Introduction and Scope

thymarivelo ("we," "our," or "us") operates as a comprehensive financial reporting platform serving investors across Canada. We understand that your privacy is fundamental to building trust in our financial services.

This privacy policy explains how we collect, use, disclose, and protect your personal information when you use our website at thymarivelo.com, our services, and any related applications or platforms. This policy applies to all users of our services, whether you're browsing our website, using our financial reporting tools, or participating in our educational programs.

By using our services, you agree to the collection and use of information in accordance with this policy and applicable Canadian privacy laws, including the Personal Information Protection and Electronic Documents Act (PIPEDA) and provincial privacy legislation.

Information We Collect

We collect various types of information to provide and improve our financial reporting services. The information we collect falls into several categories:

How We Use Your Information

We use your personal information for legitimate business purposes related to providing financial reporting services and maintaining our platform. Our primary uses include:

Service delivery forms the core of our data usage. We process your financial information to generate accurate investment reports, track portfolio performance, and provide personalized insights based on your investment goals. This includes analyzing market trends, calculating returns, and preparing comprehensive financial statements.

Account management requires us to verify your identity, maintain secure access to your account, and process payments for our services. We also use your contact information to send important updates about your account, service changes, and security notifications.

Customer support relies on your communication history and account details to resolve issues effectively. When you contact us, we may review previous interactions to provide better assistance and maintain continuity in our service.

Legal compliance requires us to maintain certain records and report specific transactions as mandated by Canadian financial regulations. This includes anti-money laundering checks, tax reporting requirements, and regulatory filings when applicable.

Platform improvement involves analyzing usage patterns to enhance our reporting tools, develop new features, and ensure system security. We may aggregate anonymized data to understand user behavior and market trends without identifying individual users.

Information Sharing and Disclosure

We maintain strict controls over how your information is shared and only disclose personal data in specific circumstances outlined below:

Service providers who assist us in operating our platform may receive limited access to your information. This includes cloud hosting providers, payment processors, and technical support teams. All third parties are bound by strict confidentiality agreements and may only use your data for the specific services they provide to us.

Financial institutions and investment platforms may receive relevant data when you explicitly authorize us to integrate with their services. This typically involves read-only access to account information for portfolio tracking purposes, and such access is governed by separate authorization agreements.

Regulatory authorities may require us to disclose information in compliance with Canadian financial regulations. This includes reporting suspicious transactions, responding to court orders, or providing information during regulatory examinations. We limit such disclosures to what is legally required.

Professional advisors including lawyers, accountants, and auditors may access information necessary for their services to our company. These professionals are bound by professional confidentiality obligations and privacy requirements.

We do not sell, rent, or trade your personal information to third parties for marketing purposes. Any data sharing for analytics or research purposes involves anonymized, aggregated information that cannot identify individual users.

Data Security and Protection

Protecting your financial information is our highest priority. We implement multiple layers of security controls designed to safeguard your data against unauthorized access, alteration, disclosure, or destruction.

Technical safeguards include industry-standard encryption for data transmission and storage. All sensitive information is encrypted using AES-256 encryption protocols, and our servers are protected by advanced firewall systems and intrusion detection monitoring.

Access controls ensure that only authorized personnel can view your information, and access is granted on a need-to-know basis. Our staff undergo regular security training and are bound by confidentiality agreements. We maintain detailed logs of all system access and regularly audit these records.

Physical security measures protect our server infrastructure through secure data centers with biometric access controls, surveillance systems, and environmental monitoring. Our backup systems are geographically distributed and subject to the same security standards.

Regular security assessments include penetration testing, vulnerability scans, and third-party security audits. We continuously monitor for potential threats and update our security measures to address emerging risks in the financial services sector.

While we implement robust security measures, no system is completely immune to all potential threats. We maintain cyber insurance and incident response procedures to address any security events promptly and transparently.

Data Retention and Deletion

We retain your personal information only as long as necessary to fulfill the purposes for which it was collected and to comply with legal obligations. Our retention periods vary based on the type of information and applicable regulatory requirements.

Account information is retained for the duration of your active relationship with us plus seven years following account closure, as required by Canadian financial record-keeping regulations. This includes transaction records, communication logs, and identity verification documents.

Financial reports and portfolio data are maintained for ten years to support potential audits, tax reporting, and regulatory inquiries. This timeframe aligns with Canada Revenue Agency requirements and securities law obligations.

Marketing and communication preferences are kept until you withdraw consent or close your account. Technical logs and website usage data are typically retained for two years unless required for ongoing security investigations.

When information reaches the end of its retention period, we securely delete or anonymize it using industry-standard data destruction methods. Electronic data is overwritten multiple times, and physical documents are securely shredded by certified destruction services.

You may request early deletion of certain information, subject to our legal and regulatory obligations. We'll honor such requests where possible and notify you if legal requirements prevent immediate deletion.

International Data Transfers

While we primarily store and process your information within Canada, some of our service providers operate internationally. When we transfer personal information outside Canada, we ensure appropriate safeguards are in place to protect your privacy.

Cloud services and technical infrastructure may involve data processing in the United States or European Union through providers who maintain certification under recognized privacy frameworks. These providers are contractually obligated to maintain Canadian-equivalent privacy protections.

We do not transfer personal information to countries without adequate privacy protections unless specific legal safeguards are implemented, such as standard contractual clauses or binding corporate rules approved by Canadian privacy authorities.

You have the right to request information about any international transfers of your personal data and the safeguards we've implemented to protect your information during such transfers.

Cookies and Tracking Technologies

Our website uses cookies and similar technologies to enhance your browsing experience, remember your preferences, and analyze website performance. We use both essential cookies required for basic functionality and optional cookies for analytics and personalization.

Essential cookies enable core website features like secure login, session management, and form submissions. These cookies are necessary for our services to function properly and cannot be disabled without affecting website functionality.

Analytics cookies help us understand how visitors use our website, which pages are most popular, and how we can improve user experience. This information is collected in aggregate form and doesn't identify individual users.

You can control cookie settings through your browser preferences and may disable non-essential cookies without affecting core website functionality. However, this may limit some personalization features and analytics capabilities.

Changes to This Privacy Policy

We may update this privacy policy periodically to reflect changes in our practices, technology, legal requirements, or other factors. When we make significant changes, we'll notify you through your account dashboard, email, or prominent website notices.

Minor updates that don't materially affect your rights or our data handling practices will be posted on our website with an updated effective date. We encourage you to review this policy regularly to stay informed about how we protect your information.

If changes require new consent for data processing activities, we'll seek your explicit approval before implementing such changes. You always have the option to discontinue using our services if you disagree with policy modifications.