Effective March 10, 2020
What is Personal Information?
Personal information is information that does or can be used to identify you, either on its own (e.g. your name) or when combined with other information. Personal information can include, but is not limited to:
- First name, last name
- Address or postal code
- E-mail address
- IP address or Device ID
- Opinions, evaluations, comments, reviews of products and services
What Information Do We Collect and for What Purpose?
We collect personal information for the purposes of providing you our products and services, verifying your identity, tailoring your online experience and establishing and maintaining responsible commercial relations with you and complying with regulatory and legal requirements.
The table below provides an easy to use reference guide to the personal information we collect about you and our reasons for doing so.
|Personal information we may collect:||Purposes for collecting your personal information include:|
|First and last name||· create and maintain your account|
|Billing information||· process a purchase|
· create and maintain your account
· receive notifications and confirmations
· receive subscribed marketing materials
· receive electronic receipts/invoices
· validate your account and communicate with you
|Last four digits of your credit card|
· fraud detection
· address payment processing issues with our payment processing service provider
· IP address
· Device ID
· Operating system
· Type of browser
· Browsing behaviour
· Other device specifications such as memory availability
· collect statistical information on the number of product downloads
· collect information about the devices that have downloaded our licensed software and the registered accounts to which it is linked
· improve our Website and services, we may collect information about how you interact with our Website, viewed pages, access dates and times, IP address and the internet browser you use
|Marketing consents and preferences|
· meet our legal obligations
· send you marketing and promotional materials that you have agreed or requested to receive
If you apply for a position with us, we will also collect any information you provide us in your curriculum vitae and throughout the recruitment process. The purpose of collecting and storing this information is to consider and make a determination on your application.
How and From Which Sources Do We Collect Your Personal Information?
Most of the personal information we collect about you is provided from you directly. The following table provides a summary of how we collect your personal information.
|From whom?||How is your personal information collected?|
|You||· When you enter your information in our system to create an account, subscribe to a newsletter or through other direct interactions|
· From cookies and other similar technologies such as Sendinblue analytics
· From browser extensions and features that notify us when our product has been installed or uninstalled by you.
To Whom Do We Disclose Your Personal Information?
We are so serious about privacy we put it in our name! We do not sell or rent your personal information. We are serious about safeguarding your personal information, including maintaining controls for employee and third-party access to your personal information. Below are some examples:
In providing our services to you, we may rely on third party service providers to help perform administrative functions, assist with service delivery or troubleshooting, process payments or assist us in analyzing how our services are being used, among other things. To perform these functions, we may need to share your personal information with our service providers. Our service providers are contractually bound to protect your personal information and to use it only for the purposes for which we have instructed.
Some of these third-party service providers may be located outside of Canada, including the United States, Germany or elsewhere in the European Union. As a result, your personal information may be accessible to law enforcement, courts and regulatory authorities in accordance with the laws of these jurisdictions.
In the event of a sale, assignment, or other transfer of all or a portion of our business or assets, information we might have about you might be transferred or disclosed to a purchaser or prospective purchaser. Should such a transfer occur, we will use reasonable efforts to try to ensure that the transferee uses your information in a manner that is consistent with this policy unless otherwise permitted or required by applicable law.
Other legal requirement
We may be compelled to share your information with a court of law or other person(s) or entity / entities with jurisdiction to compel production of such information.
Where Do We Store Your Personal Information?
We store personal information that we collect from you or about you on Google and Amazon Web Services Cloud Platform servers in Canada.
As noted, from time to time your personal information may be transferred to third party hosts outside of Canada to facilitate or provide certain services on our behalf. These third parties have access to your personal information only to perform the tasks we have instructed them to complete and are contractually bound not to disclose or use it for any other purpose.
Where personal information is transferred to and stored in a country not determined by the European Commission as providing adequate levels of protection for personal information, we take steps to provide appropriate safeguards to protect your personal information, including:
- entering into standard contractual clauses approved by the European Commission, obliging recipients to protect your personal information as permitted under Article 46(2)(c) of the GDPR;
In the absence of an adequacy decision or of appropriate safeguards as referenced above, we will only transfer personal data to a location outside the EEA where one of the following applies (as permitted under Article 49 of the GDPR):
- the transfer is necessary for the performance of our contractual engagement with you;
- the transfer is necessary for the establishment, exercise or defense of legal claims; or
- you have provided explicit consent to the transfer.
For additional information about the way in which our service providers handle your personal information, contact us at firstname.lastname@example.org.
By using our Website, you consent to the transfer of your personal information outside of your jurisdiction for the purpose of storing your personal information or processing it.
