LAST UPDATED: DECEMBER 2025
Data Protection
An overview of the technical and organizational measures implemented by Glamiti to support the security and integrity of information processed through our platform. This page is provided for informational purposes only and does not create contractual obligations. It must be read together with, and is subject to, Glamiti's Privacy Policy, which governs all matters relating to personal information. In the event of any inconsistency, the Privacy Policy shall prevail.
1. Our Role in Data Processing
Glamiti provides a business-to-business (B2B) software platform for businesses operating in the beauty and wellness industry.
Merchants using the Glamiti platform act as data controllers
Glamiti acts as a service provider / data processor, processing personal information solely on behalf of and under the instructions of merchants
Glamiti does not independently determine the purposes or means of processing personal information entered into the platform by merchants.
2. Information Processed Through the Platform
The Glamiti platform may process different categories of information, depending on how merchants configure and use the Services, including:
Merchant account and business information
Authorized user details
Appointment and scheduling data
Customer contact information entered by merchants
Service notes and operational records
All end-customer information processed through the platform is controlled by the merchant, not Glamiti.
Capitalized terms not defined on this page have the meanings given in Glamiti's Privacy Policy.
3. Technical and Organizational Safeguards
Glamiti implements commercially reasonable administrative, technical, and organizational measures designed to protect information processed through the platform against unauthorized access, disclosure, alteration, or loss.
These measures may include, where appropriate:
Access controls and authentication mechanisms
Role-based permissions within the platform
Secure cloud infrastructure environments
Monitoring and logging for system integrity
Internal policies governing data access and handling
These safeguards are designed to reduce risk, but they do not eliminate it.
4. Infrastructure and Third-Party Services
Glamiti relies on third-party infrastructure and service providers to operate and support the platform, including cloud hosting and payment processing services.
These providers maintain their own security and privacy practices and process information in accordance with their respective policies. Glamiti does not control and is not responsible for the internal security practices of third-party service providers.
5. Cross-Border Data Processing
Information processed through the Glamiti platform may be stored or processed outside Canada, including in the United States.
Such processing may be subject to the laws of the jurisdiction in which the information is stored or processed. Merchants are responsible for informing their customers of any cross-border data processing associated with their use of the platform.
6. No Guarantee of Absolute Security
While Glamiti takes reasonable steps designed to protect information, no system is completely secure.
Glamiti does not guarantee that unauthorized access, disclosure, or loss of information will never occur and disclaims any representation of absolute security.
7. Data Access and Requests
All data access, correction, and deletion requests must be initiated by merchants in accordance with Glamiti's Privacy Policy.
Glamiti does not respond directly to End Customer requests except where required by applicable Canadian law and only in its capacity as a service provider.
8. Updates to This Page
This Data Protection page may be updated from time to time to reflect changes in technical practices or platform operations.
Any updates are subject to the governing Privacy Policy.
9. Contact Information
For questions relating to data protection practices, contact:
Sanraj Ventures Inc.
Operating as Glamiti
Email:
privacy@glamiti.com