top of page

Privacy Policy & Terms & Conditions
 

Last Updated: 2025/06/16
 

1. Overview of Services

We offer personal cybersecurity services designed to identify and report on publicly exposed digital vulnerabilities. These services include:

A. Leak Sweep

Identifies data breaches connected to up to 5 user-provided email addresses. The report may include exposed credentials, data dump entries, or malware-compromised records.

B. InfoTrace

Searches for personal information in public databases, people search engines, forums, search engines, and paste sites. Includes exposure of names, phone numbers, addresses, and other PII.

C. Spam Shield

Checks for your phone number and email in spam and robocall databases. Reviews public reputation entries, dark web mentions, and open contact scraping.

D. Full Check Bundle

Combines Leak Sweep, InfoTrace, and Spam Shield into a complete digital footprint scan.

Optional Add-Ons:

  • Fix-It Session (via remote session)

  • Cookie Cleanse

  • Family Leak Sweep (up to 3 family members)

  • Future Add-Ons (e.g., Monitoring Subscription) may become available.
     

2. Data Collection & Usage

Your privacy and trust are extremely important to us. This section outlines what we collect, why we collect it, how we store it, and your rights under international privacy laws including the General Data Protection Regulation (GDPR) and the Personal Information Protection and Electronic Documents Act (PIPEDA).

What We Collect:

In order to deliver your selected service(s), we may collect the following personally identifiable information (PII) and usage data:

  • Full Name

  • Email Addresses (up to 5, as provided)

  • Phone Numbers

  • Social Media Handles or Usernames (if voluntarily submitted)

  • Responses from the Order Form (concerns, focus areas, service selection, preferences)

  • Device Type, Operating System, and Technical Session Data (Fix-It Session only, and only during authorized remote access)

We do not request or store passwords, private account credentials, or sensitive documents unless explicitly shared during a Fix-It session and only in temporary context.

How We Use It:

Your information is used only for the purpose of providing and completing your requested service(s). Specifically:

  • To conduct leak, exposure, or visibility assessments based on the services purchased

  • To create a personalized digital security report

  • To assist with implementation of fixes or privacy recommendations (Fix-It Session)

  • To respond to client inquiries or follow-up service-related communication

  • For internal record keeping and anonymized service analytics (without linking back to individuals)

We do not sell, trade, or share your information with third parties under any circumstances.

Data Retention & Deletion:

We are committed to data minimization and apply strict retention timelines:

  • All personally identifiable information is automatically deleted within 48 hours of completing your service report and delivering your results.

  • If a Fix-It Session is included, this 48-hour window starts once the session has concluded.

  • Remote session logs are not retained.

  • Any files, notes, or screenshots used for analysis are deleted in the same 48-hour window.

Your Rights Under GDPR & PIPEDA:

You have full rights and control over your data. At any point, you may:

  • Request access to your personal data on file

  • Request correction of any inaccurate or outdated details

  • Request full deletion of all data prior to the standard 48-hour period

  • Withdraw consent for further communication or service follow-up

  • File a complaint if you believe your data has been misused (we will provide regulator contact info upon request)

Requests can be sent to  info@nofconsulting.com and are typically processed within 24 hours.

We are fully compliant with the requirements of:

  • GDPR (General Data Protection Regulation – EU/EEA)

  • PIPEDA (Personal Information Protection and Electronic Documents Act – Canada)

Remote Access Disclaimer (Fix-It Session Only):

If you request a Fix-It Session, it may involve temporary, secure remote access using client-approved software such as AnyDesk or RustDesk.

  • You must initiate and explicitly authorize the connection before any access is granted.

  • You will be able to see all activity in real-time.

  • We do not install any software without your consent.

  • You may terminate the session at any time.

  • No files are copied, and nothing is retained beyond the 48-h

  • our post-service deletion period.

3. Payment Terms

  • All prices are shown in Canadian Dollars (CAD) - Conversions made after order is placed.

  • Payments are handled through secure third-party processors such as Stripe, PayPal, or Interac e-Transfer.

  • No credit card or banking details are ever stored on our servers.

  • Payment is due upfront before service begins.

  • Services are non-refundable except in cases of error, abuse, or duplicate charges.
     

4. Guarantee & Limitations

  • While we strive to identify publicly visible vulnerabilities, we do not guarantee the discovery of specific threats.

  • Reports are based on accessible open-source data and OSINT (Open Source Intelligence) methods.

  • If no findings are discovered, a general risk analysis will still be provided. Refunds will not be issued solely on the basis of limited findings.

  • Fixes are recommended but implemented only in Fix-It Sessions.
     

5. Consent & Responsibility

By submitting your order:

  • You certify that all submitted email addresses and phone numbers belong to you or are submitted with proper permission.

  • You agree not to use our findings for malicious purposes, harassment, or illegal actions.

  • You acknowledge that our service is strictly informational and preventative in nature.
     

6. Referral Program

  • Referrers will receive a reward ($5 per successful purchase) via e-transfer, PayPal, or credit.

  • Abuse of the referral system (fake orders, duplicate accounts) will result in forfeiture of rewards and possible legal action.
     

7. Legal & Liability

  • We are not responsible for damages, losses, or liabilities resulting from digital breaches uncovered through our reports.

  • You agree to indemnify and hold harmless NOF Consulting Inc. from any misuse of the information provided.

  • We reserve the right to refuse service to any user who violates our policies or engages in suspicious activity.

bottom of page