Privacy Policy

You are here:
  1. Home
  2. Privacy Policy

Effective Date: 2026-06-06 Version: 2.0 Last Updated: 2026-06-06

Privacy Policy

Achieve IT is a Calgary-based marketing and IT agency. We build websites, run advertising campaigns (including Google Ads), and provide technical support and AI integration services for small and mid-sized businesses across Canada and the United States.

This policy explains what data we collect, why we collect it, who we share it with, and what your rights are. The short version:

  • We collect contact and business information when you reach out to us or become a client.
  • Our website uses cookies and Google Analytics to understand how visitors use the site.
  • When we manage Google Ads accounts for clients, we access advertising data through the Google Ads API solely to run and optimize those campaigns. We do not sell or share that data.
  • We do not sell personal information.
  • You can ask to see, correct, or delete the information we hold about you. Email [email protected].

We comply with Canada’s PIPEDA and applicable provincial privacy laws.

1. Who We Are

Achieve IT (“we”, “us”, “our”) is a Canadian marketing and IT agency operating achieveit.ca.

  • Offices: Calgary (HQ) and Vancouver
  • Mailing address: 330 5th Avenue SW, Suite 1800, Calgary, Alberta T2P 0J4, Canada
  • Contact: [email protected] · 1.888.865.3545

For privacy questions, contact us using the details in Section 13.

2. What This Policy Covers

This Privacy Policy describes how we collect, use, disclose, and protect personal information across all of our business activities, including:

  • the achieveit.ca website,
  • inquiries and communications with prospective clients,
  • ongoing client engagements (marketing, advertising, web development, IT, AI integration),
  • third-party platforms we use on behalf of clients (including Google Ads, Google Analytics, Meta Ads, Microsoft Ads, and similar services), and
  • our internal business operations (suppliers, contractors, payments).

Our separately branded Achieve AI Email product has its own privacy policy at https://achieveit.ca/privacy/. This Policy governs the rest of our business.

3. Information We Collect

3.1 Information you provide directly

  • Contact and inquiry information: name, email, phone, company name, role, message content when you fill out a contact form, book a call, or email us.
  • Client account information: business details, billing contact, billing address, payment method (handled by our payment processor; we do not store full credit card numbers), authorized account contacts.
  • Project information: assets, content, credentials, account access tokens, and instructions you share with us in order for us to deliver agreed services.

3.2 Information collected automatically on achieveit.ca

  • Log data: IP address, browser type, device type, referring page, pages viewed, timestamps.
  • Cookies and analytics: see Section 7.

3.3 Information from third parties

  • Authentication and platform access: when you grant us access to your Google Ads, Google Analytics, Meta Business, Microsoft Advertising, or similar accounts, we receive the access and account-identification data that platform exposes to us.
  • Payment processor: confirmation of payment and limited transaction metadata. We do not receive full card details.

3.4 Information we do not collect

We do not buy mailing lists, purchase profiles from data brokers, or use third-party tracking pixels for retargeting on the achieveit.ca marketing site.

4. Google Ads, Google Analytics, and Other Advertising Platforms (Acting on Behalf of Clients)

This section describes how we handle data accessed through advertising platform APIs, including the Google Ads API, when we manage campaigns for clients.

4.1 Authorization

We access a client’s Google Ads, Google Analytics, Meta Ads, Microsoft Advertising, or similar account only after the client (the account owner) has explicitly authorized us — typically by linking their account to our Google Ads Manager Account (MCC) 499-962-6833 or granting us role-based access on the relevant platform.

4.2 What we access

Through the Google Ads API and equivalent interfaces on other platforms, we access:

  • account and campaign structure (campaigns, ad groups, keywords, ads, assets),
  • performance metrics (impressions, clicks, conversions, cost, quality scores),
  • audience and targeting configuration that the client has set up or that we configure on their behalf,
  • conversion tracking and attribution data,
  • billing and budget data necessary to manage spend.

We do not access end-user (consumer) personal data through the Google Ads API beyond what Google exposes in aggregated reporting (for example, geographic regions, devices, demographic categories provided by Google in standard reports).

4.3 How we use it

We use this data solely to:

  • create, manage, optimize, and report on advertising campaigns for the client whose account it is,
  • diagnose performance issues and recommend changes,
  • generate reports and dashboards for that client,
  • meet contractual obligations to that client.

4.4 How we do not use it

  • We do not sell advertising data.
  • We do not share one client’s advertising data with another client.
  • We do not use one client’s data to train models or improve services we offer to anyone else.
  • We do not use the Google Ads API or any advertising platform API for purposes outside of providing agreed services to the authorizing client.

4.5 Compliance

Our use of the Google Ads API is governed by the Google Ads API Terms and Conditions and Google’s Required Minimum Functionality and policies. We maintain access to a client’s account only for as long as the engagement is active or as required for transition and final reporting. On request or termination, we remove our access promptly.

