via Microsoft Clarity)

Technical information - Browser type, operating system, screen resolution, device type

Contact / submitted data - Information you voluntarily provide (e.g. name, email, business name) when contacting us or filling forms

Geolocation / approximate location - Inferred from IP (but not precise GPS)


We do not intentionally collect sensitive personal information (e.g. health, race, biometrics). If you supply such data (e.g. in a contact form), we will treat it with additional care.


4. Purposes for Collection, Use & Disclosure

We collect, use, and disclose personal information only for purposes that are reasonable, legitimate, and disclosed. These include:

  • To operate, maintain, improve, and secure our website and services

  • To analyze and understand user behavior and usage patterns (via GA4, Microsoft Clarity)

  • To provide you with marketing, communications, offers, and updates (with your consent)

  • To respond to your inquiries, requests, or support needs

  • To comply with legal obligations, enforce our terms, or defend against claims

  • To detect, prevent, or respond to fraud or security incidents

If we wish to use your personal information for new purposes not initially disclosed, we will seek additional consent (unless legally permitted otherwise under PIPEDA).


5. Analytics / Tracking Tools: GA4 & Microsoft Clarity

We use analytics and tracking tools to better understand how users use our site and to enhance user experience. These tools include:

Google Analytics 4 (GA4)

  • We configure GA4 to anonymize IPs, disable advertising features or identifiers where feasible, and limit data retention in line with best practice.

  • GA4 collects usage, traffic sources, device, and interaction data.

  • We only activate GA4 tracking after you have provided consent (via our cookie consent banner or mechanism).

  • We do not attempt to associate Google Analytics data with personally identifying information, except when you voluntarily provide such information (e.g. via form submission).

Microsoft Clarity

  • Clarity allows us to capture session replays, heatmaps, click behavior, scroll patterns, and other behavioral analytics.

  • Clarity masks input fields (such as passwords, credit card data) to avoid capturing sensitive data by default.

  • Clarity anonymizes or partially obfuscates IP addresses and does not store full IP addresses.

  • As with GA4, we only activate Clarity tracking after obtaining your consent.

  • We may also exclude internal traffic (e.g. staff, testers) from Clarity.


6. Disclosure to Third Parties & Cross-Border Transfers

We may disclose personal information to:

  • Service providers (processors) who perform functions on our behalf (e.g. hosting, analytics providers, email services)

  • Legal or regulatory authorities when required by law, or to enforce our rights

  • Other parties in connection with mergers, acquisitions, or business transfers (with notice and safeguards)


Cross-border transfers:
Some analytics or service providers may store or process data outside Canada (e.g. United States). PIPEDA allows cross-border transfers so long as adequate safeguards are in place (e.g. contractual protections, encryption, oversight). Microsoft Learn+1

We undertake reasonable measures to protect personal information when transferred internationally.


7. Retention & Deletion

  • We retain personal information only as long as necessary for the purposes for which it was collected (including legal, accounting, or reporting requirements).

  • For analytics data, we set retention periods (e.g. 14 months or shorter) consistent with best practices.

  • Once data is no longer needed, we securely delete, anonymize, or aggregate it so that it is no longer identifiable.

  • For requests to delete or de-identify your personal information, see Section 9.


8. Safeguards & Security

We implement appropriate technical and organizational safeguards to protect personal information against theft, loss, unauthorized access, disclosure, copying, use, or modification. These may include:

  • Encryption in transit (TLS / HTTPS) and at rest

  • Access controls, role-based permissions, authentication

  • Regular security audits, updates, and vulnerability assessments

  • Employee training and confidentiality agreements

  • Incident response and breach management processes

In the event of a privacy breach involving personal information, we will assess the risks and, where required under PIPEDA, notify affected individuals and the Privacy Commissioner.


9. Individual Rights: Access, Correction, Deletion & Complaints

Under PIPEDA, individuals have rights:

  • Access: You may request access to the personal information we hold about you.

  • Correction: You may request correction or updates to inaccurate or incomplete information.

  • Deletion / Erasure: To the extent feasible (and subject to legal or legitimate exceptions), you may request deletion or anonymization of your personal information.

  • Withdraw consent / opt-out: You can withdraw your consent or refuse further use of your data for specific purposes.

