SUTHERLAND GROUP OF COMPANIES
At The Sutherland Group of Companies (“Sutherland Transportation Holdings Ltd. DBA Sutherland Group Enterprises), “The Company”, is committed to providing our customers with exceptional service. As providing this service involves the collection, use and disclosure of some personal information about our customers, protecting their personal information is one of our highest priorities.
Our use of the personal information we collect from our customers is subject to the British Columbia Personal Information Protection Act (“PIPA”) and/or the federal Canadian Personal Information Protection and Electronic Documents Act (“PIPEDA”). PIPA and PIPEDA (as applicable) set out the ground rules for how British Columbia businesses and not-for-profit organizations may collect, use and disclose personal information.
In accordance with PIPA and PIPEDA (as applicable), we will inform our customers of why and how we collect, use and disclose their personal information, obtain their consent where required, and only handle their personal information in a manner that a reasonable person would consider appropriate in the circumstances.
SCOPE OF POLICY
Personal Information – means information about an identifiable individual, which may include such information as name, age, gender, home address, phone number, e-mail address, social insurance number, username, password and credit card information. Personal information does not include business contact information (described below).
Business Contact Information – means information that would enable an individual to be contacted at a place of business and includes name, position name or title, business telephone number, business address, business email or business fax number. Contact information is not covered by this policy or by PIPA or PIPEDA (as applicable).
Privacy Officer – means the individual designated responsibility for ensuring that the Company complies with this policy and with PIPA and PIPEDA (as applicable).
POLICY 1 – COLLECTING PERSONAL INFORMATION
Unless the purposes for collecting personal information are obvious and the customer or user voluntarily provides his or her personal information for those purposes, we will communicate the purposes for which personal information is being collected, either orally or in writing, before or at the time of collection.
We will only collect personal information of customers that is necessary to fulfill the following purposes:
- To verify identity;
- To identify customer and user preferences;
- To understand the needs of our customers with respect to our products and services and enhance their experience using our products and services;
- To open and manage a user account and/or personal profile (where applicable);
- To deliver requested products and services;
- To deliver marketing, newsletters and other notices, updates, alerts and other information concerning our products and services that may be of interest to our customers;
- To ensure a high standard of service to our customers, including where applicable;
- To collect and process payments;
- To meet regulatory requirements; and
- To enable related entities and third-party service providers to deliver requested products, services and/or information and to accomplish the purposes described in Policy 1.
We may also collect information related to your use of our services, where applicable, such as:
- Device-specific information (e.g. hardware model, operating system information, unique device identifiers and mobile network information, including phone number) which we may associate with your account; and
- Log information (e.g. details of how you use our service, internet protocol address, system and device event information such as crashes, system activity, hardware settings, browser type, browser language and the date and time of use of our service, and cookies that may uniquely identify your browser or your account).
We do not knowingly collect personal information directly from children under the age of 13 without parental consent. Our website is not specifically targeted to our intended for use by children.
POLICY 2 – CONSENT
We will get your consent to collect, use or disclose your personal information, except where we are legally authorized or required by law to do so without consent.
POLICY 3 – USE AND DISCLOSURE
We will not collect, use or disclose personal information except for the purposes identified, unless you have provided us with consent for those additional purposes or where authorized or required by law.
We use third parties to provide services to us or to you. This includes managing customer information, sending marketing communications, conducting surveys, hosting our websites, analyzing data, processing payment, collecting overdue payments, providing network security, accounting, auditing and other services. We do not authorize these service providers to use or disclose your personal information for purposes other than why we have retained them. Some of the services providers we use have data storage outside of Canada, including in the United States. In certain circumstances, law enforcement or security agencies of those other countries may be entitled to access your personal information.
POLICY 4 – RETENTION
We retain personal information for as long as is required to fulfill the purposes, after which we securely destroy or anonymize personal information. We retain personal information used in connection with a decision which affects you for at least one year. If you join our mailing list, we will keep your personal information used in connection with the mailing list for so long as you remain subscribed.
POLICY 5 – ACCURACY
We use reasonable efforts to ensure our records of your personal information are accurate and complete if to be used to make a decision which affects you or disclosed to a third party. You may request that we correct any errors or omissions in your personal information that we have collected, and we will either correct that information or annotate our records to reflect your request.
POLICY 6 – SAFEGUARDS
We protect your personal information by making reasonable security arrangements to prevent unauthorized access, collection, use, disclosure, modification or disposal of personal information. The safeguards we take depend on the sensitivity of the personal information, and include physical security of our premises, passwords and encryption.
POLICY 7 – INDIVIDUAL ACCESS
You have a right to access the personal information that we have about you and information about the ways in which your personal information is used by us. Please make your request for access and information in writing to our Privacy Officer, whose contact information is provided below. We may require you to prove your identity by producing government issued identification before we provide any access to your personal information. We may charge you a fee before releasing the personal information, and where a fee is required, we will provide you a written fee estimate in advance. We will provide you access within the time limits required by PIPA and PIPEDA (as applicable), unless we receive an extension. If we are authorized under PIPA and PIPEDA (as applicable) to refuse access, we will let you know in writing the reasons and what other steps you have available to you.
POLICY 8 – CONTACT INFORMATION
POLICY 9 – CHANGES