- Introduction and General Concepts
We respect and uphold individual rights to privacy and the protection of personal information. We know how important it is to protect your personal information and want to make every customer experience safe and secure. In keeping with that goal, we have developed this Policy to explain our practices for the collection, use, and disclosure of your personal information and your rights in your personal information. We have appointed a Privacy Officer who is responsible for our compliance with this Policy. Information on how to contact the Privacy Officer can be found below.
- Personal Information
For the purposes of this Policy, “personal information” means information about an identifiable individual, including, for example, an individual’s name, home address, telephone number, email address, social insurance number, sex, income and family status. Personal information does not include information that would enable an individual to be contacted at a place of business, for example an employee’s name, position or title, business telephone number, or business address. We will only collect, use or disclose personal information in accordance with this Policy, or in accordance with laws applicable to the collection, use and disclosure of your personal information by us (“Applicable Privacy Laws”).
- Non-Personal Information
On the other hand, “non-personal information” is any type of information other than personal information, and is excluded from this Policy. For example, non-personal information would include publicly available information and business information, or information that enables an individual to be contacted at a place of business, for example an employee’s name, position or title, business telephone number, or business address. Non-personal information also includes information that is anonymous, psudonymized, or de-identified, , or aggregate information that anonymizes the underlying data (like the number of visitors, what pages users visit, average time spent on the Website or on various parts of the Service). We will collect, use or disclose non-personal information in accordance with our ordinary business practices, but always in accordance with any applicable laws. This Policy, however, only covers our collection, use and disclosure of personal information.
- Information about Minors
This site is intended solely for users who are 13 years of age or older. We do not knowingly collect personal information about any person under the age of 13, and no such person, nor any parent or guardian as it relates to such person, should submit their personal information to us for any reason. Please do not submit personal information about minors to us, whether through the Website, the Service or otherwise.
- Privacy Officer
We have appointed a Privacy Officer who is responsible for our compliance with this Policy. Information on how to contact the Privacy Officer can be found below.
- Collection and Use of Personal Information
As indicated above, we collect two types of information through our Service: personal information and non-personal information. The types of information we collect about you will depend on the nature of your interaction with us or the Service.
- Information we collect directly from you
We may collect the following personal information from you:
- contact information such as name, email address, mailing address, phone number;
- preferences information such as request history and marketing preferences; and
- any information that you voluntarily enter, including personal information, into any postings, comments, reviews, or forms
- Information we automatically collect
We may also automatically gather information about your computer such as your IP address, browser type, referring/exit pages, operating system, as well as which aspects of our performance metric indicators available with our technology or our licensees’ products you prefer using. Some of this may be personal information. Specific examples follow:
- IP, etc.—When using our Website, we may collect the Internet Protocol (IP) address of your computer, the IP address of your Internet Service Provider, the date and time you access our Website, the Internet address of the website from which you linked directly to our Website, the operating system you are using, the sections of our Website you visit, the Website pages read and images viewed, and the content you download from the Website. This information is used for Website and system administration purposes, and to improve the Website.
- Cookies—We may use “cookies”, a technology that installs a small amount of information on a user’s computer to permit the Website to recognize future visits using that computer. Cookies enhance the convenience and use of the Website. For example, the information provided through cookies is used to recognize you as a previous user of the Website, to offer personalized content and information for your use, to track your activity at the Website, to respond to your needs, and to otherwise facilitate your Website experience. You may choose to decline cookies if your browser permits, but doing so may affect your use of the Website and your ability to access certain features of the Website or engage in transactions through the Website.
- Tracking Information—We may use web beacons or single-pixel gif tags to compile tracking information reports regarding Website user demographics, Website traffic patterns, Website purchases and other aggregated Website statistics, and may be used in our emails to determine which emails and links have been used by recipients. We may then provide these reports to advertisers and others. None of the tracking information in these reports can be connected to the identities or other personal information of individual users. For our own research purposes, we may link tracking information with personal information voluntarily provided by Website users. Once such a link is made, all of the linked information is treated as personal information and will be used and disclosed only in accordance with this Policy.
- Use of Personal Information
We may use your personal information, alone or in combination with your non-personal information, for a variety of business purposes, for example to:
- send you a confirmation, if applicable;
- send you requested information;
- send new product or service information;
- respond to customer service requests;
- send you a newsletter;
- carry out contests or promotions;
- send you marketing communications;
- respond to your questions and concerns;
- improve our Services and marketing efforts;
- conduct research and analysis;
- display content based upon your interests; and
- for other purposes as described in this Policy.
