Privacy Policy

Last updated: May 1, 2025

Who we are

Canada Political Audit & Evaluation Team Inc. (“CPAET”, “we”, “us”, or “our”) is committed to protecting the privacy and confidentiality of personal and financial information entrusted to us. This Privacy Policy explains how we collect, use, store, and protect information in the course of providing political financing compliance, filing, and audit services.

1. Information We Collect

We collect only the information necessary to provide professional political financing services and to meet legal and regulatory obligations. This may include:

  • Personal information such as names, contact details, and identification information of candidates, financial agents, and authorized representatives
  • Financial information related to election campaigns, EDAs, third parties, and other political entities
  • Documents and records required for political financing filing and audit
  • Website inquiry information submitted through forms or consultation requests
  • Technical information such as IP address or browser type for basic website functionality and security

CPAET does not collect information unrelated to the services we provide.

2. How We Use Information

Information collected by CPAET is used solely for legitimate professional purposes, including:

  • Providing political financing filing and audit services
  • Communicating with clients regarding their engagement
  • Preparing, reviewing, and submitting filings to applicable election authorities
  • Fulfilling professional, legal, and regulatory obligations
  • Improving internal processes, security, and service quality

We do not use personal information for marketing purposes without consent.

3. Confidentiality and Professional Obligations

CPAET is subject to professional standards of confidentiality and ethical conduct applicable to accounting, auditing, and assurance professionals. All client information is treated as confidential and accessed only by authorized personnel involved in the engagement.

4. Information Sharing and Disclosure

CPAET does not sell, rent, or trade personal information.

Information may be shared only:

  • With election authorities, where required for filing or audit
  • With third-party service providers strictly necessary to deliver our services (e.g., secure document platforms), subject to confidentiality obligations
  • Where required by law, regulation, or professional standards

5. Data Storage & Security

CPAET uses reasonable administrative, technical, and organizational safeguards to protect information against unauthorized access, loss, or misuse. We do not store sensitive data on local devices. All data is stored in Google Drive (Google Workspace), which uses:

  • End-to-end encryption
  • Role-based access control
  • Two-factor authentication (2FA)
  • Real-time activity logs
  • Secure sharing settings
  • Compliance with ISO/IEC 27001, SOC 2, and PIPEDA

Records are retained for 6–7 years as required by Canadian laws, then securely deleted. While no method of electronic transmission or storage is completely secure, CPAET takes data protection seriously and continually reviews its security practices.

6. Online and Remote Services

CPAET operates as a fully online firm. Information shared electronically is handled using secure communication and document exchange methods appropriate for professional services. Clients are encouraged to use designated secure channels when submitting sensitive information.

7. Client Rights and Access

Clients may request access to their personal information, corrections to inaccurate information, or clarification regarding how their information is used, subject to applicable legal and professional obligations.

8. Changes to This Privacy Policy

CPAET may update this Privacy Policy from time to time to reflect changes in legal requirements or professional practices. Updates will be posted on our website with a revised effective date.