Privacy Policy

DATE OF LAST UPDATE : Groupe Lacasse September 18th, 2023 - version 01

1.1 Introduction

The protection of privacy is important to Groupe Lacasse Inc. (hereafter “The Organization”). For this reason, we have implemented protection measures and sound management practices for your personal information in accordance with applicable laws.

This privacy policy (the “Policy”), concluded with the Organization, describes our practices regarding the collection, use, processing, communication and retention of the Personal Information of our customers, visitors and users.

By using our website https://www.groupelacasse.com/ (the “Website”) or any of our Services, you agree that we may collect, use, process, disclose and retain your Personal Information in accordance with the terms and conditions described herein. If you do not agree to comply with and be bound by this Policy, you are not authorized to visit, access or use our Website or Services or share your Personal Information with us.

This Policy does not apply to Personal Information of employees, representatives and consultants of the Organization, or any other person affiliated with the Organization, as well as any information that does not constitute personal information as defined by applicable law.

1.2 Responsible for the Protection of Personal Information

Questions, comments and complaints regarding the Organization's Privacy Policy and practices can be directed to our Privacy Officer at the following contact details:

2. Definitions

The following words and expressions, when they appear with a capitalized first letter in the Policy, have the meaning assigned to them below, unless an implicit or explicit exception is made in the text:

“Service provider”: any natural or legal person who processes data on behalf of the Organization. These are third party organizations or individuals employed by the Organization to facilitate the Services, provide the Services on behalf of the Organization, perform services related to the Services or assist the Organization in analyzing use of the Services.

“Personal information”: any information which concerns a natural person and allows them to be identified, that is to say which directly or indirectly reveals something about the identity, characteristics (e.g.: skills, preferences, psychological tendencies, predispositions, mental capacities, character and behavior of the person concerned) or the activities of this person, whatever the nature of the medium and whatever the form in which this information is accessible (written, graphic, audio, visual, computerized or other).

“Personal Information Protection Officer”: the person who is responsible for the application of this Policy and whose contact details are identified in section 1.2 of this Policy.

3. Processing of Personal Information

3.1 Collection of Personal Information

Your consent to share your personal information with us

By your consent, you authorize the Organization to collect and process your necessary personal information to offer you our services. Please note that you remain in control of your personal information at all times and that the consent you give us when collecting or processing your personal information may be withdrawn at any time. We will ensure that we respect your choice in accordance with our legal obligations.

As part of our activities on our website, we collect information when you register for a user account (name, email address, organization, province or State). Once registered, you can modify your information or withdraw your consent at any time. It is also possible to share certain information by sending your resume in the Careers section. Certain additional information may also be collected via cookie management (connection information, IP address, browser type, etc.).

We only use your Personal Information as permitted by law.

3.2 Communication of Personal information

We may share your Personal Information with our Service Providers and other trusted third parties who need the information to help us operate our Website, conduct and protect our business activities, or serve you, provided that such Providers services have previously committed in writing to ensuring the confidentiality of your Personal Information in accordance with applicable laws and our Information Governance Program.

We do not sell, trade, or otherwise disclose your personal information to third parties, subject to exceptions provided by law.

3.2.1 Service Providers and Other Third Parties

Although we try to avoid sharing your Personal Information with third parties, we may use Service Providers to perform various services on our behalf, such as IT management and security, marketing, and analytics, hosting and data storage. We have defined below the cases in which such sharing can take place:

• We use the services of Vortex to manage the maintenance and management of our website. Consult their privacy policy.
• We use CyberImpact to collect information related to our newsletter. Consult their privacy policy.
• We use the services of Therrien Couture Joli-Coeur to ensure our compliance with the privacy laws that apply to us. Consult their privacy policy.

When we communicate your Personal Information to Service Providers, we enter into written contracts with them before your personal information is communicated to them and we only provide them with the Personal Information necessary to carry out their mandate. As part of these contracts entered into with our Service Providers, we undertake to ensure that the principles set out in this Policy are respected, and these Service Providers are required to use Personal Information according to our directives and only for the purposes for which they were provided. In addition, these Service Providers offer us sufficient guarantees regarding the implementation of adequate protection measures which are proportional to the sensitivity of the Personal Information processed or communicated. When our Service Providers no longer need your Personal Information, we require them to destroy this data appropriately.

3.2.2 Compliance with legislation, answer to legal requests, preventing harm and protecting rights

We may disclose your Personal Information when we believe such disclosure is authorized, necessary or appropriate, including:

• to respond to requests from public and government authorities, including public and government authorities outside your country of residence;
• to protect our activities;
• to comply with legal proceedings;
• to protect our rights, our privacy, our safety, our property, yours or those of third parties;
• to enable us to implement available remedies or limit the damage we may suffer; And
• in accordance with applicable laws, including laws outside your country of residence;

3.2.3 Commercial Transaction

We may share, transfer or communicate, in strict accordance with this Policy, your Personal Information in the event of a sale, transfer or assignment, in whole or in part, of the Organization or our assets. In this case, we will notify you before your Personal Information is transferred and becomes governed by another privacy policy.

3.2.4 Personal Information Consent

The Organization obtains consent directly from the person concerned for us to collect, use and communicate their Personal Information.

We will seek your explicit consent before using or disclosing your Personal Information for purposes other than those set out herein.

