Signifi Privacy Statement & Cookie Policy

We at Signifi Solutions Inc. (“Signifi”) respect your right to privacy and value the trust you place in us.

We want you to be aware of when your personal information is being collected, the purpose for which it is being collected, and that you have a right of access to the information. If we retain your personal information, we take the necessary precautions to protect it from unauthorized access, linkage, disclosure or alteration.

Please note that Signifi only collects what you, your employer or another entity that you have a business relation with, voluntarily provide to us.

We do not sell, rent, exchange, or otherwise disclose any information that we collect about customers, except in the case of a malicious attack or as required by law.

Signifi may update this statement from time to time. The most current version will always be posted on Signifi’s website.

Collection of Personal Information:

It depends on the purpose for collection and the product or service involved. Below are some examples of when we may collect Personal Information:

  • When you provide your Personal Information, during the inquiry, activation or purchase process for a product or service;
  • When we provide service to our clients, including by ingesting lists of our client’s customers, employees or associates with access to the systems supplied by us;
  • Automatically, when you use our products or services.

Use of Personal Information

We use your Personal Information to provide our products or services to you or a business that you are associated with.

We may also use your Personal Information to:

  • Establish and maintain responsible commercial relations with you and to provide ongoing service;
  • Try to understand the needs and preferences of our customers, and determine your eligibility for products and services;
  • Recommend products and services to meet your needs;
  • Develop, enhance, market or provide products and services;
  • Manage and develop business operations; or
  • Meet our legal and regulatory requirements.
  • Where necessary, we will request your further consent before using your Personal Information for any new purpose(s) beyond those described above.

 

Disclosure of Personal Information

We may disclose some of your Personal Information in a variety of circumstances, such as when we have your express or implied consent.

We may also disclose your Personal Information:

  • To a person acting as your agent (such as a legal representative or authorized user) if we are reasonably satisfied that the person is authorized to receive your Personal Information;
  • To our suppliers and authorized agents who assist with activities such as service installation or network maintenance, subject to strict security safeguards;
  • To third-party collection agencies for the purpose of collecting amounts owed to us which are past due; to third-parties, such as credit reporting agencies or anyone you have had a payment relationship with, to assess creditworthiness or assist with the collection of amounts owed to us which are past due
  • To delivery organizations to ship you products and/or services you have ordered;
  • To a government institution or another organization if reasonably necessary to establish your identity or to investigate the contravention of a law or an agreement or to prevent fraud;
  • To an appropriate public authority in an emergency situation where there is imminent danger to life or property;
  • As you have otherwise given us, or a third-party (like a financial institution, government agency, social media or other on-line site) your consent to do so; or
  • As otherwise allowed or required by law. Where necessary, we will request your further consent before disclosing your Personal Information for any new purpose(s) beyond those described above.

 

Consent

An individual’s express, consent will be obtained before or at the time of collecting personal information. The purposes for the collection, use or disclosure of the personal information will be provided to the individual at the time of seeking his or her consent. Once consent is obtained from the individual to use his or her information for those purposes, Signifi has the individual’s implied consent to collect or receive any supplementary information that is necessary to fulfil the same purposes. Express consent will also be obtained if, or when, a new use is identified.
Consent is also implicit when a business that an individual is associated with, provides Signifi with the individual’s personal information so that Signifi can provide its products and services to the individual or that business.

 

Limiting Collection

Personal information will be used for only those purposes to which the individual or associated business has consented, with the following exceptions, as permitted under PIPEDA:

Signifi will use personal information without the individual’s consent, where:

  • The organization has reasonable grounds to believe the information could be useful when investigating a contravention of a federal, provincial or foreign law and the information is used for that investigation;
  • An emergency exists that threatens an individual’s life, health or security;
  • The information is for statistical study or research;
  • The information is publicly available;
  • The use is clearly in the individual’s interest, and consent is not available in a timely way;
  • Knowledge and consent would compromise the availability or accuracy of the information, and
  • Collection is required to investigate a breach of an agreement.

