What are cookies?
Cookies are small text files that websites store on the visitor's computer or device when they are accessed and store information about the user and the website. Cookies can serve different purposes.
Cookies can be very useful for you, as they increase the user experience for multiple website visits. If you use the same device and the same browser for multiple visits to a website, the visited website can adapt displayed content to your interests and needs.
In Canada, the permissibility of cookies is regulated in Canada’s Anti-spam legislation (“CASL”) and in the EU it is the Privacy and Electronic Communications Directive (“PECD”).
What types of cookies do we use?
We use both first party cookies, which are issued from our website’s own domain, and third-party cookies, which belong to and are managed by other parties, such as our partners or service providers.
The cookies used on our website can be divided into two categories:
Session cookies: These are temporary cookies that will be deleted from your device once you close your browser. They are used to remember your device as you move within our website.
Persistent cookies: These are longer-lasting cookies that remain on your device even after you close your browser. They are used to recognize your device each time you use our website and to remember your preferences.
The classification as technically necessary or technically non-necessary also determines the cookies we use:
Technically necessary cookies
Technically necessary cookies are required for our website to function properly; they enable you to navigate our website efficiently and use its functional features. An example of this is, for example, the reminder of recently performed actions (e.g., entered text) when you return to a page within the same session.
Technically non-essential cookies
Technically non-essential cookies are not necessary for the proper functioning of our website, but they enable us to improve the content of our website, compile statistics for internal market analysis purposes, provide you with a more personalized online experience or provide additional features. In particular we use advertising cookies.
Advertising cookies are used to provide content that is more relevant to you and your interests (direct marketing). They can be used to provide targeted advertising or to limit the frequency with which you are shown an advertisement. They also help us measure the effectiveness of advertising campaigns. In addition, we may use these cookies to store which websites you have visited.
The cookies we use
Twitter sets this cookie to integrate and share features for social media and also store information about how the user uses the website, for tracking and targeting.
This cookie is used to detect and defend when a client attempt to replay a cookie. This cookie manages the interaction with online bots and takes the appropriate actions.
This cookie is used by Akamai to optimize site security by distinguishing between humans and bots
This cookie is set by the provider Akamai Bot Manager. This cookie is used to manage the interaction with the online bots. It also helps in fraud preventions
If you want to remove existing cookies from your device or if you want to block future cookies being placed on your device, you can do this via your browser settings.
Delete cookies in Google Chrome
Delete cookies in Mozilla Firefox
Deleting Flash cookies
Delete cookies in Microsoft Internet Explorer
Delete cookies in Opera
Delete cookies in Safari
Please bear in mind that deleting and blocking cookies will have an impact on your user experience as parts of our website may no longer work.
Please also note that, unless you have adjusted your browser settings to block cookies, our system will issue cookies as soon as you visit our website or click on a link in a targeted email that we have sent you, even if you have previously deleted our cookies.
Does this policy change?
We know that the handling of your personal information is important to you. For this reason, we take the greatest possible care when handling your personal information and thus ensures a high level of data security. We respect the personal rights of our users and are aware of the importance of protecting the personal information we receive from you.
Personal information in this sense are all individual details about personal or factual circumstances of an identified or identifiable natural person, such as your name, your telephone number, your address, and other information that you provide to us when you use our offers or contacting us.
Person responsible for data processing
Equity Insight is the data controller within the meaning of the PIPEDA and GDPR
Data processing by us only takes place on the basis of legal permission. We process personal information,
only with your consent,
for the performance of a contract to which you are a party,
at your request for the performance of pre-contractual measures,
to comply with a legal obligation,
or if the processing is necessary to protect our legitimate interests or the legitimate interests of a third party unless your interests or fundamental rights or freedoms which require the protection of personal information override.
Your privacy rights
Under the PIPEDA, you can exercise the following rights:
a) Right to withdraw consent
You have the right to withdraw your consent at any time, subject to legal and contractual restrictions. Note that your withdrawal of such consent may limit your ability to obtain certain products and services.
b) Right of access, correction or deletion
You have the right to request access to and obtain a copy of any of your personal information that we may hold, to request correction of any inaccurate information relating to you and to request the deletion of your personal information under certain circumstances.
c) Right to submit a privacy complaint
You have the right to submit a complaint with the Privacy Commissioner in the jurisdiction of your residence if you consider that Equity Insight’s management of your personal information infringes applicable laws (although we ask you to try resolve any complaint with us first).
