Privacy Policy

Last updated: April 14, 2026

Obsidian AI Labs Inc. ("we", "us", "our") is a Canadian corporation headquartered in St. Thomas, Ontario. This policy explains what information we collect when you interact with obsidianailabs.ca or engage us for services, how we use it, and the choices you have.

Information we collect

We only collect what we need to run the business and respond to you:

• What you send us directly. If you email info@obsidianailabs.ca or fill out a form, we receive and store the contents of that message along with your email address so we can reply and keep a record of the conversation.
• Basic web analytics. Standard web server logs (IP address, user agent, requested URL, timestamp) used to understand how the site is performing and to investigate abuse. We do not currently run third-party analytics trackers, cookies, or advertising pixels on this site.
• Project / engagement data. If you become a client, we collect only the information required to deliver the work we agreed on — which varies by engagement and is always documented in the statement of work.

How we use it

• To reply to inquiries and deliver the services you engage us for.
• To maintain operational and financial records required under Canadian law.
• To investigate technical problems or abusive behaviour against the site.

We do not sell your information. We do not share it with advertising networks. We do not use it to train third-party AI models.

Third parties

To run the business we use a small set of vendors, each of which may process information on our behalf:

• Email and productivity: Google (Gmail, Google Workspace).
• Infrastructure and hosting: DigitalOcean, GoDaddy.
• Payments and accounting: Stripe, QuickBooks.
• AI model providers: Anthropic, Google (Gemini), OpenAI — only for the portions of engagements that require LLM processing, and only with content you explicitly authorize us to send.

Each of these vendors has their own privacy policy. We have standard commercial agreements with them and do not grant them rights to use your information outside of delivering the service we pay them for.

Data retention

We keep correspondence and project records for as long as we have an active relationship with you, plus the retention period required by Canadian tax and corporate law (currently a minimum of 6 years for financial records). You can request deletion of any data we hold about you that is not subject to a legal retention requirement.

Your rights

Under Canadian privacy law (PIPEDA) and provincial equivalents, you have the right to:

• Ask what personal information we hold about you.
• Correct it if it's wrong.
• Ask for deletion (subject to legal retention requirements).
• Withdraw consent for future communication.

Email info@obsidianailabs.ca for any of the above and we'll respond within a reasonable time — typically under two weeks.

Security

We follow industry-standard practices for protecting data in transit (TLS) and at rest. No system is perfectly secure, but we try hard, and we'll tell you promptly if we believe your information has been exposed in an incident affecting us.

Changes to this policy

If this policy changes materially, we'll update the "Last updated" date at the top and, for active clients, notify you directly.

Contact

Questions about privacy go to info@obsidianailabs.ca. Obsidian AI Labs Inc., St. Thomas, Ontario, Canada.