Legal

Privacy Policy

Last updated: February 18, 2026. This Privacy Policy explains how Panzica Technologies Inc. handles personal information in connection with PW Command.

Last updated: February 18, 2026

1. Introduction

This Privacy Policy explains how Panzica Technologies Inc. (“Panzica Technologies,” “we,” “us,” or “our”) collects, uses, discloses, stores, and protects personal information in connection with PW Command.

PW Command is a municipal and public-works operations platform that may provide work-order management, crew planning, road-patrol documentation, winter-control coordination, flood-response support, water-distribution workflows, asset and equipment tracking, standard operating procedures, job-hazard analyses, geographic information system integrations, reporting, artificial-intelligence-assisted recommendations, and related operational services.

This Privacy Policy applies when you:

  • use an PW Command website, application, dashboard, or mobile interface;
  • create or access an PW Command account;
  • use a feature or service that links to this Privacy Policy;
  • communicate with us for sales, implementation, training, support, security, or account administration;
  • attend a demonstration, event, meeting, or webinar;
  • visit our website; or
  • otherwise interact with Panzica Technologies in connection with PW Command.

In this Privacy Policy:

  • “Customer” means a municipality, public authority, utility, contractor, company, organization, or other legal entity that subscribes to, purchases, or uses PW Command.
  • “Authorized User” means an employee, official, contractor, consultant, administrator, supervisor, manager, lead hand, operator, worker, or other person authorized by a Customer to use PW Command.
  • “Customer Data” means information submitted to, stored in, generated through, or processed by PW Command on behalf of a Customer.
  • “Personal Information” means information about an identifiable individual or information that is defined as personal information, personal data, or an equivalent term under applicable law.
  • “Services” means the PW Command software platform and its related websites, applications, integrations, support services, and features.

Questions or concerns regarding this Privacy Policy may be directed to:
Panzica Technologies Inc.
Ontario, Canada
Email: support@panzica.ca

2. Our role and the Customer’s role

PW Command is primarily a business-to-business platform.

In many circumstances, the Customer determines:

  • what information is collected;
  • whose information is entered into the Services;
  • why the information is collected;
  • how the information is used;
  • which Authorized Users can access it;
  • how long it should be retained; and
  • when it should be corrected, exported, disclosed, or deleted.

When we process Customer Data according to a Customer’s instructions, we generally act as the Customer’s service provider or data processor.

The Customer remains responsible for:

  • determining whether it has lawful authority to collect and use Personal Information;
  • providing notices to its employees, officials, contractors, residents, property owners, service recipients, and other affected individuals;
  • obtaining consent where consent is required;
  • establishing appropriate user roles and permissions;
  • responding to freedom-of-information, access, correction, labour-relations, legal-discovery, and records-management requirements;
  • determining applicable retention periods;
  • ensuring that Personal Information entered into the Services is accurate and appropriate; and
  • complying with applicable privacy, employment, labour, municipal, occupational-health-and-safety, and records-management requirements.

Panzica Technologies may separately determine the purposes and methods of processing certain information required to:

  • administer Customer accounts;
  • manage subscriptions and billing;
  • operate and secure the Services;
  • provide customer support;
  • communicate with Customers and Authorized Users;
  • maintain business records;
  • prevent fraud and misuse;
  • improve our Services;
  • comply with legal obligations; and
  • protect our legal rights.

For these activities, Panzica Technologies may act as the organization responsible for the processing of that information.

Individuals seeking access to or correction of Customer Data should normally contact the Customer that collected or entered the information. We will reasonably assist Customers with valid privacy requests as required by law or contract.

3. Information we collect

The information we collect depends on the Customer’s configuration, the features used, the individual’s role, and how the individual interacts with the Services.

3.1 Account and identity information

We may collect:

  • first and last name;
  • username;
  • employee or contractor identification number;
  • email address;
  • telephone number;
  • job title;
  • department;
  • employer or organization;
  • work location;
  • account role;
  • account permissions;
  • authentication information;
  • password information in protected form;
  • multi-factor authentication information;
  • preferred language;
  • communication preferences; and
  • account status.