3.2.5 Rentention of Personal Information

Subject to applicable laws, we retain your Personal Information only for as long as necessary to fulfill the purposes for which such information was collected, unless you consent to your Personal Information being used or processed for another purpose. Additionally, our retention periods may be changed from time to time due to legitimate interests (for example, to ensure the security of Personal Information, to prevent abuse and violations or to prosecute criminals).

To obtain more information on the periods during which your Personal Information is retained, please contact our Personal Information Protection Officer using the contact details provided in article 1.2 of this Policy.

4. Your rights

As a data subject, you can exercise the rights set out below by contacting by email or post to the attention of our Personal Information Protection Officer at the contact details provided in article 1.2 of the Policy:

• You have the right to be informed of the Personal Information that we hold about you and to request a paper copy of the documents containing your Personal Information, subject to exceptions provided for by applicable law;
• You have the right to have the Personal Information we hold about you rectified, modified and updated if it is incomplete, ambiguous, out of date or inaccurate;
• You have the right to withdraw or modify your consent for the Organization to collect, use, communicate or retain your Personal Information at any time, subject to applicable legal and contractual restrictions.
• You have the right to ask us to stop disseminating your Personal Information and to deindex any link attached to your name which gives access to this information if this dissemination contravenes the law or a court order;
• You have the right to file a complaint with the Commission for Access to Information, subject to the conditions provided for by applicable law;

In order to comply with your request, you may be asked to provide appropriate identification or otherwise identify yourself.

5. Cookies and Other Tracking Technologies

We use cookies and similar technologies (collectively, “Cookies”) to help us operate, protect and optimize the Website and the services we offer. Cookies are small text files that are stored on your device or browser. They collect certain information during your visit to the Website, including your preferred language, the type and version of your browser, the type of device you are using and the unique identifier of your device. If some of the Cookies we use are deleted after your browser session ends, other Cookies are retained on your device or browser to allow us to recognize your browser the next time you visit the Website. The data collected through these Cookies is not intended to identify you. They make it possible in particular to guarantee the functioning of the Website, to improve the browsing experience of users and provide certain data which allows us to better understand the traffic and interactions which take place on our Website as well as to detect certain types of frauds. Cookies do no harm to your device and cannot be used to extract your personal information.

You can configure your browser so as to be informed of the installation of Cookies during your visit to the Website, so that you can decide, in each case, to accept or refuse the use of some or all of them. Cookies. Please note that deactivating Cookies on your browser could harm your browsing experience on the Website and prevent you from using some of its features.

6. Security Measures

The Organization has implemented physical, technological and organizational security measures aimed at adequately protecting the confidentiality and security of your personal information against loss, theft or any uncontrolled access, disclosure, reproduction, communication, use or modification. allowed. These measures include encryption, access control, segregation of duties, internal audit, etc.

Among the various measures put in place:

• Our Website is equipped with an SSL (Secure Sockets Layer) Protocol which ensures a secure connection between your device and our server;
• Employees of the Organization have read this Policy and have undertaken to comply with it and to respect the confidential nature of Personal Information concerning our potential and existing clients.
• When the purpose for which your Personal Information was collected is satisfied and we no longer need to keep it, the Organization will destroy or anonymize this data, subject to applicable laws.

Despite the measures described above, we cannot guarantee the absolute security of your Personal Information. If you have reason to believe that your Personal Information is no longer protected, please contact our Privacy Officer immediately using the contact details provided in section 1.2 above.

7. Modification of this Privacy Policy

We reserve the right to modify this Policy at any time in accordance with applicable law. If there are any changes, we will post the revised version of the Privacy Policy and update the updated date on the website. If you do not agree to the new terms of the Privacy Policy, we invite you to no longer use our Website and Services. If you choose to continue to use our Website or Services after the new version of our Policy comes into effect, your use of our Website and Services will then be governed by this new version of the Policy.

8. Responsibility Limitation

The Organization undertakes to take all reasonable means to ensure a level of confidentiality and security of Personal Information that complies with appropriate technological standards considering its sector of activity.

Despite the above, you declare that you understand and recognize that no computer system offers absolute security and that some risk is always present when transmitting Personal Information on the public network that is the Internet.

You therefore accept that the Organization cannot be held responsible for any violation of confidentiality, hacking, viruses, loss, theft, misuse, or alteration of Personal Information transmitted or hosted on its systems or those of a third party. You also declare that you waive any claim in this regard, except in the event of gross negligence or willful misconduct on the part of the Organization. Accordingly, you agree to release the Organization and its officers, directors, related persons, and business partners from any liability for any damages of any kind, whether direct or indirect, incidental, special or consequential in connection with the use of your Personal Information.

In the event of a breach of the confidentiality or security of your Personal Information which presents a high risk to your rights and freedom, this breach will be notified to you as soon as possible, and the Organization will take the necessary measures to preserve the confidentiality and security of your Personal Information.

9. Individuals under the age of 14

We do not knowingly collect or use Personal Information from anyone under the age of 14. If you are under 14 years of age, you should not provide us with your Personal Information without the consent of your parent or guardian. If you are a parent or guardian and you learn that your child has provided us with Personal Information without consent, please contact us using the contact information provided in section 1.2 above to request that we delete that personal information. child of our systems.