Last updated: May 2026
eSora Labs Ltd. ("eSora Labs," "we," "us") is committed to protecting the privacy of individuals who visit our websites, use our services, or interact with our companies.
This policy applies to esoralabs.com and related websites operated by eSora Labs, its subsidiaries, affiliates, operating companies, product brands, contractors, vendors, advisors, and authorized service providers. Enterprise engagements, healthcare deployments, and institutional programs are governed by separate Data Processing Agreements (DPAs), Business Associate Agreements (BAAs), or Master Services Agreements (MSAs).
eSora Labs Ltd. is a technology holding company headquartered in Toronto, Ontario, Canada. Our subsidiaries and affiliates include Barnabus Inc. (governed AI infrastructure) and eSora Studio (design, software, brand systems).
You provide: Name, email, organization, project details, role, portfolio URL, and messages submitted through forms.
Automatic: Pages visited, device type, browser, IP address, referral source, cookies, and general location data.
Business/RFP: Organization name, title, program scope, budget range, and procurement details.
Career applicants: Name, email, portfolio, role interest, and application content.
To respond to inquiries, scope projects, improve services, communicate updates, process career applications, and comply with legal obligations. We do not sell personal information to third parties.
Where applicable (GDPR), we process data based on: consent, contractual necessity, legitimate interests (business operations, security, service improvement), and legal compliance.
Data may be processed by hosting providers, analytics providers, email systems, cloud infrastructure, security vendors, CRM tools, legal and accounting providers, and other service providers operating under confidentiality and security obligations. We share with our subsidiaries and affiliates as necessary for stated purposes. We do not share personal information for advertising.
We may disclose or transfer information as part of a merger, acquisition, financing, reorganization, asset sale, corporate transaction, or due diligence process, subject to appropriate confidentiality protections.
Data may be processed in Canada, the United States, and other jurisdictions where our service providers operate. Appropriate safeguards are in place for international transfers.
We retain information only as long as necessary for stated purposes, or as required by law, regulation, or contractual obligation.
We implement reasonable technical and organizational measures including encryption, access controls, and monitoring. Our security program is designed with SOC 2 Trust Services Criteria in mind.
No system is completely secure, and we cannot guarantee that unauthorized access, loss, misuse, or disclosure will never occur.
We do not use customer confidential information, enterprise data, PHI, government data, or regulated institutional data to train public or third-party foundation models unless expressly authorized in a written agreement. Barnabus AI systems operate under governed decision infrastructure with audit trails and human oversight.
Canada (PIPEDA): You have the right to access, correct, and withdraw consent for the collection and use of your personal information, consistent with PIPEDA principles of accountability, consent, limiting collection, limiting use and disclosure, accuracy, safeguards, openness, and individual access.
EU/UK (GDPR): You have the right to access, rectification, erasure, restriction, portability, and objection. You may also lodge a complaint with a supervisory authority.
California (CCPA): You have the right to know, delete, and opt out of the sale of personal information. We do not sell personal information.
Our services are not directed at children under 16. We do not knowingly collect information from children.
Our website may link to external sites. We are not responsible for the privacy practices of third-party websites.
We may update this policy. Material changes will be posted with an updated date.
Privacy: privacy@esoralabs.com