Data Protection Policy
Applicable for Endress+Hauser Canada, Ltd.
The Endress+Hauser Group and its affiliated company Endress+Hauser Canada, Ltd. (collectively “Endress+Hauser”, “we” or “us”) attribute great importance to the protection of your personal data.
Therefore, we conduct our business in compliance with applicable laws on protection of personal data and data security, including, but not limited to, the Personal Information Protection and Electronics Documents Act (Canada), the Personal Information Protection Act (B.C.), the Personal Information Protection Act (Alberta) and the Act respecting the protection of personal information in the private sector (Québec).
We are delighted that you have visited our website and shown an interest in our company and products. In accordance with the relevant data protection regulations, we are providing you with the following information regarding how we use, store, collect, and process personal data.
By visiting our website, using our services or otherwise interacting with us, you agree with the present Policy and consent to the collection, use and disclosure of your personal data by Endress+Hauser in accordance with the terms of this Policy; otherwise, you have to refrain from the use of our website or any of our electronic applications.
As our business changes and as privacy laws and regulations evolve, it may be necessary to revise or update this Policy. When we revise this Policy, we will post those changes on our webpage so that you are always aware of what information we collect, how we use it and under what circumstances, if any, we disclose it. The Policy is effective from the date disclosed.
1. Data Collected
Endress+Hauser collects data in a variety of ways. We collect the following information directly from you when you use our site or online application, register or attend a training or event, opt-in for electronic mailings, send us an e-mail, make a purchase on our online shop, or complete a web form:
Identifiers: such as your name, title, company/organization name, e-mail address, telephone and fax numbers, and physical address (including street, city, state, postal code, and/or country);
Electronic Identifiers: including user name and password created by you when you register on our site;
Communications Preferences: such as your marketing preferences and your subscriptions to our e-mail advertising and marketing materials;
Commercial Data: including inquiries about and orders for our products and services and details of payments to and from you;
Financial Information: such as credit card or other financial account information for the purpose of enabling us to facilitate your purchase of our products through our online shop;
Event Information: including event registrations, meal preferences and allergies, and contact information;
Export control information: such as your nationality, citizenship, and country of residence that allows us to determine your eligibility under export control regulations to receive products and/or information regarding certain technologies;
Feedback: including responses to customer surveys, responses to online forms and complaints registered; and
Employment Information: such as resumes and educational background provided to us via your online application for a position with us.
In addition to information we collect directly from you, we also collect certain information from you indirectly via your visit to our site and other publicly available sources of information, including:
Identifiers: such as your online identifiers, IP address, email address, or account name;
Internet or Network Activity: including your browsing history, search history, information on your interaction with our websites or online applications; access status/HTTP status code; volume of data transmitted; operating system and interface; and date and time of access;
Geolocation Data: such as your physical location or movements;
Inventory Data: including customer master data, names, and addresses;
Content Data: such as text inputs, photos, and videos;
Meta/communications Data: including device information and IP addresses; and
Public information: such as information on publicly available government sanctions lists and other websites, social media sites, and media sources.
We reserve the right to anonymize the data you provided to store it in an aggregated form and to combine it with other data to create anonymous statistics as the case may be (e.g. the number of visitors). This information will not contain any identifiable personal data. In particular, users’ IP addresses are deleted or anonymized when use ceases. During anonymization, the IP addresses are altered such that detailed information concerning personal or material circumstances can no longer, or only with a disproportionately large amount of effort, be attributed to a specific of identifiable individual.
2. Use of Data
Endress+Hauser collects and uses your personal data primarily to fulfill your requests such as answering your inquiries, processing your orders, preparing, negotiating, executing and fulfilling your contracts and to give you access to certain information. Specifically, Endress+Hauser may utilize your personal data to:
Contact you about a specific request or inquiry;
Deliver requested services, products or business transactions for which we have agreed;
Administer our sites and your account, analyze trends and improve functionality of our sites;
Consider an application for employment from you;
Protect our legal rights and our property, protect other users or any third party or prevent personal injury or loss as necessary;
Communicate about products, services and events that you may be interested in, where you have consented to such communication;
Generate leads for us and our business partners, including our sales representatives, authorized service providers, and channel partners, for business promotion purposes to provide you with better support and services;
Use such information in the context of our overall customer relationship management;
Provision of the website and the online services, its functionalities and content;
To create and manage your personal account;
To identify you as a contractual partner;
To process your online purchases (including purchase orders and returns of purchases via our website, payment processing, notifications regarding delivery status and any delivery problems);
To handle complaints or warranty claims;
To measure coverage;
For direct marketing purposes; and
For activities permitted or required by applicable privacy legislation.
