MatrixDomainHosting.ca (the “Site”) and the services offered through it (including web hosting, email, and domain-related services) are operated by North America Integrated Systems Solutions Corp (“NAISSCO,” “we,” “us,” “our”).

This Privacy Policy explains how we collect, use, disclose, and safeguard personal information, and how you can contact us about our privacy practices. We aim to comply with Canada’s federal private-sector privacy law (PIPEDA) and applicable provincial private-sector privacy laws (which may include Québec, British Columbia, and Alberta, depending on your situation).

This Privacy Policy applies to:

• Visitors to the Site

• Customers who purchase or use our services

• People who contact us (e.g., sales inquiries, support tickets)

It does not apply to third-party websites or services you may access through links on our Site (they have their own privacy policies).

We collect personal information in the following ways:

A) Information you provide directly

• Account & contact details: name, business name, address, email, phone number, username/login details

• Billing details: transaction information, billing address, and payment status (payment card data is typically handled by our payment processor; we may not store full card numbers)

• Domain registration details: registrant/admin/technical/billing contact details required to register or transfer domains

• Support communications: support tickets, emails, chats, call notes, and troubleshooting details you choose to provide

• Identity/verification info (limited): where needed for fraud prevention, payment verification, or to comply with a registry/registrar requirement

B) Information we collect automatically

• Device and usage data: IP address, browser type, device identifiers, pages viewed, timestamps, referring URLs

• Logs and security data: authentication logs, system logs, and other records used to maintain performance and security

• Cookies & similar technologies: used for essential site functions (login/session), preferences, and (where enabled) analytics

C) Customer content (hosting and email)

When you use our hosting or email services, we process content you upload or store (e.g., website files, databases, emails). We handle this content primarily to provide the service, provide support at your request, maintain reliability, and protect the platform.

Important: If you host content or collect personal information through your website or applications, you are responsible for your own privacy compliance (e.g., your site’s privacy policy, consents, and lawful collection).

We use personal information to:

• Provide and administer services (provision hosting, domains, email, DNS, renewals, and account access)

• Process payments and prevent fraud

• Deliver support and troubleshoot issues

• Secure and protect our systems (abuse prevention, rate limiting, malware/security scanning, monitoring)

• Communicate with you about service notices, invoices, renewals, and important account updates

• Improve our services (performance analytics, capacity planning, and product improvements)

• Send marketing communications only where permitted and in line with your preferences (see “Marketing” below)

We use cookies and similar technologies to:

• Keep you signed in (session cookies)

• Remember preferences

• Support ordering and account workflows

• Measure site performance and usage trends (analytics), where enabled

You can control cookies through your browser settings. Disabling certain cookies may affect site functionality (for example, logging in or completing an order).

We do not sell your personal information.

We may share personal information with trusted service providers, only as needed to deliver services and run our business, such as:

• Payment processors (to process payments and prevent fraud)

• Domain registrars/registries (to register/transfer/renew domains)

• Infrastructure and hosting vendors (data centers, storage, networking)

• Support and communications tools (ticketing, email delivery/relay, SMS where used)

• Security providers (DDoS protection, monitoring, abuse prevention, etc.)

• Analytics providers (where enabled)

We also may disclose information:

• To comply with law / legal process (court orders, subpoenas, lawful requests)

• To protect rights and safety (fraud prevention, abuse, security incidents)

• During a business transaction (merger, financing, sale of assets), with appropriate protections

Domain registration often requires that certain contact details be provided to the registrar/registry, and some domain types may make registration data available through WHOIS/RDAP systems depending on registry rules and your selected privacy/proxy options.

Where supported and chosen, domain privacy/proxy services may reduce public exposure of contact details. Some domain extensions or registry policies may not allow full privacy.

We aim to use Canadian infrastructure where practical. However, some vendors (for example, payment processors, registries/registrars, support or security tooling) may process data in other countries.
Under Canadian law, cross-border transfers for processing are permitted, but organizations remain accountable for safeguarding the information and should be transparent about such transfers.
If your information is processed outside Canada, it may be subject to the laws of that jurisdiction (including lawful access requests by authorities).

We retain personal information only as long as necessary for:

• Providing services and support

• Meeting legal, tax, and accounting obligations

• Security, fraud prevention, and dispute resolution

Retention periods vary depending on the type of information and the service. We may retain certain records even after account closure where legally required or reasonably necessary for legitimate business purposes.

We use administrative, technical, and physical safeguards appropriate to the sensitivity of the information (e.g., access controls, encryption in transit where available, logging/monitoring, and least-privilege access).

If a breach of security safeguards creates a real risk of significant harm, PIPEDA requires organizations to report to the regulator and notify affected individuals, and to keep records of breaches.
Where provincial requirements also apply, we will follow those additional rules.

Depending on your jurisdiction and the nature of our relationship with you, you may have the right to:

• Access your personal information

• Correct inaccuracies

• Withdraw consent (subject to legal/contractual restrictions)

• Request deletion (where appropriate and not inconsistent with legal obligations)

Under PIPEDA, organizations generally must respond to access requests no later than 30 days (subject to limited exceptions/extensions).

To make a request, contact us using the information in Section 14. We may need to verify your identity before fulfilling certain requests.

If we send commercial electronic messages (email/SMS) to recipients in Canada, we follow Canada’s anti-spam rules, including:

• obtaining appropriate consent (where required),

• providing identification information, and

• providing an easy unsubscribe mechanism.

You can opt out of marketing at any time by using the unsubscribe link in a message or by contacting us. Service/transactional messages (e.g., invoices, security alerts, password resets) are not marketing and may still be sent.

Our services are intended for adults and businesses. We do not knowingly collect personal information from children in a way that would violate applicable law. If you believe a child has provided us personal information, contact us and we will address it appropriately.

We may update this Privacy Policy from time to time. The “Last updated” date will reflect the most recent revision. Material changes may be communicated via the Site or your account email.

For privacy questions, access/correction requests, or complaints, contact:

Privacy Officer (NAISSCO / MatrixDomainHosting.ca)
Email: privacy@matrixdomainhosting.ca
Mailing address: 242 8B – 3110 8th Street East Saskatoon, SK S7H 0W2 – Canada

If you are not satisfied with our response, you may also have the right to contact the appropriate privacy regulator in your jurisdiction.