GDPR Compliance

Last updated: January 15, 2024

This page provides information about how Dazzle-path complies with the General Data Protection Regulation (GDPR) for visitors and clients from the European Economic Area (EEA) and the United Kingdom.

Our Commitment to Data Protection

Although Dazzle-path operates primarily in Canada, we recognize that some visitors to our website may be located in regions covered by GDPR. We are committed to handling personal data responsibly and transparently, regardless of where you are located.

Legal Basis for Processing

Under GDPR, we must have a valid legal reason to process your personal data. Depending on the circumstances, we rely on:

  • Consent: When you actively agree to our use of cookies or subscribe to communications.
  • Contractual Necessity: When processing is required to fulfill a service agreement, such as managing a renovation project.
  • Legitimate Interests: When we have a genuine business reason to process data, provided it does not override your fundamental rights.
  • Legal Obligation: When we are required to process data to comply with applicable laws.

Your Rights Under GDPR

If you are in the EEA or UK, you have specific rights regarding your personal data:

Right of Access

You can request a copy of the personal data we hold about you. We will provide this information within one month of receiving a valid request.

Right to Rectification

If any personal data we hold is inaccurate or incomplete, you have the right to have it corrected without undue delay.

Right to Erasure

In certain circumstances, you can request that we delete your personal data. This right is not absolute and depends on factors such as legal retention requirements.

Right to Restrict Processing

You may ask us to limit how we use your data while we address a concern you have raised about accuracy or our legal basis for processing.

Right to Data Portability

Where technically feasible, you can request your personal data in a structured, commonly used format to transfer to another service provider.

Right to Object

You can object to processing based on legitimate interests or for direct marketing purposes. We will cease processing unless we demonstrate compelling legitimate grounds.

Rights Related to Automated Decision-Making

We do not use automated decision-making or profiling in ways that produce legal or similarly significant effects on individuals.

International Data Transfers

As a Canadian company, data collected from EEA or UK residents may be transferred to and stored in Canada. Canada has received an adequacy decision from the European Commission, recognizing that Canadian law provides an adequate level of data protection.

Where we use service providers located outside of adequate jurisdictions, we implement appropriate safeguards such as standard contractual clauses.

Data Protection Officer

Given the nature and scale of our data processing activities, we have not appointed a formal Data Protection Officer. However, our privacy team handles all data protection matters and can be reached at the contact details below.

Supervisory Authority

If you believe we have not handled your personal data appropriately, you have the right to lodge a complaint with your local data protection authority. We encourage you to contact us first so we can address your concerns directly.

How to Exercise Your Rights

To make a request regarding your personal data or ask questions about our GDPR compliance:

Email: [email protected]

Please include sufficient information to verify your identity and specify which rights you wish to exercise. We will respond to valid requests within one month, though this period may be extended by two additional months for complex requests.

Updates to This Information

We review our GDPR compliance measures periodically and will update this page to reflect any changes. Material changes will be communicated through our website.