This privacy statement was last changed on September 23, 2024 last checked on September 23, 2024, and applies to citizens and legal permanent residents of Canada.

In this privacy statement, we explain what we do with the data we obtain about you when you register for an Achēv account and/or when you use our online tools, such as the Achēv website and Achēv mobile app. We recommend you carefully read this statement.

Achēv’s privacy policy is based upon the ten privacy principles contained within the Canadian Standards Association (CSA) Model Privacy Code for the Protection of Personal Information and is modeled on The Personal Information Protection and Electronic Documents Act (PIPEDA). This reflects the requirements of applicable legislation, including the Freedom of Information and Protection of Privacy Act (FIPPA).

That means, among other things, that:

• We clearly state the purposes for which we process personal data. We do this by means of this privacy statement;
• We aim to limit our collection of personal data to only the personal data required for legitimate purposes;
• We first request your explicit consent to process your personal data in cases requiring your consent;
• We take appropriate security measures to protect your personal data and also require this from parties that process personal data on our behalf;
• We respect your right to access your personal data or have it corrected or deleted, at your request.

If you have any questions, or want to know exactly what data we keep of you, please contact us.

1. Purpose and categories of data

Achēv collects and uses Personal Information for the purposes of:

1. providing you with the service(s), product(s), and/or program(s) you have requested;

2. providing you with updates and information on the service(s), product(s), and/or program(s) you have used or are eligible for;

3. generating and sharing aggregate reports for planning and evaluation;

4. adhering to contractual obligations;

5. supporting promotional activities, such as annual reports and success stories on our website or other marketing activities;

6. and/or any contacting you with important information regarding changes to this privacy policy; your account; and/or the service(s), product(s), and other program(s) you have used.

We may collect or receive personal information for a number of purposes connected with our business operations which may include the following: (click to expand)

2. Sharing with other parties

We only share or disclose personal data to trusted third parties for the purposes of reporting to government agencies, if required; referring clients to other service provider organizing for additional support services, if needed; and referring clients to employment opportunities, if needed.

We commonly share and disclose personal data with the following organizations:

• Immigration, Refugees and Citizenship Canada (IRCC) through the secure system of Immigration Contribution Agreement Reporting Environment (iCARE)
• Ministry of Labour, Immigration, Training and Skills Development of Ontario (MLITSD)
• Employment Ontario Information System through their secure Case Management Systems
• Employment and Social Development Canada (ESDC)

Personal information is only shared in accordance with the laws and regulations of privacy and personal information protection. For other, non-government reporting purposes, only anonymized and aggregated data is shared.

3. Disclosure practices

We disclose personal information if we are required by law or by a court order, in response to a law enforcement agency, to the extent permitted under other provisions of law, to provide information, or for an investigation on a matter related to public safety.

If our website, mobile app, or other digital tool, or organization, is taken over, sold, or involved in a merger or acquisition, your details may be disclosed to our advisers and any prospective purchasers and will be passed on to the new owners.

4. How we respond to Do Not Track signals & Global Privacy Control

Our website responds to and supports the Do Not Track (DNT) header request field. If you turn DNT on in your browser, those preferences are communicated to us in the HTTP request header, and we will not track your browsing behavior.

5. Cookies

Our website and mobile app use cookies. For more information about cookies, please refer to our Cookie Policy on our Cookie Policy – Canadian Residents webpage.

We have concluded a data Processing Agreement with Google.

Google may not use the data for any other Google services.

The inclusion of full IP addresses is blocked by us.

6. Security

We are committed to the security of personal data. We take appropriate security measures to limit abuse of and unauthorized access to personal data. This ensures that only the necessary persons have access to your data, that access to the data is protected, and that our security measures are regularly reviewed.

The security measures we use consist of:

• Login Security
• DKIM, SPF, DMARC and other specific DNS settings
• (START)TLS / SSL / DANE Encryption
• Website Hardening/Security Features
• Security measures of hardware that contain, or process personal data.
• ISO27001/27002 Certification
• HTTP Strict Transport Security and related Security Headers and Browser Policies

7. Third party websites

8. Amendments to this privacy statement

We reserve the right to make amendments to this privacy statement. It is recommended that you consult this privacy statement regularly in order to be aware of any changes. In addition, we will actively inform you wherever possible.

9. Accessing and modifying your data

If you have any questions or want to know which personal data we have about you, please contact us. Please make sure to always clearly state who you are, so that we can be certain that we do not modify or delete any data of the wrong person. We shall provide the requested information only upon receipt of a verifiable consumer request. You can contact us by using the information below.

10. Children

Our website and mobile app are not designed to attract children and it is not our intent to collect personal data from children under the age of consent in their country of residence. We therefore request that children under the age of consent do not submit any personal data to us.

11. Annex

LiteSpeed Cache

This site utilizes caching in order to facilitate a faster response time and better user experience. Caching potentially stores a duplicate copy of every web page that is on display on this site. All cache files are temporary, and are never accessed by any third party, except as necessary to obtain technical support from the cache plugin vendor. Cache files expire on a schedule set by the site administrator, but may easily be purged by the admin before their natural expiration, if necessary. We may use QUIC.cloud services to process & cache your data temporarily.Please see https://quic.cloud/privacy-policy/ for more details.

Complianz | The Privacy Suite for WordPress
This website uses the Privacy Suite for WordPress by Complianz to collect and record Browser and Device-based Consent. For this functionality, your IP address is anonymized and stored in our database. This service does not process any personally identifiable information and does not share any data with the service provider. For more information, see the Complianz Privacy Statement.
Really Simple SSL
Really Simple SSL and Really Simple SSL add-ons do not process any personal identifiable information, so the GDPR does not apply to these plugins or usage of these plugins on your website. You can find our privacy policy here.

