Collection of Data

Biosecurity Agriculture collects various types of personal data (that identifies a person, directly or indirectly) either directly from you (e.g., when you sign up for an account or send us a message through our website). The types of data include, but are not limited to:

• Personal Identification Information: Email address, first name, last name, address;
• Licenses, Diplomas, Certifications, etc;
• Communication Data of Users;
• Platform Usage Data;
• Demographic Data: Including geography/region, session duration;
• Usage Metrics: Application opens, updates, first launches.

Purposes of Data Processing

When we collect any personal information, we will do our best to store and process it securely. We will comply with our obligations and safeguard your rights under the applicable law at all times. We limit the processing of your personal information to the following purposes:

• Provision of Our Services. To allow you access and use our Platform, including without limiting to, creating user accounts, communicating with other users, and send information about updates, notices, etc.

• Enhance User Experience. To enhance our Platform and give you a better user experience when you use our Platform.

• Diagnosis & Troubleshooting. To diagnose problems with our servers, to administer our Platform.

• Security. To prevent, detect and investigate illegal activities, breaches of any agreements entered into between you and us and threats to the security of the Platform.

• Statistics. To produce aggregate statistical information about users and their activities on our Platform that does not identify any person.

• Legal & Compliance. To comply with applicable laws and regulations and investigate any claims or disputes concerning the use of our Platform.

• Research & Development. To improve and enhance the safety and security of our Platform, as well as to design and develop new features and products relating to the Platform.

Consent

We will obtain your consent in order to collect, use, or disclose your personal information, except in situations where we are permitted to do so without consent. Consent may be given orally, in writing, electronically, or through an authorized representative, or it may be implied when the purpose for collecting, using, or disclosing the information is apparent, and the user voluntarily provides the information for that purpose. Users may withhold or withdraw their consent for Biosecurity Agriculture to use their personal information in certain ways, with some exceptions (e.g., when the information is necessary to provide a service or product, or withdrawing consent would impede the fulfillment of a legal obligation). However, withholding or withdrawing consent might limit our ability to offer the Platform or certain parts thereof. In such cases, we will explain the implications to help you make an informed decision.

Sharing of Your Information

When we provide our Platform, we may share some of your personal information with other parties. When we share your personal information, we do our best to ensure that it is stored and handled as securely as it is with us.

• Third Parties. We use third-party service providers to provide our Platform to you which may have access to your data inq limited circumstances (or third parties may collect and process your personal information in order to support our Platform). These third parties include web hosting provider, payment service provider, and web analytics provider. We ensure that these service providers do not make use of your personal data for any secondary purposes other than our express written instructions.

• Business Transfers. If we ever sell, transfer, or merge parts of our business or assets, your data may be transferred to a third party. Any new owner of our business may continue to use your data in the same way that we have used it, as specified in this policy policy (i.e. to communicate with you).

• Law Enforcement. In some limited circumstances, we may be legally required to share certain data, which may rarely include your personal data, if we are involved in legal proceedings or complying with legal obligations, a court order, or the instructions of a government authority.

• Staff. We may share some personal information about you, we may share some personal information about you with our employees, or independent contracts. We ensure that they handle your personal data according to this policy policy, applicable laws and our internal policies. We do not sell your personal data to third parties for any purposes, including for monetary gain or any other valuable consideration.

Your Privacy Rights

Under applicable data protection law, you have the following rights regarding the personal data we hold about you:

• Right to information. You have the right to know the purposes for which your personal information is collected at or before the time the information is collected. This policy policy sets out what personal information we collect, how and why we collect it.

• Right of access. You have the right to obtain access to your personal information we retain about you.

• Right to rectification. You have the right to obtain rectification of your personal information without undue delay where that personal information is inaccurate or incomplete.

• Right to erasure. The right to obtain the erasure of your personal information without undue delay in certain circumstances, such as where the personal information is no longer necessary in relation to the purposes for which it was collected or processed. The erasure of personal information also includes the anonymization of personal data.

• Right to withdraw consent. You have the right to withdraw consent at any time, subject to legal or contractual restrictions and reasonable notice. Once consent is withdrawn, you will have the right to have your personal information erased and no longer used for processing.

• Right to challenge compliance. You have the right to challenge our compliance with this policy policy and applicable policy laws. You can contact our Data Privacy Officer to address any challenges via the contact details set out in this policy policy.

Data Privacy Officer (DPO)

In order to be compliant with applicable data protection law we have appointed a Data Privacy Officer (DPO) who shall monitor our compliance with applicable policy laws and assist in exercising your policy rights. Below are the details about our DPO:
Name: Ihor Levchyshyn
Phone number: +1 226-622-2799
Email: easy.farm.control@gmail.com
If an individual has concerns about our personal information handling practices, they may submit a written complaint to our Data Protection Officer (DPO). After verifying the individual's identity, the DPO will promptly investigate the complaint and provide a written report of the findings.
If the DPO finds the complaint to be valid, they will take necessary actions to correct the problematic information handling practice and/or update Biosecurity Agriculture’s policy policies and procedures. If the DPO determines the complaint is not valid, the individual will be notified in writing. Should the individual be unsatisfied with the DPO’s findings and actions, they may escalate the complaint to the Office of the Privacy Commissioner.

How to Exercise Your Rights

To exercise any of these rights, please contact our DPO. We aim to respond within one (1) month of receiving a clear request. Complex or multiple requests may take longer, but we will keep you updated. A minimal fee may be charged for providing access to your personal information. Where a fee may apply, we will inform you of the cost and request further direction from you on whether or not we should proceed with the request. If a request is refused in full or in part, we will notify you in writing, providing the reasons for refusal and the recourse available to you.

