BreakThroughColour

colour for both sides of the brain

Privacy

Effective Date: Jan.20.2025

Last Updated: Jan.20.2025

BreakThroughColour ("we," "our," or "us") values your privacy and is committed to protecting your personal information. This Privacy Policy explains how we collect, use, disclose, and protect your personal data in compliance with Canadian privacy laws, including the Personal Information Protection and Electronic Documents Act (PIPEDA), and the General Data Protection Regulation (GDPR) for users in the European Economic Area (EEA).

1. Information We Collect

We collect personal data that you provide directly to us, as well as data collected automatically when you use our website or services.

Personal Data You Provide:

  • Contact Information: Name, email address, phone number, mailing address.

  • Payment Information: Credit card details and billing information (processed securely through third-party payment providers).

  • Account Information: Login details, preferences, and account activity.

  • Feedback and Correspondence: Survey responses, testimonials, and communications.

Data Collected Automatically:

  • Technical Data: IP address, browser type, operating system, device identifiers, and time zone.

  • Usage Data: Pages visited, time spent on the website, and interactions.

  • Cookies: Information about your preferences and usage patterns.

2. How We Use Your Information

We process your personal data for the following purposes:

Under PIPEDA and GDPR, our lawful bases for processing include:

  • Performance of a Contract: To fulfill orders, provide services, or process transactions.

  • Consent: When you opt in to receive marketing communications or participate in optional activities.

  • Legal Obligation: To comply with applicable laws or regulatory requirements.

  • Legitimate Interests: To improve our services, secure our website, and analyze user behaviour (balanced against your rights).

Specific Purposes Include:

  • Providing products or services you request.

  • Processing payments and managing orders.

  • Communicating updates, promotions, or event invitations (with your consent).

  • Analyzing website performance and improving user experience.

  • Preventing fraud, resolving disputes, and enforcing terms.

3. Sharing Your Information

We do not sell or rent your personal data. We may share your data with:

  • Service Providers: Trusted third parties who assist in providing services (e.g., payment processors, email platforms, shipping services).

  • Legal Authorities: When required by law or to protect legal rights.

  • Business Transfers: In the event of a merger, acquisition, or sale of assets.

If we transfer your data outside of Canada or the EEA, we ensure that appropriate safeguards, such as Standard Contractual Clauses (SCCs), are in place to protect your rights.

4. Your Rights Under GDPR and PIPEDA

Under GDPR (for EEA users), you have the right to:

  • Access: Request access to your personal data and obtain a copy.

  • Rectification: Correct inaccurate or incomplete personal data.

  • Erasure: Request deletion of your personal data ("right to be forgotten").

  • Restriction: Request the limitation of data processing in certain situations.

  • Portability: Receive your data in a structured, machine-readable format and transfer it to another controller.

  • Objection: Object to data processing for direct marketing or based on legitimate interests.

  • Withdraw Consent: Withdraw consent for data processing at any time (without affecting the lawfulness of prior processing).

  • Lodge a Complaint: File a complaint with your local data protection authority if you believe your rights have been violated.

Under PIPEDA, you have the right to:

  • Access your personal information.

  • Challenge the accuracy of your data and request corrections.

  • Withdraw consent for certain uses of your information.

5. Data Retention

We retain your personal data only as long as necessary to fulfill the purposes outlined in this policy, comply with legal obligations, or resolve disputes.

6. Protecting Your Information

We implement robust security measures to protect your personal data, including encryption, firewalls, secure servers, and restricted access. However, no method of transmission over the internet is 100% secure, and we cannot guarantee absolute security.

7. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience and analyze website traffic.

Types of Cookies We Use:

  • Essential Cookies: Necessary for the website to function.

  • Analytics Cookies: Help us understand user behavior and improve our website.

  • Marketing Cookies: Used for personalized advertisements (with your consent).

You can manage your cookie preferences in your browser settings.

8. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of those websites. Please review their privacy policies before providing any personal data.

9. Children’s Privacy

Our services are not directed to children under the age of 13, and we do not knowingly collect personal data from children. If you believe a child has provided us with their information, please contact us, and we will take steps to delete it.

10. Changes to This Policy

We may update this Privacy Policy periodically. Updates will be posted on this page, and the "Last Updated" date will reflect the most recent revision. We encourage you to review this policy regularly.

11. Contact Us

If you have questions, concerns, or wish to exercise your rights, please contact us:

BreakThroughColour
Email: tracy@breakthroughcolour.com

For GDPR-related concerns, you may also contact your local data protection authority.