Privacy Policy

Wespare Finance Inc.

Updated: [July 1, 2024].

This Privacy Policy is instituted by Wespare Finance Inc., a company registered at 440 Stalwart Crescent, Ottawa, K1T 0H2 (“we,” “Us,” “our”). The policy outlines our commitment to safeguarding the privacy of our service users by detailing our role as the data controller for their personal data. As a data controller, we determine the purposes and methods of processing personal data.

The term “Personal Data” (“you, “your”) refers to any information directly connected to a living, identifiable individual. It includes various pieces of information that, when combined, could identify a particular person.

Our website uses cookies. We will only use non-essential cookies after obtaining your explicit consent during your initial visit. The landing page will include Google Analytics for analytics purposes.

While all personal data is stored securely, internet transmission has inherent risks. We will use commercially reasonable measures but cannot ensure total security during transmission. Any data transmission is at your own risk. Upon receipt, we will implement stringent procedures and security features to prevent unauthorised access.


How We Will Process and Collect your Data


Inquiry Data. We may process Information contained in any inquiry you submit to Us regarding services (“Inquiry Data”). The Inquiry Data may be processed for the purposes of offering, marketing and selling relevant services to you. The legal basis for this processing is consent.

Correspondence Data. We may process information contained in or relating to any communication that you send to Us and any information contained in any linked e-mail accounts (“Correspondence Data''). The Correspondence Data may include the communication content and metadata associated with the communication.

Our website will generate the metadata associated with communications made using the website contact forms and any other automated means. The Correspondence Data may be processed for the purposes of communicating with you and record-keeping.

Process of Data. We may process any of your personal data identified in this policy if necessary for legal claims. This processing is based on our legitimate interests, which includes protecting and asserting our legal rights, your legal rights, and the legal rights of others. This could include court proceedings, administrative procedures, or out-of-court methods such as mediation or arbitration.

We may process any of your personal data identified in this policy to obtain or maintain insurance coverage, manage risks, or receive professional advice. This processing is based on our legitimate interests to protect our business from risks.

Please do not supply any other person’s personal data to Us, unless we prompt you to do so within our platform.

We will be collecting email addresses from users on a voluntary basis.


Data Use by Wespare Finance Inc.


We may use the Personal Information collected by Us in the following manner:

1. Monitor the use of the Website for technical administration;

2. Use cookies to better understand how you interact with the Website, to monitor aggregate usage by the users and web traffic routing on the Website, and to improve the Website and the Website; and,

3. Use Personal Information, to conduct research and for further development of our services in order to provide you with a better, more intuitive and personalized experience.


Location and Jurisdiction of Data Storage


Data Storage and Transfer. Personal data collected by Wespare Finance Inc. from our users is currently stored and processed within the United States of America. However, we may shift our servers to Canada in the future for developmental and compliance purposes. By using our services and submitting your personal information, you consent to such transfer, storage, and processing within the United States and, where applicable, Canada.
International Transfers. For users accessing our services outside the United States or Canada, please note that the information you provide may predominantly be transferred to, stored, and processed in the United States where our primary servers and central database are located. However, a portion of this data may also be handled within Canada. Data protection laws in the United States and Canada may not be as comprehensive as those in your country. By using our services, you consent to your information being transferred to our facilities in both the United States and, where applicable, Canada, as described in this Privacy Policy.


Disclosure of Personal Information


We do not disclose your personal and business data to any third-party other than what is stated in this Section.

Marketing Data. We may disclose your personal, marketing, and business data to our insurers and/or professional advisers insofar as reasonably necessary for the purposes of obtaining or maintaining insurance coverage, managing risks, obtaining professional advice, or the establishment, exercise or defence of legal claims, whether in court proceedings or in an administrative or out-of-court procedure.

Legal Compliance. In addition to the specific disclosures of personal data set out in this Section, we may disclose your personal data where such disclosure is necessary for compliance with a legal obligation to which we are subject, or in order to protect your vital interests or the vital interests of another natural person. We may also disclose your personal data where such disclosure is necessary for the establishment, exercise or defence of legal claims, whether in court proceedings or in an administrative or out-of-court procedure.

In case that we will be under a duty to disclose or share your personal data with or without your consent, and with or without notice in order to comply with any legal obligation including without limitation a subpoena, court order, or search warrant.


