Privacy Policy
1. INTRODUCTION AND COMMITMENT
We are committed to maintaining the confidentiality and security of any personally identifiable information (Personal Information) under our control. This includes any information gathered as a result of client engagements, marketing and/or any other communications.
This Privacy Policy describes how Personal Information is collected and processed by Grace Compliance Services Inc. (Grace CSI) in relation to its operating activities.
This Privacy Policy does not cover Personal Information given to social media or third party payment providers. For example, interactions through LinkedIn or other social media providers result in users' information being shared with those providers and not us, and is therefore not included as part of our Privacy Policy.
This Privacy Policy is intended to meet the requirements under the Personal Information Protection and Electronic Documents Act (PIPEDA).
​
​
​
2. IDENTIFYING PURPOSES
We collect, use and disclose Personal Information for the following purposes.
2.1 FOR BUSINESS PURPOSES:
We only collect Personal Information if it relates directly to an engagement in order to provide the requested services.
​
2.2 FOR MARKETING PURPOSES:
We may use Personal Information to send promotional emails. We will only send these if you have specifically agreed to receive them. For example, if you have indicated you would like information regarding a particular service after a webinar.
We collect and analyze data about web traffic and visits to our website to help us understand how people use our website, to further develop our service offerings, and to improve our website.
2.3 FOR HIRING PURPOSES:
We use Personal Information to identify job applicants, evaluate job applications and contact applicants as needed.
​
​
3. COLLECTION OF PERSONAL INFORMATION
3.1 LIMITING COLLECTION
Any Personal Information collected will be limited to the details necessary for the purposes identified by us.
3.2 HOW AND WHEN INFORMATION IS COLLECTED
We collect Personal Information that is:
1. Given to us directly. For example, when we receive an email with a request for services or a job application, or during registration for webinars and training sessions.
2. From third party sources. This includes:
· Our service providers for web analytics or ads,
· Databases made publicly available by third parties,
· Website/social media pages containing information made public by you, and
· Service providers that perform criminal background checks or sanctions screening as part of our due diligence process.
3. From website information. We use cookies to track activities to infer your interests based on the pages that have been visited.
​
Cookies are files that a website automatically creates and stores on a user’s computer to collect information about web browsing activities. Only when a user sets up a user profile, and logs in, are those activities matched to the profile using cookies. We may do so to know what your interests are, and to promote services that may be more relevant to you.
You may change your Internet browser settings to prevent your computer from accepting cookies or to notify you when you receive a cookie so that you may decline its acceptance. Please note, however, that if you disable cookies, you may not experience optimal performance of our website.
3.3 TYPES OF INFORMATION COLLECTED
We collect Personal Information. This may include:
· Contact information such as name, address, email, date of birth, and identification, and
· Education and employment information as may be obtained in a resume, interview notes or reference checks.
​
​
​
4. STORAGE AND USE AND COMMUNICATION OF PERSONAL INFORMATION
4.1 LIMITING USE
Personal Information may only be used or disclosed for the purposes for which it was collected, unless express consent is granted, or when it is required or permitted by law.
Personal Information will not be sold to a third party.
Where our service providers need access to your Personal Information, they are only permitted to do so to provide services on our behalf.
4.2 LIMITING COMMUNICATION
Personal Information is only shared with employees or representatives and service providers for their work or for the reasons why we collected the information in the first place.
We use service providers for the following:
· Conducting web analytics,
· Processing payments and collections,
· Advertising our services,
· Managing email delivery,
· Processing background checks,
· Performing sanctions screening,
· Distributing useful content, and
· Marketing events and webinars.
​
​
​
5. STORAGE OF PERSONAL INFORMATION
5.1 STORAGE
We use third party service providers to store and process Personal Information. In most cases, servers are located in Canada. In all cases, we take all reasonable precautions to protect your Personal Information from any loss or unauthorized use, access or disclosure.
​
Personal Information will be protected by security safeguards that are appropriate to the sensitivity level of the information.
5.2 RETENTION
Personal Information will only be retained for the period of time required to fulfill the purpose for which we collected it or as may be required by law.
​
​
​
6. CONSENT AND OPENNESS
​
6.1 CONSENT
Knowledge and consent are required for the collection, use or disclosure of Personal Information except where required or permitted by law.
Whenever consent has been specifically given, it can also be revoked at any time. However, the decision not to provide certain information may limit our ability to provide services. We will not require consent to the collection, use, or disclosure of information as a condition to the supply of a service, except as required to be able to supply the service.
Consent can be limited in the following ways:
​
1. An email to an address below to revoke consent,
2. Requesting to be removed from upcoming webinar list, or
3. Disabling cookies.
6.2 OPENNESS
Upon request, you will be informed of the existence, use and disclosure of your Personal Information, and will be given access to it. You may verify the accuracy and completeness of your Personal Information, and may request that it be amended, if appropriate. However, in certain circumstances permitted by law, we will not disclose certain information to you. For example, we may not disclose information relating to you if other individuals are referenced or if there are legal, security or commercial proprietary restrictions.
​
You may direct any questions or enquiries with respect to our Privacy Policy or our practices by contacting us.