We do not store passwords in readable, plain-text form.

3.2 Employment and operational information

A Customer may use the Services to process information such as:

  • position or classification;
  • work location or assigned shop;
  • supervisor, manager, or lead-hand assignment;
  • work schedule;
  • shift;
  • availability;
  • assignment history;
  • crew membership;
  • work-order activity;
  • inspection history;
  • road-patrol activity;
  • task status;
  • completion records;
  • operator notes;
  • time and date records;
  • training records;
  • qualifications;
  • licences;
  • certifications;
  • expiry dates;
  • equipment qualifications;
  • emergency-response roles;
  • health-and-safety roles;
  • contractor information; and
  • other operational information selected by the Customer.

PW Command is not intended to be used as a medical-record system, employee-health-record system, payroll system, or formal disciplinary-record system unless Panzica Technologies has expressly agreed in writing that a particular category of information may be processed.

3.3 Work orders, service requests, and infrastructure records

The Services may process:

  • work-order descriptions;
  • resident or customer requests;
  • names and contact details provided with a service request;
  • municipal addresses;
  • property locations;
  • asset locations;
  • complaints;
  • inspection findings;
  • reported defects;
  • completion information;
  • repair histories;
  • material quantities;
  • contractor assignments;
  • infrastructure conditions;
  • public-works observations;
  • photographs;
  • videos;
  • documents;
  • maps;
  • sketches;
  • notes;
  • approvals; and
  • related communications.

Customers should avoid entering unnecessary Personal Information into free-text notes, photographs, attachments, work-order descriptions, or other unstructured fields.

3.4 Location and mapping information

Depending on the Customer’s configuration and device permissions, the Services may process:

  • work locations;
  • asset coordinates;
  • route locations;
  • road-patrol routes;
  • inspection locations;
  • equipment locations;
  • vehicle locations;
  • device location;
  • location recorded when a work order, photograph, inspection, or status update is created;
  • approximate or precise geographic coordinates; and
  • mapping and navigation information.

Location information may be obtained from:

  • information entered by the Customer;
  • a device’s location services;
  • GPS;
  • Wi-Fi or cellular-network information;
  • geographic information systems;
  • mapping providers;
  • vehicle or equipment systems; or
  • integrated third-party services.

The availability and accuracy of location data can be affected by device settings, signal quality, weather, buildings, equipment, map data, and third-party systems.

A Customer is responsible for determining whether location tracking or location recording is appropriate and lawful and for notifying affected employees, contractors, or other individuals when required.

PW Command does not continuously track a device or person unless the Customer has enabled a feature designed for that purpose and the required permissions have been provided.

3.5 Equipment, vehicle, and asset information

We may process:

  • equipment and vehicle numbers;
  • licence-plate information;
  • make, model, year, and serial number;
  • inspection records;
  • maintenance records;
  • fuel or usage information;
  • assigned operator;
  • availability;
  • current or historical location;
  • condition;
  • attachments;
  • photographs;
  • defects; and
  • repair history.

Some equipment or asset records may become Personal Information when they are linked to an identifiable operator, employee, contractor, property owner, or resident.

3.6 Photographs, video, audio, and attachments

Authorized Users may upload photographs, videos, audio, forms, documents, maps, inspection reports, and other attachments.

These materials may incidentally capture:

  • people;
  • faces;
  • voices;
  • homes;
  • addresses;
  • licence plates;
  • personal property;
  • identification cards;
  • computer screens;
  • private documents; or
  • other Personal Information.

Customers and Authorized Users must avoid capturing or uploading Personal Information that is not reasonably required for an authorized operational purpose.

Unless expressly approved through a written agreement, PW Command does not use facial recognition, voice identification, fingerprint recognition, or other biometric identification technology.

3.7 Communications and support information

When you contact us, we may collect:

  • your name;
  • contact information;
  • organization;
  • account information;
  • support request;
  • screenshots;
  • attachments;
  • diagnostic information;
  • correspondence;
  • call or meeting notes;
  • feedback; and
  • information necessary to investigate and resolve the matter.

We may record a support call, demonstration, or training session only after providing appropriate notice or obtaining consent where required.

