PRIVACY POLICY

This policy applies to WEB sites and applications contained in the grafea-go.com, grafea.ca domains and all their related sites and sub-domains.

Last updated: June 30, 2020

Respect for your privacy is of the utmost importance to Service Conseil Grafea inc., which is responsible for these WEB sites and applications.

The purpose of this privacy policy is to explain to you:

  • How your personal information is collected and processed. Any information likely to identify you must be considered as personal information. These include your first and last name, your age, your postal address, your email address, your location or your IP address;
  • What are your rights regarding this information;
  • Who is responsible for processing the personal information collected and processed;
  • To whom this information is transmitted;
  • The policy on the use of cookies.

This privacy policy supplements the Terms of Use which you can consult at the following address:

www.grafea-go.com/conditions-dutilisation

1. COLLECTION OF PERSONAL INFORMATION

We collect the following personal information, depending on the WEB applications used:

  • Last name
  • First name
  • Postal address including postal code
  • Email addresses
  • Phone numbers
  • Social Security number
  • Gender or sex
  • Age / date of birth
  • Medical data, allergies
  • Other (s):
  • Family composition; siblings

The personal information that we collect is collected through the methods of collection described below, in the sections “Methods of collection and use” and following.

2. METHODS OF COLLECTION AND USE

Your personal information is collected through the following methods

  • Website registration form
  • Information pages to be completed
  • Information spaces to register

We use the information thus collected for the following purposes:

  • Functionalities of the Grafea and Grafea-GO WEB applications
  • Monitoring and detection of inadequate or fraudulent use of WEB applications
  • Detection and correction of anomalies
  • Monitoring of the capacity and performance of IT equipment
  • Statistics
  • Contact
  • Website management

Service Conseil Grafea inc. cannot be held responsible for any inappropriate or fraudulent use of its applications by users. Any suspicious behavior may be submitted to us for investigation on our part.

3. INTERACTIVITY

Your personal information is also collected through the interactivity that may be established between you and our web applications. This information is collected by the following means:

  • Messaging, forums and discussion areas
  • Correspondence, emails

We use the information thus collected for the following purposes

  • Functionalities of the Grafea and Grafea-GO WEB applications
  • Monitoring and detection of inadequate or fraudulent use of WEB applications
  • Detection and correction of anomalies
  • Monitoring of the capacity and performance of IT equipment
  • Statistics
  • Contact
  • Website management

Grafea Consulting Service inc. cannot be held responsible for any inappropriate or fraudulent use of its applications by users. Any suspicious behavior may be submitted to us for investigation on our part.

4. LOG FILES AND COOKIES

We collect certain information through log and. These files allow us to ensure the functioning of WEB applications, data flow statistics and monitoring, to facilitate navigation and to improve service and user-friendliness.

a) Description of cookies used by the site

It mainly concerns the following information:

  • Unique, secure and time-limited login token

The use of such cookies allows us to achieve the following objectives:

  • Improved service and personalized user experience

b) Objection to the use of cookies by the site

You can oppose the recording of these cookies by configuring your browser software.

If you decide to disable cookies, you can then continue browsing the site. However, any dysfunction of the site caused by this manipulation cannot be considered as being our fault.

4.1 GOOGLE ANALYTICS

Google Analytics components are used anonymously for marketing, performance and internet usage analysis. Google Analytics uses cookies and has its own privacy policy. This can be viewed on the Google site, whose Montreal offices are located at:

1253 McGill College Avenue Montreal, QC H3B 2Y5 Canada

Telephone: 514-670-8700

5. SHARING OF PERSONAL INFORMATION

Personal information collected by the sites and applications is not transmitted to any third party and is only processed by us and our authorized business partners and committed to the same conditions and responsibilities of this policy.

6. PERIOD OF RETENTION OF PERSONAL INFORMATION

The person in charge of the processing of personal information will keep in his computer systems and under reasonable conditions of security all the personal information collected for the duration required by the legal and regulatory obligations to which the WEB applications relate.