Accuracy

Signifi endeavors to ensure that any personal information provided by the individual in his or her active record(s) is accurate, current and complete as is necessary to fulfill the purposes for which the information has been collected, used, retained and disclosed. Individuals are requested to notify Signifi of any change in personal or business information.

Retention of Personal Information
Personal information will be retained:

  • For personal information provided by a business about their associates, for as long as the business has an active contract with Signifi
  • For personal information that the individual provides to Signifi directly, for such periods of time as may be prescribed by applicable laws and regulations.

Safeguards

Signifi will apply appropriate physical, administrative and technical safeguards to protect PI against loss or theft, or from unauthorized access, disclosure, copying, use, disposal or modification. Refer to Signifi Information Security Policy for more information.

Employees and associates of Signifi are required to sign a confidentiality agreement binding them to maintaining the confidentiality of all personal information to which they have access.

Physical Safeguards: Active files are stored in locked filing cabinets when not in use. Access to work areas where active files may be in use is restricted to Signifi employees only and authorized third parties.

All inactive files or personal information no longer required are shredded prior to disposal to prevent inadvertent disclosure to unauthorized persons.

Technological Safeguards: Personal information contained in Signifi computers and electronic databases are password protected and encrypted in accordance with Signifi’s Information Security Policy. Access to any of the Signifi’s computers also is password protected. Signifi’s Internet routers or servers have firewall protection sufficient to protect personal and confidential business information against virus attacks and “sniffer” software arising from Internet activity. Personal information is not transferred to third parties besides the business that the individual is associated with.

 

Openness

Signifi will endeavor to make its privacy policies and procedures known to the individual via this Signifi Privacy Statement. A version of this document will also be available on Signifi’s website.

 

Individual Access

An Individual who wishes to review or verify what personal information is held by Signifi, or to whom the information has been disclosed (as permitted by the Act), may make the request for access, in writing, to Signifi ‘s Chief Privacy Officer. Upon verification of the individual’s identity, the Chief Privacy Officer will respond within 60 days.

If the individual finds that the information held by Signifi is inaccurate or incomplete, upon the individual providing documentary evidence to verify the correct information, Signifi will make the required changes to the individual’s active file(s) or record(s) promptly.

 

Complaints/Recourse

If an individual has a concern about Signifi’s personal information handling practices, a complaint, in writing, may be directed to the Signifi’s Chief Privacy Officer.

Upon verification of the individual’s identity, Signifi’s Chief Privacy Officer will act promptly to investigate the complaint and provide a written report of the investigation’s findings to the individual.

Where Signifi’s Chief Privacy Officer makes a determination that the individual’s complaint is well founded, the Chief Privacy Officer will take the necessary steps to correct the offending information handling practice and/or revise Signifi’s privacy policies and procedures.

Where Signifi’s Chief Privacy Officer determines that the individual’s complaint is not well founded, the individual will be notified in writing. If the individual is dissatisfied with the finding and corresponding action taken by Signifi’s Chief Privacy Officer, the individual may bring a complaint to the Canadian Federal Privacy Commissioner at the address below:

Office of the Privacy Commissioner
of Canada
30, Victoria Street
Gatineau, Quebec
K1A 1H3

https://www.priv.gc.ca/en/contact-the-opc/

Toll-free: 1-800-282-1376
Phone: (819) 994-5444
TTY: (819) 994-6591

 

Data Controller Responsibilities

This section applies to clients that are hosted in the Signifi European data center.

The client company is the Data Controller (“the custodian”).

Signifi is the Data Processor.

Data Custodian Responsibilities

  1. The data controller is the principal party for data collection responsibilities.
  2. The controller responsibilities include:
    1. collecting consent
    2. storing of the data (except where outsourced to a processor)
    3. managing consent-revoking
    4. enabling the right to access
  3. Have the ability to demonstrate compliance with the principles relating to the processing of personal data. These principles are based on the use of personal data in the following list:
    1. Lawfulness
    2. fairness
    3. transparency
    4. data minimization
    5. accuracy
    6. storage limitation and integrity
    7. confidentiality
  4. Will maintain all records relating to a data breaches and act upon appropriate disclosure requirements