Data Retention Period

We will keep your personal information only as long as is reasonably necessary for the purposes described in this policy policy, or for a longer period as may be required by applicable laws You can always request that we suspend or remove your personal data by contacting our DPO.

Safeguards

We are dedicated to safeguarding your personal information against unauthorized access, collection, use, disclosure, copying, modification, or disposal. We will regularly review and update our security policies and controls to stay current with technological advancements and ensure ongoing personal information security. To ensure your information is secure, we implement the following measures:

• Utilizing Secure Sockets Layer (SSL) to encrypt the data you provide on our Platform, ensuring its security during transmission.
• Employing user IDs, passwords, encryption, and firewalls.
• Limiting employee access to personal information to only those who need to know.
• Requiring service providers to adopt comparable security measures through contractual agreements.
• Mandating that employees and management sign confidentiality agreements, obligating them to maintain the confidentiality of all personal information they access.

• Breaches of Security Safeguards. Under PIPEDA, Agriculture Biosecurity must report any security breach involving personal information to the Office of the Privacy Commissioner (OPC) and the affected individual if the breach is likely to result in significant harm. Notifications to individuals will be clear and include sufficient details to help them understand the breach’s significance and any steps they can take to mitigate harm. Notifications will be provided directly to the individual as soon as possible. To assess the risk of significant harm, Biosecurity Agriculture will consider:

  • The sensitivity of the breached personal information.
  • The likelihood of misuse of personal information.
  • Any other relevant factors.

• Record Keeping of Breaches. Biosecurity Agriculture will maintain records of all breaches involving personal information, regardless of whether there is an obligation to report or notify (i.e., even if the breach does not pose a “real risk of significant harm”). Records will be kept for at least 24 months from the date of breach determination and may be retained longer to meet other legal requirements. These records will be provided to the Commissioner upon request. These records will include:

  • The date or estimated date of the breach.
  • A general description of the circumstances surrounding the breach.
  • The nature of the information involved.
  • Whether the breach was reported to the Privacy Commissioner of Canada and if individuals were notified.
  • Detailed information allowing the OPC to verify our compliance with breach reporting and notification requirements.

Third-Party Links

Our Platform includes links to third-party websites to enhance user experience. These sites are not operated or controlled by us, and we assume no responsibility for their content, policy policies, or practices. These third-party sites have their own policies, and we urge users to review them before using their sites and services. Linking does not imply endorsement in any way and your use these sites is at your own risk, Biosecurity Agriculture shall not be liable for damages arising from the use of third-party sites.

Minors’ Personal Data

Biosecurity Agriculture recognizes the importance of protecting the policy and safety of children. Our Platform is not designed for, targeted at, or intentionally marketed to children under the age of 18. We do not knowingly collect, use, or disclose personal data from children under 18 years of age. We explicitly prohibit individuals under the age of 18 from using our Platform. If we learn that we have inadvertently collected personal data from a child under 18 without the required parental consent, we will take immediate steps to delete such information and terminate the child's account. If you are a parent or legal guardian and you believe that your child under the age of 18 has submitted personal information to us, you can contact our DPO. We will promptly investigate the concern and, if necessary, remove the child's personal data from our records and deactivate any associated accounts.

International Transfer of Data

Your information, including personal data, may be transferred to and maintained on computers located outside of your state, province, country, or other governmental jurisdiction where the data protection laws may differ from those of your jurisdiction. If you are located outside Canada and choose to provide information to us, please note that we transfer the data to Canada and process it there. Your consent to this policy policy followed by your submission of such information represents your agreement to that transfer.

10 Fair Information Principles

This policy policy is crafted to align with the 10 fair information principles established by the Personal Information Protection and Electronic Documents Act of Canada (“PIPEDA”). In this policy, we detail our adherence to these principles. Below is a summary of the measures we take to ensure compliance.

• Principle 1 - Accountability. We are committed to safeguarding your information. A designated Data Protection Officer oversees our compliance efforts. You can contact our DPO using the details provided in the designated section of our policy policy.

• Principle 2 - Identifying purposes. We have identified the purposes of processing in the relevant section of this policy policy.

• Principle 3 - Consent. We strive to obtain consent before collecting personal information. Individuals can contact our Data Protection Officer (DPO) using the details in this policy policy to request information deletion.

• Principle 4 - Limiting Collection. Personal data collected is limited to that which is necessary for the purposes identified in this policy policy.

• Principle 5 - Limiting Use, Disclosure, and Retention. We use your personal information only for the purposes for which it was collected. Details on the use, disclosure, and retention of your personal information are provided in the corresponding sections of this policy policy.

• Principle 6 - Accuracy. We keep any information accurate, complete and up-to-date. Where there are changes in the information we retain about you, you are encouraged to submit a request to make changes.

• Principle 7 - Safeguards. We protect your personal information with appropriate safeguards as set out in the relevant section of this policy policy and ensure our service providers provide appropriate technical and organizational measures to protect your information from security breaches.

• Principle 8 - Openness. We are open regarding our data collection and processing practices. You can find information about how we collect, use, process and disclose personal information in this policy policy.

• Principle 9 - Individual Access. You can submit a request to access your information we hold about you. You can use the contact details of our DPO to get in touch with us.

• Principle 10 - Challenging Compliance. You are welcome to direct any questions or inquiries concerning our compliance with this policy policy to our DPO.

Changes to Privacy Policy

This policy policy may be amended by us from time to time. This may be done out of necessity (e.g., in order to reflect changes in the applicable laws), or if we change our business in a way that affects personal data protection. Any changes will immediately be posted on our website and you will be deemed to have accepted the terms of the updated policy policy on your first use of our Platform following the amendments. Therefore, we strongly recommend you to revisit this page and check our policy policy regularly in order to keep up-to-date.