Creative Guild Privacy Policy

LAST UPDATED: April 24, 2026

This policy replaces all previous versions. Creative Guild has been committed to data privacy since our inception in 2007; for inquiries regarding data collected under previous policies, please contact our Privacy Officer.

CREATIVE GUILD, INC.

Creative Guild, Inc. (“Creative Guild,” “we,” “us,” or “our”) is a Canadian digital marketing agency. This Privacy Policy explains how we collect, use, disclose, and protect personal information in the course of our business.

We operate in two distinct roles:

  • As a Data Processor (Service Provider): When we process personal information on behalf of our clients.
  • As a Data Controller (Organization): When we collect and use personal information for our own business operations.
1. Our Role as a Service Provider (Processor)

In most cases, Creative Guild acts as a service provider to our clients. Our clients determine the purpose and means of processing personal data (“Controllers”), and we process that data on their behalf.

Examples of Processing Activities:

  • Advertising Audiences: We may process email lists or customer data provided by clients to create custom audiences or targeting segments on platforms such as Meta, Google, or LinkedIn. We do not use this data for any purpose other than executing the client’s campaign and do not repurpose it across clients.
  • Email Marketing Campaigns: We assist clients in managing campaigns using third-party tools (e.g., Mailchimp, Mailgun). Clients are responsible for ensuring that all contact data has been collected in compliance with applicable laws, including Canada’s Anti-Spam Legislation (CASL).
  • AI Chatbots and Automation: We may build or configure AI-powered tools using client-provided infrastructure or APIs. Data processed through these systems is governed by the client’s privacy policy.
  • Campaign and Analytics Data: We may access, process, and analyze performance data as required to deliver services.

Data Handling Principles:

  • We process personal data only under client instruction
  • We limit access to authorized personnel
  • We do not sell or independently use client data
  • We retain client data only as required to fulfill contractual obligations
2. Information We Collect (As a controller)

We collect personal information necessary to operate our business and provide our services.

Types of Information:

  • Contact Information: Name, email address, company, and job title
  • Business Communications: Information provided through forms, email, or direct contact
  • Website Usage Data: IP address, browser type, device identifiers, and browsing behaviour
  • Marketing Engagement Data: Interactions with our emails, content, or advertisements
3. How We Use Information

We use personal information to:

  • Provide and manage our services
  • Communicate with clients and prospective clients
  • Improve our website and marketing efforts
  • Analyze performance and usage trends
  • Comply with legal and regulatory obligations
4. Legal Basis for Processing (Canada)

In accordance with PIPEDA, we collect, use, and disclose personal information with meaningful consent, except where otherwise permitted or required by law.

Where applicable, we rely on:

  • Express or implied consent
  • Legitimate business interests (e.g., improving services, responding to inquiries)
  • Contractual necessity
5. Cookies & Tracking Technologies

We use cookies and similar technologies to understand how visitors use our website and to improve performance.

Types of Cookies We Use:

  • Analytics Cookies: (e.g., Google Analytics) to measure website traffic and usage patterns
  • Advertising Cookies: May be used where applicable for campaign performance tracking

These technologies may collect:

  • IP address
  • Device and browser information
  • Pages visited and interactions

We obtain consent for non-essential cookies through our cookie consent mechanism. You can manage your preferences at any time or disable cookies through your browser settings.

6. Use of AI and Automated Tools

We use third-party artificial intelligence tools (such as OpenAI’s ChatGPT and Google Gemini) to support internal workflows, including drafting content, proposals, and campaign materials.

Safeguards:

  • We avoid including sensitive personal information wherever possible
  • Any data used is limited to what is necessary for the task
  • We do not intentionally use client data to train AI models
  • All outputs are reviewed by qualified personnel before use

Where client data is processed using AI tools, it is done in accordance with client instructions and applicable contractual agreements.

7. Data Sharing & Third-Party Providers

We may share personal information with trusted third-party service providers who support our operations, including:

  • Advertising Platforms: Meta, Google, LinkedIn, Spotify
  • Analytics Providers: Google Analytics
  • Email Platforms: Mailchimp, Mailgun, Sendgrid
  • AI Tools: OpenAI, Google
  • Cloud and Infrastructure Providers

These providers are contractually obligated to protect personal information and use it only for specified purposes.

We do not sell personal information.

8. International Data Transfers

Personal information may be processed or stored outside of Canada, including in the United States.

As a result, personal information may be subject to the laws of those jurisdictions and accessible to foreign governments, courts, or law enforcement.

We take reasonable steps to ensure appropriate safeguards are in place to protect personal information.

9. Data Retention

We retain personal information only as long as necessary for the purposes for which it was collected, including:

  • Client Data: As defined by client agreements or until no longer required to provide services
  • Business Contact Data: For the duration of the business relationship and a reasonable period thereafter
  • Analytics Data: In accordance with platform retention settings (e.g., Google Analytics)

When no longer required, personal information is securely deleted or anonymized.

10. Security Safeguards

We implement appropriate technical and organizational safeguards to protect personal information, including:

  • Access controls and authentication
  • Secure storage systems
  • Encryption where appropriate
  • Internal policies and staff training
11. Data Breach Notification

In the event of a breach of security safeguards involving personal information that poses a real risk of significant harm, we will:

  • Notify affected individuals as soon as feasible
  • Report the breach to the Office of the Privacy Commissioner of Canada, where required
12. Your Rights

Under Canadian privacy law, you have the right to:

  • Access the personal information we hold about you
  • Request corrections to inaccurate or incomplete information
  • Withdraw consent for certain uses of your information
  • Request deletion, where applicable

To exercise these rights, please contact us using the information below.

13. Client Responsibilities

Where Creative Guild acts as a service provider, clients are responsible for:

  • Ensuring lawful collection of personal information
  • Obtaining appropriate consent from individuals
  • Maintaining accurate and compliant privacy policies
14. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. The updated version will be indicated by the “Last Updated” date above.

15. Contact Information

For questions, requests, or complaints regarding this Privacy Policy or our data practices, please contact:

Data Protection Officer

Creative Guild, Inc.
197 King William Street
Hamilton, ON L8R 1A7
Canada
1+ 289-635-1888

You also have the right to file a complaint with the Office of the Privacy Commissioner of Canada.

Back To Top