Data Processor Responsibilities

  1. Upon receipt of any request related to personal data the Custodian will request of the Processor the removal of the revoked data from the Processor’s servers. Processor will act upon this request and provide confirmation of task completion
  2. Secure data following industry standard encryption practices
  3. Host the solution with stability and uptime targets set out in contracted Service Level Agreements
  4. Provide backup and disaster recovery capabilities as set in the contract and SLA
  5. Regular security testing
  6. Ensure that the personal data that they process are kept confidential
  7. Only process data in accordance with the Controller’s instructions
  8. Keep records of data processing activities aligned to pre-defined agreements
  9. Ensure security of any personal data being processed
  10. Involve decision-makers if a data breach occurs and report to the Controller within reasonable time limits
  11. Assign an officer to oversee security of the data being processed
  12. Lawfully transfer data as directed by the Custodian in a manner that ensure protection of the data being transferred
  13. Not use the data for any purpose, including mining the data, that is not specifically instructed by the Controller

 

Questions/Access Request/Complaint

Any questions regarding this or any other privacy policy of Signifi may be directed to the Chief Privacy Officer. Requests for access to information, or to make a complaint, are to be made in writing and sent to the Chief Privacy Officer at the address below:

Chief Privacy Officer – Razvan Anghelidi
Email address: privacy@signifi.com (ranghelidi@signifi.com)
Contact Number: 905-602-7707 x8164
Signifi Solutions Inc
1705 Tech Ave Unit 3, Mississauga, ON, L4W 0A2

Definitions

“Personal information” means any information about an identifiable individual. It includes, without limitation, information relating to identity, nationality, age, gender, address, telephone number, e-mail address, Social Insurance Number, date of birth, marital status, education, employment health history, assets, liabilities, payment records, credit records, loan records, income and information relating to financial transactions as well as certain personal opinions or views of an Individual.

“Business information” means business name, business address, business telephone number, name(s) of owner(s), officer(s) and director(s), job titles, business registration numbers (GST, RST, source deductions), financial status. Although business information is not subject to PIPEDA, confidentiality of business information will be treated with the same security measures by Signifi staff, members and Board members, as is required for individual personal information under PIPEDA.

“Client” means the business that is applying for or has been approved for a contractual relationship with Signifi Inc, (including sole proprietorships and individuals carrying on business in a partnership);

“Individual” means the client’s owner(s) or shareholders, co-signors, and/or any guarantor associated with a client.

“Member” means a person who volunteers on a Signifi committee, but who is not a current or active board member, or chair of the committee.

“Database” means the list of names, addresses and telephone numbers of clients and individuals held by Signifi in the forms of, but not limited to, computer files, paper files, and files on computer hard drives.

“File” means the information collected in the course of processing an application, as well as information collected/updated to maintain /service the account.

“Express consent” means the individual signs the application, or other forms containing personal information, authorizing Signifi to collect, use, and disclose the individual’s personal information for the purposes set out in the application and/or forms.

“Implied Consent” means the organization may assume that the individual consents to the information being used, retained and disclosed for the original purposes, unless notified by the individual.

“Third Party” means a person or company that provides services to Signifi in support of the programs, benefits, and other services offered by Signifi.

 

Signifi Cookie Policy

This Cookie Policy explains how Signifi Solutions Inc. use cookies and similar technologies to recognize you when you visit our website (www.signifi.com). It explains what these technologies are and why we use them, as well as your rights to control or use of them.

What are cookies?

Cookies are small text files that are placed on your computer by websites that you visit. When you visit the site again, the cookie allows that site to recognize your browser. Cookies may store user preferences and other information.

Cookies set by the website owner are called “first-party cookies”. Cookies set by parties other than the website owner are called “third-party cookies”.

Why do we use cookies?

Some cookies are required for technical reasons in order for our Website to operate, and we refer to these as “strictly necessary” cookies. Other cookies also enable us to track the interest of our users to enhance the experience on our Website. Signifi uses HubSpot and its partners to host and manage the Website. To find out more about cookies, please visit https://knowledge.hubspot.com/privacy-and-consent/what-cookies-does-hubspot-set-in-a-visitor-s-browser

What types of cookies do we use and how do we use them?