We also have the authority to use your personal data, notably due to legal obligations, governmental or judicial order, to establish or protect certain legal claims, to defend against certain legal claims or in connection with the sale, assignment or another transfer of the business or to prevent misuse and other illegal activities.
To maintain customer relationships, it may be necessary to store and process your personal data in order to better respond to your needs or to improve our instrumentation and analytical products and related services. We, or a third party on our behalf, may use personal data to inform you about products and services from Endress+Hauser that we believe could be of interest to you or to carry out online surveys. We will comply with Canada’s Anti-Spam Law, as further detailed below under section 13 of this Policy.
3. Distribution of Data to Third Parties
Apart from the circumstances described in this Policy or with your consent, your personal data will not be sold, transmitted or otherwise distributed to third parties.
To the extent necessary for the purposes listed above, we may share your personal data with subsidiaries, joint ventures, affiliated entities, authorized representatives, suppliers, authorized service providers, and channel partners. This may include third-party service providers, vendors, sales representatives and professional advisory services. In particular, your personal data may be viewed by external companies and representatives that are doing technological maintenance or working on our behalf to help fulfill business transactions. These companies and agents are required to maintain strict confidentiality and to comply with relevant data protection laws.
We also utilize the services of a web hosting provider, marketing analytic and online advertising firms, and certain tracking technologies in order to provide you with targeted information and advice about products we, or our service providers working on our behalf, provide or to send you advertising email communications that are tailored to your preferences. These vendors work for us on the basis of data processing contracts that require strict data privacy and security compliance.
4. Cross Border Transfers of Personal Data
Like most global businesses, Endress+Hauser transfers some of the personal data that it collects and processes with relevant affiliates in the Endress+Hauser Group in other countries. We may also store your data in a centralized system with other data that we hold about you, which may be located outside of Canada, including in the European Union, Switzerland, and the United States. As such, it may happen that certain personal data is stored or processed at computers located in jurisdictions that do not have the same privacy laws as your country of residence. Endress+Hauser takes measures to ensure that such personal data is appropriately protected at all times, both in Canada and in any country to which we may transfer your information in the course of business operations.
Endress+Hauser relies upon protections such as the E.U. Standard Contractual Clauses and intra-company agreements to ensure an appropriate level of protection for all protected personal data.
You may contact us at email@example.com, by mail at Legal Department, 2350 Endress Place, Greenwood, Indiana 46143, or toll free at 1-844-910-0730, with questions about the collection, use, disclosure or storage of personal information outside Canada.
5. My Endress+Hauser
2.1 Registration for My Endress+Hauser
Registration on our website is required in order to use My Endress+Hauser. In the course of registration, we process the following personal data: Email address as well as a password generated by you. The deletion of your customer account is possible at any time and can be initiated, for example, by sending a message to the contact option described above or by email. The legal basis for the processing of this personal data is the fulfilment of contractual obligations (for the EU Art. 6 para. 1 lit. b) GDPR).
As a registered customer, you can access your profile and view your orders as well as use other services and functionalities described below.
2.2 Use of the e-commerce functionalities
2.2.1 Ordering goods
When ordering goods via our website, we collect and process your personal data required for the processing of the order. Mandatory data required for the processing of contracts (name and address) are marked separately, other data are voluntary. The legal basis for the processing of this personal data is the fulfilment of contractual obligations (for the EU Art. 6 para. 1 lit. b) GDPR).
2.2.2 Electronic ordering and payment processes
(1) After you have decided to make a purchase as a customer or guest, we collect the following data to carry out the order: first name and surname, company name, communication data, address, delivery address if applicable. Payments are made by bank transfer after receipt of our invoice. In exceptional cases, an advance payment may be requested. The legal basis for processing your order and payment data is the fulfilment of contractual obligations (for the EU Art. 6 para. 1 lit. b) GDPR).
(2) Your address, payment and order data will be stored for the duration of the tax and commercial law retention obligations of ten years after completion of the contract and then deleted, unless you have consented to storage beyond this or the further processing of the data is necessary for the assertion, exercise or defense of legal claims. The legal basis for processing personal data for the purpose of fulfilling legal archiving and retention obligations is the fulfilment of legal obligations (for the EU Art. 6 para. 1 lit. c) GDPR).
