Brand Amp Inc. — Privacy Policy

Last updated: April 21, 2026

1. Introduction

Brand Amp Inc. (“Brand Amp,” “we,” “us,” or “our”) respects your privacy and is committed to protecting the personal information we collect, use, and share. This Privacy Policy describes how we handle personal information collected through our website at www.brandampmarketing.com (the “Site”), our application and related services (the “App”), our advertising campaigns, and our interactions with you as a visitor, prospect, client, or client’s customer (collectively, the “Services”).

This Policy should be read together with our Terms & Conditions. By using the Services, you acknowledge you have read this Policy. Where applicable law requires explicit consent (for example, for non-essential cookies or direct marketing in certain jurisdictions), we will obtain that consent separately before we process your information.

2. Who We Are and How to Contact Us

Brand Amp Inc. is the entity responsible for your personal information processed through our Site, our App, and our direct business activities (when acting as a data controller).

Brand Amp Inc.
Attn: Privacy Officer
[Insert street address, city, province, postal code, Canada]
Email: info@brandampmarketing.com
Website: www.brandampmarketing.com

If you have a question about this Policy, want to exercise a privacy right, or believe your information has been handled improperly, contact our Privacy Officer at the details above.

3. Our Role: Controller vs. Processor

We process personal information in two different roles, and different parts of this Policy apply depending on the role:

  • As a data controller (or “business” under CCPA): when you visit our Site, submit a form, subscribe to the App, email us, or otherwise interact with Brand Amp directly. In this role, we determine why and how your information is processed, and this Policy governs that processing.
  • As a data processor (or “service provider” under CCPA): when we process personal information on behalf of a client — for example, when we upload a client’s customer list to an advertising platform to build an audience, install a tracking pixel on a client’s website, or run an email campaign through the client’s email platform. In this role, our processing is governed by the agreement (and any Data Processing Addendum) between Brand Amp and that client, and the client’s own privacy policy controls. If you are a customer of a Brand Amp client and have questions about your information, please contact that client directly.

4. Information We Collect

4.1 Information You Provide Directly

  • Contact and identity information: name, email address, phone number, business name, job title, and mailing address when you submit a contact form, book a strategy call, subscribe to the App, or correspond with us.
  • Account and subscription information: login credentials, subscription tier, plan preferences, and any account settings you configure within the App.
  • Billing information: payment method details, billing address, and transaction history. Full payment card numbers are collected and stored by our payment processor (such as Stripe), not by Brand Amp.
  • Communications: the content of emails, Messenger conversations, chat messages, form submissions, surveys, and support requests you send us.
  • Marketing submissions: information contained in testimonials, case studies, reviews, or user-generated content you submit.

4.2 Information Collected Automatically

  • Device and usage data: IP address, approximate location (derived from IP), device type, operating system, browser type and version, referring URL, pages visited, time and date of visits, time spent on pages, and clickstream data.
  • Cookies and similar technologies: see Section 5 for details.
  • Advertising identifiers: when you interact with our ads on Meta, Google, YouTube, TikTok, LinkedIn, or similar platforms, those platforms may share information with us about your interaction (for example, that you viewed a video for a certain duration or clicked an ad).

4.3 Information from Third Parties

  • Advertising platforms: aggregated and individual-level data about ad performance, audience engagement, and conversions.
  • Analytics providers: data about how users interact with our Site.
  • Publicly available sources: business contact information about prospects (company name, LinkedIn profile, publicly listed email) used for outbound sales where permitted by applicable law.
  • Clients: when we act as a processor, we receive personal information from our clients (such as customer lists for audience uploads) under their direction and instructions.

4.4 Sensitive Information

We do not intentionally collect sensitive personal information (such as government ID numbers, health data, biometric data, or financial account credentials) except to the limited extent reasonably necessary to process a transaction or as required by law. Please do not submit sensitive information to us through email, forms, or Messenger.

5. Cookies, Pixels, and Tracking Technologies

We and our service providers use cookies, web beacons, pixels, SDKs, and similar technologies (together, “Tracking Technologies”) to operate the Site, measure performance, and deliver advertising. Where required by law, we obtain your consent through a cookie banner before setting non-essential Tracking Technologies.

5.1 Categories of Tracking Technologies We Use

  • Strictly necessary: required for the Site to function (session management, security, basic navigation). These cannot be disabled.
  • Analytics: help us understand how visitors use the Site so we can improve it (for example, Google Analytics).
  • Advertising and retargeting: let us and our advertising partners show you relevant ads on third-party sites based on your activity on our Site (for example, the Meta Pixel, Google Ads conversion tracking, LinkedIn Insight Tag, TikTok Pixel).
  • Functionality: remember your preferences and settings.