3.8 Subscription and transaction information

We may collect:

  • Customer legal name;
  • billing address;
  • billing contact;
  • purchase-order information;
  • subscription details;
  • invoices;
  • transaction records;
  • payment status;
  • tax information; and
  • contract information.

Payments may be processed by a third-party payment provider. We do not intend to directly store complete payment-card numbers unless this is expressly disclosed and appropriate payment-security measures are in place.

3.9 Technical and usage information

When you access the Services, we may automatically collect:

  • internet protocol address;
  • browser type;
  • device type;
  • operating system;
  • application version;
  • device identifiers;
  • referring page;
  • date and time of access;
  • login activity;
  • pages or features used;
  • actions performed;
  • session information;
  • error reports;
  • crash reports;
  • performance information;
  • approximate location derived from an IP address;
  • security events; and
  • diagnostic logs.

We use this information to operate, maintain, secure, troubleshoot, and improve the Services.

3.10 Audit information

The Services may create records showing:

  • who created or modified a record;
  • date and time of an activity;
  • account used;
  • approval or rejection;
  • assignment or reassignment;
  • status change;
  • login attempt;
  • exported information;
  • configuration change; and
  • other system activity.

Audit records help Customers maintain accountability, security, and operational histories. Audit records may not be editable by ordinary Authorized Users.

4. Information we do not intend to collect

Unless specifically approved in a written agreement, Customers and Authorized Users must not use PW Command to store:

  • medical diagnoses;
  • treatment records;
  • prescription information;
  • medical certificates;
  • accommodation documentation;
  • formal employee medical files;
  • provincial health-card numbers;
  • social-insurance numbers;
  • complete financial-account numbers;
  • complete payment-card numbers;
  • passport information;
  • driver’s-licence images;
  • criminal records;
  • police intelligence;
  • information classified under a government security-classification system;
  • fingerprints, facial templates, voiceprints, or other biometric identifiers;
  • information relating to children that is not required for a legitimate municipal service;
  • passwords for other systems;
  • encryption keys; or
  • any information the Customer is prohibited from disclosing to us.

This restriction does not prevent a Customer from recording a limited operational fact where lawfully necessary, such as that a worker is unavailable, has a particular restriction relevant to safe task assignment, or holds an occupational qualification. Customers should use the minimum information reasonably necessary.

5. How we collect information

We may collect Personal Information:

  • directly from an Authorized User;
  • from the Customer;
  • from an account administrator;
  • from a municipality, utility, contractor, or public authority;
  • through work orders, service requests, inspections, photographs, and attachments;
  • from a device or browser;
  • through GIS, weather, mapping, asset-management, work-order, authentication, communications, or other integrations;
  • from contractors and implementation partners;
  • from public records where lawful and appropriate;
  • through customer-support communications; and
  • through cookies and similar technologies.

Information entered by a Customer or Authorized User may concern another person who does not directly interact with Panzica Technologies.

The Customer is responsible for ensuring it has the authority to provide that information to us.

6. How we use information

We may process Personal Information to:

6.1 Provide the Services

This includes using information to:

  • create and administer accounts;
  • authenticate users;
  • display account permissions;
  • process work orders;
  • assign or recommend crews;
  • maintain operational records;
  • organize schedules;
  • provide maps and location functionality;
  • process photographs and attachments;
  • generate reports;
  • create notifications;
  • provide dashboards;
  • maintain audit histories;
  • support integrations;
  • enable approvals;
  • provide requested features; and
  • otherwise perform our contractual obligations.

6.2 Support municipal and public-works operations

Depending on the Customer’s configuration, information may be used to assist with:

  • roads operations;
  • road patrols;
  • winter control;
  • flood response;
  • stormwater and drainage operations;
  • sewer operations;
  • water-distribution operations;
  • hydrant inspections and flushing;
  • signs and traffic assets;
  • parks and facilities;
  • fleet and equipment;
  • contractor coordination;
  • infrastructure inspections;
  • emergency planning;
  • standard operating procedures;
  • job-hazard analyses; and
  • other Customer-authorized activities.