2.2.3 Data transfer within the framework of the order
We process the data you provide for the purpose of processing your order. For the fulfilment of the contract, we pass on your data to the transport company commissioned with the delivery, insofar as this is necessary for the delivery of ordered goods. The legal basis for the transfer of this personal data is the fulfilment of contractual obligations (for the EU Art. 6 para. 1 lit. b) GDPR). Our service providers may only process or use your data for the purpose for which they were transmitted to them. Insofar as data is passed on to external service providers, we have taken technical and organizational measures to ensure that the data protection regulations are observed.
2.3 Software portal
The electronic software portal (www.software-products.endress.com) is operated worldwide by Endress+Hauser Infoserve GmbH+Co. KG, Colmarer Str. 6, 79576 Weil am Rhein, Germany, as the central data processing center of the Endress+Hauser Group for all subsidiaries and affiliated companies of the Endress+Hauser Group which license and provide software to customers via this portal. In order to use the software portal, you must register and the personal data collected during registration will be processed (see above).
In the course of software management, the data required for this purpose (relating to the computer, software and the registrant) are also collected, transmitted, stored, linked and processed during the entire lifecycle (e.g. registration and activation). This data is passed on to specialists for software lifecycle support within the Endress+Hauser Group, viewed and used in order to continuously develop and improve the software and services. The legal basis for this is our legitimate interest (for the EU Art. 6 para. 1 lit. f) GDPR).
By using the software portal, you also confirm that you are using or intend to use software from Endress+Hauser and that you will independently manage the software used throughout its life cycle.
In our Services area and via contact forms you can report service cases relating to your Endress+Hauser products and view the processing status of current service cases. The data entered as part of the report, as well as the subsequent communication that takes place as part of the case processing, will be saved. Mandatory fields are marked. The scope of the stored data depends on the information you provide. We process your data to analyze and remedy the reported service case. Please note that the personal information provided in the course of reporting the service case may be viewed by other members of your organization. In addition, the aforementioned information may also be passed on to affiliated companies of the Endress+Hauser Group for the purpose of processing a service case. The legal basis for the processing is the fulfilment of contractual obligations (for the EU Art. 6 para. 1 lit. b) GDPR).
3. Contact forms
(1) At various points on our website, you have the opportunity to enter your personal data in order to contact us or to leave us your feedback. We have marked the respective mandatory information as such. Without these, we cannot provide you with the requested service. At the time of entry, we store this information as well as your IP address and the time (date and time) of submission.
(3) The legal basis for the processing of data transmitted in the context of the use of the contact form or in the course of sending an email is our legitimate interest (for the EU Art. 6 para. 1 lit. f) GDPR) or the fulfilment of contractual obligations (for the EU Art. 6 para. 1 lit. b) GDPR) if the email contact is aimed at the conclusion of a contract.
(4) The processing of the personal data from the contact form serves us solely to process the contact. In the case of contact by email, this also constitutes the necessary legitimate interest in processing the data. The other personal data processed during the sending process serve to prevent misuse of the contact form and to ensure the security of our information technology systems.
(5) The data shall be deleted as soon as it is no longer required to achieve the purpose for which it was collected. For the personal data from the contact form and those sent by email, this is the case when the respective conversation with the user has ended. The conversation is ended when the circumstances indicate that the matter in question has been conclusively clarified.
Provision of the website and log files
(1) In the case of mere informational use of the website, i.e. if you do not register or otherwise transmit information to us, we only collect the personal data that your browser automatically transmits to our server. If you wish to view our website, we collect the following data, which is technically necessary for us to display our website to you and to ensure stability and security (legal basis in the EU is Art. 6 para. 1 lit. f) GDPR):
Date and time of the request
Time zone difference from Greenwich Mean Time (GMT)
Content of the request (concrete page)
Access Status/HTTP Status Code
Data volume transferred in each case
Website from which the request comes
Browser as well as language and version of the browser software
Operating system and its interface
(2) The IP addresses of the users are deleted or anonymized after termination of use. In the case of anonymization, the IP addresses are changed in such a way that the individual data on personal or factual circumstances can no longer be assigned to a specific or identifiable natural person or can only be assigned with a disproportionately large effort.
