Privacy Policy

Information Related to the privacy policy of the Website

www.bittrust.ca

The document was updated on 21/01/2021 to comply with the regulations, and in particular in compliance with The Personal Information Protection and Electronic Documents Act (PIPEDA).

1. This section contains information related to the management methods of BitTrust with reference to the processing of user data of the services provided by BitTrust through the www.bittrust.ca and related subdomains
2. This privacy policy is also valid for the purposes of The Personal Information Protection and Electronic Documents Act (PIPEDA) regarding the protection of personal data, (https://laws-lois.justice.gc.ca/ENG/ACTS/P-8.6/index.html), concerning the protection of individuals with regard to the processing of personal data and on the free movement of such data, for persons interacting with BitTrust and can be reached at the address corresponding to the home page: www.bittrust.ca
3. The privacy policy is provided only for BitTrust and related subdomains, not extended to other external websites, possibly browsed by the user through links contained in BitTrust.
4. The purpose of this document is to provide information about the methods, timing, and nature of the information that the data controller must provide to users when connecting to the BitTrust web pages, regardless of the purpose of the connection, according to Canadian legislation.
5. The privacy policy may undergo changes due to the introduction of new rules and subsequent functionalities and services provided by the web portal. Each change will require the approval of the user during its first access to the platform next to the changes.
6. If the user is under the age of 16, pursuant to Canadian legislation, he/she must legitimize his/her consent through the authorization of his/her parents or guardians.

• Data Processing

1.1    Data Controller

1. The data controller is the natural or legal person, public authority, service, or other body that, individually or together with others, determines the purposes and means of processing personal data. This position also deals with safety profiles.
2. With regards to this website, the data controller is: BitTrust, and for any clarification or exercise of the rights of the user he can be contacted at the following email address: info@BitTrust.ca

1.2    Data Processing Location

1. The processing of data, generated by the use of the services provided by BitTrust through the web portal, takes place at Rockwood Mall, 4141 Dixie Rd, Mississauga, ON L4W 1V5, Canada.
2. In case of need, the data related to the newsletter service can be processed by individuals appointed for this purpose by the Owner, at their respective locations.

• Cookies

2.1    Types of Cookies

1. The BitTrust website uses cookies to make the user’s browsing experience easier and more intuitive: Cookies are small strings of text used to store some information that may concern the user, his preferences, or the device used to access the Internet (computer, tablet or mobile) and these cookies are mainly used to adapt the operation of the website to the user’s expectations, offering a more personalized browsing experience and memorizing the choices made previously.
2. A cookie consists of a reduced set of data transferred from a web server to the user’s browser and it can only be read by the server that made the transfer. This is not executable code and does not transmit viruses.
3. Cookies do not record any personal information and any identifiable information will not be stored. If you want, you can prevent the saving of some or all cookies. However, in this case, the use of the website and the offered services could be compromised. To proceed without changing the options related to cookies, simply continue browsing.

Below there are the types of cookies that are used by the website:

2.2    Technical Cookies

1. There are many technologies used to store information on the user’s computer, which are then collected by the websites. Among these, the best-known and used one is based on HTML cookies. They are used for navigation and to facilitate the access and use of the website by the user. They are necessary for the transmission of communications on the electronic network and for the supplier, to provide the service requested by the customer.
2. The settings to manage or deactivate cookies may vary depending on the used internet browser. In any case, the user can manage or request the general deactivation or cancellation of cookies, by modifying the settings of his internet browser. This deactivation can slow down or prevent access to some parts of the website.
3. The use of technical cookies allows the safe and efficient use of the website.
4. Cookies that are inserted in the browser and retransmitted by Google Analytics or by the statistics service of blogger providers or similar services are considered technical only if they are used for the purpose of optimizing the website directly from the owner of the website, which can collect information in aggregate form about the number of users and how they visit the website. Under these conditions, the same rules provided for technical cookies, in terms of privacy policy and approval, are applied to analytics cookies.
5. From the duration point of view, it’s possible to identify the temporary session cookies, which are deleted automatically at the end of the browsing session and are used to identify the user and thus avoid logging in to each visited page, and permanent ones, which remain active in the PC until expiry or cancellation by the user.
6. Session cookies may be installed in order to allow access and the continuity of operations in the reserved area of the platform as an authenticated user.
7. They are not permanently stored, but only for the duration of the navigation, until the browser is closed, and disappear when the browser is closed. Their use is strictly limited to the transmission of session identifiers, consisting of random numbers generated by the server and needed to allow the safe and efficient browsing of the website.