5.2 Specific Advertising and Analytics Tools

We use the following third-party tools on the Site. Each has its own privacy policy that governs how it processes your information:

  • Meta Pixel (Meta Platforms, Inc.) — measures ad conversions, builds custom and lookalike audiences on Facebook and Instagram, and enables retargeting.
  • Google Analytics and Google Ads (Google LLC) — measures Site traffic, attributes conversions, and enables remarketing across Google properties and the Google Display Network.
  • Google Tag Manager — loads and manages our tracking tags.
  • YouTube — embedded videos and YouTube advertising may set cookies.
  • LinkedIn Insight Tag (LinkedIn Corporation) — conversion tracking and retargeting for LinkedIn Ads.
  • TikTok Pixel (ByteDance Ltd.) — conversion tracking and retargeting for TikTok Ads.

You can manage or withdraw cookie consent at any time through the cookie preferences link available on our Site. You can also manage tracking through your browser settings, ad-platform controls (for example, Meta’s Ad Preferences and Google’s My Ad Center), and global opt-out tools such as the Network Advertising Initiative (optout.networkadvertising.org) and the Digital Advertising Alliance (optout.aboutads.info). We honour Global Privacy Control (GPC) signals from supported browsers as a valid opt-out of sale and sharing of personal information.

6. How We Use Personal Information

We use personal information for the following purposes, each supported by a lawful basis under applicable data protection law:

  • To provide the Services — creating and managing accounts, delivering the App, processing transactions, running client campaigns, and providing support. Lawful basis: performance of a contract.
  • To communicate with you — responding to inquiries, sending transactional messages (receipts, service updates), and (with appropriate consent where required) sending marketing emails. Lawful basis: contract, legitimate interests, and/or consent.
  • To operate and improve the Services — analyzing how visitors use the Site, testing features, fixing bugs, and improving content. Lawful basis: legitimate interests and/or consent.
  • To market our Services — running our own ad campaigns, building audiences, retargeting, personalizing content, and measuring ad performance. Lawful basis: consent (where required) and/or legitimate interests.
  • To keep the Services secure — detecting fraud, abuse, and security incidents. Lawful basis: legitimate interests and legal obligation.
  • To comply with law — meeting our legal, tax, and regulatory obligations and responding to lawful requests from authorities. Lawful basis: legal obligation.

7. AI, Messenger, and Automated Interactions

Our Services, Site, and Facebook/Instagram Messenger experiences may use artificial intelligence to qualify prospects, answer questions, and route conversations. When you interact with our AI-assisted tools, the content of your messages — including any personal information you share — is processed to respond to you, to improve our Services, and to connect qualified prospects with a human team member.

Where AI is in use, you may be communicating with an automated system rather than a human. You can ask to be connected with a human at any time by saying so in the conversation or emailing info@brandampmarketing.com. Please do not share sensitive information (such as payment card details or account passwords) in Messenger or chat.

8. How We Share Personal Information

We do not sell personal information for money. We may share personal information in the following circumstances:

  • With service providers and sub-processors that help us operate the Services, under written agreements that limit how they use personal information. Categories include: cloud hosting and infrastructure, CRM and marketing platforms, email service providers, payment processors (such as Stripe), analytics providers, advertising platforms, customer support tools, and AI providers.
  • With advertising platforms (Meta, Google, TikTok, LinkedIn, YouTube) when we run campaigns, build audiences, or measure conversions. These platforms act as independent controllers or joint controllers under their own privacy terms.
  • With clients, where we are acting as their processor (for example, handing back campaign data or leads generated through their campaigns).
  • In a corporate transaction, such as a merger, acquisition, financing, or sale of assets. We will notify affected users of any change in control.
  • For legal reasons, if required by law, court order, subpoena, or government request, or to protect our rights, property, or safety, or that of our users, clients, or others.
  • With your consent, for any other purpose disclosed at the time you provide the information.

“Sale” or “sharing” under US state privacy laws: some US state privacy laws define “sale” and “sharing” broadly enough that certain advertising cookie activity may qualify, even without money changing hands. See Section 12 for how to opt out.

9. Data Retention

We keep personal information only as long as we need it for the purposes described in this Policy, unless a longer retention period is required or permitted by law. Typical retention periods:

  • Inquiry and lead submissions: up to 24 months after your last interaction with us, unless you become a client.
  • Client and account records: for the duration of the relationship and up to 7 years after it ends, to meet tax, accounting, and legal obligations.
  • Email marketing lists: until you unsubscribe or are inactive for 24 months, whichever is earlier.
  • Site analytics and ad platform data: according to the retention settings of the relevant platform (typically 14 to 26 months).
  • Support and communications records: up to 3 years after the last communication.

When we no longer need personal information, we will delete it, anonymize it, or securely dispose of it.

10. International Data Transfers

Brand Amp is based in Canada, and our service providers are located in Canada, the United States, and other countries. If you are located outside of Canada or the US, your personal information will be transferred to, stored in, and processed in countries that may have data protection laws different from those in your country. Where required by law (for example, for transfers out of the European Economic Area, United Kingdom, or Switzerland), we rely on appropriate safeguards such as the European Commission’s Standard Contractual Clauses, the UK International Data Transfer Addendum, or equivalent mechanisms.