In addition to the log file data mentioned above, cookies are stored on your computer when you use our website. You can find a detailed overview of the cookies used and their storage duration here.
6. Data Security
Endress+Hauser takes appropriate technical, administrative and organizational security measures to protect your personal data from unauthorized access, improper use, disclosure, or loss or destruction. To ensure the confidentiality of these data, we use appropriate IT security systems. All of our staff and all third parties involved in data processing are obliged to comply with relevant data protection laws and treat personal data confidentially.
This site uses SSL or TLS encryption for security reasons and to protect confidential content during transmission, such as purchase orders or requests you send to us as the site operator. You can tell that the connection is encrypted from the browser’s address bar, which changes from “http:// to https://”, and from the padlock symbol in your browser bar. If SSL or TLS encryption is activated, the data you send to us cannot be read by any third party. We caution that, while we endeavor to secure your data, no network, system or server is 100% secure.
Please note due to the nature of data transmissions it is always possible that your data can be lost or can be accessed by unauthorized parties during transmission over the Internet or e-mail. We cannot assume any responsibility and expressly disclaim any liability for the security of your data during transmission. It is your own responsibility to ensure that the computer you are using is adequately secured and protected against malicious software and the like. If you cannot ensure this, we ask you to use other means of communication.
7. Cookies and Similar Technologies
When accessing our websites, data is automatically collected by one or more small file(s) – so-called cookies – which are sent to your computer and saved automatically. The data notably includes information such as the Internet browser and the operating system used, the domain name of previously visited webpages, the number of visits to our websites, visited websites or the average residence.
Most browsers support cookies and allow visitors to disable or block them. You can set your browser so that all cookies will be rejected or that you will receive a message when a cookie is being sent. However, some functions or services on our websites will not work properly or will not work at all without cookies. Unless you disable cookies, by using our website and online services, you agree that we can place these types of cookies and related technologies on your device.
Generally, Endress+Hauser does not permit third-party advertisers to install cookies on our website or engage in related advertising. However, on some of our websites, including social networking pages, it is possible that other parties have uploaded third party content or embedded content and sharing tools from other third-party sites. Because we do not control the distribution of cookies by sites that are not controlled or managed by Endress+Hauser, you should carefully review their website privacy notices and policies on cookies.
8. Web Beacons
This site may also use a technology referred to as web beacons that allows the collection of web log information. A web beacon tracks pages viewed or message opened. Web log information is gathered when you visit one of our websites by the computer that hosts our website. On certain of our webpages or in emails, we may also utilize web beacons. Web beacons help determine which email messages sent were opened and whether a message was acted upon. They also help analyze the effectiveness of a website by measuring the number of visitors to the site and how many visitors clicked on certain elements of a site.
Endress+Hauser uses certain website analytical tools, web statistics tools, tag managers, remarketing applications, and online advertising software. See below for a list of these tools and a link to their privacy policies:
This website uses the web statistics tool "Map Intelligence (Webtrekk Analytics)", from Mapp c/o Webtrekk GmbH, based in Germany, to collect statistical data on the use of this website and to optimize the offer accordingly. Map Intelligence (Webtrekk Analytics) records the usage anonymously or pseudonymously. The IP address is anonymized immediately after processing and before storage. The legal basis for data processing is our legitimate interest (in the EU Art. 6 para. 1 lit. f) GDPR). For more information please see: Mapp Intelligence (Webtrekk Analytics)
This website uses Google Ads, an online advertising program of Google Inc. based in the USA. Within the scope of Google Ads, we use the so-called conversion tracking. The information obtained with the help of the conversion cookie is used to create conversion statistics. We thereby learn the total number of users who clicked on our ad and were redirected to a page tagged with a conversion tracking tag. However, we do not receive any information with which we could identify you personally. The legal basis for the data processing is your consent (in the EU Art. 6 para. 1 lit. a) GDPR). You have the option to prevent this in the future by setting an opt-out cookie: https://www.google.com/settings/ads/onweb#display_optout For more information, please see Google Ads with conversion tracking. This website uses Google Tag Manager as part of Google Ads and Google Conversion Tracking. Tags are small pieces of code on our website that are used to, among other things, measure traffic and visitor behavior, track the impact of online advertising and social channels, use remarketing and targeting, and test and optimize their website. The tool triggers other tags, which in turn may collect data. Google Tag Manager does not access this data. The legal basis for data processing is your consent (in the EU Art. 6 para. 1 lit. a) GDPR). For more information, please see Google Tag Manager