Panzica Technologies does not independently decide how a Customer deploys employees, contractors, vehicles, equipment, or municipal resources.

6.3 Provide support and training

We may use information to:

  • answer questions;
  • troubleshoot errors;
  • investigate incidents;
  • provide implementation assistance;
  • configure the Customer’s account;
  • conduct training;
  • respond to complaints; and
  • improve support materials.

6.4 Operate and secure the Services

We may use information to:

  • monitor system health;
  • detect unauthorized access;
  • prevent fraud and misuse;
  • enforce account permissions;
  • investigate security events;
  • maintain backups;
  • protect Customer Data;
  • correct errors;
  • maintain logs;
  • test updates; and
  • ensure reliability.

6.5 Communicate with Customers and Authorized Users

We may send:

  • account notices;
  • security alerts;
  • service notifications;
  • maintenance notices;
  • implementation communications;
  • support responses;
  • subscription information;
  • billing communications;
  • product updates;
  • training information; and
  • legally required notices.

Operational alerts are controlled by the Customer’s configuration and are not guaranteed to be received.

6.6 Improve and develop the Services

We may use information to:

  • analyze feature usage;
  • identify errors;
  • assess performance;
  • improve workflows;
  • develop new functionality;
  • test system changes;
  • evaluate user experience;
  • improve AI-assisted features; and
  • create aggregated or de-identified statistics.

Where reasonably possible, information used for product analytics and development will be aggregated, de-identified, masked, or otherwise limited.

6.7 Comply with legal obligations and protect rights

We may process information to:

  • comply with laws, regulations, subpoenas, warrants, court orders, and lawful government demands;
  • respond to legal proceedings;
  • establish, exercise, or defend legal claims;
  • enforce our agreements;
  • protect our rights, property, users, Customers, and the public;
  • investigate fraud, security incidents, or unlawful conduct; and
  • complete a corporate transaction.

7. Artificial intelligence and automated processing

PW Command may include artificial-intelligence, machine-learning, optimization, natural-language-processing, rules-based, or automated features.

These features may assist with:

  • summarizing operational information;
  • organizing work orders;
  • recommending priorities;
  • suggesting crew assignments;
  • identifying missing information;
  • preparing draft reports;
  • categorizing requests;
  • estimating resource needs;
  • identifying potential conflicts;
  • generating weather-related operational suggestions;
  • assisting with schedules or routes; and
  • retrieving information from Customer-approved records.

AI-assisted outputs may be inaccurate, incomplete, or unsuitable. They must be reviewed by a qualified and authorized person before being used for operational, employment, safety, emergency, legal, or regulatory decisions.

We do not intend to use PW Command to make fully automated decisions that independently:

  • discipline or terminate an employee;
  • determine an employee’s legal rights;
  • determine eligibility for employment;
  • impose a significant penalty;
  • make a final public-safety decision; or
  • create another similarly significant effect on an individual.

Customers must not use AI-assisted outputs as the sole basis for such decisions.

Customer Data and AI training

We will not use identifiable Customer Data to train a publicly available or third-party general-purpose artificial-intelligence model unless:

  1. the Customer has expressly authorized that use in writing;
  2. the use is clearly disclosed; and
  3. applicable privacy, confidentiality, and security requirements are satisfied.

We may use aggregated or de-identified information to improve the Services where the information cannot reasonably be associated with a Customer or identifiable individual.

If we use a third-party AI provider to process Customer Data, that provider will be treated as a service provider or subprocessor and will be subject to contractual restrictions appropriate to the service being provided.

8. Consent and other authority for processing

We collect, use, and disclose Personal Information with consent where consent is required.

Depending on the circumstances and applicable law, consent may be:

  • express;
  • implied;
  • provided by the Customer on behalf of its Authorized Users;
  • established through an employment or contractual relationship; or
  • unnecessary where processing is otherwise permitted or required by law.

We may process information without consent where permitted or required by law, including where necessary to:

  • investigate fraud;
  • investigate a breach of an agreement or law;
  • respond to an emergency;
  • protect an individual’s life, health, or security;
  • comply with a court order, warrant, subpoena, or lawful demand;
  • collect a debt;
  • complete an authorized business transaction;
  • establish or defend a legal claim;
  • process information produced in the course of employment, business, or professional activities where legally permitted; or
  • process information that is lawfully public.

