eSauti Privacy Policy

Effective date: 28 Feb, 2026
Last updated: 28 Feb, 2026

This Privacy Policy explains how Hachther Inc. doing business as eSauti (“eSauti”, “we”, “us”, “our”) collects, uses, discloses, and protects personal information when you visit our website, create an account, or use our services (the “Service”).

1) Scope

This Privacy Policy applies to:

Visitors to our website and marketing pages (“Website”);
Prospective customers who contact us or sign up for trials (“Leads”);
Customers and their authorized users (“Customers” / “Users”).

Customer Data vs eSauti Account Data

eSauti is a marketing automation platform. Customers may upload or process personal information about their own contacts (their customers/prospects/donors) in the Service (“Customer Data”). In those cases:

The Customer controls what Customer Data is collected and how it is used.
eSauti processes Customer Data on the Customer’s instructions to provide the Service.

If you are an end-contact of one of our Customers and want to exercise privacy rights about Customer Data, please contact the Customer directly.

2) What personal information we collect

We collect the following categories of personal information depending on how you interact with us:

2.1 Website and device data (analytics)

IP address (or approximate location derived from IP)
Browser type, device type, OS
Pages viewed, time on page, referral source
Cookies/identifiers (depending on your settings)

2.2 Account and customer relationship data

Name, email address, phone number, company name
Billing contact details (if applicable)
Account credentials (hashed/secured)
Support communications

2.3 Service usage and security logs

Login events, access logs
API usage and webhook activity
Configuration changes, audit events (if enabled)
System performance and error data

2.4 Marketing preferences

Subscription status and communication preferences
Opt-out/unsubscribe status

2.5 Customer Data (processed for Customers)

Depending on Customer configuration, Customer Data may include:

Contact records (name, email, phone, tags, segments...)
Interaction history (emails sent/opened/clicked; messages; site visits; purchases/events...)
Consent and proof records (timestamp, source, channel, purpose) if the Customer enables such features

3) How we use personal information

We use personal information to:

Provide, operate, maintain, and improve the Service;
Create and manage accounts, authenticate users, and prevent fraud;
Provide support and respond to inquiries;
Send service-related communications (security notices, billing, updates);
Conduct analytics to understand website performance and improve user experience;
Enforce our Terms of Service and protect rights, safety, and property;
Comply with legal obligations and respond to lawful requests.

4) Legal basis and consent

Where required, we rely on:

Consent (e.g., optional analytics cookies or marketing communications);
Contract (to provide the Service to Customers);
Legitimate business purposes (security, fraud prevention, service improvement);
Legal obligations (compliance, lawful requests).

If you withdraw consent (e.g., for marketing emails or analytics cookies), we will stop that processing to the extent required.

5) Cookies and similar technologies

We may use cookies and similar technologies to operate the Website and measure performance.

If we use Analytics tools, it may collect data such as:

device/browser info, pages viewed, and interaction events
cookies/identifiers to distinguish visits and sessions

You can manage cookies through:

our cookie banner/preferences (when available), and/or
your browser settings (blocking or deleting cookies)

If you do not want analytics cookies, you can decline them (where presented) or block them in your browser. Note that blocking cookies may impact some Website functionality.

6) Error and performance monitoring

We may use Monitor Tools to monitor reliability and diagnose issues. Tool may collect:

device and browser information
error logs, performance data
limited technical metadata (such as URL paths)

We configure monitoring to reduce the collection of sensitive data where possible (for example, by filtering or masking).

7) How we share personal information

We may share personal information in these situations:

7.1 Service providers (subprocessors)

We may share data with third-party service providers that help us operate the Service, such as:

Hosting and infrastructure providers
Analytics providers (e.g., Google Analytics)
Error monitoring providers (e.g., Sentry)
Customer support tools
Payment processors (if applicable)

These providers are authorized to process personal information only as needed to provide services to us and are required to protect it.

7.2 Legal and safety

We may disclose personal information if we believe it is necessary to:

comply with law, regulation, or legal process;
protect the rights, safety, and security of eSauti, our users, or others;
prevent fraud, abuse, or security incidents.

7.3 Business transfers

If we are involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, personal information may be transferred as part of that transaction.

8) International and cross-border processing

Our service providers or infrastructure may process personal information outside Québec/Canada depending on configuration and providers.

When personal information is processed outside your jurisdiction, it may be subject to the laws of that jurisdiction. We take reasonable steps to protect personal information during cross-border transfers (e.g., contractual protections and security measures).

9) Data retention

We retain personal information only as long as necessary for the purposes described in this Privacy Policy, including:

operating and improving the Service,
meeting legal obligations,
resolving disputes,
enforcing agreements.

Retention periods may vary by data type and Customer plan/configuration.

10) Security

We use reasonable administrative, technical, and organizational safeguards designed to protect personal information against unauthorized access, disclosure, alteration, and destruction.

However, no method of transmission or storage is 100% secure. You are responsible for protecting your account credentials and for managing user access within your organization.

11) Your choices and rights

Depending on your jurisdiction, you may have rights such as:

access to your personal information;
correction of inaccurate information;
withdrawal of consent (where applicable);
deletion (subject to legal and operational limits);
information about how personal information is used and shared.

How to exercise your rights

Customer Data requests

If your request relates to Customer Data processed on behalf of an eSauti Customer (e.g., you received a message from a Customer using eSauti), please contact that Customer directly.

12) Children’s privacy

The Service is not intended for children and we do not knowingly collect personal information from children. If you believe we have collected such information, contact us and we will take appropriate steps.

13) Marketing communications (CASL)

If you subscribe to eSauti marketing updates, you can unsubscribe at any time using the link in our emails or by contacting us. We will honor opt-out requests as required by applicable law.

14) Changes to this Privacy Policy

We may update this Privacy Policy from time to time. The “Last updated” date indicates the latest revision. Material changes will be posted on our Website and may be communicated to account holders.

15) Contact us (privacy contact)

For questions or requests related to privacy:

Privacy email: privacy@esauti.com
Support email: support@esauti.com
Address: 23 Rue Sainte-Cécile, Quebec City, QC G1E 4V2, Canada

If applicable, the person responsible for the protection of personal information (RPRP) can be reached at the privacy email above.