Privacy Policy

Last updated: January 1, 2025

1. Introduction

Remote-Works ("we", "our", or "us") is committed to protecting your privacy and personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our Platform in compliance with:

  • Personal Information Protection and Electronic Documents Act (PIPEDA) - Canada's federal privacy law
  • Quebec's Law 25 (Bill 64) - An Act to modernize legislative provisions as regards the protection of personal information
  • Provincial privacy laws applicable in your jurisdiction

By using Remote-Works, you consent to the collection, use, and disclosure of your personal information as described in this policy. If you do not agree, please do not use our Platform.

2. Personal Information We Collect

2.1 Information You Provide Directly

We collect personal information you voluntarily provide:

  • Account Information: Name, email address, password, phone number
  • Profile Information: Professional skills, work experience, education, bio, location
  • Identification Information: Government-issued ID for verification purposes (processed securely)
  • Communication Data: Messages, inquiries, support requests, feedback
  • Payment Information: Billing details (processed by third-party payment processors)

2.2 Automatically Collected Information

  • Usage Data: Pages viewed, features used, time spent, click patterns
  • Device Information: IP address, browser type, operating system, device identifiers
  • Location Data: Approximate geographic location based on IP address
  • Cookies and Tracking: See Section 7 for details

2.3 Information from Third Parties

We may receive information from payment processors, identity verification services, and partner platforms to verify your identity and facilitate services.

3. How We Use Your Personal Information

We use your personal information for the following purposes (as permitted under PIPEDA and Law 25):

  • Service Delivery: Create and manage your account, provide workforce readiness services, facilitate connections with career specialists
  • Verification: Verify your identity, credentials, and eligibility for services
  • Communication: Send service updates, respond to inquiries, provide customer support
  • Platform Improvement: Analyze usage patterns, improve features, develop new services
  • Security: Detect and prevent fraud, abuse, and security threats
  • Legal Compliance: Comply with applicable laws, regulations, and legal processes
  • Marketing: Send promotional communications (with your consent, where required)

4. Disclosure of Personal Information

We may disclose your personal information to:

4.1 Service Providers

Third-party service providers who perform services on our behalf (hosting, analytics, payment processing, customer support) under contractual obligations to protect your information.

4.2 Career Specialists

Independent career specialists with whom you choose to connect for workforce readiness services.

4.3 Legal Requirements

Law enforcement, government authorities, or legal proceedings when required by law or to protect our rights and safety.

4.4 Business Transfers

In connection with a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

5. Your Privacy Rights (PIPEDA & Law 25)

Under Canadian privacy laws, you have the following rights:

  • Right to Access: Request a copy of the personal information we hold about you
  • Right to Correction: Request correction of inaccurate or incomplete information
  • Right to Deletion: Request deletion of your personal information (subject to legal obligations)
  • Right to Withdraw Consent: Withdraw consent for processing (may limit service availability)
  • Right to Portability (Law 25): Quebec residents can request their information in a structured, commonly used format
  • Right to Object: Object to certain uses of your personal information
  • Right to Lodge a Complaint: File a complaint with the Office of the Privacy Commissioner of Canada

To exercise your rights, contact us at: privacy@remote-works.io

6. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this policy or as required by law. Retention periods vary based on:

  • Active account status and service usage
  • Legal, regulatory, or contractual obligations
  • Dispute resolution and legal claims
  • Business records and audit requirements

When information is no longer needed, we securely delete or anonymize it in accordance with our data retention schedule.

7. Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience and analyze Platform usage. Types of cookies we use:

  • Essential Cookies: Required for Platform functionality
  • Analytics Cookies: Help us understand usage patterns
  • Preference Cookies: Remember your settings and preferences
  • Marketing Cookies: Deliver relevant advertisements (with consent)

You can manage cookie preferences through your browser settings. Disabling certain cookies may affect Platform functionality.

8. Security Measures

We implement reasonable physical, technical, and organizational safeguards to protect your personal information from unauthorized access, disclosure, alteration, or destruction, including:

  • Encryption of data in transit (SSL/TLS) and at rest
  • Regular security assessments and penetration testing
  • Access controls and authentication mechanisms
  • Employee training on privacy and security practices
  • Incident response and breach notification procedures

While we strive to protect your information, no system is completely secure. You are responsible for maintaining the confidentiality of your account credentials.

9. International Data Transfers

Your personal information may be transferred to and processed in countries outside Canada, including the United States, where data protection laws may differ. We ensure appropriate safeguards are in place, including:

  • Standard contractual clauses with service providers
  • Adequacy decisions by Canadian authorities
  • Your explicit consent where required

10. Children's Privacy

Our Platform is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected information from a child, we will promptly delete it.

11. Privacy Incident Response

In the event of a privacy breach that poses a real risk of significant harm, we will notify affected individuals and relevant authorities as required by PIPEDA and Law 25, including the Office of the Privacy Commissioner of Canada and Quebec's Commission d'accès à l'information.

12. Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements. We will notify you of material changes by email or through a prominent notice on our Platform. Your continued use after changes constitutes acceptance of the updated policy.

13. Contact Information

For questions, concerns, or to exercise your privacy rights, contact us at:

Email: privacy@remote-works.io

Support: support@remote-works.io

Website: https://remote-works.io

Office of the Privacy Commissioner of Canada:
30 Victoria Street, Gatineau, Quebec K1A 1H3
Toll-free: 1-800-282-1376
Website: www.priv.gc.ca

Notice to European Residents: Your Rights under GDPR

This section provides additional information for individuals in the European Economic Area (EEA), United Kingdom, and Switzerland about their rights under the General Data Protection Regulation (GDPR).

Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Consent: You have given explicit consent for specific processing activities
  • Contract Performance: Processing is necessary to provide services you requested
  • Legal Obligation: We must process data to comply with legal requirements
  • Legitimate Interests: Processing serves our legitimate business interests while respecting your rights

Your GDPR Rights

Under GDPR, you have enhanced rights including:

  • Right to Access: Obtain confirmation of processing and a copy of your personal data
  • Right to Rectification: Correct inaccurate or incomplete data
  • Right to Erasure ("Right to be Forgotten"): Request deletion of your personal data
  • Right to Restriction: Limit how we process your data
  • Right to Data Portability: Receive your data in a structured, machine-readable format
  • Right to Object: Object to processing based on legitimate interests or for direct marketing
  • Right to Withdraw Consent: Withdraw consent at any time (without affecting prior processing)
  • Right to Lodge a Complaint: File complaints with your local supervisory authority

Data Controller

For GDPR purposes, Remote-Works acts as the data controller for personal data collected through our Platform.

International Data Transfers

When transferring data outside the EEA, we use appropriate safeguards including Standard Contractual Clauses (SCCs) approved by the European Commission and adequacy decisions. We ensure your data receives equivalent protection as required under GDPR.

EU Representative

For GDPR-related inquiries, you may contact our privacy team at gdpr@remote-works.io or our general privacy email: privacy@remote-works.io

Supervisory Authority

You have the right to lodge a complaint with your local data protection authority if you believe we have not complied with GDPR. A list of EU data protection authorities can be found at: https://edpb.europa.eu/about-edpb/board/members_en

This Privacy Policy is effective as of January 1, 2025 and applies to all users of the Remote-Works platform.