brand logobrand name

Privacy Policy

Your Data, Our Commitment

The Maestro Minds values your privacy and is dedicated to safeguarding your personal information. This policy explains what we collect, how we use it, and your rights. By using our Services, you agree to these terms.

Scope & Applicability

This Privacy Policy applies to all personal data we collect when you use our mobile or web applications (“Services”). It governs data collected directly via registration, uploads, in‑app interactions, and third‑party integrations. It does NOT apply to third‑party sites, consultants’ own websites, or other services even if linked from our platform.

Information We Collect

- Identity & Contact Data: Name, email address, phone number (via forms or Google/Apple Sign‑In) - Profile & Case Data: Immigration status, personal/work details, documents you upload (passports, visas) - Payment Data: Billing info processed by Stripe (we never store full card numbers) - Usage & Analytics Data: Feature usage, session duration, behavior insights via Google Analytics - Device & Technical Data: IP address, device type, operating system, browser version - Communications Data: Support tickets, AI chat transcripts, email correspondence

Legal Basis for Processing

We rely on the following grounds for processing your data under PIPEDA (and where applicable GDPR/CCPA): - Consent: You agree when registering, uploading documents, or enabling analytics. - Contractual Necessity: To deliver Services, manage bookings, and process payments. - Legitimate Interests: To improve our platform, prevent fraud, and secure our systems. - Legal Obligations: To comply with regulatory requirements (e.g., tax, anti‑money laundering).

How We Use Your Information

- Service Delivery: Match you with consultants, power AI chat, manage bookings & payments. - Personalization: Provide tailored recommendations, timelines, and content. - Communications: Send confirmations, reminders, policy updates, and support replies. - Analytics & Improvement: Analyze usage, run A/B tests, monitor performance, detect fraud. - Compliance: Fulfill legal and regulatory obligations under PIPEDA and other laws.

Sharing & Disclosure

We share data only as necessary under strict controls: • Stripe: Payment processing (no card data stored by us) • OpenAI: AI‑generated chat responses (minimized/anonymized data) • Firebase & AWS: Secure document storage & hosting • Google Analytics: Anonymized usage analytics • Your Chosen Consultant: Case details you authorize us to share • Legal & Safety: To comply with valid legal requests, protect rights, prevent fraud • Business Transfers: In the event of merger, acquisition, or sale (under confidentiality obligations)

International Data Transfers

Your data may be stored or processed in Canada, the U.S., or other jurisdictions where our providers operate. We implement safeguards such as Standard Contractual Clauses or similar measures to ensure adequate protection of your personal data.

Data Storage & Retention

- Storage Locations: Google Firebase for documents; MongoDB on secure servers for profile & usage data. - Retention Period: We keep data only as long as needed to provide Services or as required by law. - Deletion: Upon account closure, we remove your data within 30 days—except where retention is legally mandated.

Your Rights & Choices

Under applicable laws, you have the right to: - Access: Request a copy of your personal data. - Correction: Update or amend inaccuracies. - Deletion: Erase your account & data (subject to legal exceptions). - Restriction: Limit certain types of processing. - Portability: Receive your data in a structured, machine‑readable format. - Object: Opt‑out of direct marketing uses. To exercise these rights, contact us at vijay@themaestrominds.com. We will verify your identity before fulfilling requests.

Security Measures

We employ industry‑standard safeguards to protect your data: - Encryption: TLS/HTTPS in transit; AES‑256 at rest. - Authentication: Multi‑factor authentication for administrative access. - Access Controls: Role‑based permissions, logging, and regular audits. - Incident Response: In event of breach, notify users & regulators within 72 hours.

Cookies & Tracking

We use cookies and similar technologies for: - Essential Functionality: Session management, security. - Analytics: Google Analytics to understand usage (you may opt out by contacting us). - Marketing: With your consent, to serve relevant ads on third‑party platforms.

Children’s Privacy

Our Services are not intended for individuals under 18. We do not knowingly collect personal data from minors. If you believe we have collected a minor’s data, please contact us to request deletion.

Updates to This Policy

We may revise this Privacy Policy to reflect changes in law or our practices. Significant updates will be communicated by email, and the “Last Updated” date will be revised. Continued use of our Services constitutes acceptance of the updated policy.

Contact Us

If you have questions, concerns, or wish to exercise your rights, please contact: The Maestro Minds 128 King Street North, Waterloo, ON, Canada Email: vijay@themaestrominds.com Phone: +1 (647) 978‑3054