Privacy Policy

Municipal Privacy Policy

The Municipality of Highlands East protects the privacy of its inhabitants and employees as set out by the Municipal Freedom of Information and Privacy Protection Act. View our Freedom of Information page to learn more about the FOI process.

Website Privacy Policy

1. About Us

The Municipality of Highlands East (“us”, “we” or “our”) operates the website www.highlandseast.ca (hereinafter referred to as the “Service”). Your privacy is important to us.

This Privacy Notice informs you of our policies regarding our collection, use, and disclosure of Personal Data to third parties, and how we protected this information when you use our Service and the choices you have associated with that data.

By using the Service, you agree to the collection and use of information in accordance with this Privacy Notice.

2. What is Personally Identifiable Information (PII) / Personal Data?

Personal data or PII means any information relating to a person who can be identified either directly or indirectly by that information; it may include but is not restricted to name, address, email address, phone number, credit/debit card number, IP address, location data and purchase history.

3. What Personal Data Do We Collect?

We collect several different types of information for various purposes to provide and improve our Service to you.

 a. Personal Data

While using our Service, we may collect certain Personal Data about you which may include, but is not limited to:

  • Email address
  • First name and last name
  • Phone number
  • Address, State, Province, Postal Code, City
  • Cookies and Usage Data
  • Billing address
  • Payment information (including credit card numbers)
  • Information about you that we received from list the parties from whom you may be receiving information such as if you buy marketing lists from third parties, combined with information we already have about you
  • Information about you that you share or make visible on the Internet. We may combine such information with information we already have about you.

We may collect non-personal information and it may be aggregated with other information. If we combine your non-personal information with personal information, the combined information will be treated as personal information.

You do not have to provide us with Personal Data if you do not want to; however, that may limit your ability to use certain functions or to request certain services or information.

b. Tracking Technologies

We use various technologies to collect Personal Data about visitors to our website. These technologies include the following:

 

i. Usage Data

We may collect information on how the Service is accessed and used ("Usage Data"). This Usage Data may include information such as your computer's Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data. We use IP addresses to collect broad geographic information on the visitors to our website, and to optimize our website. We do not link IP addresses to personally identifiable information.

 

ii. Tracking Cookies Data & Web Beacons

We use cookies and similar tracking technologies to track the activity on our Service and we hold certain information. Cookies are files with a small amount of data which may include an anonymous unique identifier. Cookies are sent to your browser from a website and stored on your device.

We also use web beacons, which are small strings of code that are placed in a website page or in an email message. They are sometimes called “clear GIFs” (Graphics Interchange Format) or “pixel tags”. When you visit a particular page, web beacons notify us of your visit. Since web beacons are used in combination with cookies, if you disable cookies then the web beacons will only detect an anonymous site visit. When used in an email, web beacons enable us to know whether you have received the email.

You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of our Service. For further information on cookies and how to switch them off see www.allaboutcookies.org.

 

iii. Analytics and other Tracking Technologies

We may employ third party companies and individuals to facilitate our Service ("Service Providers") to monitor and analyze the use of our Service. We may receive reports based on the use of tracking technologies on an individual and aggregated basis. For example we use the following:

  • Google Analytics
  • eSolutions
iv. How We Respond to “Do Not Track” Signals

Some web browsers have a “Do Not Track” feature. This feature allows you to tell websites you visit that you do not want to have your online activity tracked over time and across websites. These features are not yet uniform across browsers. Our Service is not currently set up to respond to those signals.

4. How Will We Use Your Personal Data?

We use the collected data for various purposes:

  • to provide and maintain the Service.
  • to notify you about changes to our Service.
  • to allow you to participate in interactive features of our Service when you choose to do so.
  • to provide customer care and support.
  • to provide analysis or valuable information so that we can improve the Service.
  • to monitor the usage of the Service.
  • to detect, prevent and address technical issues.
  • when used in line with the preferences you have shared with us, provide you with information or advertising related to our products of services.

5. Lawful Grounds for Processing

To process your Personal Data lawfully we need to rely on one or more valid legal grounds. The grounds we may rely upon for the processing of your Personal Data include:

  • Your consent to particular processing activities. For example, where you have consented to us using your information for marketing purposes;
  • Your request for content, products or services necessitating steps including processing of your Personal Data to be taken prior to entering into contract with you and any processing that is necessary for the performance of such contract;
  • Legitimate interests we pursue as a business, except where such interests are overridden by your interests and fundamental rights; and
  • Compliance with any legal obligation to which we are subject, for example, the processing for the purposes of complying with applicable law.

6. Under What Circumstances Could We Disclose Your Personal Data?

a. Legal Requirements

There are circumstances where we may wish to disclose or are compelled by law to disclose your Personal Data to third parties. This will only take place in accordance with the applicable law. These scenarios include disclosure to:

  • comply with a legal obligation;
  • protect and defend our rights or property;
  • prevent or investigate possible wrongdoing in connection with the Service;
  • protect the personal safety of users of the Service or the public; or
  • protect against legal liability.

b. Service Providers

  • We may employ Service Providers, to provide the Service on our behalf, to perform Service-related services or to assist us in analyzing how our Service is used.
  • These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.