11. Your Rights (European Economic Area, United Kingdom, and Switzerland)

If you are in the EEA, UK, or Switzerland, you have the following rights under the General Data Protection Regulation (GDPR) and UK GDPR:

  • Access: request a copy of the personal information we hold about you.
  • Rectification: ask us to correct inaccurate or incomplete data.
  • Erasure: ask us to delete personal information, subject to legal exceptions.
  • Restriction: ask us to limit how we process your information.
  • Data portability: request a machine-readable copy of data you provided to us.
  • Objection: object to processing based on legitimate interests, including direct marketing.
  • Withdraw consent: withdraw any consent you previously gave, without affecting prior lawful processing.
  • Lodge a complaint with your local data protection authority.

To exercise any of these rights, contact us at info@brandampmarketing.com. We will respond within the timeframe required by law (typically 30 days).

12. Your Rights (United States)

If you are a resident of California, Virginia, Colorado, Connecticut, Utah, Texas, Oregon, Delaware, Iowa, Montana, Tennessee, New Jersey, or another US state with an applicable privacy law, you have the following rights:

  • Right to know / access: request the categories and specific pieces of personal information we have collected about you.
  • Right to delete: request deletion of personal information we have collected from you, subject to exceptions.
  • Right to correct: request correction of inaccurate personal information.
  • Right to opt out of sale or sharing: opt out of the sale or sharing of personal information for targeted advertising. See Section 5 and the “Do Not Sell or Share My Personal Information” link on our Site.
  • Right to limit use of sensitive personal information (California).
  • Right to data portability.
  • Right to non-discrimination for exercising your rights.
  • Right to appeal a denied request (in states that require it).

California “Shine the Light” (Civil Code §1798.83): California residents may request information once per year about categories of personal information we disclosed to third parties for their direct marketing purposes. Send requests to info@brandampmarketing.com with the subject line “Shine the Light Request.”

To submit a request, email info@brandampmarketing.com or use the webform (if available) on our Site. You may use an authorized agent; we may require verification. We honour Global Privacy Control (GPC) signals as a valid opt-out of sale and sharing.

13. Your Rights (Canada)

If you are in Canada, you have the following rights under the Personal Information Protection and Electronic Documents Act (PIPEDA), Quebec’s Law 25, and other applicable Canadian privacy laws:

  • Access: request access to personal information we hold about you.
  • Correction: request correction of inaccurate or incomplete information.
  • Withdraw consent: withdraw consent to our processing, subject to legal or contractual restrictions.
  • Portability (Quebec): request transfer of your information to another organization in a structured format.
  • De-indexing (Quebec): request that a search result link be de-indexed where legal conditions are met.
  • Information about automated decisions (Quebec): request information about decisions made about you based solely on automated processing.
  • Complain to a regulator: the Office of the Privacy Commissioner of Canada (priv.gc.ca) or your provincial equivalent.

CASL and marketing emails: we rely on express or implied consent under Canada’s Anti-Spam Legislation (CASL) to send commercial electronic messages. Every marketing email includes an unsubscribe link, and you can unsubscribe at any time.

14. Marketing Communications

We may send you marketing emails about our Services where we have your consent or where permitted by applicable law. You can unsubscribe at any time by clicking the unsubscribe link in any marketing email or by emailing info@brandampmarketing.com. Transactional messages (such as billing notices, security alerts, and service updates) are not marketing and may continue even after you unsubscribe from marketing.

15. Security

We implement reasonable administrative, technical, and physical safeguards designed to protect personal information from loss, misuse, unauthorized access, disclosure, alteration, and destruction. These include encryption in transit, access controls, principle of least privilege, and vendor due diligence. However, no method of transmission over the Internet or electronic storage is completely secure, and we cannot guarantee absolute security. Please do not send sensitive information (such as payment card numbers or passwords) to us by email or through unencrypted channels.

16. Data Breach Notification

If we become aware of a data breach that poses a real risk of significant harm to individuals, we will notify affected users and applicable regulators without undue delay and within the timeframes required by law (for example, within 72 hours under GDPR and as soon as feasible under PIPEDA). We maintain records of security incidents as required by law.

17. Links to Third-Party Sites

The Site may contain links to third-party websites, plugins, and services. We are not responsible for the privacy practices or the content of those third parties. When you leave our Site, we encourage you to read the privacy policy of every site you visit.

18. Children’s Privacy

The Services are not directed to children under the age of 16, and we do not knowingly collect personal information from children under 16. If you believe a child under 16 has provided us with personal information, please contact us at info@brandampmarketing.com and we will take steps to delete the information.

19. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will update the “Last updated” date at the top of this Policy and, where legally required, provide additional notice (such as a banner on the Site or an email). Your continued use of the Services after changes become effective constitutes acceptance of the updated Policy.

20. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our handling of your personal information, please contact our Privacy Officer:

Brand Amp Inc. — Privacy Officer
[Insert street address, city, province, postal code, Canada]
Email: info@brandampmarketing.com
Website: www.brandampmarketing.com

© 2026 Brand Amp Inc. All rights reserved.