Consent may be withdrawn subject to legal, contractual, records-retention, safety, and operational restrictions. Withdrawal does not invalidate processing that occurred before consent was withdrawn.

Withdrawing consent may prevent us or the Customer from continuing to provide some or all of the Services.

9. When we disclose information

We do not sell Personal Information.

We may disclose Personal Information in the following circumstances.

9.1 To the Customer and its Authorized Users

Information may be available to:

  • Customer administrators;
  • managers;
  • supervisors;
  • lead hands;
  • dispatchers;
  • operators;
  • employees;
  • contractors;
  • consultants;
  • health-and-safety representatives;
  • emergency coordinators;
  • municipal officials; and
  • other Authorized Users,

according to the permissions established by the Customer.

The Customer controls which Authorized Users have access to Customer Data.

9.2 Service providers and subprocessors

We may use service providers to support:

  • cloud hosting;
  • database management;
  • backups;
  • cybersecurity;
  • authentication;
  • customer support;
  • communications;
  • email;
  • text messaging;
  • push notifications;
  • mapping;
  • weather information;
  • analytics;
  • error monitoring;
  • payment processing;
  • artificial-intelligence features;
  • document processing; and
  • software development and maintenance.

Service providers are permitted to process information only for authorized purposes and are expected to protect it using appropriate contractual, technical, and organizational safeguards.

A current list of material subprocessors may be made available to Customers upon request or through an applicable customer agreement.

9.3 Third-party integrations selected by the Customer

A Customer may direct the Services to exchange information with:

  • geographic information systems;
  • asset-management systems;
  • work-order platforms;
  • identity providers;
  • Microsoft or Google services;
  • mapping providers;
  • weather services;
  • email systems;
  • municipal databases;
  • vehicle or equipment systems;
  • contractor systems; or
  • other third-party products.

Once information is transferred to a third-party service selected or controlled by the Customer, that third party’s agreement and privacy practices may apply.

9.4 Legal and safety disclosures

We may disclose information where we reasonably believe disclosure is necessary to:

  • comply with applicable law;
  • respond to a lawful request;
  • protect a person from serious harm;
  • investigate fraud or misuse;
  • protect the security of the Services;
  • enforce our agreements;
  • protect our legal rights; or
  • establish, exercise, or defend a legal claim.

Where legally permitted and appropriate, we will notify the affected Customer before disclosing Customer Data in response to a legal demand.

9.5 Business transactions

Information may be disclosed as part of a proposed or completed:

  • financing;
  • reorganization;
  • merger;
  • acquisition;
  • sale of assets;
  • sale of the PW Command business;
  • insolvency proceeding; or
  • other corporate transaction.

Any recipient will be required to protect Personal Information and use it only for purposes permitted by law and applicable agreements.

9.6 With consent or direction

We may disclose information where the Customer or affected individual has authorized or directed us to do so.

10. Municipal access-to-information requests

Records stored in PW Command on behalf of a municipality or public authority may be subject to freedom-of-information, municipal-records, litigation, audit, investigation, public-inquiry, or other legal requirements.

The Customer is responsible for:

  • determining whether a record must be searched for, preserved, reviewed, disclosed, or withheld;
  • responding to access-to-information requests;
  • applying statutory exemptions;
  • conducting required consultations;
  • redacting records;
  • complying with litigation holds; and
  • maintaining official municipal records.

Panzica Technologies will provide reasonable technical assistance to help a Customer search, preserve, export, or retrieve Customer Data where required by an applicable agreement or law.

Panzica Technologies does not independently decide whether a municipal record must be disclosed.

Authorized Users should write work orders, inspection notes, comments, and other operational records professionally and accurately, recognizing that the records may later be reviewed, audited, investigated, disclosed, or used as evidence.

11. Cookies and similar technologies

We may use cookies, local storage, software development kits, session tokens, pixels, and similar technologies to:

  • maintain login sessions;
  • authenticate users;
  • remember preferences;
  • support security;
  • prevent fraud;
  • operate essential features;
  • identify errors;
  • measure system performance; and
  • understand how the Services are used.