Retention and Use of Personal Data


This section outlines our data retention policies and procedures. They are designed to ensure we meet our legal obligations to retain and delete personal data.

Personal Data. Personal data that we process may be stored for a period of time after you no longer use our website, but it will not be kept for longer than necessary for its intended purposes. The retention period of your information depends on both the type of information and the specific reasons for processing it, ensuring that it is kept no longer than required or permitted. Additionally, we may retain your personal data to comply with legal obligations or to protect your vital interests or those of another individual.


Amendments to this Policy


We may update this policy from time to time for any reason by publishing a new version on our website. Each version will apply to information collected while it was in place.

You should check this page occasionally to ensure you are happy with any changes to this policy.


User Rights


In this section, we summarise your rights under data protection law. For a full explanation, read the relevant laws and guidance from regulatory authorities.
your principal rights under data protection law are:

1. the right to access;
2. the right to rectification;
3. the right to erasure;
4. the right to restrict processing;
5. the right to object to processing;
6. the right to data portability;
7. the right to complain to a supervisory authority; and,
8. the right to withdraw consent.

Personal Data Request. You have the right to confirm whether we process your personal data and, if so, to access it. This includes information about the purpose of the processing, the data categories, and who receives it. If it doesn’t affect others’ rights and freedoms, we’ll provide you a free copy of your personal data. Additional copies may require a reasonable fee.

Personal Data Rectification. You have the right to have any inaccurate personal data about you rectified and, taking into account the purposes of the processing, to have any incomplete personal data about you completed.

Personal Data Erasure. In some circumstances you have the right to the erasure of your personal data without undue delay. Those circumstances include:

1. The personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed;

2. you withdraw consent to consent-based processing;

3. you object to the processing under certain rules of applicable data protection law;

4. the processing is for direct marketing purposes;

5. and the personal data have been unlawfully processed.

Exceptions to Right of Erasure. However, it’s important to note that the right to erasure is not absolute and certain exceptions do apply. These exceptions include circumstances where the processing of data is necessary for exercising the right to freedom of expression and information, complying with a legal obligation, or establishing, exercising or defending legal claims.


Right to Restrict Processing of Personal Data


Limitation on Use of Personal Data. In certain situations, you have the right to limit the use of your personal data. These situations include instances where you dispute the accuracy of the personal data; when the processing is illegal, yet you are against its deletion; when we no longer require the personal data for our processing purposes, but you need it for initiating, asserting, or defending legal claims; and when you have objected to the processing of your data, and verification of this objection is pending.

Specific Objections for Use of Personal Information. You are entitled to object to the processing of your personal data based on your specific circumstances, provided that the legal justification for such processing is either the performance of a task carried out in the public interest, or the exercise of official authority vested in Us, or the pursuit of legitimate interests by Us or a third party. Should you raise such an objection, we will cease processing your personal information unless we can demonstrate compelling legitimate reasons that supersede your interests, rights, and freedoms, or if the processing is necessary for the establishment, exercise, or defence of legal claims.

Direct Marketing. You possess the right to object to the processing of your personal data, including profiling for direct marketing purposes targeted at you. In the event that you raise such an objection, we will discontinue the processing of your personal data for this specific purpose. Nonetheless, it is important to acknowledge and consent that if this objection hinders the quality of our services provided to you, it may result in a decrease in the effectiveness of our services and potentially necessitate the discontinuation of your use of our service.


Relevant Regulatory Authority


If you consider that our processing of your personal information infringes data protection laws, you have a legal right to lodge a complaint with the relevant supervisory authority responsible for data protection. Specifically,

If you are a resident of Canada, you may file a complaint with the Canadian Office of the Privacy Commissioner or any other relevant Federal or Provincial body;

If you are a resident of the United States, you may file a complaint with the Federal Trade Commission (FTC) or any other relevant Federal or State body; or,

If you are a resident of the European Union or European Economic Area, you may do so in the EU/EEA member state of your habitual residence, your place of work or the place of the alleged infringement.

To the extent that the legal basis for our processing of your personal information is consent, you have the right to withdraw that consent at any time. Withdrawal will not affect the lawfulness of processing before the withdrawal.

You may exercise any of your rights in relation to your personal data by written notice to Us.


