Privacy Policy
Last updated: 2024-10-01
Contents
Scope
This policy applies to Story Interviewing Courses in Canada (en-CA) and covers our website located at pluveran.top.
We follow Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA) and substantially similar provincial laws where applicable. This policy explains what personal information we collect, how we use it, when we share it, how long we keep it, and the choices and rights available to you.
Data We Collect
- Account and contact details you provide (e.g., name, email)
- Course activity (favorites, cart) stored locally in your browser
- Basic analytics (aggregated, non-identifying)
- Support interactions and feedback that you send to us
- Technical data for security and reliability (e.g., truncated IP, device, browser, timestamps)
- Consent records (e.g., cookie preferences, marketing opt-in/out)
We do not intentionally collect sensitive categories of personal information. Please do not submit such information to us.
How We Use Data
- Provide and improve the site and courses (including troubleshooting and personalization)
- Manage your account, purchases, and course progress
- Respond to requests and provide customer support
- Maintain security, prevent abuse and fraud, and ensure integrity of our services
- Measure performance and improve content and UX
- Send service communications. Marketing messages are sent only with your consent and include an unsubscribe mechanism
Legal Bases and Rights
We follow Canadian privacy law (including PIPEDA). We collect, use, and disclose personal information with your knowledge and consent, or as otherwise permitted by law (e.g., for purposes a reasonable person would consider appropriate in the circumstances, for fraud prevention, or to comply with legal obligations).
Your rights
- Access: request details and a copy of your personal information we hold
- Correction: request updates to inaccurate or incomplete data
- Deletion: request deletion where no longer required for the identified purposes or legal obligations
- Withdraw consent: where processing relies on consent (e.g., marketing, non-essential cookies)
- Portability (where feasible): we can provide data in a usable format upon request
We will respond to verified requests, typically within 30 days, subject to permitted extensions under applicable law.
Analytics
Our analytics are configured to use aggregated, non-identifying measurements to understand content performance and usability. We do not build cross-site profiles and we do not sell personal information.
Retention
- Account data: retained while your account is active and for up to 24 months after inactivity
- Transaction and tax records: retained for up to 7 years or as required by law
- Security logs: retained for approximately 90 days unless required for investigations
- Cookie consent records: retained for up to 12 months
We delete or de-identify data when it is no longer necessary for the purposes for which it was collected, subject to legal requirements.
Disclosure
- Service providers that support our operations (e.g., hosting, analytics, customer support) under contracts requiring confidentiality and appropriate safeguards
- Business transfers, such as a merger or acquisition, where personal information may be transferred as part of the transaction subject to similar protection
- Legal compliance, such as responding to lawful requests or protecting our rights, users, or the public
We do not sell personal information.
International Transfers
We primarily store personal information in Canada. Some service providers may process information outside Canada. Where this occurs, your information may be subject to the laws and lawful access by authorities of those jurisdictions. We use contractual and technical measures intended to protect your information, consistent with PIPEDA’s accountability principle.
Security
- Encryption in transit (HTTPS/TLS)
- Access controls and least-privilege practices
- Regular updates and vulnerability mitigation
- Backups and recovery procedures
No system is perfectly secure. If we become aware of a breach that poses a real risk of significant harm, we will notify affected individuals and regulators as required by Canadian law.
Your Choices
- Marketing: unsubscribe using links in our messages or contact us
- Cookies: adjust preferences via the cookie settings at any time
- Account: you may deactivate your account by contacting support
Children’s Privacy
Our services are not directed to children under the age of 13. If you believe a child has provided us personal information without appropriate consent, please contact us and we will take steps to delete such information.
Access Requests
To exercise your rights (access, correction, deletion, or consent withdrawal), contact us using the details below. We may request information to verify your identity. We typically respond within 30 days and will inform you if we need additional time as permitted by law.
If you are not satisfied with our response, you may contact the appropriate privacy regulator in Canada after contacting us first.
Automated Decisions
We do not use automated decision-making that produces legal or similarly significant effects. Any recommendations or personalization are limited to improving your browsing and learning experience.
Do Not Track
Some browsers offer a “Do Not Track” (DNT) signal. Because there is no industry consensus on how to respond to DNT signals, we do not change our practices when we detect them. You can control analytics and tracking via our cookie preferences.
Changes to this Policy
We may update this policy to reflect changes to our practices or legal requirements. We will change the “Last updated” date above and, where appropriate, provide additional notice.
Contact
Email: [email protected] | Phone: +1 (647) 327-9408
If we cannot resolve your concern, you may contact the Office of the Privacy Commissioner of Canada or your provincial privacy regulator.