Your Legal Rights to Your Personal Information
Depending on your jurisdiction, you may have the following rights to your personal information:
|Right to know|
You have the right to request the categories and specific pieces of personal information we collect including:
1) categories of personal information collected;
2) categories of sources from which personal information is collected;
3) business or commercial purposes for collecting your personal information;
4) categories of third parties with whom we share personal information; and
specific pieces of personal information we have collected about you.
|Right to request access to your personal information||You have a right to request a copy of the personal information that we hold about you. To do so, please contact us at email@example.com.|
|Right to request the erasure of your personal information|
You have the right to request that we delete or remove personal information where there is no good reason for us continuing to process it.
Erasure requests are subject to certain limitations, for example, we may retain personal information as permitted by law.
|Right to request we transfer your personal information to you||Subject to certain limitations you have the right to request that the personal information we hold about you is transferred to you or to a third party. We will provide you, or the third party you have chosen, your personal information in a machine-readable format.|
|Right to request correction of your personal information||You have the right to request that we correct the personal information we hold about you, although we may need to verify the accuracy of the new information you provide us. We may refuse to comply with a request for rectification if the request is manifestly unfounded, excessive or repetitive in nature|
|Right to request restrictions on the processing of your personal information|
You have the right to request that we suspend the processing of your personal information in the following scenarios:
· if you contest the accuracy of the personal information we hold about you and we are verifying the accuracy of that information;
· where it has been determined that the processing of your personal information is unlawful but you do not want us to erase it;
· where you need us to hold the data even if we no longer require it as you need it to establish, exercise or defend legal claims; or
· for other legal purposes.
We may refuse to comply with a request for restriction if the request is manifestly unfounded, excessive or repetitive in nature.
Right to object to the processing of your personal information
In some circumstances, you have the right to object to the processing of your personal information where we are relying on a legitimate interest (or those of a third party). In this case, you must provide specific reasons for why you object to the processing of your personal information.
You have an absolute right to object to the processing of your personal data for direct marketing purposes.
Right to withdraw consent
In circumstances where we are relying on your consent to process your personal data, you have the right to withdraw your consent at any time.
The withdrawal of consent will not affect the lawfulness of any processing carried out before you withdraw your consent. If you withdraw your consent, we may not be able to provide certain products or services to you. We will advise you if this is the case at the time you withdraw your consent
|Right to non-discrimination||Exercising your right to privacy does not result in different treatment by us or different quantities or qualities of product or service that we offer. Where we request your personal information in exchange for a valuable product or service, we will let you know at the time of the exchange.|
In addition, our website uses Google analytics services to help us understand non-personal facts and figures about users of the website such as:
- website traffic;
- number of visitors;
- location of visitors;
- information about the browser version and device type;
- referral sources to the website;
- demographics of visitors;
- and website usage.
Do We Collect the Personal Information of Children?
The short answer is “no”. This Website and our Services are not directed, marketed, or meant to be used by persons under the age of eighteen (18). If you think your child might have created an account with us without your consent, you may request the deletion of the account and the data that we have about your child by writing to us at firstname.lastname@example.org.
How Long Do We Retain Your Personal Information?
We will generally retain your personal information for as long as is necessary to meet our contractual obligations to you, to satisfy the purposes stated above or as otherwise required by law.
When determining the relevant retention period, we consider:
- our contractual obligations and rights in relation to the information involved;
- legal obligation(s) under applicable law to retain data for a certain period of time;
- statute of limitations under applicable law(s);
- our legitimate interests where we have carried out balancing tests (see section on ‘What Information do we collect and for what purpose’ above);
- guidelines issued by relevant data protection authorities; and
- other legal purposes.
In addition to the above, your personal information may be anonymized and used in aggregate. Once it is determined that your personal information is no longer necessary as indicated above, we will securely erase your personal information.
You may also request the deletion of your profile by sending an e-mail to email@example.com. It may take up to twenty (20) business days to respond to your request.
How Do We Protect Your Personal Information?
We take appropriate technical, physical and organizational security measures to protect personal information in our custody and control against unauthorized access, use, modification and disclosure, and accidental loss, destruction and damage.
The third-party vendors with whom we engage for specific tasks are required to have certain safeguards in place that comply with industry standards.
That having been said, we cannot guarantee the security of our database, nor can we guarantee that information you supply will not be intercepted while being transmitted to us over the Internet. Any transmission of information from you to Private AI is at your own risk. Where you have chosen a password that allows you to access our Website you are responsible for keeping this password confidential.
How Do I Report a Privacy Concern?
We are committed to maintaining high standards for privacy. We want to hear from you about any concerns you may have with our privacy practices. If you wish to raise a concern or compliment us on our privacy practices, you can contact us at firstname.lastname@example.org.
If we are not able to address your privacy concerns to your level of satisfaction, you may contact the Office of the Privacy Commissioner of Canada:
Office of the Privacy Commissioner of Canada
30, Victoria Street
Phone: (819) 994-5444
TTY: (819) 994-6591