Privacy Policy

Introduction

Protecting your privacy and the integrity of your information is fundamental to BoundlessCA ("the Company," "us," "we," or "our"). This Privacy Policy elucidates our practices concerning the collection, use, and security of information related to our products, services (the "Services"), and website (the “Website”).

While our Services and Website may connect to third-party sites and services, we are not liable for their privacy practices. We recommend reviewing the privacy policies of these third parties before engaging with them. Any information collected or obtained by us through our Services is treated confidentially. We ensure its secure storage and restrict access to authorized personnel only. We employ appropriate technical, security, and organizational measures to protect Personal Data (as defined below) against unauthorized processing, accidental loss, or disclosure.

Website Visitors, Users, and Business Partners

General

This policy outlines the privacy practices concerning different groups: Website visitors (“Visitors”), users (“Users”), and business partners (e.g., affiliates, advertisers, publishers, advertising agencies, and platforms) of our Services (collectively “Partners”). Personal Data encompasses but is not limited to: IP address, name, email address, phone number, interests, leads information, and the nature of the relationship with us as per applicable data protection regulations and laws.

Collection and Use

By visiting the Website, you consent to the collection and use of your Personal Data as outlined herein. If you disagree with these terms, please refrain from visiting the Website. If required by law, we will seek your explicit consent for processing Personal Data collected or volunteered by you. Kindly note, refusal of consent may affect your ability to use the Website. We may collect, record, and analyze Visitor information, including IP addresses and cookie usage (see: Cookies Policy below). We also collect data voluntarily provided by Users through our Website’s forms, such as during subscription or Service sign-up. Additionally, we gather information about Website visits, including visitor numbers, duration of visits, and pages accessed.

Purpose of Processing Personal Data

We process Personal Data to operate, improve, and personalize our Website and Services. This includes enhancing Service accuracy, communicating with Users, providing support, and meeting legal obligations. We may share Personal Information with Partners, vendors, and service providers who assist us in delivering Services or analyze Website usage. We ensure that any processing of Personal Data is legally justified.

Sharing Personal Data

We may share information with service vendors, Partners, and contractors to fulfill service requests or analyze Visitor and User behavior on the Website. For Visitors and Users in the European Data Region, all Personal Data processing complies with GDPR and applicable Data Protection Laws and Regulations. We take reasonable steps to safeguard Personal Data transferred to third countries or international organizations, ensuring enforceable data subjects’ rights and effective legal remedies. For details regarding the safeguards employed in the protection of transferred Personal Data, please contact us at the email address provided below.

Partners

General

To effectively provide our Services and collaborate with our Partners, we may gather specific data types from them. Partners might upload, transmit, or process anonymized data regarding their users, visitors, and/or customers ("Data"). During the utilization of our Services, Partners may furnish us with information about themselves and/or their users, visitors, and/or customers via API or other digital means. It's crucial to note that Partners must not utilize, or allow any third party to utilize, the Services to collect or store personally identifiable information or pass such information to us. This data helps us identify the Partner and/or its users, visitors, and/or customers, facilitating the provision of Services, support, sales and marketing activities, and fulfilling contractual obligations. Additionally, we will only access information related to the Partner’s users, visitors, and/or customers once pseudonymized by the Partner, unless explicitly consented by the individuals or required by law.

Partner Responsibilities

Partners understand and acknowledge that our Service does not operate as an archive or file storage service, and we are not obligated to store or back up the Data provided by Partners. It is the Partner’s sole responsibility to back up the Data. Any Data deleted by us, at our discretion or as required by law, will result in the Partner losing access to such Data.

Partner Data Processing

We rely on the Partner’s consent or their assurance of obtaining necessary consent from their users, visitors, and/or customers to process Personal Data. Additionally, we may process Personal Data to fulfill contractual obligations with Partners or when required by law. We may also process Personal Data based on legitimate interests, provided such interests do not infringe upon individual data protection rights.

Data Ownership and Licensing

Partners grant us a non-exclusive license to process the Data to provide Services. We may redact, anonymize, or aggregate the Data for purposes including product development and quality improvement. Partners warrant that they lawfully obtained Personal Data, disclosed usage and processing practices, and own or have acquired intellectual property rights in the Data. Partners remain liable for the Data and release us from liability arising from Data-related activities.

Controller/Processor Designation

We may act as both Controller and/or Processor, as defined by GDPR and Data Protection Laws and Regulations. For Personal Data provided directly by Visitors and/or Users, we act as Controller. For Partner-provided data, we act as Processor. All data collected by us is stored securely, and we maintain strict security measures against unauthorized access or use.

Third-Party Data Protection

When Partners process Personal Data on third-party platforms, the platform acts as Controller, and the Partner acts as Processor. Partners must adhere to instructions from the platform, maintain data security, and inform us of any data breaches.

Security Measures

We implement administrative, organizational, and technical measures to protect Personal Data against unauthorized access, disclosure, or alteration. When sharing data with third parties, we ensure they uphold similar data protection standards.

Disclaimer on Security

While we strive to maintain robust security measures, we cannot guarantee protection against all cyber threats. Visitors, Users, and Partners assume risks associated with internet use, acknowledging the possibility of security breaches.

Links to Other Sites

Visitors and/or Users should be aware that while browsing our Website, they may encounter links to other sites beyond our control. We disclaim responsibility for the content or privacy policies of these external sites. We advise caution and recommend reviewing their privacy policies before disclosing any Personal Data.

Retention and Deletion

We adhere to data retention principles, ensuring data, including Personal Data, is not retained longer than necessary or as required by law. Visitors’ and/or Users’ with active accounts are responsible for data deletion when necessary. Upon termination of a Visitor’s and/or User’s account or our contractual relationship with a Partner, related Personal Data collected through the Website and/or Services is deleted in compliance with applicable laws and our internal policies.

Withdrawal of Consent

Where processing of Personal Data relies on consent, individuals may withdraw consent at any time by notifying us via email. Withdrawal of consent may affect the availability or delivery of certain Services, for which we hold no liability.

Rights Regarding Personal Data

Individuals have rights concerning their Personal Data. They can exercise these rights by emailing us:

1. Right of Access: Individuals can request access to their Personal Data and related information.
2. Right to Rectification: Individuals can request correction or completion of inaccurate or incomplete Personal Data.
3. Right to Erasure: Individuals can request deletion of Personal Data under certain conditions.