For Canadian organizations that need to document, remediate, or defend their data sovereignty posture — led by the person who built the 755-tool Sovereignty Index.
Book a Free Call →When your stack is complex, your regulatory environment is layered (PIPEDA, Law 25, FIPPA, PIPA), or you’re ready to actually migrate. Every engagement is led by Joshua van Es — the person who built the Sovereignty Index and researched every tool page on this site.
Every engagement starts with a 30-minute call. No cost, no commitment.
Book a Free Call →Not sure you need consulting? Start with a $99 compliance report or a free HarbourScan.
We map every SaaS tool your organization uses to its parent jurisdiction, CLOUD Act exposure, data residency options, and encryption posture. The result is a prioritized remediation plan showing which tools create compliance risk and what to do about each one.
If your organization processes personal information of Quebec residents and uses any SaaS tool that stores or processes data outside Quebec, you likely need a TIA for each tool. This includes most US-owned SaaS even if they offer Canadian data residency.
Industry-specific assessments start at $99 for self-serve reports covering 18–24 common tools. Custom assessments for your exact stack are $500. Full compliance packages are $2,500. Consulting engagements for complex organizations start at $5,000.
Privacy consultants do broad compliance work. We specialize exclusively in technology sovereignty — which tools are exposed, what the jurisdictional risks are, and what alternatives exist. We have the deepest dataset on SaaS vendor jurisdictions in Canada (755+ tools mapped).
Yes. Many consulting clients start with a self-serve assessment, then engage consulting when they need hands-on help. The $99 report gives us a baseline to work from.