Privacy Policy — Sentinel Shield

Last updated: 24 October 2025

1. Introduction

Sentinel Shield is a workplace safety and rapid-response application developed and operated by Sound Sentinel Corporation (“SSC,” “we,” “our,” or “us”). Sentinel Shield is designed to support rapid assistance requests in professional environments while respecting individual privacy, labour rights, and applicable law.

SSC is a privately owned Canadian company headquartered in Waterloo, Ontario. SSC also designs and manufactures security and monitoring technologies, including the Arms Recovery Unit Device (ARUD) and MI-5 secure monitoring systems.

This Privacy Policy explains:

what information is collected through Sentinel Shield,
how and why it is used,
how it is protected,
and the rights individuals have with respect to their personal information.

Sentinel Shield is not a surveillance product. Information is collected only to provide safety, operational reliability, and lawful compliance.

2. Legal and Regulatory Framework

SSC operates in Canada and complies with applicable federal and provincial privacy legislation, including:

Personal Information Protection and Electronic Documents Act (PIPEDA)
Substantially similar provincial privacy statutes, including those in Alberta and British Columbia

These laws require organizations to:

collect personal information only for reasonable purposes,
obtain meaningful consent,
limit use and disclosure,
safeguard information appropriately,
provide access and correction rights,
and remain accountable for third-party processing.

SSC’s practices are informed by guidance issued by the Office of the Privacy Commissioner of Canada, including guidance applicable to connected and smart-device technologies.

3. Information We Collect

3.1 Information Provided Voluntarily

We may collect information when you:

request information about Sentinel Shield,
register an account,
participate in a pilot or deployment,
contact support.

This may include:

Contact information: name, organization, role, email address, phone number
Account information: user identifiers, permissions, authentication credentials
Communications: emails or support correspondence
Professional information: workplace role or department, where voluntarily provided

3.2 Information Generated Through Use of Sentinel Shield

Sentinel Shield is designed to minimize passive data collection.

Depending on configuration and consent, the system may process:

Location context (e.g., room or zone association) derived from infrastructure-based triggers such as NFC or QR markers
Event data related to help requests (time, location context, system status)
Device metadata necessary to ensure system reliability (app version, device type)

Sentinel Shield does not:

record audio or video by default,
conduct continuous monitoring,
analyze behaviour or performance,
activate microphones or cameras without explicit, contextual activation and lawful authorization.

3.3 Information Collected Automatically (Website & App)

When visiting our website or using the application, we may collect:

IP address and general location (city or region level)
device and browser type
interaction data (pages visited, features accessed)
cookies and similar technologies (see Section 10)

3.4 Information From Third Parties

We may receive limited information from:

Authorized deploying organizations (e.g., schools, institutions, employers)
Service partners involved in deployment or support
Infrastructure providers supporting hosting, authentication, or analytics

Deploying organizations remain responsible for their own compliance obligations under applicable privacy and labour laws.

4. Purposes and Legal Basis for Use

SSC collects and uses personal information only for purposes a reasonable person would consider appropriate, including:

Service delivery: enabling Sentinel Shield functionality, system configuration, and technical support
Safety response: transmitting help requests to authorized responders
System integrity: maintaining reliability, security, and performance
Compliance: meeting legal, regulatory, and contractual obligations
Communications: responding to inquiries and service notices
Analytics: improving system usability and reliability using aggregated or anonymized data

Personal information is not used for disciplinary evaluation, performance management, or behavioural analytics.

5. Consent and Choice

SSC obtains consent in accordance with PIPEDA.

Express consent is obtained where required (e.g., account creation, optional features).
Implied consent may apply where information is voluntarily provided to obtain a service.
Sensitive information, where applicable, requires clear and meaningful consent.
Withdrawal of consent may be requested at any time, subject to operational limitations.

Withdrawing consent may limit certain Sentinel Shield features but will not result in retaliation or penalty.

6. Use, Disclosure, and Sharing

6.1 Use Within Canada

Access to personal information is limited to:

authorized SSC personnel,
authorized service providers,
designated responders defined by the deploying organization.

Information may be disclosed to:

emergency response or monitoring partners,
cloud hosting and technical vendors,
payment or administrative processors,
regulatory authorities where legally required.

All service providers are contractually restricted from using information for any purpose beyond service delivery.

6.2 Cross-Border Processing

SSC may process information using infrastructure located outside Canada, including the United States.

When doing so, SSC:

uses contractual safeguards,
limits data to the minimum required,
applies encryption and secure transmission,
remains accountable for the information.

7. Data Retention and Deletion

Personal information is retained only as long as necessary.

Account data: retained for the duration of the relationship plus a reasonable legal period
Event records: retained based on deployment configuration and legal requirements
Analytics data: anonymized or aggregated where possible

Secure deletion or anonymization is performed when data is no longer required.

8. Safeguards and Security

SSC uses layered safeguards, including:

encryption in transit and at rest,
access controls and role-based permissions,
secure software development and update processes,
logging and audit mechanisms,
breach detection and response procedures.

Where required by law, SSC will notify affected individuals and regulators of any breach posing a real risk of significant harm.

9. Individual Rights

Individuals have the right to:

know how and why information is collected,
access their personal information,
request correction of inaccuracies,
withdraw consent where applicable,
challenge SSC’s compliance.

Requests may be made using the contact details below. Complaints may also be directed to the Office of the Privacy Commissioner of Canada.

10. Children’s Privacy

Sentinel Shield is not intended for use by children.
Where deployed in educational environments, data relating to minors is handled under the authority of the deploying institution and applicable law. Parental or guardian consent is required where mandated.

11. Cookies and Tracking Technologies

Our website uses cookies and similar tools to:

remember preferences,
analyze traffic,
improve performance.

You may adjust browser settings to manage cookies. Some features may not function without them.

12. Changes to This Policy

This Privacy Policy may be updated to reflect operational or legal changes. Material changes will be communicated through our website or directly where appropriate.

13. Contact Information

Sound Sentinel Corporation — Privacy Officer
Head Office: Waterloo, Ontario, Canada
Email: Information@soundsentinel.com

You may also contact the Office of the Privacy Commissioner of Canada for independent guidance.

SSC - Sentinel Shield