In the context of new customer acquisition, we use the "LinkedIn Lead Generation" and "LinkedIn Matched Audiences" services of LinkedIn Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland, in order to be able to target interested parties more precisely. LinkedIn Lead Generation is a form that enables advertising on the LinkedIn social network (sponsored content). If you are a member of the LinkedIn platform, LinkedIn can assign the call-up of such forms to your profile on LinkedIn. As a member of LinkedIn, you can provide us with your email address or other user information via the aforementioned forms. The legal basis for the use of LinkedIn Lead Generation is our legitimate interest (for the EU Art. 6 para. 1 lit. f) GDPR). You have the option to prevent this in the future by setting an opt-out cookie: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out LinkedIn Matched Audiences is a service that enables us to display targeted advertisements about our offers to you on the websites of the LinkedIn network. For this purpose, in the course of so-called contact retargeting, the LinkedIn database is matched with the contact data transmitted by Endress+Hauser to LinkedIn. We carry out the aforementioned matching and the advertising on LinkedIn on the basis of our legitimate interest (for the EU Art. 6 para. 1 lit. f) GDPR). You have the option to prevent the processing by changing your settings in your LinkedIn profile. You can make the corresponding changes under "Interaction with companies", which can be found in your settings in the "Display data" area under "Advertising settings". For more information, please see: Linked In Lead Generation and LinkedIn Matched Audiences
Hotjar is a web analytics tool provided by Hotjar Ltd, based in Malta, which we use to better understand your needs and optimize the offering and experience on our website. Hotjar works with cookies and other technologies to collect data about our users' behavior and about their terminal devices. Hotjar stores this information on our behalf in a pseudonymized user profile. The legal basis for the aforementioned data processing is your consent (in the EU Art. 6 para. 1 lit. a) GDPR). For more information, please see Hotjar
9. Analytic Tools and Advertising
Endress+Hauser uses certain website analytical tools, web statistics tools, tag managers, remarketing applications, and online advertising softwares.
See below for a list of these tools and a link to their privacy policies:
Mapp Analytics– https://mapp.com/your-data-safe-and-secure-with-mappcloud/
Google AdWords – https://policies.google.com/privacy#intro
Google Tag Manager – https://support.google.com/tagmanager/answer/9323295/data-privacy-andsecurity?hl=en
Tealium – https://tealium.com/privacy
Hootsuite – https://www.hootsuite.com/legal/privacy
Oktopost – https://www.oktopost.com/privacy
10. Automated Decisions and Profiling
We may process some of your data automatically with the aim of assessing certain personal aspects (profiling). We will carry out this type of processing where 1) it is necessary for the entry into or performance of a contract, 2) it is authorized by applicable law, and 3) you provided your consent to allow us to do so. For example, we may use profiling to:
Analyze transactional data
Provide relevant marketing communications to customers
Communicate effectively with customers
We use assessment tools in order to specifically notify you and advise you about products. These allow communications and marketing to be tailored according to need.
Due to legal requirements, we are obliged to compare certain personal data against antiterrorism lists in connection with the sale of our goods and services.
11. E-Commerce Functionality
In order to create a customer account, which is required to make a purchase through our online shop, an email address and password generated by you is required. Your customer account can be deleted at any time upon your request.
When goods are ordered from our online shop, we collect and process the necessary personal data to complete the order. The mandatory data for contract fulfillment (name and address) are flagged separately; other information is optional. Other information collected includes company name and address, delivery location, contact information, and payment information.
In order to fulfill your order, your data is transferred to the transport company entrusted with delivery if this is necessary for delivery the goods order.
Our service providers are permitted to process or use your data only in order to fulfill the purpose for which the data was sent to them. Our contracts require that technical and organizational measures be in pace to ensure data protection regulations are observed.
12. Contact Forms
At various points on our website, you have the option to provide personal data in order to contact us or leave feedback. We have flagged the relevant mandatory data as such. We store this data along with your IP address and time of submission of the request. The data is stored solely for the purpose of processing your request and is deleted as soon as it is no longer required to achieve the purpose for which it was collected.
