Management and IT Strategy Consulting
This Privacy Policy describes how Leloir ("we", "our", or "us") collects, uses, discloses, and protects personal information in accordance with the applicable privacy laws in Canada, including the Personal Information Protection and Electronic Documents Act (PIPEDA), and Quebec’s Act to Modernize Legislative Provisions as Regards the Protection of Personal Information (Law 25). This Policy applies to all personal information collected by Leloir through:
Visits to our website ([leloir.com](https://leloir.com));
- Interactions with our investor and shareholder information portals;
- Communications with Leloir, including recruitment, hiring, and collaboration processes;
- Subscriptions to our newsletters or participation in other mailing lists;
- Visits to or interactions with our official pages on third-party platforms, such as LinkedIn, Facebook, YouTube, and other social media sites;
- Any other interactions where we may collect personal information in the course of operating our services.
By interacting with us, you agree to the collection, use, and disclosure of your personal information as described in this Privacy Policy, subject to your rights under applicable laws.
Your Privacy Rights
You have the right to access the personal information we hold about you, to request corrections, and to request that your data be deleted. You can also opt out of communications or withdraw your consent for data processing at any time, as outlined in this Policy. We are committed to protecting your rights and privacy. If you have any questions, requests, or concerns, our team is always available to help.
Please refer to the “Contact Us” section below for how to get in touch with our Person in charge of the protection of personal information, who oversees the safeguarding of personal data at Leloir.
For users in the European Union (EU) and Quebec, Leloir acts as a data processor, processing personal data in line with our clients' instructions, who act as data controllers. Our clients are responsible for establishing the lawful basis for data collection and processing, including necessary consent. For inquiries about data collection and processing by our clients, please contact them directly. In Quebec, in compliance with Law 25, we ensure transparency in data processing, obtain explicit consent, and allow users the right to access, rectify, and delete their data, as well as the right to data portability.
leloir.com may contain links to third-party websites and social media sites. We do not control these third parties' data collection and processing. They may have their own privacy policies, and we recommend reviewing these policies when visiting such sites.
We collect personal data directly from users visiting leloir.com, inquiring about our products and services, or applying for career opportunities. Under GDPR and Quebec's Law 25, we act as a data controller, processing data with consent or other legal bases. Users have the right to withdraw consent at any time.
We collect marketing data, such as names, email addresses, company names, business addresses, telephone numbers, preferences, and social media engagement. Our website uses cookies, and we adhere to the privacy-by-default principle. Essential cookies for site functionality cannot be blocked. If you consent to advertising cookies, we use this data for personalized advertising.
If you consent to Leloir's use of advertising cookies, we collect and process Marketing Data to promote our products and services, as well as to provide you with personalized and tailored advertising based on your preferences.
We may share personal data with service providers under contractual agreements to process data according to our instructions and with appropriate safeguards. Our service providers assist with various services, including employment, chat hosting, infrastructure, communications, analytics, ad tracking, webinar hosting, ERP/HCM, and CRM.
We may share data with subsidiaries in Canada, the US, the EU, and elsewhere as needed for our services. We may also share data for legal compliance, to respond to public and government requests, enforce our policies, address emergencies, or prevent fraud.
In business transactions like mergers or acquisitions, personal data may be transferred as part of the transaction.
We store data in data centres and cloud environments in the US, Canada, and the EU. Operations in the EU comply with GDPR. Some services may involve collaboration with US-based providers. For information about our policies regarding data processing outside Canada, the US, and Europe, contact us at info@leloir.com
We implement physical, technical, and organizational security measures.
However, we cannot guarantee complete security due to evolving cyber threats.
For questions or concerns about this Privacy Policy or our data practices, contact us at info@leloir.com