Privacy Policy

1. Introduction

Pentascope Strategy Consult Inc. (“Pentascope,” “we,” “our,” or “us”) is a management consulting firm incorporated in the Province of Ontario, Canada, operating under the Transformative Enterprise Management (TEM) practice. We are committed to protecting the privacy of individuals who interact with our firm, including clients, prospective clients, partners, website visitors, and members of the public.

This Privacy Policy explains how we collect, use, disclose, and safeguard personal information in accordance with the Personal Information Protection and Electronic Documents Act (PIPEDA), Canada’s Anti-Spam Legislation (CASL), and applicable provincial privacy legislation. It applies to all services and engagements delivered by Pentascope across our consulting portfolios and market operations.

2. Our Core Commitment: We Do Not Store Personal Information

Pentascope does not collect, retain, or store personally identifiable information (PII) as part of its standard business operations. Our consulting services are designed around enterprise-level data analytics, organizational intelligence, and technology advisory — not the collection or processing of individual personal data.

Specifically:

  • We do not maintain databases of personal information about individuals.
  • We do not require clients or website visitors to provide PII in order to access our services, publications, or general communications.
  • Where personal information is incidentally received (for example, a name and email address in the course of business correspondence), it is used solely for the immediate purpose of that communication and is not stored in any structured system of records.
  • We do not sell, trade, license, or otherwise commercially exploit personal information under any circumstances.

3. Scope and Application

This policy applies to:

  • All interactions with Pentascope, whether in person, by telephone, by email, or through our website and digital channels.
  • All consulting engagements across our ten TEM portfolios, including AgriIntel, FlowState Manufacturing, NovaMile Logistics, EcoSense, UrbanPulse, BioSync, MarketMesh, XR Enterprise, LedgerEdge, and CreativeGrid.
  • Operations in all markets where Pentascope is active, including Canada, the United States, and Sub-Saharan Africa.

Where Pentascope operates in jurisdictions with additional privacy requirements, we comply with the stricter standard.

4. The Ten PIPEDA Fair Information Principles

Although Pentascope does not store PII, we recognize and uphold the ten fair information principles enshrined in Schedule 1 of PIPEDA as foundational to responsible data governance:

Accountability. Pentascope’s Managing Director is designated as the individual accountable for compliance with this policy and all applicable privacy legislation. Inquiries may be directed to the contact information provided at the end of this document.

Identifying Purposes. Any personal information collected incidentally will be accompanied by a clear statement of the purpose for which it is being used at the time of collection.

Consent. We obtain meaningful consent before collecting, using, or disclosing personal information. Where information is provided voluntarily (e.g., a business card at a conference), implied consent is assumed for the purpose of follow-up communication.

Limiting Collection. We collect only the minimum personal information necessary for an identified purpose. In practice, this means we collect virtually no PII.

Limiting Use, Disclosure, and Retention. Personal information is not used or disclosed for purposes other than those for which it was collected. Because we do not store PII, retention is not applicable in our standard operations.

Accuracy. Where we do hold transient personal information (e.g., in the body of an email), we take reasonable steps to ensure it is accurate for the purpose for which it is being used.

Safeguards. All Pentascope systems, communications infrastructure, and engagement files are protected by industry-standard security measures, including encryption in transit and at rest, access controls, and secure disposal protocols.

Openness. This policy is made readily available to any individual upon request. It is published on our website and provided to clients at the commencement of consulting engagements.

Individual Access. Any individual may request confirmation of whether Pentascope holds personal information about them, and if so, access to that information. Given our policy of non-retention, such requests will typically confirm that no PII is held.

Challenging Compliance. Individuals may challenge Pentascope’s compliance with this policy by contacting our designated privacy contact. All complaints will be investigated and responded to within thirty (30) business days.

5. Client Engagement Data

In the course of delivering consulting services, Pentascope may process enterprise data, operational data, market data, and technical data provided by clients. This data relates to organizational performance, systems architecture, and market intelligence — not to identifiable individuals.

Where a client engagement requires Pentascope to access or process data that may contain personal information (for example, employee records within a workforce transformation project), we will:

  • Execute a formal data processing agreement with the client prior to accessing such data.
  • Process personal information solely as directed by the client and only to the extent necessary for the engagement.
  • Return or securely destroy all client data, including any personal information, upon completion of the engagement in accordance with the terms of the data processing agreement.
  • Never retain copies of personal information beyond the engagement period.

6. Website and Digital Channels

Pentascope’s website does not use tracking cookies, advertising pixels, or third-party analytics platforms that collect PII. We do not operate user accounts, login portals, or registration forms that require personal information.

Our website may use the following non-identifying technologies:

  • Server logs that record IP addresses, browser types, and page requests for the sole purpose of maintaining website security and performance. These logs are retained for a maximum of ninety (90) days and are not linked to any individual identity.
  • Essential cookies that are strictly necessary for website functionality (e.g., session management). These cookies do not contain personal information and expire at the end of each browser session.

If Pentascope introduces any new digital features that involve the collection of personal information in the future, this policy will be updated accordingly and affected individuals will be notified.

7. Canada’s Anti-Spam Legislation (CASL)

Pentascope complies with CASL in all commercial electronic communications. We do not send unsolicited commercial electronic messages. Where we send communications to existing business contacts, we rely on the implied consent provisions of CASL and provide a clear and functional unsubscribe mechanism in every message. Express consent is obtained where required.

8. Third-Party Disclosure

Pentascope does not disclose personal information to third parties except in the following limited circumstances:

  • Where required by law, regulation, court order, or governmental authority with lawful jurisdiction.
  • Where necessary to protect the rights, safety, or property of Pentascope, its clients, or the public.
  • With the explicit consent of the individual concerned.

We do not share personal information with marketing partners, data brokers, advertising networks, or any commercial third party.

9. International Operations and Cross-Border Considerations

Pentascope operates in Canada and Sub-Saharan Africa. Where business communications transit international borders, we ensure that any personal information involved is protected to a standard consistent with PIPEDA, regardless of jurisdiction.

We do not transfer personal information to jurisdictions with inadequate privacy protections unless contractual safeguards (such as data processing agreements with appropriate privacy clauses) are in place.

10. Breach of Security Safeguards

In the unlikely event that a breach of security safeguards occurs involving personal information under Pentascope’s control, we will:

  • Report the breach to the Office of the Privacy Commissioner of Canada as required under PIPEDA’s mandatory breach reporting provisions (effective November 1, 2018).
  • Notify affected individuals as soon as feasible if the breach creates a real risk of significant harm.
  • Maintain a record of all breaches, whether or not they meet the reporting threshold.
  • Take immediate corrective action to contain the breach and prevent recurrence.

11. Children’s Privacy

Pentascope’s services are directed at enterprises and institutions, not at individuals under the age of eighteen (18). We do not knowingly collect personal information from children. If we become aware that personal information relating to a child has been received, it will be promptly deleted.

12. Changes to This Policy

Pentascope may update this Privacy Policy from time to time to reflect changes in our operations, legal obligations, or best practices. Material changes will be communicated through our website and, where appropriate, directly to affected parties. The effective date at the top of this document indicates the most recent revision.

13. Contact Information

For questions, concerns, or requests related to this Privacy Policy or Pentascope’s privacy practices, please contact:

 

Privacy Officer

Pentascope Strategy Consult Inc.

Ontario, Canada

Email: privacy@pentascope.ca

©Copyright. All rights reserved.

We need your consent to load the translations

We use a third-party service to translate the website content that may collect data about your activity. Please review the details in the privacy policy and accept the service to view the translations.