We do not intend to use PW Command to display third-party behavioural advertising or operate an advertising offer wall.

We do not sell Personal Information or share Personal Information for cross-context behavioural advertising.

Some analytics or third-party services may use their own cookies or similar technologies. Where required, we will provide cookie controls or obtain consent.

Disabling essential cookies may prevent parts of the Services from functioning properly.

12. Data location and international processing

Customer Data may be processed or stored in Canada or in another country where Panzica Technologies or its service providers operate.

Information stored or processed outside an individual’s province or country may be subject to the laws of the jurisdiction where it is located and may be accessible to courts, law-enforcement agencies, national-security authorities, or regulators in that jurisdiction.

Where a Customer requires Canadian data residency, a particular hosting region, or restrictions on international processing, those requirements must be stated in the Customer’s written subscription agreement, order form, or data-processing agreement.

We use contractual, organizational, and technical measures intended to protect information transferred to service providers in another jurisdiction.

13. Data retention

We retain Personal Information only for as long as reasonably necessary for:

  • the purposes described in this Privacy Policy;
  • the Customer’s instructions;
  • the applicable subscription;
  • operational continuity;
  • security;
  • backups;
  • dispute resolution;
  • legal proceedings;
  • tax and accounting requirements;
  • enforcement of agreements; and
  • compliance with law.

Retention periods depend on the nature of the information.

Customer Data

Customer Data is retained according to:

  • the Customer’s configuration;
  • the Customer’s records-retention requirements;
  • the applicable agreement;
  • legal holds;
  • backup cycles; and
  • legal or regulatory obligations.

A fixed six-month deletion period does not apply to all Customer Data because municipal and operational records may require significantly longer retention.

Account information

Account information may be retained while the account is active and for a reasonable period afterward for security, audit, support, contractual, and legal purposes.

Security and audit logs

Security and audit logs may be retained for a period appropriate to detect incidents, investigate misuse, preserve system integrity, and meet contractual or legal requirements.

Backups

Deleted information may remain in protected backup systems until the applicable backup cycle expires. Backup information is isolated from ordinary use and is not restored except for security, disaster recovery, legal, or operational requirements.

Following termination, the Customer may be provided a limited period to export Customer Data, subject to the applicable agreement. Customer Data may then be deleted or de-identified unless continued retention is required by law.

14. Security safeguards

We use administrative, technical, and organizational safeguards designed to protect Personal Information against:

  • unauthorized access;
  • unauthorized use;
  • unauthorized disclosure;
  • loss;
  • theft;
  • alteration;
  • destruction; and
  • other misuse.

Safeguards may include:

  • access controls;
  • role-based permissions;
  • password protections;
  • multi-factor authentication where available;
  • encryption in transit;
  • encryption at rest where appropriate;
  • secure development practices;
  • audit logging;
  • backups;
  • vulnerability management;
  • monitoring;
  • incident-response procedures;
  • employee and contractor confidentiality obligations;
  • service-provider assessments; and
  • data-minimization practices.

No electronic system, internet transmission, cloud service, wireless network, or storage technology is completely secure. We cannot guarantee that an unauthorized person will never defeat security measures.

Customers and Authorized Users are responsible for:

  • protecting passwords and authentication methods;
  • securing their devices and networks;
  • using appropriate account permissions;
  • promptly disabling former users;
  • reviewing account activity;
  • avoiding shared accounts;
  • protecting exported files;
  • securing third-party integrations; and
  • promptly reporting suspected incidents.

Suspected security incidents should be reported to support@panzica.ca.

15. Privacy and security incidents

If we become aware of an unauthorized access, use, disclosure, loss, or breach involving Customer Data, we will:

  1. investigate the incident;
  2. take reasonable steps to contain and mitigate it;
  3. preserve relevant information;
  4. assess the nature and scope of the incident;
  5. notify the affected Customer as required by applicable law or contract; and
  6. reasonably cooperate with the Customer’s response.