Cookies


Description. A cookie is a file containing an identifier (a string of letters and numbers) sent by a web server to a web browser and stored by the browser, which sends the identifier back to the server each time it requests a page. Cookies can be either “persistent” or “session”: persistent cookies are stored by the web browser and remain valid until their expiry date unless deleted by the user, while session cookies expire when the user session ends and the browser is closed. Typically, cookies do not contain information that personally identifies a user, but personal information we store about you may be linked to data stored in and obtained from cookies.


Geographic Privacy Legislation and Rights

Canadian Users


Privacy Requirements. With regard to any content sent, received, or stored in Canada via the services provided to a customer location, Wespare Finance Inc. shall use and disclose any “personal information” as defined by the Personal Information Protection and Electronic Documents Act (2000, c. 5) (“Canada Personal Information”) solely for the purpose of fulfilling its obligations or exercising its rights under the Agreement, as approved in advance in writing by Customer, in accordance with Customer’s instructions, or to comply with laws or regulations, including responding to legal process or court or administrative order or ruling. Any Canada Personal Information submitted to Wespare Finance Inc. via any Services provided to a Customer Location in Canada shall be used and disclosed solely as set forth in the Privacy Policy.


User Privacy Rights (For Residents of Quebec Only)

English


In accordance with the provisions of An Act to modernize legislative provisions as regards the protection of personal information, SQ 2021 c 25, the following user privacy rights apply exclusively to residents of Quebec:

Right to Access and Rectification. Users have the right to access any personal information we hold about them, including confirmation of whether their data is being processed. Users can request details about the purposes of processing, the categories of data concerned, and recipients to whom the data has been disclosed. Users can also request rectification of inaccurate or incomplete information by contacting our designated privacy officer.

Right to Consent and Withdrawal. Users have the right to be informed about the purposes for which their personal information is collected, used, and disclosed, including the means of collection and third-party disclosures. Explicit consent must be obtained before processing personal information. Users can withdraw consent at any time, subject to legal or contractual restrictions, and reasonable notice, which may affect service availability or quality. Users will be informed about the potential consequences of withdrawal.

Right to Data Portability and Deletion. Users have the right to request the transfer of their personal data to another organization in a commonly used format, enhancing their control over their data. They can also request deletion of data no longer necessary for its original purposes or if the processing is unlawful. Requests for portability and deletion should be directed to our privacy officer, who will handle them according to applicable laws and regulations.

Right to be Informed of Data Breaches. Users have the right to timely notifications of data breaches posing significant risks to their privacy. Notifications will include details about the breach, categories and number of affected data subjects, possible consequences, and measures taken or proposed. Users will also receive advice on mitigating adverse impacts. Notifications will comply with mandatory reporting requirements, ensuring both users and the Commission d'accès à l'information are informed.

This summary outlines the primary rights of users under the Act and will be amended as further regulatory guidance is made available to ensure continued compliance and clarity.


Français


Droits à la Vie Privée des Utilisateurs (Pour les Résidents du Québec Seulement)

Conformément aux dispositions de la Loi modernisant des dispositions législatives en matière de protection des renseignements personnels, RLRQ 2021 c 25, les droits suivants s'appliquent exclusivement aux résidents du Québec :

Droit d'Accès et de Rectification. Les utilisateurs ont le droit d'accéder à tout renseignement personnel que nous détenons à leur sujet, y compris la confirmation que leurs données sont en cours de traitement. Les utilisateurs peuvent demander des détails sur les finalités du traitement, les catégories de données concernées et les destinataires auxquels les données ont été divulguées. Les utilisateurs peuvent également demander la rectification des informations inexactes ou incomplètes en contactant notre responsable de la protection des renseignements personnels désigné.

Droit au Consentement et Révocation. Les utilisateurs ont le droit d'être informés des finalités pour lesquelles leurs renseignements personnels sont collectés, utilisés et divulgués, y compris les moyens de collecte et les divulgations à des tiers. Un consentement explicite doit être obtenu avant de traiter les renseignements personnels. Les utilisateurs peuvent retirer leur consentement en tout temps, sous réserve des restrictions légales ou contractuelles et d'un préavis raisonnable, ce qui peut affecter la disponibilité ou la qualité des services. Les utilisateurs seront informés des conséquences potentielles du retrait du consentement.
Droit à la Portabilité et à l'Effacement des Données. Les utilisateurs ont le droit de demander le transfert de leurs renseignements personnels à une autre organisation dans un format couramment utilisé, renforçant ainsi leur contrôle sur leurs données. Ils peuvent également demander l'effacement des données qui ne sont plus nécessaires pour les finalités initiales ou si le traitement est illégal. Les demandes de portabilité et d'effacement doivent être adressées à notre responsable de la protection des renseignements personnels, qui les traitera conformément aux lois et règlements applicables.

