Information on this site is advertising in nature.

GDPR Compliance

Our commitment to data protection under the General Data Protection Regulation

Overview

The General Data Protection Regulation (GDPR) is a regulation in EU law on data protection and privacy. Although cozy-gorge operates primarily in Canada, we are committed to providing robust data protection for all our visitors and clients, including those from the European Economic Area (EEA).

Data Controller

cozy-gorge acts as the data controller for personal information collected through our website and services. We determine the purposes and means of processing personal data.

Contact information for data protection inquiries:
cozy-gorge
4521 Maple Ridge Avenue, Suite 102
Toronto, ON M5V 2T6
Canada
Email: [email protected]

Legal Basis for Processing

We process personal data only when we have a valid legal basis to do so. The legal bases we rely on include:

  • Consent: You have given clear consent for us to process your personal data for a specific purpose
  • Contract: Processing is necessary for a contract we have with you, or because you have asked us to take specific steps before entering into a contract
  • Legal obligation: Processing is necessary for us to comply with the law
  • Legitimate interests: Processing is necessary for our legitimate interests or the legitimate interests of a third party, provided your fundamental rights and freedoms do not override those interests

Your Rights Under GDPR

If you are located in the EEA, you have the following rights regarding your personal data:

Right to Access

You have the right to request copies of your personal data. We may charge a small fee for this service in certain circumstances.

Right to Rectification

You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.

Right to Erasure

You have the right to request that we erase your personal data under certain conditions, such as when the data is no longer necessary for the purpose it was collected.

Right to Restrict Processing

You have the right to request that we restrict the processing of your personal data under certain conditions.

Right to Object to Processing

You have the right to object to our processing of your personal data under certain conditions, particularly where we are processing data based on legitimate interests.

Right to Data Portability

You have the right to request that we transfer the data we have collected to another organization, or directly to you, under certain conditions.

Exercising Your Rights

To exercise any of these rights, please contact us using the contact information provided above. We will respond to your request within one month. This period may be extended by two further months where necessary, taking into account the complexity and number of requests.

We may request specific information from you to help us confirm your identity and ensure your right to access your personal data.

Data Transfers

As we are based in Canada, your personal data may be transferred to and processed in Canada. Canada has been recognized by the European Commission as providing an adequate level of data protection. We ensure that any transfers of personal data comply with applicable data protection laws.

Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable laws and regulations. When personal data is no longer needed, we securely delete or anonymize it.

Security

We implement appropriate technical and organizational measures to ensure a level of security appropriate to the risk, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage.

Complaints

If you are located in the EEA and believe that we have not complied with data protection laws, you have the right to lodge a complaint with your local supervisory authority. However, we would appreciate the opportunity to address your concerns before you approach a supervisory authority, so please contact us first.

Updates to This Notice

We may update this GDPR compliance notice from time to time. Any changes will be posted on this page with an updated revision date.

We use cookies to enhance your browsing experience and analyze site traffic. By continuing to use this site, you consent to our use of cookies. Learn more