The Customer is responsible for determining whether affected individuals, unions, regulators, insurers, law-enforcement agencies, councils, or other authorities must be notified, unless a law imposes that responsibility directly on Panzica Technologies.

Our notice to a Customer may include, where reasonably available:

  • the date or estimated period of the incident;
  • the nature of the information involved;
  • known or reasonably anticipated consequences;
  • containment and corrective actions;
  • recommended Customer actions; and
  • a contact for further information.

16. Accuracy and correction

Customers and Authorized Users are responsible for providing accurate and current information.

Authorized Users may be able to update certain account information through the Services.

An individual who believes Customer Data is inaccurate should contact the Customer that collected or controls the information.

Where Panzica Technologies controls the information, an individual may request correction by contacting support@panzica.ca.

We may require sufficient information to:

  • identify the requester;
  • locate the relevant record;
  • verify identity and authority;
  • understand the requested correction; and
  • protect against fraudulent or unauthorized changes.

We may decline or limit a correction request where permitted by law, including where the information consists of an opinion, professional judgment, audit history, completed record, or information that must be retained for legal purposes.

Where appropriate, a statement of disagreement may be added to a record instead of altering the original record.

17. Access to Personal Information

Subject to applicable law, an individual may request:

  • confirmation of whether we process their Personal Information;
  • access to Personal Information controlled by Panzica Technologies;
  • information about how it has been used;
  • information about organizations to which it has been disclosed; and
  • correction of inaccurate information.

Where the request concerns Customer Data, we may refer the requester to the applicable Customer.

We may require identity verification before processing a request.

Access may be restricted where permitted or required by law, including where disclosure would:

  • reveal Personal Information about another individual;
  • disclose confidential commercial information;
  • interfere with an investigation;
  • threaten safety or security;
  • reveal privileged information;
  • disclose information collected for a legal proceeding;
  • conflict with a statutory restriction; or
  • be unreasonably burdensome in circumstances where the law permits refusal.

Requests may be sent to support@panzica.ca.

18. Account closure and deletion requests

Authorized Users should contact their Customer administrator to deactivate or close an account.

Customers may request termination or deletion according to the applicable subscription agreement.

Closing an account does not necessarily require immediate deletion of all associated information. Information may be retained where necessary for:

  • municipal recordkeeping;
  • audit histories;
  • security;
  • legal obligations;
  • investigation;
  • litigation;
  • contractual enforcement;
  • backup cycles; or
  • fraud prevention.

A request from an individual to delete Customer Data may be referred to the Customer responsible for that information.

Deletion rights are subject to applicable legal and operational limitations.

19. Employee and contractor information

PW Command may be used to organize information concerning employees and contractors.

The Customer is responsible for determining whether employee or contractor information may lawfully be collected, used, disclosed, monitored, or retained.

Customers should:

  • collect only information reasonably required for legitimate operations;
  • clearly explain monitoring and location practices;
  • restrict access according to job responsibilities;
  • avoid recording unnecessary medical or disciplinary details;
  • maintain human review of AI-assisted recommendations;
  • follow applicable collective agreements and workplace policies;
  • provide access and correction procedures where required; and
  • avoid using operational information for unrelated purposes without appropriate authority.

Panzica Technologies does not act as an employer, supervisor, union representative, health-and-safety representative, or decision-maker concerning the Customer’s workers.

20. Children and minors

PW Command is intended for use by organizations and authorized adult workers, officials, contractors, and administrators.

We do not knowingly permit children to create accounts or independently use the Services.

Municipal service requests or operational records may incidentally contain information relating to a child. Customers must only enter such information where it is reasonably necessary and legally authorized.

If you believe a child has independently created an account or submitted Personal Information without appropriate authorization, contact support@panzica.ca.

21. Marketing communications

We may use business contact information to communicate with Customers and prospective Customers concerning:

  • PW Command;
  • product demonstrations;
  • training;
  • service updates;
  • relevant product features; and
  • related Panzica Technologies services.

We will send commercial electronic messages in accordance with applicable law.

Recipients may unsubscribe from marketing communications by using the unsubscribe mechanism provided or by contacting us.

