XMC CorporationXMC Corporation

Privacy Policy

Last Updated: April 17, 2026

1. Introduction

XMC Corporation ("XMC CORPORATION", "we", "us", or "our") is committed to protecting the privacy of individuals and safeguarding personal information in accordance with applicable Canadian privacy laws, including the Personal Information Protection and Electronic Documents Act ("PIPEDA") and, where applicable, provincial legislation such as Quebec's Law 25.

This Privacy Policy describes how XMC Corporation collects, uses, discloses, processes, and protects personal information in connection with:

  • Access to and use of our website at https://xmcgrp.com/
  • Our AI, data, and technology consulting services
  • Communications and interactions with clients, partners, and prospective clients

By accessing our website or engaging with our services, you acknowledge and agree to the practices described in this Privacy Policy.

2. Scope and Application

This Privacy Policy applies to personal information collected by XMC Corporation in the course of its commercial activities, including information relating to:

  • Website visitors
  • Clients and prospective clients
  • Individuals acting on behalf of corporate entities

This Policy does not apply to third-party websites, platforms, or services that may be accessible through links on our website.

3. Accountability and Governance

XMC Corporation is accountable for personal information under its control and has implemented policies, procedures, and controls designed to ensure compliance with applicable privacy laws.

We have designated a Privacy Officer responsible for:

  • Overseeing compliance with privacy obligations
  • Responding to access and correction requests
  • Managing privacy-related inquiries and complaints

4. Categories of Information Collected

4.1 Personal Information

We may collect personal information that is necessary for identified purposes, including:

  • Full name
  • Business contact information (email address, phone number)
  • Organization name and role/title
  • Information provided through forms, inquiries, or correspondence

4.2 Client Data (Business and Operational Data)

In delivering our services, XMC Corporation may process data provided by clients, which may include business, operational, or technical data sets.

For clarity:

  • Such data may include structured or unstructured datasets, system outputs, API data, or analytical results
  • To the extent such data contains personal information, it is processed strictly in accordance with client instructions and contractual obligations

XMC Corporation does not acquire ownership of client data and acts solely in a service provider (data processor) capacity.

4.3 Technical and Usage Information

We may automatically collect certain technical data through standard web technologies, including:

  • IP address and general location data
  • Browser and device characteristics
  • Usage data such as pages visited, session duration, and referring URLs

This information is used for operational, analytical, and security purposes.

5. Purposes for Collection, Use, and Disclosure

XMC Corporation collects, uses, and discloses personal information only for purposes that a reasonable person would consider appropriate in the circumstances, including:

  • Responding to inquiries and providing requested information
  • Delivering contracted services, including AI, data integration, and advisory services
  • Managing and administering client relationships
  • Enhancing, developing, and improving our services and website
  • Ensuring system security, integrity, and fraud prevention
  • Complying with applicable legal, regulatory, and contractual requirements

6. Consent

Where required, XMC Corporation obtains meaningful consent for the collection, use, and disclosure of personal information.

Consent may be express or implied, depending on the sensitivity of the information and the context of the interaction.

Individuals may withdraw consent at any time, subject to legal or contractual limitations and reasonable notice. Withdrawal of consent may impact our ability to provide certain services.

7. Limiting Collection, Use, and Retention

We limit the collection of personal information to that which is necessary for the identified purposes.

Personal information is:

  • Used solely for the purposes for which it was collected or as otherwise permitted by law
  • Retained only for as long as necessary to fulfill those purposes or meet legal obligations

When personal information is no longer required, it is securely destroyed, deleted, or anonymized.

8. AI and Data Processing Commitments

Given the nature of our services, XMC Corporation maintains strict data governance standards:

  • Client data is not sold, licensed, or otherwise commercialized
  • Client data is not used to train artificial intelligence or machine learning models without explicit prior written authorization
  • Processing activities are limited to the scope defined in client agreements
  • Appropriate technical and organizational safeguards are applied to all data processing activities

9. Safeguards and Security Measures

XMC Corporation implements administrative, technical, and physical safeguards appropriate to the sensitivity of the information, including:

  • Encryption of data in transit and, where applicable, at rest
  • Role-based access controls and authentication mechanisms
  • Secure infrastructure and cloud environments
  • Continuous monitoring, logging, and incident management processes

While we maintain robust security practices, no system can be guaranteed to be completely secure.

10. Disclosure to Third Parties

We may disclose personal information to third parties in limited circumstances, including:

  • Service providers supporting our operations (e.g., cloud hosting, analytics, communications)
  • Professional advisors (e.g., legal, accounting)
  • Regulatory authorities or law enforcement where required by law

All third-party service providers are subject to contractual obligations requiring them to safeguard personal information and use it solely for authorized purposes.

11. Cross-Border Data Transfers

Personal information may be stored or processed in jurisdictions outside Canada, including by our service providers.

In such cases:

  • Personal information may be subject to the laws of the applicable jurisdiction
  • XMC Corporation implements appropriate contractual and organizational safeguards to ensure a comparable level of protection

12. Individual Access and Correction Rights

Subject to applicable law, individuals have the right to:

  • Request access to personal information held by XMC Corporation
  • Request correction of inaccurate or incomplete information

Requests must be submitted in writing and will be addressed within a reasonable timeframe in accordance with applicable legal requirements.

13. Cookies and Similar Technologies

Our website uses cookies and similar technologies to:

  • Enhance functionality and user experience
  • Analyze website usage and performance
  • Support security and fraud prevention

Users may manage cookie preferences through their browser settings.

14. Transparency and Openness

XMC Corporation makes information about its privacy policies and practices readily available. Additional information regarding our data handling practices may be provided upon request.

15. Policy Updates

This Privacy Policy may be updated periodically to reflect changes in legal, regulatory, or operational requirements. Updates will be posted on this page with a revised "Last Updated" date.

16. Contact Information

For questions, requests, or complaints regarding this Privacy Policy or our privacy practices, please contact: info@xmcgrp.com