Under the GDPR, you can exercise the following rights:
a) Right to information
You have the right to request information and/or copies of the personal information stored about you.
b) Right to rectification
You have the right to request that personal information relating to you be corrected and/or completed without delay.
c) Right to object to processing
You have the right to request the restriction of the processing of your personal information, insofar as the accuracy of the data is disputed by you, the processing is unlawful, but you object to its erasure and we no longer require the data, but you need it for the assertion, exercise or defense of legal claims or you have lodged an objection to the processing.
d) Right to deletion
You have the right to request the erasure of your personal information stored by us, unless the exercise of the right to freedom of expression and information, the processing is necessary for compliance with a legal obligation, for reasons of public interest or for the assertion, exercise, or defense of legal claims.
e) Right to information
Where you have exercised the right to rectification, erasure, or restriction of processing, we will notify all recipients to whom personal information relating to you has been disclosed of such rectification or erasure or restriction of processing, unless this proves impossible or involves a disproportionate effort.
f) Right to data portability
You have the right to have personal information that you have provided to us handed over to you or to a third party in a structured, common, and machine-readable format. If you request the direct transfer of the data to another responsible party, this will only be done insofar as it is technically feasible.
g) Right of objection
Insofar as your personal information are processed on the basis of legitimate interests pursuant to Article 6 (1) (f) of the GDPR, you have the right to object to the processing at any time pursuant to Article 21 (1) of the GDPR. If we process your data for the purpose of direct marketing, you have the right to object at any time to the processing of personal information concerning you for the purpose of such marketing in accordance with Art. 21 (2) GDPR; this also applies to profiling insofar as it is related to such direct marketing.
h) Right to withdraw consent
You have the right to cancel your consent to the collection of data at any time with effect for the future. The data collected until the cancellation becomes legally effective will remain unaffected. Please understand that the implementation of your cancellation may take a little time for technical reasons and that you may still receive messages from us in the meantime.
i) Right to complain to a supervisory authority
If the processing of your personal information violates data protection law or if your data protection rights have otherwise been violated in any way, you may complain to the supervisory authority.
j) Automated decision-making including profiling
You have the right not to be subject to a decision based solely on automated processing which produces legal effects concerning you or similarly significantly affects you.
How do I make a privacy right request?
If you have a question about our personal information practices, please contact us.
If you make a request, we will confirm that we have received your request and let you know if we need anything else from you. We typically fulfill your request within one month unless the request is particularly complex, or we receive multiple requests from you. In these cases, we may extend the time period, but we will always let you know.
For your protection, we only fulfill requests for the personal information associated with the email address and/or name that you identify in your request, and we may need to take other steps to verify your identity before taking any action. When permitted by law, we may charge an appropriate fee to cover the costs of responding to your request.
The Supervisory Authority
If you believe that the processing of your personal information is not lawful, you can lodge a complaint with a data protection supervisory authority. The Information and Privacy Commissioner of Ontario (IPCO) is the for us relevant data protection supervisory authority. The IPCO is located at 2 Bloor Street East, Suite 1400 Toronto, ON M4W 1A8 (www.ipc.on.ca). We would, however, appreciate the chance to deal with your concerns before you approach the IPCO.
Collection and storage of personal information as well as type and purpose of their use
a) processing of data for the use of the website
When you access the website via your browser, we only collect personal information that your browser or mobile device automatically transmits to us in order to enable you to visit our website and to ensure stability and security. These can be in particular:
Your IP address,
Your device identification, i.e., the unique number of the end device,
the content, date, and time of the request,
the time zone of the requesting computer or mobile device,
the website from which the request was forwarded,
the requested page,
the http status code,
the amount of data transferred,
your operating system,
language and version of the browser software and
Advertising Identifier (IDFA)
The processing of this data serves to ensure a smooth connection of the website, the display of our services and listings, the usability of our services, the evaluation and system security and stability, as well as for other administrative purposes.
We process the transmitted data strictly for the intended purpose, for a period of 90 days, in the interest of being able to detect, limit and eliminate attacks on our websites. After this period has expired, we delete or anonymize the IP address, unless there are separate legal obligations to store it. The legal basis for this processing of your personal information is our legitimate interest (Art. 6 (1) lit. f GDPR).
b) processing of data when you are contacting us
If you contact us, we process the following data from you for the purpose of processing and handling your enquiry: Name, contact details -if provided by you- and your message.
The legal basis of the data processing is our obligation to fulfil the contract and/or to fulfil our pre-contractual obligations (Art. 6 (1) b) GDPR) and/or our legitimate interest in processing your enquiry (Art. 6 (1) f) GDPR).
c) processing of data for our newsletter
On our website, you can subscribe to our newsletter. In principle, our newsletter can only be received by the data subject if he or she registers for the newsletter mailing. For legal reasons, a confirmation email is sent to the email address entered by a data subject for the first time for the newsletter dispatch using the double opt-in procedure. This confirmation e-mail serves to verify whether the owner of the e-mail address as the data subject has authorized the receipt of the newsletter.
The personal information collected in the context of a registration for the newsletter is used exclusively for sending our newsletter. Furthermore, subscribers to the newsletter could be informed by e-mail if this is necessary for the operation of the newsletter service or a related registration, as could be the case in the event of changes to the newsletter offer or changes to the technical circumstances. The processing of your e-mail address is thus based exclusively on your consent (Art. 6 (1) a) GDPR). You can revoke this consent at any time. To revoke your consent simply contact us using firstname.lastname@example.org.
