How we handle data and cookies

For the purposes of applicable privacy laws, including the EU General Data Protection Regulation (GDPR) where it applies, the data controller is Canadian Daily Online Report Inc. We operate the website and provide an informational daily report about public digital topics gaining attention in Canada. This policy applies to personal data processed through this website, including the subscription flow and any messages sent to our contact address.

If you contact us by email, you may share personal data in the message content. We recommend that you do not include sensitive personal data in emails. Our site does not request health, biometric, political, or financial account information as part of normal operation.

We collect only the data needed to operate the site, provide the subscription service, and understand how readers use the content so we can improve clarity and navigation. Depending on how you use the site, the categories of data may include:

• Identity and contact data
  Full name (if provided), email address, and phone number (if you choose to include it in a message). Our subscription flow is designed to use email as the primary identifier.
• Technical data
  IP address, browser type and version, device type, operating system, approximate location derived from IP (city or region level), referral source, and time zone settings.
• Usage data
  Pages viewed, time spent on page, navigation paths, scroll depth signals, and interactions such as clicking internal navigation links. These metrics are used to understand which sections are read and where readers may get stuck.
• Cookie and similar technology data
  Consent status (accepted or rejected for non-essential cookies), and identifiers used by analytics tools where you have consented. See the Cookies section for details and typical durations.
• Communications content
  Information you include when you email us or when you submit a form (for example, questions or suggestions about what a digital term means).

We do not intentionally collect special category data such as health data, political opinions, religious beliefs, or precise geolocation. If you voluntarily send such data in a message, it will be processed only to address your request and handled with appropriate care.

We collect data through a combination of direct user input and automated collection that occurs when your browser requests a page. The main collection methods are:

We do not use pop-ups that block content before it loads. We do not cloak content for crawlers. The same pages are served to all users, subject only to standard technical delivery (such as responsive layout for different screen sizes).

Where GDPR applies, we rely on the following legal bases. Depending on the context, more than one basis may apply to the same processing activity. We aim to match the basis to the user expectation and the level of intrusiveness of the data use.

You can withdraw consent at any time for consent-based processing. Withdrawing consent does not affect the lawfulness of processing before withdrawal. For cookies, withdrawing consent generally requires changing the cookie setting through the banner or clearing stored site data in your browser.

We use personal data for specific operational reasons. We do not sell personal data, and we do not use personal data to make decisions that produce legal or similarly significant effects based solely on automated processing.

• Provide and maintain the site
  Deliver pages, ensure availability, and diagnose errors. This includes routine logging and monitoring for uptime and stability.
• Subscription and communications
  Send the email summary to subscribers, process unsubscribe requests, and send service messages related to the subscription (for example, a change to the sending schedule).
• Customer support
  Respond to messages, fix delivery issues, and address questions about the report format or access to pages.
• Analytics and product improvement (consent-based where required)
  Understand what sections are most useful, improve navigation, and reduce confusing layouts. We focus on aggregated usage patterns rather than identifying individual readers.
• Fraud prevention and security
  Protect the site from abusive traffic, malicious requests, and unauthorized access attempts. This may involve reviewing logs and applying rate limits.
• Legal compliance
  Meet obligations under applicable law, respond to lawful requests, and keep records necessary to exercise or defend legal claims.

We keep personal data only as long as necessary for the purposes described above, unless a longer period is required by law. Retention periods may vary depending on context and operational needs. Our typical retention approach is:

If you request deletion, we will delete or anonymize data where feasible, subject to legal obligations and security needs. Some limited records may be retained to document compliance with your request or to prevent repeated unwanted messages (for example, a suppression record after unsubscribe).

We share personal data only when needed to operate the site and provide the report. We do not sell personal data and we do not share it for third-party advertising as a primary business model. When we use service providers, we aim to limit shared data to what is necessary and to use contractual protections.

We may also share data in connection with a corporate transaction (for example, a reorganization) where permitted by law, with appropriate safeguards. If such an event materially changes how personal data is handled, we will provide notice.

Canadian Daily Online Report is based in Canada, and we primarily process data in Canada. However, some service providers may operate internationally. This means your personal data may be processed in countries outside your province, outside Canada, or outside the European Economic Area (EEA), depending on the provider’s infrastructure.

Where GDPR applies and data is transferred outside the EEA to a country that is not covered by an adequacy decision, we rely on appropriate safeguards such as the European Commission’s Standard Contractual Clauses (SCCs) and, where appropriate, supplementary measures. When using major cloud or analytics providers, processing locations may change over time as services evolve. We evaluate providers with a focus on security, contractual commitments, and practical risk.

If you want more detail about transfer safeguards for a specific processor category, contact us at [email protected] and include the subject line “International transfer information”.

Depending on your location, you may have rights regarding your personal data. If GDPR applies to you, you have the following rights, subject to applicable conditions and exceptions:

Cookies are small text files stored on your device by your browser. We use cookies and similar technologies for essential site functions and, where you consent, for analytics. Our cookie banner provides Accept and Reject choices for non-essential cookies.

This site is not directed to children under 16. We do not knowingly collect personal data from children under 16. If you believe a child has provided personal data to us, contact [email protected] so we can investigate and, where appropriate, delete the data.

If subscription services are used by a person under the age threshold in their jurisdiction, a parent or guardian should provide consent. We may take reasonable steps to restrict or remove such subscriptions if identified.

We may update this Privacy Policy to reflect changes in our practices, legal requirements, or service providers. When we make changes, we will update the “Last Updated” date at the top of this page. If a change is significant, we may also provide additional notice, such as a banner on the site or a message to subscribers.

Last Updated: January 15, 2026

If you have questions about this policy, want to exercise a privacy right, or want to request deletion, contact us using the details below. For fastest handling, email from the address you used to subscribe or the address associated with your inquiry.

If you are a subscriber and want to stop emails immediately, use the unsubscribe link included at the bottom of each report email. Unsubscribe takes effect promptly, and your email address may be retained on a suppression list to ensure you are not re-added unintentionally.