Languages

Privacy Policy

Welcome to AlerteUnité, legally registered as After Five Collective Inc. Your privacy is crucial to us, and this Privacy Policy outlines our practices regarding the collection, use, and protection of your information. By using our mobile or web app (collectively the “Service”), you acknowledge and agree to the handling of your data as described in this policy.

PLEASE READ THIS PRIVACY POLICY CAREFULLY AS IT BECOMES LEGALLY BINDING ON YOU WHEN YOU USE OUR SERVICE. IF YOU DO NOT AGREE TO THIS POLICY YOU SHOULD IMMEDIATELY STOP USING OUR SERVICE. FURTHER, PLEASE REVISIT US REGULARLY TO KEEP TRACK OF ANY PRIVACY POLICY UPDATES.

Collection of Information

At AlerteUnité, we collect information to provide and improve our services effectively and safely. The information we collect can be categorized into two main types: data you provide to us and data we collect automatically.

(a) Data You Provide

When you engage with our Service (e.g., by creating an account, reporting an incident, or seeking support) we collect the following personal data:

  • First and Last Name: To identify your account and personalize your interactions.
  • Email Address and Phone Number: For account verification, communication, and to provide support.
  • SOS Requests and Incident Reports: To address and manage emergencies and incidents reported through our Service.
  • Communication Information: Including personalized text and voice messages, to facilitate support and ensure effective communication.
  • Photo: If you choose to provide it, to help personalize your profile.

(b) Automatic Data Collection

Location Data: We automatically collect your geographical location data when you use the SOS feature or report an incident. This data is crucial for enhancing the accuracy and effectiveness of these emergency services.

Website Analytics tools: We use analytics services by third parties to collect information about the use of our Service, such as number of visits, pages visited, popularity of certain content. Analytics tools use tracking technologies (like cookies) to recognize your device and compile information about you. They collect information such as what pages you visit and how much time you spend on these pages, the IP address assigned to you, what operating system and web browser you use, and what site you visited prior to visiting our Service.

Information Logs: when you visit our Service, view content provided by us, or use the features of the Service we automatically collect and store certain information in log files. This includes your IP address, URL, referral URL, exit URL, browser software, operating system, date/time, requests type to our Service and error responses returned by our Service.

(c) Information about Emergency Contacts

We also collect information about your emergency contacts, including their names and phone numbers. This information must be verified by your emergency contacts themselves through our Service to ensure their readiness and consent to be contacted in case of an emergency.

Use of Information

When we collect any personal information, we will do our best to store and process it securely. We will comply with our obligations and safeguard your rights under the applicable law at all times. We limit the processing of your personal information to the following purposes:

  • Provide and maintain our Service
  • Enhance your user experience
  • Respond to your inquiries and support requests
  • Conduct research and development
  • Comply with legal and regulatory obligations

Location Data

We request permission to access and track location-based information from your device, either continuously or while you are using our Service, to provide enhanced location-based services. You can manage these permissions in your device’s settings.

Consent

At AlerteUnité, we require your consent to collect, use, or disclose your personal information, unless specific circumstances allow us to do so without it. You have the option to withhold or withdraw your consent at any time, although this may impact our ability to provide you with our Service or certain features. For example, withdrawing consent might hinder our fulfillment of a legal obligation or limit your access to our Service. We will clearly communicate any such implications to ensure you are well-informed before making a decision.

Your Privacy Rights

Under applicable data protection law, you have the following rights regarding the personal data we hold about you:

  • Right to information: You have the right to know the purposes for which your personal information is collected at or before the time the information is collected. This Privacy Policy sets out what personal information we collect, how and why we collect it.
  • Right of access: You have the right to obtain access to your personal information we retain about you.
  • Right to rectification: You have the right to obtain rectification of your personal information without undue delay where that personal information is inaccurate or incomplete.
  • Right to erasure: The right to obtain the erasure of your personal information without undue delay in certain circumstances, such as where the personal information is no longer necessary in relation to the purposes for which it was collected or processed. The erasure of personal information also includes the anonymization of personal data.
  • Right to withdraw consent: You have the right to withdraw consent at any time, subject to legal or contractual restrictions and reasonable notice. Once consent is withdrawn, you will have the right to have your personal information erased and no longer used for processing.
  • Right to challenge compliance: You have the right to challenge our compliance with this Privacy Policy and applicable privacy laws. You can contact our Data Privacy Officer to address any challenges via the contact details set out in this privacy policy.

Data Privacy Officer (DPO)

In order to be compliant with applicable data protection law we have appointed a Data Privacy Officer (DPO) who shall monitor our compliance with applicable privacy laws and assist in exercising your privacy rights. Below are the details about our DPO:

If you have concerns about how we handle your personal information, you are encouraged to submit a complaint to our DPO. Upon receiving your complaint and verifying your identity, our DPO will conduct a thorough investigation and provide you with a detailed report of the findings.