The provider is Rocket Science Group LLC, (MailChimp). MailChimp is a service with which, among other things, the sending of newsletters can be organized and analyzed. When you enter data for the purpose of receiving newsletters (e.g., email address), this data is stored on MailChimp's servers in the USA.
d) processing of data for the use of our services
We process various data within the framework of the provision of our services for example when you advertise with us and for the initiation and processing of the existing contractual relationship between you and us. If you have commissioned us to provide a service, we process your data (if provided: Name, contact details address, bank details and payment data) and all information that is necessary in the context of fulfilling the services, exclusively for the purpose of processing and handling the contractual relationship. Accordingly, the data is processed on the basis of our contractual relationship (Art. 6 (1) b) GDPR) as well as to fulfil our legal obligations (Art. 6 (1) c) GDPR).
Duration of storage
We store your personal information for as long as necessary to achieve the respective storage purpose. Afterwards, your data will be deleted by us, unless we are obliged to store it for a longer period of time due to tax, commercial or other legal storage or documentation obligations, or you have agreed to a storage beyond this period (Art. 6 para. 1 lit. a GDPR).
We use technical and organizational security measures to ensure that your personal information is protected against loss, incorrect modification, misuse or unauthorized access by third parties. The security measures are constantly adapted to the improved technical possibilities. All data exchanged between your computer and us over the Internet is encrypted with 256-bit. The encryption is done with SSL technology. This is a technology that encrypts all of your personal information, in such a way that this data cannot be viewed by any unauthorized third party while the data is being transmitted over the Internet. You can recognize the transmission of encrypted data by the display in your browser. Your browser indicates the security of the website by an icon in the form of a padlock or a key in the status bar at the bottom of the window. In addition, a green bar will be displayed in your browser bar to show you that you are connected to our server and can be sure that your data will not end up on a phishing server. If your browser is configured appropriately, you will receive a warning message the first time you access the website. This simply informs you that your data will be protected by the website.
Disclosure of data
In general, and unless otherwise mentioned in this policy, we will not share your data. However, if we do so we will only pass on your personal information to third parties if:
you have given your express consent (Art. 6 (1) a) GDPR),
this is legally permissible and necessary for the fulfilment of a contractual relationship with you (Art. 6 (1) b) GDPR),
if there is a legal obligation for the disclosure (Art. 6 (1) c) GDPR),
the disclosure is necessary for the protection of legitimate business interests and for the assertion, exercise or defense of legal claims and there is no reason to assume that you have an overriding interest worthy of protection in the non-disclosure of your data (Art. 6 (1) f) GDPR), and
If we commission third parties with the processing of personal information (Art. 28 of the GDPR).
Our web site contains so-called hyperlinks to websites of other providers. When you activate these hyperlinks, you will be redirected from our web site directly to the web site of the other provider. You will recognize this by the change of URL, among other things. We cannot accept any responsibility for the confidential handling of your data on these third-party web sites, as we have no influence on whether these companies comply with data protection regulations. Please inform yourself about the handling of your personal information by these companies directly on these web sites.
It is important that the data we hold about you is accurate and current, therefore please keep us informed of any changes to your personal information.
We are present in various "social media" platforms in order to communicate with our customers, interested parties and users registered there and to be able to inform them about our offers there. We would like to point out that you use these platforms and their functions on your own responsibility. This applies in particular to the use of the interactive functions (e.g., commenting, sharing, rating).
In addition, your data may be processed for market research and advertising purposes. For example, usage profiles can be created from your usage behaviour and the resulting interests. This allows, for example, advertisements to be placed within and outside the platforms that presumably correspond to your interests. Cookies are usually stored on your computer for this purpose. Independently of this, data that is not directly collected from your devices may also be stored in the usage profiles (especially if you are a member of the respective platforms and are logged in to them).
We, as the provider of this information service, do not collect and process any data from your use of our service beyond this.
The processing of users' personal data is based on our legitimate interests in providing users with effective information and communicating with users. If you are a member of a social network and do not want the network to collect data about you via our website and link it to your stored membership data with the respective network, you must log out of the respective network before visiting our website, delete the cookies on your device and close and restart your browser.
After logging in again, however, you will once more be recognizable to the network as a specific user. In the case of requests for information and the assertion of user rights, we would also like to point out that these can most effectively be asserted with the providers. Only the providers have access to the users' data and can take appropriate measures and provide information directly. If you still need help, you can contact us using email@example.com.
Updating your information
If you believe that the information, we hold about you is inaccurate or that we are no longer entitled to use it and want to request its rectification, deletion or object to its processing, please do so by contacting us. For your protection and the protection of all of our users, we may ask you to provide proof of identity before we can answer the above requests.
Keep in mind, we may reject requests for certain reasons, including if the request is unlawful or if it may infringe on trade secrets or intellectual property or the privacy of another user. Also, we may not be able to accommodate certain requests to object to the processing of personal information, notably where such requests would not allow us to provide our service to you anymore.
Personal information and children
Our services are aimed at people aged 18 and over. We will not knowingly collect, use or disclose personal information from minors under the age of 18 without first obtaining consent from a legal guardian through direct offline contact.
Your contact for data protection
If you have any questions regarding the collection, processing, or use of your personal information, or if you wish to request information, correct, block or delete data, or revoke any consent you have given, please contact us using firstname.lastname@example.org.