  • Complain / challenge: You may challenge our compliance with PIPEDA, and request us to investigate.

  • Timely response: We aim to respond within a reasonable timeframe (e.g., 30 days, unless a longer period is justified).


To make a request, contact our Privacy Officer (see Section 2). We may require identity verification and that you provide sufficient information to locate the data.

If you are not satisfied with our response, you may file a complaint with the Office of the Privacy Commissioner of Canada (OPC). priv.gc.ca+1


10. Transparency & Openness

We will make this Privacy Policy easily accessible on our website (e.g. via footer). We will clearly communicate our personal information practices in understandable language. Termageddon+1

We may post additional information (e.g. FAQs, internal privacy policies) or updates regarding our practices.


11. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or technology. When we make significant changes, we will post a notice on our site and update the “Last updated” date. If feasible, we may notify you (e.g. via email) when the changes are material.

Your continued use of the site or services after the revised policy is posted constitutes your consent to those changes (if you agreed to them or if the law permits).


12. Additional Provisions / Disclosures (if relevant)

You may optionally include:

  • A link or summary of our Cookie Policy (listing cookie types, durations, providers)

  • Details about automated decision-making or profiling (if any)

  • Specifics about how we handle children’s data (if relevant)

  • Third-party links / embedded content provision

  • Any special disclaimers or limitations of liability related to privacy

Last updated: October 6, 2025

Welcome to SwiftOutbound (“we”, “us”, “our”). We respect your privacy and are committed to protecting the personal information you share with us. This Privacy Policy describes how we collect, use, disclose, and safeguard your personal information, including via analytics tools (GA4, Microsoft Clarity), in a manner consistent with the Personal Information Protection and Electronic Documents Act (PIPEDA).

By accessing or using our website (https://swiftoutbound.com), you consent to the practices described in this Privacy Policy.

1. Scope & Application

  • This policy applies to all personal information we collect through our website, services, communications, and other interactions with you.

  • We are a private-sector organization offering business/marketing services, and as such we are subject to PIPEDA for personal information collected, used, or disclosed in the course of commercial activity. priv.gc.ca+1

  • If you are located in Canada or are a Canadian resident, your rights under PIPEDA apply. If you’re elsewhere, elements of other privacy laws may also apply — this policy is focused on PIPEDA compliance.


2. Accountability & Contact Information

We designate an individual who is accountable for our privacy practices. You may direct any questions, concerns, or requests to:


Privacy Officer / Contact
Name / Title: Ryan Ing, Founder
Email: ryan@swiftoutbound.com


We will respond to privacy inquiries, access requests, or requests for correction within a reasonable timeframe.


3. What Personal Information We Collect

We collect different types of personal information depending on how you interact with us. Some categories include:


Identifiers - IP address, cookie identifiers, device identifiers

Usage & analytics data - Page views, session duration, clicks, scroll behavior, heatmaps, session replay (via Microsoft Clarity)

Technical information - Browser type, operating system, screen resolution, device type

Contact / submitted data - Information you voluntarily provide (e.g. name, email, business name) when contacting us or filling forms

Geolocation / approximate location - Inferred from IP (but not precise GPS)


We do not intentionally collect sensitive personal information (e.g. health, race, biometrics). If you supply such data (e.g. in a contact form), we will treat it with additional care.


4. Purposes for Collection, Use & Disclosure

We collect, use, and disclose personal information only for purposes that are reasonable, legitimate, and disclosed. These include:

  • To operate, maintain, improve, and secure our website and services

  • To analyze and understand user behavior and usage patterns (via GA4, Microsoft Clarity)

  • To provide you with marketing, communications, offers, and updates (with your consent)

  • To respond to your inquiries, requests, or support needs

  • To comply with legal obligations, enforce our terms, or defend against claims

  • To detect, prevent, or respond to fraud or security incidents

If we wish to use your personal information for new purposes not initially disclosed, we will seek additional consent (unless legally permitted otherwise under PIPEDA).


5. Analytics / Tracking Tools: GA4 & Microsoft Clarity

We use analytics and tracking tools to better understand how users use our site and to enhance user experience. These tools include:

Google Analytics 4 (GA4)

  • We configure GA4 to anonymize IPs, disable advertising features or identifiers where feasible, and limit data retention in line with best practice.

  • GA4 collects usage, traffic sources, device, and interaction data.

