Your data, our responsibility
Privacy Policy
At Groupe Miracom, protecting personal information is not just a legal obligation: it's our profession. This policy explains what data we collect, why, and how we protect it, in compliance with Quebec's Bill 25.
Last updated: January 2026
1. Personal Information Protection Officer
Groupe Miracom has appointed a personal information protection officer, in accordance with the Act to modernize legislative provisions as regards the protection of personal information (Bill 25).
For any question regarding this policy or your personal information, you can reach them by email at info@groupemiracom.ca or by phone at 1 855 339-9543.
2. Information We Collect
We collect only the information necessary for the purposes for which it is collected:
- Identification information: first and last name, job title and company name, when you fill out a contact or quote form.
- Contact details: business email address and phone number.
- Request-related information: description of your IT needs, information about your IT environment provided voluntarily as part of a quote or support ticket.
- Browsing data: IP address, browser type and pages visited, collected in anonymized form for statistical purposes (see our Cookie Policy).
- Applications: resumes and information sent to cv@miracom.ca as part of an application for an internship or job.
3. Purposes of Collection
Your personal information is used exclusively to:
- Respond to your quote or information requests;
- Provide, administer and invoice our IT services when you become a client;
- Track support tickets and technical interventions;
- Process your application for a position or internship;
- Meet our legal and contractual obligations, particularly with respect to record keeping.
We never use your information for sale to third parties, and we do not subscribe you to any newsletter without your explicit consent.
4. Consent
By providing your information through one of our forms, by email or by phone, you consent to its collection and use for the purposes described in this policy. You may withdraw your consent at any time by contacting our personal information protection officer, subject to our legal and contractual obligations.
5. Disclosure to Third Parties
Your information is neither sold nor rented. It may be disclosed only:
- to our authorized employees and subcontractors who need it in the course of their duties, and who are bound by confidentiality obligations;
- to technology service providers (hosting, support ticket management) that offer protection guarantees equivalent to Quebec requirements;
- when required by law or ordered by a competent authority.
Should any information need to be disclosed outside Quebec, we would first conduct a privacy impact assessment, as required by Bill 25.
6. Retention and Destruction
Your information is kept only for as long as necessary for the purposes described, or for the period required by law. At the end of this period, it is securely destroyed or irreversibly anonymized.
7. Security Measures
As a firm specializing in cybersecurity, we apply to our own systems the same standards we recommend to our clients:
- Encryption of data in transit and at rest;
- Multi-factor authentication on our internal systems;
- Access control based on the principle of least privilege;
- Continuous monitoring and access logging;
- Encrypted backups and a confidentiality incident response plan.
In the event of a confidentiality incident presenting a risk of serious harm, we will notify the Commission d'accès à l'information du Québec as well as the individuals concerned, as required by law.
8. Your Rights
In accordance with the law, you have the right to:
- access the personal information we hold about you;
- request its correction if it is inaccurate;
- request the cessation of its dissemination or its de-indexing in certain circumstances;
- withdraw your consent to its use;
- file a complaint with the Commission d'accès à l'information du Québec.
Any access or correction request may be addressed to our personal information protection officer using the contact details in section 1. We will respond within 30 days.
9. Changes to This Policy
We may update this policy periodically to reflect changes in our practices or in legislation. The date of the last update appears at the top of the page. We invite you to review it regularly.
Questions? Talk to a human.
Our team answers all your questions about protecting your data — and everything else in your IT.