Unsubscribing from marketing communications does not prevent us from sending necessary:

  • security notices;
  • account notices;
  • service notices;
  • legal communications;
  • billing communications; or
  • support responses.

We do not use Customer operational data or employee activity data for unrelated advertising.

22. Aggregated and de-identified information

We may create aggregated or de-identified information that does not reasonably identify an individual or Customer.

We may use this information to:

  • improve the Services;
  • measure reliability;
  • analyze usage;
  • develop features;
  • improve workflows;
  • create industry or operational benchmarks;
  • improve security;
  • conduct research;
  • support business planning; and
  • improve AI-assisted functionality.

We will not intentionally publish de-identified information in a form that reasonably permits a Customer or individual to be reidentified.

We will not attempt to reidentify information that has been properly de-identified except where necessary to test the effectiveness of de-identification or where permitted by law.

23. External links and third-party services

The Services may contain links to or integrations with third-party websites, applications, mapping services, weather providers, contractors, suppliers, or other services.

This Privacy Policy does not govern independent third parties.

We are not responsible for the privacy, security, accuracy, or content of a third-party service.

Customers and Authorized Users should review the applicable third party’s terms and privacy practices.

24. International users

PW Command is initially designed primarily for Canadian business, municipal, utility, contractor, and public-works Customers.

A Customer that intends to use the Services outside Canada must notify Panzica Technologies so that appropriate contractual, privacy, hosting, and regulatory requirements can be evaluated.

Additional rights may apply to individuals in the European Economic Area, United Kingdom, United States, Australia, New Zealand, or other jurisdictions.

Where legally required, we will honour applicable rights, which may include:

  • access;
  • correction;
  • deletion;
  • restriction;
  • objection;
  • portability;
  • withdrawal of consent;
  • appeal; and
  • human review of a significant automated decision.

The specific rights available depend on the applicable jurisdiction and our role in processing the information.

This Privacy Policy does not represent that PW Command is currently offered or legally available in every jurisdiction.

25. Changes to this Privacy Policy

We may update this Privacy Policy to reflect:

  • changes to the Services;
  • new features;
  • changes in service providers;
  • changes in privacy practices;
  • legal or regulatory developments;
  • security improvements; or
  • organizational changes.

The updated version will show a revised “Last updated” date.

If a change materially affects how we process Personal Information, we may provide additional notice through:

  • the Services;
  • email;
  • an account administrator;
  • our website; or
  • another appropriate method.

Where consent is legally required for a new purpose, we will seek consent before processing information for that purpose.

26. Privacy questions, requests, and complaints

Questions, requests, complaints, or concerns about this Privacy Policy or Panzica Technologies’ handling of Personal Information may be sent to:

Privacy Officer
Panzica Technologies Inc.
Ontario, Canada
Email: support@panzica.ca

Please include:

  • your name;
  • your organization;
  • your contact information;
  • the Customer account involved;
  • a description of the request or concern; and
  • sufficient information to identify the relevant records.

Do not send passwords, government identification numbers, medical records, or other unnecessary sensitive information by ordinary email.

We may need to verify your identity and authority before responding.

We will investigate privacy complaints and respond within a reasonable period. If a complaint concerns Customer Data, we may refer the matter to the Customer and cooperate with its investigation.

Nothing in this Privacy Policy prevents an individual from contacting an applicable privacy regulator.

27. Customer-specific privacy terms

A Customer’s order form, subscription agreement, data-processing agreement, security addendum, request-for-proposal response, or other written agreement may contain additional privacy requirements.

These may address:

  • data residency;
  • approved subprocessors;
  • security standards;
  • incident-notification periods;
  • retention;
  • deletion;
  • audit rights;
  • encryption;
  • access-to-information assistance;
  • integration requirements;
  • municipal records;
  • insurance;
  • business continuity;
  • disaster recovery; and
  • termination assistance.

If a specifically negotiated written agreement conflicts with this Privacy Policy, the written agreement will govern the processing of that Customer’s data to the extent of the conflict.

28. Contact information

Panzica Technologies Inc.
Ontario, Canada
Email: support@panzica.ca

Privacy-related communications should state that they concern PW Command Privacy.