Privacy & Information Security Policy

Privacy & Information Security Policy

Purpose

Acumen AdvisErs (registered as 12489171 Canada Inc.) is committed to protecting the confidentiality, integrity, and availability of all information we manage. This policy outlines how we safeguard client data, comply with legal and contractual obligations, and maintain trust.

Scope

This policy applies to:

• All information owned or processed by Acumen AdvisErs.

• All employees, contractors, and third parties with access to our systems or data.

Core Principles

• Confidentiality: Access to sensitive information is restricted to authorized personnel only.

• Integrity: We ensure data accuracy and prevent unauthorized alterations.

• Availability: Systems and information remain accessible to authorized users when needed.

Information Security Commitments

• Implement and maintain an Information Security Management System (ISMS) aligned with industry best practices.

• Apply risk-based controls to protect data from threats, errors, or misuse.

• Conduct annual reviews of this policy and related procedures.

Privacy Practices

• We collect only the data necessary to deliver our services.

• We do not sell or share personal information with third parties without consent, except as required by law.

• Clients may request access, correction, or deletion of their personal data by contacting us at welcome@acumenadvisers.com.

Incident Management

Any suspected or actual security incident must be reported immediately to our designated Information Security Officer. We will investigate, mitigate, and notify affected parties as required by law.

Compliance

Acumen AdvisErs complies with applicable Canadian privacy laws and contractual obligations. We also align with recognized frameworks such as ISO 27001 and NIST (National Institute of Standards and Technology) for information security best practices.

Contact

For questions about this policy or to exercise your privacy rights, contact:
Email: welcome@acumenadvisers.com