- Your Consent
We will collect, use, or disclose your personal information only with your knowledge and consent, except where required or permitted by Applicable Privacy Laws. When you choose to provide us with your personal information you consent to the use of your personal information as identified in this Policy and as may be further identified at the time of collection.
- Express Consent
Sometimes you will be asked to give your express consent to our collection, use or disclosure of personal information – for example, by being asked to check a box to indicate your consent to receive marketing communications in compliance with Canada’s anti-spam laws.
- Implied Consent
Other times, you may provide your implied consent to our collection, use or disclosure of personal information when we can reasonably conclude that you have given consent by some action you have taken or an action you have decided not to take. Generally, this occurs where the purpose for the use of your personal information would be reasonably apparent to you – for example, when you provide us with your address through a form or email seeking information, you provide us with implied consent to use that address in order to respond to your request.
- Withdrawing Your Consent
You may notify us at any time that you wish to withdraw or change your consent to our use and disclosure or your personal information. We will accommodate your request subject to legal and contractual restrictions. The most common way of indicating this withdrawal of consent is (i) by changing your privacy preferences to the extent such functionality is made available through the Service, or (ii) deleting your account with the Service and stopping use of the Service. In other situations, you may be able to opt-out of the use of your personal information. For example, if you have “opted-in” or subscribed to one of our mailing lists, we will always provide you the opportunity to “opt-out” or unsubscribe. For example, if you receive emails from us, we will provide a link in the email which you can use to unsubscribe from that mailing list, or you may contact us at firstname.lastname@example.org.
You may also choose not to provide us with your personal information. However, if you make this choice we may not be able to provide you with the Service, or information that you have requested.
- Information Obtained from Third Parties
If you provide us personal information about others, or if others give us your information, we will only use that information for the specific reason for which it was provided to us and in accordance with this Policy and such policy under which that information was collected.
- Disclosure and Sharing of Your Information
We will share your personal information with third parties only in the ways that are described in this Policy. We will not sell your personal information to third parties, however, the use of our Service necessarily requires some sharing or disclosure of your personal information. Some of these activities may result in personal information collected by us being stored or processed in the United States or elsewhere outside of Canada and, as a result, your personal information may be accessible to law enforcement and regulatory authorities in accordance with the USA PATRIOT Act, the USA FREEDOM Act and other applicable laws of the United States or elsewhere.
- Third-Party Processors
We may provide your personal information to companies that provide services to help us with the Service such as web hosting providers, payment processors, product shipping providers, fulfilment agencies, customer service agencies, or other service providers (“Third Party Processors”). These Third Party Processors are authorized to use your personal information only as necessary to provide these services to us, and in a manner consistent with this Policy. We have selected Third Party Processors who will only use your information in compliance with this Policy, but they may have their own specific policies regarding the collection, use and personal information. We will use commercially reasonable efforts to identify such Third Party Processors when we are collecting your personal information, as well as providing links to the relevant privacy policies that may apply.
- Further Disclosures
We may also disclose your personal information (i) as required by law such as to comply with a subpoena, or similar legal process, (ii) when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request, or (iii) to any other third party with your prior consent to do so.
- Third-Party Links
Our Service may contain links to other websites or Internet resources which are provided solely for your convenience and information. When you click on one of those links you are contacting another website or Internet resource. We have no responsibility or liability for, or control over, those other websites or Internet resources or their collection, use and disclosure of your personal information. We encourage you to read the privacy policies of those other websites to learn how they collect and use your personal information.
- Security of Personal Information
- General Security Practices
The security of your personal information is important to us. We follow generally accepted industry standards to protect the personal information submitted to us, both during transmission and once we receive it. We employ physical, administrative, contractual and technological safeguards to protect personal information, and insist that our service providers do the same. We insist that our personnel, and those of our providers, only access and use personal information in order to properly perform those duties, and even then only to the strict extent necessary to perform them.
- Online Security
We follow generally accepted industry standards to protect personal information submitted to us, both during transmission and once we receive it. However, no method of transmission over the Internet, or method of electronic storage, is 100% secure, and so you should always exercise caution when disclosing sensitive information over the Internet.
If you have any questions about security on our Website, you can contact us at email@example.com.
