The Ten Principles of PIPEDA Summarized
- Accountability: organizations are accountable for the Personal information they collect, use, retain and disclose in the course of their commercial activities, including, but not limited to, the appointment of a Chief Privacy Officer;
- Identifying Purposes: organizations are to explain the purposes for which the information is being used at the time of collection and can only be used for those purposes;
- Consent: organizations must obtain an Individual’s express or implied consent when they collect, use, or disclose the individual’s Personal information;
- Limiting Collection: the collection of Personal information must be limited to only the amount and type that is reasonably necessary for the identified purposes;
- Limiting Use, Disclosure and Retention: Personal information must be used for only the identified purposes, and must not be disclosed to third parties unless the Individual consents to the alternative use or disclosure;
- Accuracy: organizations are required to keep Personal information in active files accurate and up-to-date;
- Safeguards: organizations are to use physical, organizational, and technological safeguards to protect Personal information from unauthorized access or disclosure.
- Openness: organizations must inform their clients and train their employees about their privacy policies and procedures;
- Individual Access: an individual has a right to access Personal information held by an organization and to challenge its accuracy if need be; and
- Provide Recourse: organizations are to inform clients and employees of how to bring a request for access, or complaint, to the Chief Privacy Officer, and respond promptly to a request or complaint by the individual.
"Personal information" means any information about an identifiable individual. It includes, without limitation, information relating to identity, nationality, age, gender, address, telephone number, e-mail address, Social Insurance Number, date of birth, marital status, education, employment health history, assets, liabilities, payment records, credit records, loan records, income and information relating to financial transactions as well as certain personal opinions or views of an Individual. Personal information does not include the name, title, business address or telephone number of a person or employee of an organization.
"Business information" means business name, business address, business telephone number, name(s) of owner(s), officer(s) and director(s), job titles, business registration numbers (GST, RST, source deductions), financial status and information (such as credit card information, bank account information, and the like). Although Business information is not subject to PIPEDA, confidentiality of Business information will be treated with the same security measures by PEARL staff, members and Board members, as is required for individual Personal information under PIPEDA.
"Client" means the business that is applying for or has been approved for a loan, (including sole proprietorships and individuals carrying on business in a partnership);
"Individual" means the client’s owner(s) or shareholders, co-signors, and/or any guarantor associated with a client.
"Application" means the application form or related forms completed by the individual(s) to request financing for the client through the PEARL, and or its divisions.
"Database" means the list of names, addresses and telephone numbers of clients and individuals held by PEARL in the forms of, but not limited to, computer files, paper files, and files on computer hard-drives and that may be at least partly in the Software and/or the App.
"File" means the information collected in the course of processing an application, as well as information collected/updated to maintain /service the account.
"Express consent" means the individual signs the application, or other forms containing Personal information, authorizing PEARL, and/or its divisions to collect, use, and disclose the individual's Personal information for the purposes set out in the application and/or forms.
"Implied Consent" means the organization may assume that the individual consents to the information being used, retained and disclosed for the original purposes, unless notified by the individual.
"Software” means the software PEARL uses to operate its business.
"Third Party" means a person or company that provides services to PEARL in support of the programs, benefits, and other services offered by PEARL, such as other lenders, credit bureaus, persons with whom the individual or client does business, but does not include any Government office or department to whom PEARL reports in the delivery of such programs, benefits or services.
Pearl Driver's App
Information Collection and Use
Google Play Services
We want to inform you that whenever you use our Service, in a case of an error in the app we collect data and information (through third party products) on your phone called Log Data. This Log Data may include information such as your device Internet Protocol (“IP”) address, device name, operating system version, the configuration of the app when utilizing our Service, the time and date of your use of the Service, and other statistics.
Cookies are files with a small amount of data that are commonly used as anonymous unique identifiers. These are sent to your browser from the websites that you visit and are stored on your device's internal memory.
This Service does not use these “cookies” explicitly. However, the app may use third party code and libraries that use “cookies” to collect information and improve their services. You have the option to either accept or refuse these cookies and know when a cookie is being sent to your device. If you choose to refuse our cookies, you may not be able to use some portions of this Service.
We may employ third-party companies and individuals due to the following reasons:
- To facilitate our Service;
- To provide the Service on our behalf;
- To perform Service-related services; or
- To assist us in analyzing how our Service is used.
We want to inform users of this Service that these third parties have access to your Personal Information. The reason is to perform the tasks assigned to them on our behalf. However, they are obligated not to disclose or use the information for any other purpose.
We value your trust in providing us your Personal Information, thus we are striving to use commercially acceptable means of protecting it. But remember that no method of transmission over the internet, or method of electronic storage is 100% secure and reliable, and we cannot guarantee its absolute security.
Links to Other Sites
These Services do not address anyone under the age of 13. We do not knowingly collect personally identifiable information from children under 13 years of age. In the case we discover that a child under 13 has provided us with personal information, we immediately delete this from our servers. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact us so that we will be able to do necessary actions.
Purposes of Collecting Personal Information
We may collect Personal information and Business information that is relevant for the purposes of providing services to our clients and service providers, securing our websites, meeting our legal obligations, promoting, advertising and marketing our services and, in some cases, the products and services of our clients and researching and developing new products, services and techniques to improve our services, business or websites.