2.3    Third-Party Cookies

1. Depending on the provenance, it’s possible to identify the cookies that are sent to the browser directly from the website that the user is browsing and those owned by third parties, sent to the computer from other websites and not from the one that the user is browsing.
2. Permanent cookies are often third-party cookies.
3. The majority of third-party cookies consist of tracking cookies, used to identify online behavior, understand the interests and then customize the advertising proposals for users.
4. Third-party analytical cookies may be installed. They are sent from the domains of the aforementioned third parties that are external to the website.
5. The third-party analytical cookies are used to provide information about the behavior of users on BitTrust’s platform. The detection is anonymous, to monitor the performance and improve the usability of the website. The third-party profiling cookies are used to create users’ profiles, to propose advertising messages that follow the choices expressed by the users.
6. The use of these cookies is governed by the rules set by the third parties themselves, therefore, users are invited to read the privacy policies and the indications to manage or disable the cookies, that are published on the related web pages.

2.4    Profiling Cookies

1. Profiling cookies are used to create profiles related to the user and they are used to send advertising messages that follow the preferences expressed by the user when surfing the net.
2. When these types of cookies are used, the user must give explicit consent.

• Processed Data

3.1    Data Processing Mode

The processing of personal data is fulfilled mainly using electronic procedures and supports (database, backend application, etc.) for the time strictly necessary to achieve the purposes for which the data are collected and, in any case, by the principles of lawfulness, correctness, non-excess, and relevance considered by the current privacy legislation.

1. This website uses log files where it keeps information collected automated during users’ browsing. The information collected could be the following:

• internet protocol (IP) address
• type of browser and device parameters used to connect to the website
• name of the Internet service provider (ISP)
• date and time of visit
• web page that brings visitors to BitTrust (referral) and exit pages
• possibly the number of clicks.

2. The aforementioned information is processed in an automated way and collected in an exclusively aggregated way, to verify the correct operation of the website, and for security reasons. This information will be processed according to the legitimate interests of the data controller.
3. For security purposes (email spam filters, firewalls, virus, and malware detection), the automatically recorded data may also include personal data such as the IP address, which could be used, following applicable laws, to block attempts to damage the website itself or to damage other users, or in any case of harmful or criminal activities. Such data are never used for the identification or profiling of the user, but only for the protection of the website and its users. This information will be processed according to the legitimate interests of the data controller.
4. The data received from www.bittrust.ca will be used exclusively for the provision of the service and only for the time needed to provide the service.
5. By registering on the BitTrust platform, users can create their profile through the control panel.

3.2    Purposes of Data Processing

1. The personal data of the users, collected through the registration to the platform, are used to guarantee a correct association between the controller and the user, and to offer trust and transparency to the users of the platform.
2. Data collected by the website during its operation are used for the purposes indicated in this document and kept for the time strictly necessary to carry out the specified activities, and in any case not later than 5 years.
3. Data used for security purposes (block the attempts to damage the website, etc.) are kept for the time strictly necessary to achieve the previously indicated purpose.

3.3    Data Provided by the User

1. The BitTrust platform aims to solve the problem of transparency in the humanitarian aid and charity sector: to reach that goal, it uses KYC (Know Your Customer) and Identity Verification Technology.
2. Users, individual or corporate may voluntarily or be required to provide some personal and sensitive data, name, street address, telephone number, e-mail address, wireless e-mail address, demographic information, and other information that may identify you sending identity documents and proof of residence, commercial and trade licenses, establishment records needed for the identification, verification and geolocation procedures. Individuals and corporate can decide which data they want to send to the platform to be correctly identified and geolocated, in order to increase their trust level and be approved as valid clients.
3. To guarantee identity verification and the correct association and thus be able to offer trust and transparency to the users of the platform, BitTrust directly manages the verification processes related to the identity and geolocation of the users.
4. The verification of the information provided by the user may be transferred to an appointed external company or a third party such as a KYC provider; the verification operations are performed by appointed, specialized personnel internal to BitTrust or to an appointed third party, which shall follow rigorous verification procedures.
5. All data are used only and exclusively in the case that the users, individuals, or corporate are required to be identified, verified, and geolocated, so as to verify the correctness of the provided information to perform related services and activities provided by the platform.
6. As indicated above, the optional, explicit, and voluntary sending of e-mails to BitTrust’s email addresses entails the subsequent acquisition of the sender’s address, necessary to respond to the requests, as well as any other personal data included in the message.
7. As indicated above, BitTrust may send newsletter and marketing e-mails to the subscribed users of the platform, this is an option that users can either OPT-IN or OPT-OUT of.
8. If necessary, to increase the level of transparency and information regarding specific requests for personal and/or sensitive data and the related processing, specific policy summaries will be shown to the user and they will be progressively reported or displayed on the website pages, predisposed for specific on-demand services.

