Data residency

Your data stays in Canada

All contact data is hosted on Canadian servers and your emails are sent from Canadian infrastructure — ensuring full PIPEDA compliance and better deliverability for Canadian recipients.

  • Canadian data residency
  • PIPEDA compliant
  • Better local deliverability
Compliance

CASL compliance built in

Cyberimpact simplifies CASL compliance with unique features like the consent block, mandatory message footers, and automated compliance reports — so you're always audit-ready.

  • Consent tracking
  • Mandatory CASL footers
  • Automated compliance reports
Security highlights

Protected at every layer

From encryption to access controls, we protect your data and your contacts' data at every level of our infrastructure.
Encryption at rest & in transit
SOC 2 Type 2 certified
Canadian data centers
PIPEDA compliant
CASL compliance tools
Regular security audits

Security FAQ

Where is my data stored?

All data is stored on Canadian servers in Canadian data centers. Your contacts' personal information never leaves Canada.

Are you SOC 2 certified?

Yes, Cyberimpact holds a SOC 2 Type 2 certification. The report is available under NDA for qualified prospects.

How do you handle CASL compliance?

We provide built-in CASL tools including consent tracking, mandatory unsubscribe links, sender identity in every email, and automated compliance reports.

Can I request security documentation?

Yes — use the form below to request our SOC 2 report, architecture documentation, and compliance questionnaires.

Not sure which plan fits? Our team will help you choose.
Compliance features

Tools that keep you compliant

Mandatory messages
  • Auto CASL footer
  • Unsubscribe links
  • Sender identity
Consent block
  • Express & implied tracking
  • Date stamped
  • Auto reports
Audit trail
  • Full send logs
  • Consent records
  • One-click export
Security documentation

Request security documents.

Submit a request for compliance and security documentation. Our team will review and respond if the request is approved.

  1. SOC 2 Type 2 report available under NDA
  2. Architecture and compliance documentation
  3. Accessibility and higher-ed questionnaires
Requested documents

Cyberimpact reserves the right not to respond to a request deemed not relevant or insufficiently justified.