Specifically, and without limiting the generality of the preceding paragraph, we collect, use and disclose Personal information and Business information for the following purposes: to identify you, to determine your suitability (including credit worthiness and background checks) as a supplier or customer of PEARL (including as a driver, carrier, or customer), to understand your needs and eligibility for products and services, to provide you such products and services, to protect you and us from error and fraud, to recommend particular products and services to meet your needs, to provide and get updates on ongoing products and service, to respond to regulatory and governmental requests (such as Industry Canada) and to comply with legal and regulatory requirements. Such purposes may include operation of the App and Software, which may assist in accomplishing the purposes.
Personal information and Business information may be transferred, viewed, processed and/or stored in the US for the purposes described above. Legal requirements in the US applicable to us or our subsidiaries, affiliates, agents, intermediaries and other third parties operating on their or our behalf may include an obligation to disclose Personal information to government authorities in foreign countries.
An individual’s express, written consent will be obtained before or at the time of collecting Personal information. The purposes for the collection, use or disclosure of the Personal information will be provided to the individual at the time of seeking his or her consent. Once consent is obtained from the individual to use his or her information for those purposes, PEARL has the individual's implied consent to collect or receive any supplementary information that is necessary to fulfil the same purposes. Express consent will also be obtained if, or when, a new use is identified.
An individual can choose not to provide some or all of the Personal information at any time, but if PEARL is unable to collect sufficient information to validate the request for financing, or other purpose for which the Personal information is being requested, the individual's Application for such financing may be turned down or the other purpose may be denied.
Limiting Use, Disclosure and Retention
In general, we may use and/or disclose your Personal information only in relation to the purposes identified herein. In connection with such identified purposes, we may employ third parties to process Personal information or perform tasks on our behalf, including website, App, and Software licensors and hosting partners and other parties who assist us in operating our website, App and Software, conducting our business, or serving our clients. We seek assurances to ensure personal information is similarly protected by these third parties in accordance with all applicable privacy and data security laws.
Use of Personal Information
Personal information will be used for only those purposes to which the individual has consented with the following exceptions, as permitted under PIPEDA:
PEARL will use Personal information without the individual's consent, where:
- the organization has reasonable grounds to believe the information could be useful when investigating a contravention of a federal, provincial or foreign law and the information is used for that investigation;
- an emergency exists that threatens an individual’s life, health or security
- the information is for statistical study or research
- the information is publicly available;
- the use is clearly in the individual’s interest, and consent is not available in a timely way
- knowledge and consent would compromise the availability or accuracy of the information, and
- collection is required to investigate a breach of an agreement.
Disclosure and Transfer of Personal Information
- a lawyer representing PEARL
- collect a debt owed to PEARL by the individual or client
- comply with a subpoena, a warrant or an order made by a court or other body with appropriate jurisdiction;
- a law enforcement agency in the process of a civil or criminal investigation;
- a government agency or department requesting the information; or
- as required by law.
PIPEDA permits PEARL to transfer Personal information to a third party, without the individual's knowledge or consent, if the transfer is simply for processing purposes and the third party only uses the information for the purposes for which it was transferred. PEARL will ensure, by contractual or other means, that the third party protects the information and uses it only for the purposes for which it was transferred.
Retention of Personal Information
Personal information will be retained in client files as long as the use for which it was collected is active and for such periods of time as may be prescribed by applicable laws and regulations. Personal information contained in an inactive file will be retained for a period of seven (7) years, except in the case where PEARL has actively rejected the intended use of the Personal information. Where an intended use has been rejected, the file and all Personal information contained in the file will be retained for a period of two (2) years.
PEARL endeavours to ensure that any Personal information provided by the individual in his or her active file(s) is accurate, current and complete as is necessary to fulfill the purposes for which the information has been collected, used, retained and disclosed. Individuals are requested to notify PEARL of any change in personal or Business information. Information contained in inactive files is not updated.
If an individual has a concern about PEARL 's Personal information handling practises, a complaint, in writing, may be directed to the PEARL 's Chief Privacy Officer. Upon verification of the individual's identity, PEARL 's Chief Privacy Officer will act promptly to investigate the complaint and provide a written report of the investigation's findings to the individual. Where PEARL 's Chief Privacy Officer makes a determination that the individual's complaint is well founded, the Chief Privacy Officer will take the necessary steps to correct the offending information handling practise and/or revise PEARL 's privacy policies and procedures. Where PEARL 's Chief Privacy Officer determines that the individual's complaint is not well founded, the individual will be notified in writing. If the individual is dissatisfied with the finding and corresponding action taken by PEARL 's Chief Privacy Officer, the individual may bring a complaint to the Federal Privacy Commissioner at the address below:
The Privacy Commissioner of Canada
112 Kent Street, Ottawa,
Ontario K1A 1H3
Email address: www.privcom.gc.ca.
3080 Yonge Street Suite 6060
Toronto, ON M4N 3N1
Amendment to PEARL 's Privacy Policies
Additional Terms and Conditions
Notwithstanding that we take the security precautions set out herein to protect your privacy and confidentiality, we cannot guarantee the security of your Personal information or company information. E-mails or forms sent via the Internet are neither confidential nor secure and can be viewed and modified by third parties. PEARL will not be liable for damages arising from messages sent to it via unsecured e-mail or other messages sent electronically (SMS, etc.).
Financial transactions may be processed through a payment provider and/or the App or Software. Such financial transactions may include Personal information and/or Business information. Such third parties may access, process, and store, Personal information and/or Business information as may be required to process transactions.
PEARL complies with the Canada Anti-Spam Law with respect to all commercial electronic messages we send out. At any time if you would like to unsubscribe from receiving future emails, you can email us at Info@pearltechnologies.ca and we will promptly remove you from ALL correspondence.