PIPEDA Compliant Privacy Protection

Privacy Policy

Your privacy is our priority. Learn how we collect, use, and protect your personal information in compliance with Canadian privacy laws.

Last Updated: January 20, 2025

Effective Date: January 20, 2025

Important Information

This Privacy Policy complies with the Personal Information Protection and Electronic Documents Act (PIPEDA) and provincial privacy legislation across Canada. It applies to all personal information collected through canadaaccountants.app and related services.

1. Information We Collect

Personal Information You Provide

Information Type Examples Purpose
Contact Information Name, email address, phone number, business address Account creation, communication, service delivery
Professional Information CPA license number, specializations, experience, firm details Verification, matching, profile creation
Business Information Company name, industry, size, accounting needs CPA matching, service customization
Financial Information Payment details, billing information, subscription data Payment processing, billing, account management
Communication Data Messages, support requests, feedback Customer support, service improvement

Automatically Collected Information

2. How We Use Your Information

Primary Uses

  • ✅ Provide CPA matching services
  • ✅ Verify professional credentials
  • ✅ Process payments and billing
  • ✅ Deliver customer support
  • ✅ Send service notifications
  • ✅ Maintain platform security

Secondary Uses

  • 📊 Improve our algorithms
  • 📊 Analyze usage patterns
  • 📊 Develop new features
  • 📊 Send marketing communications (with consent)
  • 📊 Comply with legal obligations
  • 📊 Prevent fraud and abuse

Consent and Opt-Out

We obtain your consent for all marketing communications and non-essential data processing. You can withdraw consent or opt-out at any time by contacting us or updating your preferences.

3. Information Sharing and Disclosure

We Share Information With:

Service Providers

Railway (hosting), Stripe (payments), email service providers - only as necessary for service delivery

Platform Members

Limited profile information shared between CPAs and businesses for matching purposes

Legal Requirements

Government authorities when required by Canadian law, court orders, or to protect safety

Business Transfers

In case of merger, acquisition, or sale - with advance notice and continued privacy protection

We DO NOT:

  • ❌ Sell your personal information to third parties
  • ❌ Share data with advertisers for tracking
  • ❌ Transfer data outside Canada without consent
  • ❌ Use your information for unrelated purposes

4. Data Security and Protection

Encryption

TLS 1.3 in transit, AES-256 at rest

Access Control

Multi-factor authentication, role-based permissions

Monitoring

24/7 security monitoring, incident response

Additional Security Measures:

  • • Regular security audits and penetration testing
  • • Employee privacy and security training
  • • Secure backup and disaster recovery procedures
  • • SOC 2 Type II compliance (in progress)

5. Your Privacy Rights Under PIPEDA

Right to Access

Request copies of your personal information we hold

Right to Correction

Update or correct inaccurate personal information

Right to Deletion

Request deletion of your personal information (with limitations)

Right to Object

Object to certain uses of your personal information

Data Portability

Receive your data in a structured, commonly used format

Right to Information

Understand how your information is being used

How to Exercise Your Rights

To exercise any of these rights, contact our Privacy Officer:

  • 📧 Email: privacy@canadaaccountants.app
  • 📞 Phone: (647) 956-7290
  • 📍 Mail: Privacy Officer, CanadaAccountants, Toronto, ON

We will respond to your request within 30 days as required by PIPEDA.

6. Cookies and Tracking Technologies

Cookie Type Purpose Duration Control
Essential Cookies Platform functionality, security, authentication Session/1 year Cannot be disabled
Analytics Cookies Usage statistics, performance monitoring 2 years Can be disabled
Preference Cookies User settings, language, customization 1 year Can be disabled
Marketing Cookies Personalized content, campaign tracking 1 year Requires consent

You can control cookies through your browser settings or our cookie preference center. Disabling certain cookies may affect platform functionality.

7. Data Retention

Active Account Data

Retained while your account is active and for 2 years after account closure

Financial Records

Retained for 7 years as required by Canadian tax and business laws

Communication Records

Support tickets and communications retained for 3 years

Analytics Data

Aggregated and anonymized data retained indefinitely for service improvement

8. International Data Transfers

Our Approach to Data Transfers

We primarily process data using Railway's cloud infrastructure. While our service providers may have servers in various locations, we implement appropriate safeguards for any international transfers.

Safeguards Include:

  • ✓ Contractual data protection clauses
  • ✓ Adequacy decisions where available
  • ✓ Additional security measures
  • ✓ Regular compliance monitoring

Your Rights:

  • ✓ Request details about transfers
  • ✓ Object to specific transfers
  • ✓ Request local processing when possible
  • ✓ Contact our Privacy Officer with concerns

9. Children's Privacy

Age Restriction

CanadaAccountants is intended for business professionals and is not directed at children under 18. We do not knowingly collect personal information from minors.

If we discover we have collected information from a child under 18, we will delete it immediately. Parents or guardians who believe we may have such information should contact us immediately.

10. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of significant changes through:

  • Email notification to registered users
  • Prominent notice on our website
  • In-platform notifications
  • Updated "Last Modified" date at the top of this policy

Your continued use of our services after policy changes constitutes acceptance of the updated policy. If you disagree with changes, you may close your account before they take effect.

Privacy Questions or Concerns?

Contact our Privacy Officer for any questions about this policy or your personal information.

📧 Privacy Officer

privacy@canadaaccountants.app

Arthur Kostaras, CPA, CMA, CF

Response within 30 days

📞 Phone & Mail

(647) 956-7290

CanadaAccountants

Toronto, Ontario, Canada

🏛️ Regulatory Contact

If you're not satisfied with our response, you may contact the Office of the Privacy Commissioner of Canada at priv.gc.ca