3.4    Support in Configuring Your Browser

1. Users can also manage cookies through their browser setting options. However, by deleting cookies from their browser, they may remove the preferences they have set for the website.
2. For further information and support, it is possible to also visit the specific help page of the web browser:

• Internet Explorer: http://windows.microsoft.com/en-us/windows-vista/block-or-allow-cookies
• Firefox: https://support.mozilla.org/en-us/kb/enable-and-disable-cookies-website-preferences
• Safari: http://www.apple.com/legal/privacy
• Chrome: https://support.google.com/accounts/answer/61416
• Opera: http://www.opera.com/help/tutorials/security/cookies/

3.5    Plugin Social Network

1. This website also incorporates plugins and/or buttons for social networks, in order to allow the easy sharing of content on users’ favorite social networks. These plugins are programmed in order to not set any cookies when opening the web page and to safeguard the privacy of users. It’s possible that cookies are set, if planned by social networks, only when the user voluntarily uses the plugin. Please note that if the user browses the website while he/she is logged into the social network, then he/she has already accepted to use cookies conveyed through this website when signed into the social network.
2. The collection and use of information obtained thanks to the plugins are governed by the respective social networks’ privacy policies, to whom it is required to refer:

• Facebook: https://www.facebook.com/help/cookies
• Twitter: https://help.twitter.com/en/rules-and-policies/twitter-cookies
• Pinterest: https://policy.pinterest.com/en/privacy-policy
• Instagram: https://help.instagram.com/402411646841720
• Linkedin: https://www.linkedin.com/legal/cookie-policy

• User Rights

1. The BitTrust website, therefore, informs the user about the existence of:
2. a) the right of the interested party to ask the data controller the access to personal data their updating, the rectification, integration, or the limitation of processing that is related to them or to oppose, for legitimate reasons, to their treatment, in addition to the right to data portability
3. b) the right to request cancellation, the transformation into an anonymous form, or blocking of processed data in violation of the law, including those whose retention is unnecessary for the purposes where the data have been collected or subsequently processed
4. c) the right to obtain the attestation that the operations of updating, rectification, integration of data, cancellation, blocking of data, and transformation have been brought to the attention, also in relation to their content, of those that received or managed those data, except in the case where such fulfillments are not possible to deliver, or they require a manifestly disproportionate effort in comparison with the protected right
5. Requests can be made directly through the user’s personal control panel on the BitTrust website, or alternatively via email addressed to the Data Controller, without formalities or, alternatively, using the model provided by the Data Protection Supervisor, or sending an email to: info@BitTrust.ca
6. If the treatment is based on express consent to the use – or to express consent to the use of genetic, biometric, health-related data, that reveal religious beliefs, philosophical or union membership, that reveal racial or ethnic origin, political opinions – the user has the right to revoke the consent at any time without compromising the lawfulness of the treatment, based on the consent given prior to the revocation.
7. Likewise, in case of violation of the law, the user has the right to complain about it to the Data Protection Supervisor, as it is the authority responsible for monitoring the data processing in the US.

• Data Transfer To Extra Countries

• This website may share some of the collected data with services located outside Canada. In particular with Google, Facebook, and Microsoft (LinkedIn) through social plugins and the Google Analytics service. The transfer is authorized and strictly regulated, so no further consent is required. The companies mentioned above guarantee their participation in the Privacy Shield.
• Data may be transferred to third countries that may not comply with the conditions set out in The Personal Information Protection and Electronic Documents Act (PIPEDA).

• Security About Provided Data

1. This website processes the data of users in a lawful and correct manner, adopting appropriate security measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of data.
2. Processing is carried out using IT and/or cloud service tools, with organizational methods and with techniques strictly related to the indicated purposes. The data provided by the user’s individual and corporates for identification, verification, and geolocation are sent in encrypted form between the individual and corporate and the web platform, and through a daily procedure are transferred and offline stored in an isolated, safe and protected environment, in accordance with the current legislation.
3. In addition to the Data Controller, in some cases, other employees involved in the website and cloud operations (administrative, commercial, marketing, legal department, or system administrators) or external subjects (as suppliers of third-party technical services, courier, and postal services, hosting providers, IT companies, communication agencies) may have access to the data.

• Changes To This Document

• This document is published in the website link: www.bittrust.ca and constitutes the privacy policy of this website.
• It may be subject to changes or updates. In case of significant changes and updates, users will be notified about these actions.
• The document was updated on 20/01/2021 to comply with the latest regulations, and in particular in compliance with The Personal Information Protection and Electronic Documents Act (PIPEDA).