Privacy Policy

Introduction

Q8Nitro (“we” or “the Platform”) is committed to protecting the privacy of our users and their personal data. All our practices in collecting, using, and storing information comply with the Canadian Personal Information Protection and Electronic Documents Act (PIPEDA), ensuring transparency and security at every stage of processing.

Definitions

  • • "Personal Information" means any data about an identifiable individual, such as full name, email address, phone number, IP address, and browsing logs. We collect this information to enable users to utilize the Platform’s services and to improve their experience while maintaining confidentiality and security.
  • • "User" means any person who visits or uses the Q8Nitro Platform, including sellers, bidders, and buyers. All user data is handled in accordance with this Policy.
  • • "Processing" means any operation or set of operations performed on Personal Information—such as collection, use, storage, disclosure, or deletion—always carried out with maximum security and in accordance with the stated purposes and with the user’s explicit consent.

Collection of Personal Information

Types of Data We Collect
  • • Identification Data: includes full name, email address, phone number, and basic information required to create an account and enable services.
  • • Technical Data: such as IP address, browser type, and browsing history within the Platform to ensure optimal performance and for security analysis.
  • • Transaction Data: includes details of auctions, orders, and payments related to Platform usage to ensure accurate execution and record-keeping of financial operations.
Legal Bases for Data Collection
  • • We collect information directly from the user when they register or perform actions that require their data—such as participating in auctions or making payments.
  • • We automatically collect some information via cookies and similar tracking technologies to enhance user experience and Platform security.
Core Principles
  • • Transparency: we clearly inform users about the data we collect and how we use it.
  • • Consent: we do not process any personal information without obtaining the user’s explicit and informed consent.

Use of Personal Information

  • • Account Provisioning & Management: we use identification data to create and manage user accounts, including account activation and password recovery.
  • • Auction & Payment Processing: we rely on transaction data to ensure smooth payment transactions and to organize and record auctions properly.
  • • User Communication: we send alerts and reminders about auctions, account status updates, and security notifications.
  • • Platform Analysis & Improvement: we analyze usage data to enhance performance, detect issues, and develop new features.
  • • Marketing Purposes: we send tailored offers and services based on user interests, with an option to opt out at any time.

Disclosure & Sharing with Third Parties

  • • Service Providers: we share data with hosting providers, payment processors, and technical support partners to operate and maintain the Platform.
  • • Legal Compliance: we disclose data in response to valid requests from governmental or judicial authorities to meet legal obligations or to protect our rights.
  • • Analytics Partners: we use third-party analytics services to improve the Platform, and these parties are bound by the same security and privacy standards.

Cookies & Tracking Technologies

  • • We use cookies to improve user experience, remember preferences, and analyze performance.
  • • Users may disable cookies via their browser settings, though this may affect certain Platform functionalities.
  • • For more details on the cookies we use and how to manage them, please review our dedicated “Cookies” page.

Information Security

  • • Encryption: we implement SSL/TLS encryption in transit and AES-256 encryption at rest.
  • • Access Controls: we enforce internal access permissions for staff members based on their job roles.
  • • Periodic Audits: we conduct regular security audits and reviews to protect the Platform from threats.

Data Retention

We retain Personal Information only as long as necessary to fulfill the purposes for which it was collected or as required by law, and then we securely delete or destroy it when it is no longer needed.

User Rights under PIPEDA

  • • Right of Access: users may request a copy of their personal information held by us.
  • • Right to Correction: users may request modification or updating of any inaccurate or incomplete information.
  • • Right to Deletion: users may request the deletion of their personal information when there is no legal requirement to retain it.
  • • Right to Object: users may object to the processing of their personal information for certain purposes, such as marketing.
  • • Right to Withdraw Consent: users may withdraw their consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

Breach Notification

In the event of a security breach posing a real risk to user privacy, we will notify the Office of the Privacy Commissioner of Canada (OPC) and affected users without undue delay, in accordance with legal requirements.

Changes to This Policy

We may update this Policy from time to time. We will inform users of any significant changes at least 30 days before they take effect and encourage regular review of this page.

Contact Information