Slider Revolution

YouTube
Our website uses plugins from YouTube, which is operated by Google. The operator of the pages is YouTube LLC, 901 Cherry Ave., San Bruno, CA 94066, USA. If you visit one of our pages featuring a YouTube plugin, a connection to the YouTube servers is established. Here the YouTube server is informed about which of our pages you have visited. If you’re logged in to your YouTube account, YouTube allows you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your YouTube account. YouTube is used to help make our website appealing. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO. Further information about handling user data, can be found in the data protection declaration of YouTube under https://www.google.de/intl/de/policies/privacy.

Vimeo
Our website uses features provided by the Vimeo video portal. This service is provided by Vimeo Inc., 555 West 18th Street, New York, New York 10011, USA. If you visit one of our pages featuring a Vimeo plugin, a connection to the Vimeo servers is established. Here the Vimeo server is informed about which of our pages you have visited. In addition, Vimeo will receive your IP address. This also applies if you are not logged in to Vimeo when you visit our plugin or do not have a Vimeo account. The information is transmitted to a Vimeo server in the US, where it is stored. If you are logged in to your Vimeo account, Vimeo allows you to associate your browsing behavior directly with your personal profile. You can prevent this by logging out of your Vimeo account. For more information on how to handle user data, please refer to the Vimeo Privacy Policy at https://vimeo.com/privacy.

Google Web Fonts
For uniform representation of fonts, this page uses web fonts provided by Google. When you open a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly. For this purpose your browser has to establish a direct connection to Google servers. Google thus becomes aware that our web page was accessed via your IP address. The use of Google Web fonts is done in the interest of a uniform and attractive presentation of our plugin. This constitutes a justified interest pursuant to Art. 6 (1) (f) DSGVO. If your browser does not support web fonts, a standard font is used by your computer. Further information about handling user data, can be found at https://developers.google.com/fonts/faq and in Google’s privacy policy at https://www.google.com/policies/privacy/.

The Events Calendar
Event, Venue, and Organizer Information
Through the usage of The Events Calendar, Events Calendar PRO, The Events Calendar Filter Bar, Eventbrite Tickets, and Community Events plugins, as well as our Event Aggregator Import service (contained within The Events Calendar plugin), information may be collected and stored within your website’s database.

Importing Events, Venues, and Organizers:
All data present within a CSV or ICS file and external URLs (for events, venues, organizers, and tickets)
Import origin data (URL from where events are being imported—such as Eventbrite, MeetUp, other compatible URL sources, and more, which can include similar or same data as listed above)

Eventbrite Ticket information: name, description, cost, type, quantity
Please note that to create new events through the Community Events submission form, a user must hold a website account on this domain. This information is retained in the local database. It is also possible to create events anonymously, if the site owner has this option enabled. When purchasing Eventbrite Tickets, attendee, purchaser, and order information are stored and managed by Eventbrite.

API Keys
The Events Calendar suite offers the use of third-party API keys. The primary functions are to enhance the features we’ve built in, some of which use Google Maps, PayPal, Eventbrite, and Meetup. These API keys are not supplied by The Events Calendar.

We make use of certain APIs, in order to provide specific features. These APIs may include the following third party services: Google Maps (API key), Meetup (OAuth token), PayPal (email, Client ID, Client Secret), Eventbrite (API key, auth URL, Client Secret), and Zoom (email, Client ID, Client Secret).

How Long We Retain this Data
All information (data) is retained in the local database indefinitely, unless otherwise deleted.

Certain data may be exported or removed upon users’ requests via the existing Exporter or Eraser. Please note, however, that several “edge cases” exist in which we are unable to perfect the gathering and export of all data for your end users. We suggest running a search in your local database, as well as within the WordPress Dashboard, in order to identify all data collected and stored for your specific user requests.

Where We Send Your Data
The Events Calendar does not send any user data outside of your website by default.

If you have extended our plugin(s) to send data to a third-party service such as Eventbrite, Google Maps, or PayPal, user information may be passed to these external services. These services may be located abroad.

Really Simple SSL
Really Simple SSL and Really Simple SSL add-ons do not process any personal identifiable information, so the GDPR does not apply to these plugins or usage of these plugins on your website. You can find our privacy policy here.

Complianz | The Privacy Suite for WordPress
This website uses the Privacy Suite for WordPress from Complianz to collect records of consent. For this functionality your IP address is anonymized and stored in our database. For more information, see the Complianz Privacy Statement.

LiteSpeed Cache
This site utilizes caching in order to facilitate a faster response time and better user experience. Caching potentially stores a duplicate copy of every web page that is on display on this site. All cache files are temporary, and are never accessed by any third party, except as necessary to obtain technical support from the cache plugin vendor. Cache files expire on a schedule set by the site administrator, but may easily be purged by the admin before their natural expiration, if necessary. We may use QUIC.cloud services to process & cache your data temporarily. Please see https://quic.cloud/privacy-policy/ for more details.

11. Contact details

Achēv
90 Burnhamthorpe Road West, Suite 210, Suite 210, Mississauga, Ontario L5B 3C3
Canada
Website: https://Achēv .ca
Email: info@Achēv .ca
Toll free phone number: 1-800-668-1179
Phone number: 9059490049

We have appointed a contact person for the organization’s policies and practices and to whom complaints or inquiries can be forwarded:
Robert Olson
90 Burnhamthorpe Road West, Suite 210, Suite 210, Mississauga, Ontario L5B 3C3