- Requests for Access to, Correction, or Deletion of Personal Information
Applicable Privacy Laws allow, to varying degrees, individuals the right to access the personal information we collect and/or request the correction of errors or omissions in his or her personal information that is in our custody or under our control. You also may request that we delete your information. Once we have verified or otherwise authenticated your request, our Privacy Officer will assist you with your request. This includes:
- identification of your personal information under our custody or control, including the categories of personal information about you that we have collected in the preceding 12 months;
- information about how your personal information under our control may be used by us or has been used by us in the preceding 12 months; and
- the names of any individuals and organizations to which the your personal information has been disclosed in the preceding 12months.
We will respond to verified requests within the time allowed by Applicable Privacy Laws and will make every effort to respond as accurately and completely as possible. Any corrections made to personal information will be promptly sent to any organization it was disclosed to. We will deliver the requested information to you free of charge, by mail or electronically in a portable and, if technically feasible, readily usable format. If you make a verified request more than twice in a 12-month period, we may charge a processing fee if we are able to accommodate your request.
We may not discriminate against you for exercising any of your rights permitted by Applicable Privacy Laws, including your right to request your personal information as described above.
In certain exceptional circumstances, we may not be able to provide access to certain personal information it holds about an individual. If access cannot be provided, we will notify the individual making the request within 30 days, in writing, of the reasons for the refusal.
Our obligations to respond and comply with your access, correction, or deletion requests do not restrict our ability to comply with national federal, state or local laws, regulations, requests, inquiries, and the like. These rights and our obligations may also be limited to residents of certain states or countries, and may not apply to you.
To make any request as described above, please contact us via our website, via email at: firstname.lastname@example.org, or via our toll free number: 800-215-1824. You may also mail your requests to:
Attention: Privacy Officer
500 Cummings Center, Suite 4550
Beverly, MA 01915 U.S.A.
- CASL Policy
We are committed to compliance with the law known as Canada’s Anti-Spam Legislation (“CASL”). Any electronic communication sent by us to outside parties is protected by a range of business procedures, processes and policies to ensure that such communication is done in compliance with CASL. In our electronic communications with outside parties, we comply with the rules established by CASL and enforced by various Canadian authorities including the Canadian Radio-television and Telecommunications Commission. CASL regulates, and our policies generally apply to, each commercial electronic message we send (a “CEM”), which is an electronic message sent to an electronic address that, among its purposes, encourages participation in a commercial activity.
In addition to adopting this Policy, and to provide transparency about our compliance, we have undertaken various initiatives in order to ensure we are compliant with CASL in various respects:
- Consent—We do not send CEMs without your consent. This consent typically must be “express” (or expressly acknowledged by you), but in certain circumstances consent can be “implied” and in others, messages are specifically exempt from consent requirements. We have modified or adopted our sign-up, registration and consent forms in order to ensure that the express consent obtained from you is in compliance with CASL. When we are collecting your electronic contact information, you will know what purposes we want to use it for.
- Content—We have adopted processes to ensure that our CEMs contain the prescribed content of CASL. On any CEM from us (usually in the footer), we will clearly:
- Identify ourselves as the party sending the CEM, and whether we are sending the message on our own behalf or on behalf of someone else;
- Provide you contact information where you can readily contact us; and
- Set out a clear, working unsubscribe mechanism (or preference centre) that is easy to use, automatic, and at no cost to you (other than your own cost of connecting to the Internet).
- Clarity—We have ensured that each constituent element of a CEM (including its header, its content, or any links or URLs in the CEM) conveys the appropriate information, whether viewed individually or taken as a whole, so that you always know what you are clicking on.
If you have received a CEM from us, and you believe that you should not have or you do not wish to receive them (even if we are allowed to send them), we will endeavor to respect your inbox preferences. Without limiting our legal rights or obligations, we try to ensure that our messages all contain useful identity information and unsubscribe or preferences link in our messages—if you check the CEM itself, you will find clear instructions on how to stop receiving CEMs from us or manage your mail preferences. When you unsubscribe, it should happen very quickly – but as required by CASL we will make sure it occurs within 10 business days. If you have any questions or concerns about our unsubscribe methods, you may contact us at the address indicated below.
- Removal of Your Information
We keep your information only as long as we need it for legitimate business purposes and to meet any legal requirements. Personal information used to make a decision that directly affects an individual will be kept for at least one year after such a decision. We have retention standards that meet these parameters. We destroy your information when it is no longer needed or required to be kept, or we remove your personally identifiable information to render it anonymous.
- Contact Information
You can direct any questions or concerns regarding our compliance with this Policy to our Privacy Officer by emailing at email@example.com.
If you are not satisfied with our Privacy Officer’s response to their question or concern you may be able to make a complaint under Applicable Privacy Laws. Our Privacy Officer can provide you with the contact information to make such a complaint.