Should the complaint be deemed valid, the DPO will take appropriate measures to rectify the issue, which may include modifying our privacy practices or updating our policies. If the complaint is found to be unfounded, you will be informed in writing. If you are not satisfied with the resolution provided by the DPO, you have the option to escalate your complaint to the Office of the Privacy Commissioner.

How to Exercise Your Rights

To exercise your rights regarding your personal information, please reach out to our DPO. We strive to respond within one month from the date of receiving a well-defined request. If your request is complex or involves multiple queries, the process may take longer, but we will keep you informed throughout.

A nominal fee may be applicable for accessing your personal information. Should there be any fees, we will notify you about the costs and seek your confirmation before proceeding. In cases where we cannot fulfill your request, either fully or partially, we will provide you with a written explanation, detailing the reasons for our decision and the options available for you to challenge it.

Data Retention Period

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, or as required by applicable law. If you wish to have your personal data suspended or removed, please contact our DPO at any time.

Data Removal

Upon receipt of a request for account deletion, you will be informed of the implications thereof, including the permanent loss of all associated data. To confirm your intent to delete the account, a verification link will be dispatched to your registered email address.

Notwithstanding the foregoing, certain data may be retained for a designated period post-account deletion to facilitate investigations. This retention is mandated to ensure the preservation of critical information for legal and security purposes, notwithstanding your request for account deletion.

Security Safeguards

We are dedicated to safeguarding your personal information against unauthorized access, collection, use, disclosure, copying, modification, or disposal. To ensure your information is secure, we implement the following measures:

  • Data encryption for all user communications and anonymous reports.
  • Robust authentication processes to secure user accounts and sensitive data.
  • HTTPS with TLS encryption for all API calls and data transmissions.
  • Regular audits of access logs and permissions to prevent unauthorized access.
  • Limiting employee access to personal information to only those who need to know.
  • Requiring service providers to adopt comparable security measures through contractual agreements.

We will regularly review and update our security policies and controls to stay current with technological advancements and ensure ongoing personal information security.

Third-Party Links

Our Service includes links to third-party websites to enhance user experience. These sites are not operated or controlled by us, and we assume no responsibility for their content, privacy policies, or practices. These third-party sites have their own policies and we urge users to review them before using their sites and services. Linking does not imply endorsement in any way and your use these sites is at your own risk. AlerteUnité shall not be liable for damages arising from the use of third-party sites.

Minors’ Personal Data

AlerteUnité recognizes the importance of protecting the privacy and safety of children. Our Service is not designed for, targeted at, or intentionally marketed to children under the age of 13. We do not knowingly collect, use, or disclose personal data from children under 13 years of age.

We explicitly prohibit individuals under the age of 13 from using our Service. If we learn that we have inadvertently collected personal data from a child under 13 without the required parental consent, we will take immediate steps to delete such information and terminate the child’s account.

If you are a parent or legal guardian and you believe that your child under the age of 13 has submitted personal information to us you can contact our DPO. We will promptly investigate the concern and, if necessary, remove the child’s personal data from our records and deactivate any associated accounts.

International Transfer of Data

Your information, including personal data, may be transferred to and maintained on computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction. If you are located outside Canada and choose to provide information to us, please note that we transfer the data to Canada and process it there. Your consent to this Privacy Policy followed by your submission of such information represents your agreement to that transfer.

Changes to Privacy Policy

This Privacy Policy may be amended by us from time to time. This may be done out of necessity (e.g., in order to reflect changes in the applicable laws), or if we change our business in a way that affects personal data protection.

Any changes will immediately be posted on our Service and you will be deemed to have accepted the terms of the updated Privacy Policy on your first use of our Service following the amendments. Therefore, we strongly recommend you to revisit this page and check our Privacy Policy regularly in order to keep up-to-date.

Do Not Track (DNT)

Many web browsers, some mobile operating systems, and our mobile applications offer a Do-Not-Track (DNT) feature that allows you to express your preference not to be tracked during your online activities. However, there is currently no agreed-upon standard for how DNT requests should be handled. As a result, our systems do not recognize or respond to DNT signals or similar mechanisms. Should a standard be established and adopted in the future, we will update our practices accordingly and notify you of these changes through an updated version of this Privacy Policy.

10 Fair Information Principles

This Privacy Policy is crafted to align with the 10 fair information principles established by the Personal Information Protection and Electronic Documents Act of Canada (“PIPEDA”). In this policy, we detail our adherence to these principles. Below is a summary of the measures we take to ensure compliance.

Principle 1 - Accountability: We are committed to safeguarding your information. A designated Data Protection Officer oversees our compliance efforts. You can contact our DPO using the details provided in the designated section of our privacy policy.

