Privacy policy.

Last updated: 2026-04-20

Written in plain English. Covers our obligations under Canada's Personal Information Protection and Electronic Documents Act (PIPEDA), Québec's Act respecting the protection of personal information in the private sector (as amended by Bill 64 / Law 25), and Canada's Anti-Spam Legislation (CASL).

The short version

• We collect what we need to run the service — your email, payment info (via Stripe, not stored by us), IP/device metadata for fraud prevention, and your subscription status.
• We don't sell your data. Ever.
• You can request, correct, or delete your data anytime.
• We store most customer data on Canadian or EU infrastructure; some payment processing is handled by Stripe in the US under PIPEDA-equivalent safeguards.

1. Who we are (the data controller)

FineIPTV, operating at , Toronto, ON . Privacy contact: support@fineiptv.com.

Under Québec Law 25, we have designated a Privacy Officer who you can reach at the same email with "Privacy Officer" in the subject line.

2. What we collect

When you sign up or start a trial

• Email address
• Optional WhatsApp number (for support)
• Device type you're using (Firestick, Smart TV, etc. — helps us support you)

When you pay

Payment card details are handled by Stripe; we don't see or store your full card number. We keep the last 4 digits and expiry for invoice/receipt purposes only. If you pay by Interac e-Transfer, we see your name and the transfer reference — nothing else.

When you use the service

• IP address and coarse geolocation (country/province level) for fraud prevention and regional routing
• Server-side logs of connection events (timestamp, session length) — retained 30 days
• Concurrent-stream counts

We do not log which channels you watch. We don't need that information and deliberately don't collect it.

When you visit this website

We use privacy-respecting analytics (Google Analytics 4 configured with IP anonymization and cookieless mode where available). You consent via our cookie banner. You can decline analytics and the site still works fully.

3. Why we collect it (legal basis)

Under PIPEDA and Law 25, we process your data under these bases:

• Performance of contract — to deliver the service you've paid for.
• Legal obligation — tax records, CASL compliance.
• Legitimate interest — fraud prevention, security.
• Consent — marketing emails (you opt in separately), non-essential analytics.

4. Who we share data with

We share only with processors who help us run the service:

• Stripe — payment processing. PIPEDA-compliant. Privacy notice.
• Cloudflare — DDoS protection, edge caching. GDPR/PIPEDA aligned.
• Email delivery provider (SES or equivalent) — transactional emails only.
• Google Analytics 4 — only if you've consented to analytics cookies.

We do not sell, rent, or trade your data. Ever. Under any circumstances.

5. International transfers

Stripe processes payment data in the US under its PIPEDA-equivalent data protection framework and standard contractual clauses. By paying via Stripe you consent to this transfer. All other customer data is stored on Canadian or EU infrastructure.

6. How long we keep data

• Account email + subscription record: while active, plus 7 years after closure (Canadian tax requirements).
• Billing records: 7 years (CRA requirement).
• Connection logs: 30 days rolling.
• Support messages: 2 years.
• Marketing consent records: indefinitely while you remain subscribed (CASL requirement).

7. Your rights

Under PIPEDA and Law 25 you have the right to:

• Access — request a copy of all personal data we hold about you.
• Correct — request corrections to inaccurate data.
• Delete — request deletion (subject to our legal retention obligations for billing).
• Portability — receive your data in a machine-readable format.
• Withdraw consent — at any time, for processing based on consent.
• Lodge a complaint — with the Office of the Privacy Commissioner of Canada (priv.gc.ca) or, for Québec residents, the Commission d'accès à l'information (cai.gouv.qc.ca).

To exercise any of these rights, email support@fineiptv.com with "Privacy request" in the subject. We respond within 30 days.

8. Marketing communications (CASL)

We only send you marketing emails if you've explicitly opted in. Every marketing email includes a one-click unsubscribe. Transactional emails (receipts, renewal notices, service alerts) are sent regardless because they're required for the service.

9. Security

HTTPS everywhere. Passwords hashed (bcrypt). Payment data handled exclusively by Stripe. Access to customer records is limited to support staff who need it. Security incidents affecting personal data are reported to the Privacy Commissioner and affected users within 72 hours as required by PIPEDA.

10. Cookies

We use strictly-necessary cookies (session, consent preference) always. Analytics cookies only fire if you consent via the banner. You can change your consent anytime by clearing fineiptv:consent from your browser's localStorage.

11. Children

The service is not directed at children under 13. We don't knowingly collect data from children under 13. If you believe we have, contact us and we'll delete.

12. Changes

Material changes to this policy will be emailed to active subscribers at least 14 days before they take effect.