7. Security Safeguards and Accountability

The security of your Personal Data is important to us. We have established appropriate physical, technical, and administrative safeguards to protect the Personal Data we collect from or about our users or visitors to our website. We will protect your personal information with appropriate security safeguards and safety measures, whether recorded on paper or captured electronically, against unauthorized access, disclosure, or misuse. We also restrict access to personal information to our employees, contractors, and agents who need to know the information to process it for us, and who are subject to confidentiality obligations. Any sensitive personal information (e.g., credit/debit card number) will be transmitted in an encrypted form using SSL encryption. Notwithstanding our security safeguards, remember that no method of transmission over the Internet or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security. If you have any questions about security or have reason to believe your interaction with us is no longer secure (for example, you feel the security of any account you might have with us has been compromised), you must immediately notify us of the problem by contacting us.

8. Retention of Personal Data

Your Personal Data will be retained until your last use of our Services, unless longer retention is required by applicable law, or where we have a continued legitimate and lawful purpose to do so. However, we will not retain beyond this period any of your Personal Data that is no longer required for the purposes set out in this Privacy Notice. The retention of your Personal Data will be subject to periodic review.

We may keep an anonymized form of your Personal Data, which will no longer refer to you, for statistical purposes without time limits, to the extent that we have a legitimate and lawful interest in doing so.

9. International Transfer of Personal Data

Your information, including Personal Data, may be transferred to, and maintained on, computers located outside of your province, country or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction. Your consent to this Privacy Notice followed by your submission of such information represents your agreement to that transfer.

We will take all steps reasonably necessary to ensure that your Personal Data is treated securely and in accordance with this Privacy Notice and no transfer of your Personal Data will take place to an organization or a country unless there are adequate controls in place including the security of your Personal Data and other personal information.

10. Your Rights

You can contact us directly any time through the address listed in the Contact Information section below to update your personal information or make another type of request regarding the information you know or believe we hold about you. Here are some rights that you may have according to where you are located:

  • Right To Make Subject Access Request (SAR). Subject to applicable law, you may receive information about, request copies, or review in person the Personal Data we hold about you. You may be required to submit a proof of your identity and, as allowed by applicable laws, we may charge you a reasonable fee for you to obtain this information.
  • Right To Rectification, Amendment Or Deletion. Subject to applicable law, you may request that we rectify any inaccurate and/or complete any incomplete Personal Data. You have also have the right to request that we amend or delete your personal information.
  • Right To Withdraw Consent. You may, as permitted by applicable law, withdraw your consent to the processing of your Personal Data at any time. Such withdrawal will not affect the lawfulness of processing based on your previous consent. Please note that if you withdraw your consent, you may not be able to benefit from certain service features for which the processing of your Personal Data is essential.
  • Right To Object To Processing, Including Automated Decision Making. You may, as permitted by applicable law, request that we stop processing your Personal Data. Subject to applicable law, if at any time the Services use automated decision making to process Personal Data, you have the right to object to the use of your Personal Data.
  • Right to Make Disclosure Accounting Request. Subject to applicable law, you have the right to request and receive a list of certain disclosures made of your personal information. If you request this list more than once in a 12-month period, we may charge you a reasonable fee as allowed by law to respond to any additional request.
  • Right to erasure. You may request that we erase your Personal Data and we will comply, unless there is a lawful reason for not doing so. For example, there may be an overriding legitimate ground for keeping your Personal Data, such as, a legal obligation that we have to comply with, or if retention is necessary for us to comply with our legal obligations.
  • Right to data portability. In certain circumstances, you may request that we provide your Personal Data to you in a structured, commonly used and machine readable format and have it transferred to another provider of the same or similar services. We will comply with such transfer as far as it is technically feasible. Please note that a transfer to another provider does not imply erasure of your Personal Data which may still be required for legitimate and lawful purposes.
  • Your right to lodge a complaint with the supervisory authority. We suggest that you contact us about any questions or if you have a complaint in relation to how we process your personal data. However, you do have the right to contact the relevant supervisory authority directly.

11. Links to Other Sites

Our Service may contain links to other sites that are not operated by us. If you click a third party link, you will be directed to that third party's site. We strongly advise you to review the Privacy Notice of every site you visit.

We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.

12. Children's Privacy

Our Service does not address anyone under the age of 18 ("Children").

We do not knowingly collect personally identifiable information from Children. If you are a parent or guardian and you are aware that your Child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from Children without verification of parental consent, we take steps to remove that information from our servers.

13. Social Media Connection

You may choose to enable an interface, share with others, or log in to the Services via various social media or social networking services such as Instagram, Facebook, or Twitter (“Social Networking Services”). By integrating these Social Networking Services into the Services, we can offer you a richer and more personalized experience with our products and services. When you connect your current account to a social media account, we may collect certain personal information you have provided to the Social Networking Service. For example, when you log in with your Facebook credentials, we may collect personal information from your Facebook profile, such as your email address, profile picture, and friend list.

14. Changes to This Privacy Notice

We may update our Privacy Notice from time to time. We will notify you of any changes by posting the new Privacy Notice on this page and updating the effective date at the top of this Privacy Notice. You are advised to review this Privacy Notice periodically for any changes. Changes to this Privacy Notice are effective when they are posted on this page. Your continued use of our website will be regarded as acceptance of our practices around privacy and personal information.

15. Data Protection Officer (or Privacy Office) Contact Information

If you have any privacy or security questions or concerns about this Privacy Notice or our information handling practices, please contact us.