  • We only activate GA4 tracking after you have provided consent (via our cookie consent banner or mechanism).

  • We do not attempt to associate Google Analytics data with personally identifying information, except when you voluntarily provide such information (e.g. via form submission).

Microsoft Clarity

  • Clarity allows us to capture session replays, heatmaps, click behavior, scroll patterns, and other behavioral analytics.

  • Clarity masks input fields (such as passwords, credit card data) to avoid capturing sensitive data by default.

  • Clarity anonymizes or partially obfuscates IP addresses and does not store full IP addresses.

  • As with GA4, we only activate Clarity tracking after obtaining your consent.

  • We may also exclude internal traffic (e.g. staff, testers) from Clarity.


6. Disclosure to Third Parties & Cross-Border Transfers

We may disclose personal information to:

  • Service providers (processors) who perform functions on our behalf (e.g. hosting, analytics providers, email services)

  • Legal or regulatory authorities when required by law, or to enforce our rights

  • Other parties in connection with mergers, acquisitions, or business transfers (with notice and safeguards)


Cross-border transfers:
Some analytics or service providers may store or process data outside Canada (e.g. United States). PIPEDA allows cross-border transfers so long as adequate safeguards are in place (e.g. contractual protections, encryption, oversight). Microsoft Learn+1

We undertake reasonable measures to protect personal information when transferred internationally.


7. Retention & Deletion

  • We retain personal information only as long as necessary for the purposes for which it was collected (including legal, accounting, or reporting requirements).

  • For analytics data, we set retention periods (e.g. 14 months or shorter) consistent with best practices.

  • Once data is no longer needed, we securely delete, anonymize, or aggregate it so that it is no longer identifiable.

  • For requests to delete or de-identify your personal information, see Section 9.


8. Safeguards & Security

We implement appropriate technical and organizational safeguards to protect personal information against theft, loss, unauthorized access, disclosure, copying, use, or modification. These may include:

  • Encryption in transit (TLS / HTTPS) and at rest

  • Access controls, role-based permissions, authentication

  • Regular security audits, updates, and vulnerability assessments

  • Employee training and confidentiality agreements

  • Incident response and breach management processes

In the event of a privacy breach involving personal information, we will assess the risks and, where required under PIPEDA, notify affected individuals and the Privacy Commissioner.


9. Individual Rights: Access, Correction, Deletion & Complaints

Under PIPEDA, individuals have rights:

  • Access: You may request access to the personal information we hold about you.

  • Correction: You may request correction or updates to inaccurate or incomplete information.

  • Deletion / Erasure: To the extent feasible (and subject to legal or legitimate exceptions), you may request deletion or anonymization of your personal information.

  • Withdraw consent / opt-out: You can withdraw your consent or refuse further use of your data for specific purposes.

  • Complain / challenge: You may challenge our compliance with PIPEDA, and request us to investigate.

  • Timely response: We aim to respond within a reasonable timeframe (e.g., 30 days, unless a longer period is justified).


To make a request, contact our Privacy Officer (see Section 2). We may require identity verification and that you provide sufficient information to locate the data.

If you are not satisfied with our response, you may file a complaint with the Office of the Privacy Commissioner of Canada (OPC). priv.gc.ca+1


10. Transparency & Openness

We will make this Privacy Policy easily accessible on our website (e.g. via footer). We will clearly communicate our personal information practices in understandable language. Termageddon+1

We may post additional information (e.g. FAQs, internal privacy policies) or updates regarding our practices.


11. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or technology. When we make significant changes, we will post a notice on our site and update the “Last updated” date. If feasible, we may notify you (e.g. via email) when the changes are material.

Your continued use of the site or services after the revised policy is posted constitutes your consent to those changes (if you agreed to them or if the law permits).


12. Additional Provisions / Disclosures (if relevant)

You may optionally include:

  • A link or summary of our Cookie Policy (listing cookie types, durations, providers)

  • Details about automated decision-making or profiling (if any)

  • Specifics about how we handle children’s data (if relevant)

  • Third-party links / embedded content provision

  • Any special disclaimers or limitations of liability related to privacy

© 2025 SwiftOutbound - All rights reserved.

Privacy Policy

© 2025 SwiftOutbound - All rights reserved.

Privacy Policy