Principle 2 - Identifying purposes: We have identified the purposes of processing in the relevant section of this Privacy Policy.

Principle 3 - Consent: We strive to obtain consent before collecting personal information. Individuals can contact our Data Protection Officer (DPO) using the details in this Privacy Policy to request information deletion.

Principle 4 - Limiting Collection: Personal data collected is limited to that which is necessary for the purposes identified in this Privacy Policy.

Principle 5 - Limiting Use, Disclosure, and Retention: We use your personal information only for the purposes for which it was collected. Details on the use, disclosure, and retention of your personal information are provided in the corresponding sections of this Privacy Policy

Principle 6 - Accuracy: We keep any information accurate, complete and up-to-date. Where there are changes in the information we retain about you, you are encouraged to submit a request to make changes.

Principle 7 - Safeguards: We protect your personal information with appropriate safeguards as set out in the relevant section of this Privacy Policy and ensure our service providers provide appropriate technical and organizational measures to protect your information from security breaches.

Principle 8 - Openness: We are open regarding our data collection and processing practices. You can find information about how we collect, use, process and disclose personal information in this Privacy Policy.

Principle 9 - Individual Access: You can submit a request to access your information we hold about you. You can use the contact details of our DPO to get in touch with us.

Principle 10 - Challenging Compliance: You are welcome to direct any questions or inquiries concerning our compliance with this Privacy Policy to our DPO.

Supplementary Notice to California Residents

If you reside in California, the following section is relevant to you. It’s important to be aware that the laws mentioned may not always be applicable to us, as there are specific criteria that must be met for their application, criteria which we may not always satisfy.

California Shine the Light Law

California’s Shine the Light Law, also known as the California Civil Code Section 1798.83 gives California residents the right to request information about how businesses share their personal information with third parties for direct marketing purposes.

Residents of California may ask us to provide them with a list of the types of personal information that we have disclosed during the preceding year to third parties for their direct marketing purposes, and the identity of those third parties. If you are a California resident and would like such a list, please contact our DPO.

For all such requests, please indicate “CA Shine the Light” in the subject field and include your full name, email address, street address, city, state, and zip code in your request.

California Consumer Privacy Act

The California Consumer Privacy Act of 2018 (“CCPA”) and California Privacy Rights Act of 2020 (“CPRA”) provide certain rights to residents of California. This section applies if you are a natural person who is a resident of California (“California Consumer”) and use our Service. This notice supplements the information in our Privacy Policy. Certain terms used below have the meanings given to them in the CCPA and CPRA. The CCPA and CPRA shall be collectively referred to herein as the “CPRA”.

This Privacy Policy sets out the categories of information we collect from our users, the purposes of such collection and the sources from which we obtain such data. However, for more details please contact our DPO.

Sale/Sharing of Your Personal Information

We do not sell your personal information. We will share the personal information collected from and about you over the past twelve (12) months as discussed in this Privacy Policy for various business purposes.

Your Privacy Rights and Choices

In addition to rights of access, correction and deletion, as described in the Privacy Policy, California Consumers may have certain additional rights in connection with the personal information we collect about you, many of which are subject to exceptions under applicable law:

  • The right to access and disclosure and portability. You may have the right to request, twice during twelve months, the following information about the personal information we have collected about you:
    • the categories and specific pieces of personal information we have collected about you;
    • the categories of sources from which we collected the personal information;
    • the business or commercial purpose for which we collected or sold the personal information;
    • the categories of third parties with whom we shared the personal information;
    • the categories of personal information that we sold or disclosed for a business purpose, and the categories of third parties to whom we sold or disclosed that information for a business purpose; and
    • the specific pieces of personal information we obtained from you in a format that is easily understandable, and to the extent technically feasible, in a structured commonly used, machine-readable format.
  • The right to nondiscrimination: We will not discriminate against you, or offer a different standard of goods and services based on your decision to exercise these rights.
  • The right to opt-out of the sale or sharing of your personal information: You have the right to opt out of the sale or sharing of your personal information. California law broadly defines sale such that it may include allowing third parties to receive certain information, such as cookies IP address and/or browsing behavior, to deliver targeted advertising. We are not engaged in targeted advertising. To find out more on this, please contact our DPO.
  • The right to limit the use of sensitive personal information: You possess the right to demand that we restrict the use or sharing of your confidential personal information strictly to what is essential for executing the services or delivering the goods you have solicited. We do not collect or share your sensitive information other than providing you with the Service.

How to exercise your access, correction and deletion rights.

California residents may exercise their California privacy rights by submitting their request via the contact details (email and/or phone number) of our DPO.

Once we have verified your identity (and your agent, as applicable), we will respond to your request as appropriate. If we are unable to complete your requests fully for any of the reasons, we will provide you additional information about the reasons that we could not comply with your request.