  • Strictly necessary cookies — These cookies are essential for you to browse the website and use its features, such as accessing secure areas of the site, the ones that require login such as the Signifi Partner and Customer Portal. This is part of first-party session cookies. It is not required to obtain consent for these cookies and are default. Should you choose to decline consent, these will still allow you access the website.
  • Session cookies — Signifi’s server stores information about user page activities so users can easily pick up where they left off on the server’s pages. By default, web pages really don’t have any ‘memory’. Cookies tell the server what pages to show the user, so the user doesn’t have to remember or start navigating the site all over again. Depending on the browser you use, you may delete the stored cookie. Should you choose to decline consent, your access to the website is not restricted.
  • Preferences cookies — Also known as “functionality cookies,” these cookies allow you to use our chatbot, and remembers other choices like what language you prefer, what region you have set or use our lead gen form. Should you choose to decline consent, your access to the website may be limited.
  • Analytics cookies — Also known as “statistics or performance cookies,” these cookies collect information about how you use a website, like which pages you visited, and which links you clicked on. None of this information can be used to identify you. The events are aggregated and, therefore, anonymized. Their sole purpose is to improve website functions. Signifi uses Google Analytics to help us understand how you engage with our website. To learn more about how Google Analytics collects and processes data, please see https://www.google.com/policies/privacy/partners/
  • Marketing cookies — These cookies track your online activity to help advertisers deliver more relevant advertising or to limit how many times you see an ad. These third-party cookies will share that information with Google Ads or LinkedIn Ads. Should you choose to decline consent, your access to the website is not affected.

What information is collected, or processed from the cookie?

We collect your name, email address, phone number and other information provided by you with your consent on our lead gen forms across our website, blog, landing pages and chatbot. This information is strictly used as first-party data for the business use of Signifi’s products and services. We do not sell your data to any other third-party services.

We do not knowingly collect personal data from children under the age of 16. Signifi does not target our website, our products or our services toward children under the age of 16.

 

Purpose of the information collected, or processed?

Signifi will reach out to you as requested by you. We may update our Cookie Policy from time to time. We will notify you of any changes by posting the new Cookie Policy on this page. You are advised to review this Cookie Policy periodically for any changes. Changes to this Cookie Policy are effective when they are posted on this page.

If you’d like to delete cookies or instruct your web browser to delete or refuse cookies, please visit the ‘Privacy and Security’ settings of your web browser.

Please note, however, that if you delete cookies or refuse to accept them, you might not be able to use all of the features we offer, you may not be able to store your preferences, and some of our pages might not display properly.

If you have any concerns or choose to opt-out, kindly reach out to our Privacy Officer.

 

If the information is stored or processed by a third party? If yes, who, why, and where?

Signifi uses Zoominfo as a third-party tool to collect and process accuracy of information available to us. We store contact information for 5 years or until is outdated, whichever event occurs first. If you have any questions regarding the storage of your information, kindly contact our Privacy Officer. To find out more about Zoominfo’s privacy policies, please visit https://www.zoominfo.com/legal/privacy-policy

Security

The security of your personal information is very important to us. We use physical, electronic, and administrative measures designed to secure your personal information from accidental loss and from unauthorized access, use, alteration, and disclosure.

The safety and security of your information also depends on you. Users are responsible for obtaining their own access to the Website. Users are required to ensure that all persons who access the Website through a user’s internet connection are aware of these Terms and Conditions and comply with them. The Website, including content or areas of the Website, may require user registration. It is a condition of your use of the Website that all the information you provide on the Website is correct, current, and complete.

Unfortunately, the transmission of information via the Internet is not completely secure. Although we do our best to protect your personal information, we cannot guarantee the security of your personal information transmitted to our Website. Any transmission of personal information is at your own risk. We are not responsible for circumvention of any privacy settings or security measures contained on the Website.

 

Where can I get further information?

If you have any questions about our use of cookies, kindly reach out to our Privacy Officer at privacy@signifi.com (ranghelidi@signifi.com).