Droit d'être Informé des Violations de Données. Les utilisateurs ont le droit de recevoir des notifications rapides des violations de données présentant des risques significatifs pour leur vie privée. Les notifications incluront des détails sur la violation, les catégories et le nombre de personnes concernées, les conséquences possibles et les mesures prises ou proposées. Les utilisateurs recevront également des conseils pour atténuer les impacts négatifs. Les notifications respecteront les exigences de signalement obligatoires, assurant que les utilisateurs concernés et la Commission d'accès à l'information sont informés.

Ce résumé décrit les principaux droits des utilisateurs en vertu de la Loi et sera modifié au fur et à mesure que des directives réglementaires supplémentaires seront disponibles pour assurer une conformité et une clarté continues.


Cookie Types


We use cookies for the following purposes:

Authentication - We use cookies to identify you when you visit our website and as you navigate our website;

Status - We use cookies to help Us to determine if you are logged into our website;

Personalization - We use cookies to store information about your preferences and to personalise our website for you;

Security - We use cookies as an element of the security measures used to protect user accounts, including preventing fraudulent use of login credentials, and to protect our website and services generally;

Analysis - We use cookies to help Us to analyse the use and performance of our website and services; and,

Cookie Consent - We use cookies to store your preferences in relation to the use of cookies more generally.


The Cookies Used by our Service Providers


Our service providers use cookies and those cookies may be stored on your computer when you visit our website.


We use Google Analytics to analyze website usage. Google Analytics collects information through cookies to generate reports on how our website is used. Google's privacy policy is available at https://www.google.com/policies/privacy.


Management of Cookies


Most browsers allow you to refuse to accept cookies and to delete cookies. The methods for doing so vary from browser to browser, and from version to versionYou can however obtain up-to-date information about blocking and deleting cookies via these links:

<Delete, allow and manage cookies in Chrome - Android> (Google Chrome);

<Enhanced Tracking Protection in Firefox for desktop> (Mozilla Firefox);

<Web preferences - Opera Help> (Opera);

<Delete a cookie> (Gnome Web/Epiphany);

<Clear cookies in Safari on Mac - Apple Support (ME)> (Apple Safari); and,

<Manage cookies in Microsoft Edge: View, allow, block, delete and use> (Microsoft Edge)

Blocking all cookies will have a negative impact upon the usability of many websites.

Modern Browser Carveout. If you block cookies, you will not be able to use all the features on our website.


Corporate Information


Cookie PreferencesYou can manage your preferences relating to the use of cookies on our website by visiting: legal@wespare.com.


Corporate Details. This website is owned and operated by Wespare Finance Inc. We are a Canadian Federal Corporation with business number 767334444RC0001 with Corporation Number 1288864-5.

Registered Address. Our registered address and principal place of business is located at:

Wespare Finance Inc.
440 Stalwart Crescent
Ottawa, K1T 0H2
Canada


Contact Us


you can contact Us in the following ways:

Website Contact Form

You can fill out our website contact form and submit it to Us. We will receive your message and respond to you as soon as possible.

Telephone

You can call Us at the phone number that is published on our website. We are available to answer your calls during regular business hours.

Email

You can send Us an email at help@wespare.com . We will receive your email and respond to you as soon as possible.


Data Protection Officer and Language


Our data protection officer’s contact details are:


Alexander Jonathan Hardy Steffen
Barrister and Solicitor
32 Britain Street, Suite 100
Toronto, ON M5A 1R6
Canada

Email:   privacy@ajhs.li

English Language. It is the express wish of the parties that this Privacy Policy and all related documents, including notices and other communications, be drawn up in the English language. The parties agree that this Privacy Policy is drafted in English per any relevant regulations, and any translation shall defer to the English original. Il est expressément souhaité par les parties que cette politique de confidentialité ainsi que tous les documents connexes, y compris les avis et autres communications, soient rédigés en langue anglaise. Les parties conviennent que cette politique de confidentialité est rédigée en anglais conformément aux règlements pertinents, et toute traduction devra se référer à l'original anglais.