Privacy
Privacy Policy
Last updated: May 1, 2026
This Privacy Policy describes how Sentinel Identity ("we", "us", "our") collects, uses, stores, and shares personal information when you visit sentinelidentity.ca or interact with our forms, newsletter, or articles. Sentinel Identity is an independent technical publication based in Ontario, Canada.
1. Information we collect
We collect only the personal information needed to operate the site and respond to readers:
- Information you provide: Your name, email address, and any message content you submit through our newsletter signup, contact form, or consulting request form.
- Information collected automatically: IP address (truncated where possible), user-agent string, referring URL, page paths visited, approximate location derived from IP, and interaction events such as clicks and scroll depth — used for traffic measurement and to detect abuse.
- Cookies and similar technologies: See Section 4 below and our Cookie Notice.
2. How we use information
We use personal information to:
- Deliver the newsletter and post-update emails you subscribed to.
- Reply to messages submitted through the contact and consulting forms.
- Operate, secure, and improve the website (caching, fraud prevention, performance monitoring).
- Measure aggregate traffic patterns and content engagement.
- Comply with legal obligations and respond to lawful requests.
We do not sell your personal information. We do not share your personal information with advertisers other than what is described in Section 3.
3. Third-party processors
We rely on a small set of trusted vendors to operate the site. Each is bound by its own privacy and data-processing terms.
- Vercel Inc. — website hosting, edge delivery, server logs, and Vercel Analytics (privacy-friendly, cookieless visitor measurement). Vercel Privacy Policy.
- Resend (Resend, Inc.) — transactional email delivery for newsletter confirmations and contact-form replies. Resend Privacy Policy.
- Neon (Neon, Inc.) — managed Postgres used to store anonymous visitor events and article feedback signals. Neon Privacy Policy.
- Google LLC (Google AdSense) — once enabled, Google may use cookies and identifiers to serve ads based on your prior visits to this and other websites. You can opt out of personalized advertising at Google Ad Settings and via the industry tools listed in our Cookie Notice. See How Google uses information from sites or apps that use our services.
4. Cookies and tracking
We use a minimal set of cookies. Vercel Analytics is cookieless. Google AdSense, when enabled, may place advertising cookies, including the DoubleClick DART cookie. You can disable or block cookies in your browser at any time. For a full breakdown of cookie categories and opt-out tools, see our Cookie Notice.
5. Lawful bases (EEA / UK)
Where the GDPR or UK GDPR applies, we process personal information on the following legal bases:
- Consent — when you subscribe to the newsletter or submit a form.
- Legitimate interest — to secure, maintain, and improve the website and to measure traffic in aggregate.
- Legal obligation — to comply with applicable laws and lawful requests.
6. Data retention
- Newsletter contact records: retained until you unsubscribe, plus a short suppression period to prevent re-adds.
- Contact and consulting form messages: retained for up to 24 months for follow-up, then deleted.
- Server access logs: retained by Vercel for the period stated in its policy (typically 30 days).
- Aggregate analytics: retained for up to 26 months.
7. Your rights
Depending on your jurisdiction, you may have the following rights regarding your personal information:
- PIPEDA (Canada): You may request access to and correction of your personal information. You may also withdraw consent at any time.
- GDPR / UK GDPR: Access, rectification, erasure, restriction of processing, data portability, objection, and the right to lodge a complaint with a supervisory authority.
- CCPA / CPRA (California): Right to know, right to delete, right to correct, right to limit use of sensitive personal information, and right to opt out of sale or sharing (we do not sell or share personal information as defined under CCPA, except as related to AdSense personalization where opt-out is available via the tools in our Cookie Notice).
To exercise any of these rights, email info@sentinelidentity.ca from the email address associated with your data. We will respond within 30 days.
8. International transfers
Our processors are based in the United States and the European Union. Where we transfer personal information outside your jurisdiction, we rely on Standard Contractual Clauses or equivalent safeguards provided by each processor.
9. Children's data
The site is not directed to children under 16. We do not knowingly collect personal information from children. If you believe a child has provided personal information, contact us and we will delete it.
10. Security
We use HTTPS, encrypted databases, and access controls provided by our vendors. No transmission over the internet is fully secure; we cannot guarantee absolute security but we work to limit risk.
11. Changes to this policy
We may update this Privacy Policy as the site evolves or as legal requirements change. Material changes will be reflected by updating the "Last updated" date at the top of this page.
12. Contact
Questions, requests, or complaints about this policy can be sent to info@sentinelidentity.ca or through our contact form.