13. Links to Other Webpages
Our websites may contain links to other webpages. These webpages are not covered by this Policy. Content from other webpages will be carefully reviewed by us prior to their linking in order to ensure that we only link webpages that adhere to the same high privacy policies as Endress+Hauser. However, we are not responsible for the privacy policies or the content of such other webpages. You should carefully review such sites’ privacy policies before use. After becoming aware of infringements by third party content, we will remove the content or the link immediately.
14. Advertising Email Communications
Endress+Hauser is committed to complying with applicable federal and provincial laws relating to anti-spam, including Canada’s Anti-Spam Law (“CASL”).
You have the option to register for our advertising communications so that we can send you news on a regular basis, for example, regarding our products. These communications are sent to you only on the basis of your active consent (opt-in) and, where required, following additional confirmation of your email address (double opt-in). We may also send you advertising email communications if you have purchased products, software, or services from our website to the email address provided when you made the purchase, if you have consented to receiving the email communications and the messages comply with the prescribed form and content requirements pursuant to CASL. If you no longer wish to receive advertising email communications from us, you can unsubscribe at any time by clicking on the link provided in every email.
Please be aware that we analyze the use behavior of recipients of our advertising email communications through the use of web beacons and tracking pixels. The analysis involves linking the collected data, or elements thereof, and the web beacons to your email address and an individual ID. We use the data obtained in this way to create a user profile to customize advertising email communications to better reflect your interests. We record the time you read our emails, which links in the email you click, and then draw conclusions about your personal interests. We may also link this data with your activities on our website. You can object at any time to this tracking by unsubscribing from our advertising email communications.
A list of the third parties we utilize for advertising email communications and a link to their privacy policies is below:
15. Do Not Track
Endress+Hauser does not currently employ a process for automatically responding to “Do Not Track” (DNT) signals sent by web browsers, mobile devices or other mechanisms. Per industry standards, third parties may be able to collect information, including personal data about your online activities over time and across different websites or online services.
16. Right of Access, Correction, Deletion, Objection, and to Opt-Out
We take reasonable steps to ensure that your personal data on file with us is accurate and current. At your request, Endress+Hauser will inform you within a reasonable period of time, in accordance with applicable law, whether and what personal data about you is stored in our systems. If, despite our efforts to maintain data accuracy and timeliness, incorrect data should be stored in our systems, we will correct it at your request. You also have the right to restrict the processing of your information in certain circumstances, object to processing or ask that we transfer the information you gave us to another organization.
Your withdrawal of consent will not operate retroactively. In certain circumstances, our services can only be offered if you provide us with your data. Consequently, if you choose not to provide us with the required data or withdraw your consent to the use or disclosure of such data, we may not be able to offer you certain services.
To exercise any of your rights or for questions concerning your personal data, information requests, or suggestions and complaints, please contact us at by email at firstname.lastname@example.org; by mail at Legal Department, 2350 Endress Place, Greenwood, Indiana 46143; or toll free at 1-844-0730.
Only you, or someone legally authorized to act on your behalf, may make a request related to your personal data. You may also make a request on behalf of your minor child. We cannot respond to your request or provide you with personal data if we cannot verify your identity or authority to make the request and confirm the personal data relates to you.
17. Rights of European Union Residents
If you reside in the European Union, please review the following policies applicable to residents of the European Union under the General Data Protection Regulations:
18. Commitment to Children’s Privacy
This website is not intended to collect or maintain any information from children younger than 16 years of age. If we learn that we mistakenly collected any information from anyone younger than 16 years of age, we will dispose of the information immediately after notification.
19. Retention of Personal Data
Endress+Hauser processes and stores your personal data based upon its legal and business needs and then securely destroys the information. It is possible that personal data may be stored for the period of time for which claims may be asserted against us or for other document retention periods required by law, including pursuant to commercial, tax and employment law requirements.
20. Data or Security Breach
In case of a loss of, unauthorized access to or unauthorized disclosure of personal data under our control resulting from a breach of our security safeguards or from a failure to establish those safeguards, we will notify you and the applicable Information and Privacy Commissioner(s), as appropriate, if it is reasonable in the circumstances to believe that the breach creates a real risk of significant harm to you, including physical, financial or reputational harm. We will keep a record of all breaches in accordance with our legal obligations.
21. Contact Us
22. Changes to this Policy
Please note that we may update or change this Policy from time to time. When updated, we will revise the last updated notice at the bottom of this Policy. The most current version of this Policy will govern our use of your information.
This Policy was last updated on August 9th, 2022