7. HOSTING OF PERSONAL INFORMATION

Our site is hosted by: Amazon WEB Services, headquartered at the address below :

800-885 West Georgia Street Vancouver, BC V6C3H1 Canada

The information contained and processed in our WEB applications is hosted and processed as a priority in Canada. However, for reasons of availability, performance or recoverability in the event of a geographic site failure, this information may be distributed to other sites part of the global infrastructure of Amazon WEB Services, including the United States.

However, we make sure to protect this information in the same way by applying at least equivalent security measures whether it is hosted or processed in Canada or outside Canada.

8. RESPONSIBLE FOR THE PROCESSING OF PERSONAL INFORMATION

a) The person in charge of processing personal information

The person responsible for processing personal information is: Benoit Gélinas. He can be contacted as follows:

By email at info@grafea.ca

The person in charge of processing personal information is responsible for determining the purposes and means used to process personal information.

b) Obligations of the person responsible for processing personal information

The person in charge of processing personal information undertakes to protect the personal information collected, not to transmit it to third parties without you having been informed and to respect the purposes for which this information was collected.

In addition, the person in charge of processing personal information undertakes to notify you in the event of rectification or deletion of personal information, unless this entails disproportionate formalities, costs or procedures for him.

In the event that the integrity, confidentiality or security of your personal information is compromised, the data controller undertakes to inform you by any means.

9. RIGHT OF OBJECTION AND WITHDRAWAL

You have the right to object to the processing of your personal information. You also have the right to request that your personal information no longer appear, for example, in a mailing list (“right of withdrawal”).

In order to object to the processing of your personal information or to request the removal of your personal information, you must follow the following procedure:

The user must make a detailed request in writing and send it by email to the person in charge of processing personal information at the address indicated above.

The use of your right of opposition and withdrawal will imply your non-use of the WEB applications in which your personal information is registered.

10. ACCESS RIGHTS, CORRECTION AND DELETION

You can read, update, modify or request the deletion of your information, by following the procedure set out below:

The user must make a detailed request in writing and send it by email to the person in charge of processing personal information at the address indicated above.

The use of your right of deletion will imply your non-use of the WEB applications in which your personal information is registered.

11. SECURITY

The personal information we collect is kept in a secure environment. People working for us and business partners are required to respect the confidentiality of your information.

To ensure the security of your personal information, we use the following measures:

  • SSL (Secure Sockets Layer) protocol
  • Access management – authorized person
  • Access management – person concerned
  • Automatic backups
  • Use of digital certificates
  • Usernames / passwords
  • Firewalls
  • Other (s):
    • One-way encryption of secret data (passwords)
    • Systematic destruction of obsolete data.
    • Data redundancies in several geographic sites
    • Restricted and controlled access to physical infrastructure

We are committed to maintaining a high degree of confidentiality by integrating the latest technological innovations to ensure the confidentiality of your interactions in our WEB applications. However, as no mechanism offers absolute security, there is always a risk involved when using the Internet to transmit personal information.

13. CONDITIONS OF MODIFICATION OF THE PRIVACY POLICY

This privacy policy can be consulted at any time at the addresses indicated below:

www.grafea-go.com/conditions-dutilisation

We reserve the right to modify it in order to guarantee its conformity with the law in force.

Consequently, you are invited to come and consult this privacy policy regularly in order to keep you informed of the latest changes that will be made to it.

14. ACCEPTANCE OF THE PRIVACY POLICY

By browsing the sites and using the applications, you certify that you have read and understood this privacy policy and accept the conditions thereof, more particularly with regard to the collection and processing of your personal information, as well as the use of cookies.

15. LEGISLATION

We undertake to comply with the legislative provisions set out in :

Act respecting the protection of personal information in the private sector, CQLR c P-39.1;

and or

Personal Information Protection and Electronic Documents Act, SC 2000, c5.