5. How We Use Your Information

We use the information described in Sections 3 and 4 to:

  • respond to inquiries and provide quotes,
  • deliver agreed services (campaigns, website builds, hosting, technical support, AI integration, ongoing maintenance),
  • send service-related and transactional communications (invoices, receipts, project updates, security notices),
  • send occasional marketing communications to existing and prospective clients where permitted; you may opt out at any time,
  • operate, secure, and improve achieveit.ca,
  • meet legal, accounting, and regulatory obligations.

We do not use your personal information for advertising or profiling outside the services you engage us for.

6. How We Share Information

We do not sell personal information. We share personal information only as described below.

  • Service providers: hosting providers, email and CRM platforms, payment processors, accounting software, and similar vendors that help us run the business, under agreements limiting their use to providing services to us.
  • Advertising and analytics platforms (on behalf of clients): Google, Meta, Microsoft, and similar platforms where we manage campaigns or analytics for a client, strictly under that client’s authorization and for that client’s benefit.
  • Subcontractors: vetted contractors and freelancers we engage to deliver work; they are bound to confidentiality and to use information only for the engaged work.
  • Legal and safety: when required by law, court order, or to protect our rights, your safety, or the safety of others. Where legally permitted, we will notify you before disclosing.
  • Business transfers: if we are acquired, merged, or sell substantially all of our assets, your information may transfer to the acquiring party subject to materially equivalent privacy commitments.
  • With your direction: when you instruct us to share information with a third party (for example, hand-off of your website to a new vendor), we do so at your instruction.

7. Cookies and Analytics on achieveit.ca

The achieveit.ca website uses:

  • Essential cookies required for the site to function (session, security, load balancing).
  • Google Analytics to understand how visitors use the site (pages viewed, referrers, approximate location from IP, device type). Google Analytics may use cookies and similar technologies. You can opt out using Google’s Analytics Opt-out Browser Add-on: https://tools.google.com/dlpage/gaoptout.
  • Other Google services as appropriate (for example, Google Search Console for indexing data, which does not place visitor-identifying cookies).

We do not run advertising or retargeting pixels on achieveit.ca.

You can manage or block cookies through your browser settings. Some site functionality may not work if you block essential cookies.

8. Where Your Information Is Stored

Our primary hosting and SaaS providers are based in Canada and the United States. As a Canadian business, we rely on PIPEDA’s transfer provisions and contractual safeguards with our service providers.

What this means for you:

  • Information may be subject to the laws of the jurisdiction where it is stored.
  • We require service providers to implement reasonable safeguards and to limit use of personal information to providing services to us.

9. Your Rights

Subject to applicable law, you have the right to:

  • Access: request a copy of the personal information we hold about you.
  • Correct: request correction of inaccurate or incomplete information.
  • Delete: request deletion, subject to legal and contractual obligations.
  • Withdraw consent: where processing is based on consent, withdraw at any time without affecting prior processing.
  • Complain: lodge a complaint with the Office of the Privacy Commissioner of Canada (priv.gc.ca · 1-800-282-1376) or your provincial commissioner. EU/EEA/UK residents may contact their national supervisory authority.

To exercise these rights, email [email protected]. We will verify your identity before responding and reply within 30 days or the period required by your local law.

10. Security

We protect information with administrative, technical, and physical safeguards reasonable for the nature of the information and the risks, including encryption in transit (TLS), access controls and multi-factor authentication on privileged accounts, audit logging, and secure development practices. No system is perfectly secure; we cannot guarantee absolute security.

If a security incident affects your data, we will notify you in accordance with applicable law and our service agreements.

11. Retention

We retain personal information only as long as we need it for the purposes described in this Policy or as required by law. General defaults:

  • Account and contact information: for the life of the relationship plus a reasonable period thereafter.
  • Billing records: 7 years (tax and accounting requirements).
  • Project files and credentials: for the life of the engagement; promptly removed or returned on termination.
  • Website analytics: per the provider’s retention settings; typically 14–26 months for Google Analytics.

When retention periods expire, we delete or anonymize the information.

12. Children

Our services are intended for businesses and adult individuals. We do not knowingly collect personal information from children under 13 (or the minimum age in your jurisdiction where higher). Contact us if you believe a child has provided us information and we will delete it.

13. Changes to This Policy

We may update this Privacy Policy from time to time. The “Effective Date” at the top identifies the current version. For material changes, we will post a notice on the website and, where appropriate, notify clients directly. Continued use of our website or services after changes take effect constitutes acknowledgment of the updated Policy.

14. Contact Us

Privacy inquiries and rights requests:

  • Email: [email protected]
  • Phone: 1.888.865.3545
  • Mail: Achieve IT, 330 5th Avenue SW, Suite 1800, Calgary, Alberta T2P 0J4, Canada

You may also contact the Office of the Privacy Commissioner of Canada at priv.gc.ca or 1-800-282-1376.