TrackPoint Privacy Policy

1. Information We Collect

We collect information to provide and improve our Services. The types of information we collect are:

2. How We Use Your Information

We use your information for the following purposes, for which we obtain your consent:

• To Provide and Personalize Services: To operate our AI Communications Coach, including processing your User Recordings to generate feedback and analysis, and to personalize your learning experience.
• To Manage Your Account: To authenticate you, provide customer support, and communicate with you about your account and our Services.
• To Process Payments: To manage subscriptions and process payments for our Services.
• For Research and Development: We may use anonymized and aggregated data to improve and develop our AI models and Services. Crucially, your personal User Recordings are not used for AI model training.
• To Ensure Security and Compliance: To monitor for and prevent fraudulent or illegal activity and to enforce our legal documents.

3. Data Storage, Retention, and Deletion

4. Information Sharing and Disclosure

We do not sell your personal information. We may share your information only in the following limited circumstances:

• Service Providers: We engage trusted third-party service providers to perform functions and provide services to us, such as cloud infrastructure, hosting, payment processing, analytics, and AI processing capabilities. We share your personal information with these providers only to the extent necessary to perform these services, and we have agreements in place requiring them to protect your information.
• Legal Requirements: We may disclose your information if required to do so by law or in the good faith belief that such action is necessary to comply with a legal obligation, protect and defend our rights or property, or in urgent circumstances to protect the personal safety of users or the public.
• Organization Administrators: If you are a member of an organization account, certain information such as usage statistics and account status may be visible to organization administrators. However, your User Recordings remain private to you unless you explicitly share them.

5. Your Rights and Choices

Under PIPEDA, you have rights regarding your personal information. These include:

• Right to Access: You can access your Account Information and User Recordings at any time through your account dashboard.
• Right to Correction: You can update or correct your Account Information through your account settings.
• Right to Deletion: You can delete your User Recordings at any time. You may also delete your entire account through your account settings or by contacting us. All deletion is permanent and immediate.
• Right to Data Portability: You have the right to receive a copy of your personal information in a structured, commonly used, and machine-readable format. You can contact us to request a complete data export.
• Right to Withdraw Consent: You may withdraw your consent to our collection and use of your information by terminating your account. Note that we may need to retain certain information for legal or legitimate business purposes even after you withdraw consent.
• Right to File a Complaint: If you believe we have not complied with PIPEDA, you have the right to file a complaint with the Office of the Privacy Commissioner of Canada.

6. Data Security

We are committed to protecting your information. We implement robust physical, technical, and administrative security measures to safeguard your data from unauthorized access, use, or disclosure. These measures include data encryption, access controls, regular security assessments, and secure authentication protocols.

7. Data Breach Notification

In accordance with PIPEDA requirements, we have implemented procedures to respond to data breaches:

• User Notification: In the event of a data breach that poses a real risk of significant harm to affected individuals, we will notify you as soon as feasible. The notification will include information about the nature of the breach, the personal information involved, the steps we are taking to mitigate harm, and steps you can take to protect yourself.
• Regulatory Notification: We will report any material data breach to the Office of the Privacy Commissioner of Canada and, where required, to other relevant authorities, in accordance with applicable legal requirements.
• Breach Documentation: We maintain records of all data breaches, including the facts of the breach, its effects, and the remedial action taken, regardless of whether notification is required.

8. Children's Privacy

Our Services are not intended for individuals under the age of 18 or the age of majority in their jurisdiction. We do not knowingly collect, use, or disclose personal information from children. If we become aware that we have inadvertently collected personal information from a child, we will take steps to delete such information as soon as possible. If you believe that a child has provided us with personal information, please contact our Privacy Officer immediately.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any significant changes by posting the new policy on our website and updating the effective date. We encourage you to review this Privacy Policy periodically.

10. Contact Us

If you have any questions, concerns, or complaints about this Privacy Policy or our data practices, please contact our Privacy Officer via the contact form on our website or by mail at: