Last updated: December 22, 2025
Belterama Software Inc. ("Beltercyber," "we," "us," or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our vendor risk management platform and services.
This Privacy Policy applies to information collected through our vendor risk management platform and services (the "Services"), our website at www.beltercyber.com (the "Website"), and other interactions you may have with Beltercyber (such as customer support inquiries or events).
This Policy does not apply to third-party applications, integrations, or services that may connect with our Services ("Third-Party Services"). Please review the privacy policies of any Third-Party Services you choose to use.
If you are using our Services on behalf of an organization (such as your employer), that organization controls the data submitted to our Services ("Customer Data"), and you should direct privacy inquiries regarding Customer Data to that organization.
We collect information in the following ways:
Account Information: When you create an account, we collect your name, email address, password, company name, job title, and phone number.
Billing Information: Our Services are currently offered free of charge. If we introduce paid plans in the future, payment processing will be handled by a third-party PCI-compliant payment processor (such as Stripe). We will not store your full credit card numbers; payment information will be collected and processed directly by the payment processor in accordance with their privacy policy.
Customer Data: Information you submit to the Services, including vendor information, questionnaire responses, risk assessments, uploaded documents, and related data you choose to input.
Communications: When you contact us for support or inquiries, we collect the content of your communications along with your contact information.
Usage Data: We automatically collect information about how you interact with our Services, including pages visited, features used, actions taken, and time spent on the platform.
Device and Log Information: We collect device information such as IP address, browser type and version, operating system, device identifiers, and referring URLs.
Location Information: We may derive your approximate location from your IP address.
Cookies and Similar Technologies: We use cookies, web beacons, and similar technologies to collect information and improve our Services. See Section 5 for more details.
We may receive information from third parties such as identity verification services, analytics providers, marketing partners, and publicly available sources. If you sign in using a third-party authentication service (such as Google), we receive basic profile information from that service.
We use the information we collect for the following purposes:
Providing and Operating the Services: To create and manage your account, deliver the Services, process transactions, and provide customer support.
Improving and Developing the Services: To understand how our Services are used, identify trends, diagnose technical issues, and develop new features and improvements.
Communications: To send you service-related notices (such as security alerts, account notifications, and billing information), respond to your inquiries, and provide customer support.
Marketing: With your consent where required, to send you information about products, features, promotions, and events that may interest you. You can opt out of marketing communications at any time.
Security and Fraud Prevention: To protect our Services, users, and the public from fraud, abuse, security threats, and illegal activity.
Legal Compliance: To comply with applicable laws, regulations, legal processes, and government requests.
Aggregated and Anonymized Data: We may create aggregated or anonymized data that does not identify you for analytics, benchmarking, and improving our Services.
We do not sell your personal information. We may share your information in the following circumstances:
Service Providers: We share information with third-party vendors who perform services on our behalf, such as hosting, payment processing, analytics, customer support, and email delivery. These providers are contractually obligated to protect your information and use it only for the services they provide to us.
With Your Organization: If you use our Services through an organization (such as your employer), we may share information with that organization as directed by them.
Business Transfers: In connection with a merger, acquisition, bankruptcy, or sale of assets, your information may be transferred to the acquiring entity. We will notify you of any such change.
Legal Requirements: We may disclose information if required by law, regulation, legal process, or government request, or when we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
With Your Consent: We may share information with third parties when you have given us your consent to do so.
Aggregated or Anonymized Data: We may share aggregated or anonymized information that does not identify you with third parties for research, marketing, analytics, and other purposes.
We use cookies and similar technologies (such as web beacons and pixels) to collect information, improve your experience, and analyze how our Services are used.
Essential Cookies: Required for the operation of our Services, such as authentication and security. You cannot opt out of these cookies.
Functional Cookies: Enable enhanced functionality and personalization, such as remembering your preferences.
Analytics Cookies: Help us understand how visitors interact with our Website and Services so we can improve them.
Marketing Cookies: Used to deliver relevant advertisements and track the effectiveness of our marketing campaigns.
Most web browsers allow you to manage cookie preferences. You can set your browser to refuse cookies or alert you when cookies are being sent. Please note that disabling certain cookies may affect the functionality of our Services.
We retain your information for as long as necessary to provide our Services, comply with legal obligations, resolve disputes, and enforce our agreements.
Account Data: We retain your account information for as long as your account is active. If you close your account, we will delete or anonymize your personal information within 90 days, unless retention is required for legal purposes.
Customer Data: Customer Data is retained in accordance with our agreement with the organization that controls it. Upon termination of a subscription, Customer Data is retained for 30 days to allow for data export, after which it may be permanently deleted.
Usage and Log Data: We generally retain usage and log data for up to 24 months, unless longer retention is required for security, legal, or business purposes.
We implement industry-standard administrative, technical, and physical safeguards to protect your information from unauthorized access, alteration, disclosure, or destruction. These measures include:
• Encryption of data in transit (TLS) and at rest
• Access controls and authentication requirements
• Regular security assessments and monitoring
• Employee training on data protection practices
While we strive to protect your information, no method of transmission over the Internet or electronic storage is completely secure. We cannot guarantee absolute security of your data.
Beltercyber is based in Canada. Your information may be transferred to and processed in Canada and other countries where our service providers operate.
If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, we rely on appropriate safeguards for international data transfers, such as Standard Contractual Clauses approved by the European Commission, or other legally recognized transfer mechanisms.
Canada has been recognized by the European Commission as providing an adequate level of data protection.
Depending on your location, you may have certain rights regarding your personal information:
Access: Request a copy of the personal information we hold about you.
Correction: Request that we correct inaccurate or incomplete information.
Deletion: Request that we delete your personal information, subject to certain exceptions.
Portability: Request a copy of your information in a portable, machine-readable format.
Opt-Out: Opt out of marketing communications by clicking "unsubscribe" in any marketing email or contacting us.
Withdraw Consent: Where we rely on consent, you may withdraw it at any time.
To exercise these rights, please contact us at contact@belterama.com. We will respond to your request within the timeframe required by applicable law. We may need to verify your identity before processing your request.
If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):
Right to Know: You can request information about the categories and specific pieces of personal information we have collected, the sources of collection, the purposes for collection, and the categories of third parties with whom we share information.
Right to Delete: You can request deletion of your personal information, subject to certain exceptions.
Right to Correct: You can request correction of inaccurate personal information.
Right to Opt-Out: We do not sell personal information. If we use third-party cookies for targeted advertising, you may opt out through your browser settings or by using the Global Privacy Control signal.
Non-Discrimination: We will not discriminate against you for exercising your privacy rights.
To submit a request, contact us at contact@belterama.com. You may designate an authorized agent to make a request on your behalf.
Our Services are not directed to individuals under the age of 16, and we do not knowingly collect personal information from children. If we learn that we have collected personal information from a child under 16, we will take steps to delete that information promptly. If you believe a child has provided us with personal information, please contact us at contact@belterama.com.
Our Services may contain links to third-party websites and services. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party sites you visit.
We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. We will post any changes on this page and update the "Last updated" date. If we make material changes, we will provide notice through the Services or by email. Your continued use of the Services after any changes constitutes acceptance of the updated Privacy Policy.
If you have questions, concerns, or complaints about this Privacy Policy or our privacy practices, please contact us:
Belterama Software Inc.
Email: contact@belterama.com
We will investigate any complaints and attempt to resolve them in accordance with this Policy and applicable law.
© 2026 Beltercyber. All rights reserved.