Your Data, Our Commitment

 

At PathPRSolutions (“we,” “us,” or “our”), we respect your privacy and are dedicated to protecting your personal information. This Privacy Policy explains what data we collect, how we use it, with whom we share it, and your rights and choices. By using any of our platforms—PathPR.ca, ImmiG AI, ImmiGence SaaS, the Canadian Immigration Dashboard, or MapleAI—you agree to the practices described herein.

 

---

1. Introduction & Scope

This Policy applies to all personal data processed when you:

• Register for or maintain an Account on our platforms

• Submit profiles, documents, or questions for AI-driven PR assessments

• Use consulting or one-on-one services

• Interact with our dashboards, news feeds, alerts, or chat tools

• Communicate with us via email, in-app messages, or support channels

We act as the data controller for all information collected. We may also engage trusted third-party processors (e.g., payment, hosting, AI vendors) under strict contractual terms. When we update this Policy, we will revise the “Last updated” date and notify you of material changes. 

 

 

---

2. Definitions

“Account” – Your registered profile on our Platform.
“Consultant” – An independent immigration professional you engage via our Platform.
“Platform” – The websites, apps, dashboards, portals, APIs, and related technology under the PathPRSolutions brand.
“Services” – All offerings through the Platform: AI-generated CRS/PR-pathway reports, live draw/policy data, analytics, alerts, and consulting.
“User Content” – Any data, documents, or profiles you submit or generate.
“Third-Party Services” – External providers we integrate with (e.g., Stripe, Calendly, OpenAI).
“Personal Data” – Information relating to an identifiable person (name, email, address, immigration details).
“Non-Personal Data” – Aggregate or anonymized usage statistics. 

 

 

---

3. Categories of Personal Data Collected

We collect:

1. Account & Profile Data: name, contact info, credentials, profile photo, preferences.

2. Transaction & Payment Data: billing addresses, payment method tokens (full card data remains with our processor), invoices.

3. Document & Content Data: passports, visas, educational credentials, financial statements, AI chat transcripts.

4. Usage & Technical Data: IP addresses, device/browser details, log files, clickstream, crash reports, performance metrics.

5. Cookies & Tracking: session cookies, analytics (Google Analytics, Amplitude), functional preferences, marketing pixels.

6. Third-Party & Public Data: social login info, publicly available consultant credentials.

7. Sensitive Immigration Data: legal status, case details, biometric inputs (for avatar/AI services) 

---

4. Purposes of Processing & Legal Basis

We use your data to:

• Provide & improve Services (CRS scoring, dashboards, MapleAI chat) – Contractual necessity.

• Process payments & billing – Contractual necessity; legal obligation.

• Account management & support – Contractual necessity; legitimate interest.

• Personalization & UX (language, layout) – Legitimate interest; consent where required.

• Analytics & product development – Legitimate interest.

• Marketing & communications – Consent (opt-in/out); legitimate interest for service notices.

• Fraud prevention & security – Legitimate interest; legal obligation.

• Compliance (legal requests, audits) – Legal obligation.

• Consultant coordination (sharing docs, booking details) – Contractual necessity.

---

5. How We Collect Data

• Directly from You: Registration forms, profile updates, document uploads, chat entries, consultation bookings.

• Automatically: Cookies, server logs, in-app analytics, device identifiers.

• From Third Parties: Payment confirmations (Stripe), scheduling info (Calendly), AI vendors (OpenAI, HeyGen), public directories. 

---

6. Cookies & Tracking Technologies

We use:

• Strictly Necessary Cookies: Session management, authentication.

• Performance & Analytics Cookies: Usage metrics (Google Analytics, Amplitude).

• Functionality Cookies: Preferences (language, display settings).

• Marketing Cookies: Remarketing pixels (Google Ads, Facebook Pixel).

You can manage cookies via your browser or our consent banner. Disabling strictly necessary cookies will impair core features. 

 

 

---

7. Data Sharing & Disclosure

We do not sell your Personal Data. We share only as necessary to:

• Consultants & Vendors: minimal data for report generation or consultations.

• Payment Processors: billing and transaction info (e.g., Stripe).

• Hosting & Infrastructure: secure servers (AWS, MongoDB Atlas).

• AI & Analytics Providers: anonymized usage, chat transcripts, document metadata to improve our AI.

• Legal Authorities: when required by law, to protect rights or safety.

• Business Transfers: in mergers or acquisitions under confidentiality.

• Aggregated Data: fully de-identified metrics for research or reporting. 

---

8. International Data Transfers

Your data may be processed in Canada or other countries where our processors operate. We implement safeguards such as:

• Standard Contractual Clauses

• Data-processing agreements requiring equivalent protection

• Transfer only to certified recipients where possible

You may withdraw consent to transfers or request alternative arrangements by contacting us. 

 

 

---

9. Data Retention & Security

• Retention:

  • Account data until deletion + 5 years

  • Transaction records for 7 years (tax/audit)

  • Uploaded documents for 1 year post-service

  • AI chat & consultation logs for 6 months, then anonymized

  • Technical logs for 12 months; aggregated data indefinitely

• Security Measures:

  • TLS encryption in transit; AES-256 at rest

  • Role-based access controls; two-factor authentication

  • Regular audits, vulnerability scanning, penetration tests

  • Incident response plan with breach notifications per law 

---

10. User Rights & Controls

Under applicable laws (PIPEDA, GDPR) you may:

• Access & Portability: Obtain copies of your data.

• Correction: Update inaccurate or incomplete data.

• Deletion: Request erasure, subject to legal retention.

• Restriction & Objection: Limit or object to processing based on legitimate interests.

• Withdraw Consent: For marketing or non-essential cookies (does not affect prior processing).

• Complaints: Lodge with the Office of the Privacy Commissioner of Canada or other supervisory authority. 

---

11. Children’s Privacy

Our Platform is for users 18 or older. We do not knowingly collect data from minors. If you believe a minor’s data was submitted, contact us to have it deleted. 

 

 

---

12. Data Deletion & Account Termination

• User-Initiated: Delete your account via your Profile settings or by emailing support@PathPRSolutions.com (“Delete My Data”). We’ll purge active records within 30 days and backups within 90 days, except where law requires retention.

• Company-Initiated: We may suspend or terminate accounts for Terms violations and delete data per the same procedures. 

---

13. Changes to This Privacy Policy

We may update this Policy to reflect new practices, regulations, or Platform features. We’ll post the revised Policy with a new “Last updated” date and, if material, notify you by email or in-app message. Continued use constitutes acceptance. 

 

 

---

14. Contact Information

If you have questions or wish to exercise your rights, please contact:
Data Protection Officer
PathPRSolutions
Email: support@PathPRSolutions.com
Address: 13725 George Jct, Surrey, BC, V3T 0V7
We aim to respond to all inquiries within 30 days.