CPA4IT takes your privacy rights very seriously. We are committed to transparently describing our privacy practices. CPA4IT operates in compliance with all applicable Canadian privacy laws. We are governed by the Rules of Professional Conduct of our profession.
1. Collection of Information
(a) Collection from Clients. We collect and use personal, business and financial information from our clients in the normal course of our business. The information is used to assist us in the provision of services, which may include, without limitation, the preparation of financial statements, tax returns, financial planning, business planning, succession planning, business valuations and other consulting services, as well as the preparation and filing of other returns as may be required by various governmental and regulatory agencies.
(b) Collection from Third Parties. CPA4IT collects information only by lawful and fair means. Wherever possible, CPA4IT collects personal, business, and financial information directly from the individual, but we may obtain such information from other sources, such as governmental agencies and financial institutions, or the individual’s employer in the event that CPA4IT acts for an individual. CPA4IT seeks written consent where possible (we will also accept oral consent) for the personal, business, and financial information that it collects uses, and discloses. CPA4IT may use personal, business, or financial information without explicit consent when, for instance, CPA4IT needs to contact or respond to requests from governmental agencies such as Canada Revenue Agency, regulatory bodies, as well as CPA4IT’s governing professional organization.
(c) Collection from Related Parties. We understand that in the course of our review of your information, we may become party to personal, business, or financial information that you have collected from your employees, customers, or other relations. You represent that: (i) you have the right and authority or have obtained all necessary consents and approvals to provide any information, including any personal, business, or financial information of another individual or entity that is provided by you to CPA4IT; and (ii) you have complied and will comply with all applicable law in connection with the collection, use and disclosure of all personal, business and financial information and the provision of such information to CPA4IT complies with all applicable law.
2. Disclosure of Information
(b) Subsidiaries, Affiliates & Service Providers. We may use the services of subsidiaries, affiliates and third party service providers (collectively, “Parties”) in connection with our provision of services, including, without limitation, for off-premise data hosting. We may disclose your personal, business or financial information to the Parties in the course of our use of their services. We take care to use Parties that we believe are reputable and capable of performing the services we require of them, including, without limitation, the handling of confidential information and the compliance with all applicable laws.
(d) Sale of Business. We may disclose your personal, business or financial information to the acquiror or its agents in the course of the sale of our business. If we do this, the disclosure will be subject to confidentiality arrangements customary in such transactions.
(e) Storing and Processing Your Information. In some cases, information that we collect may be stored or processed outside of the jurisdiction it is received. When that occurs, we continue to protect the information with appropriate safeguards and data export requirements, but it may be subject to the legal jurisdiction of those countries and governmental authorities in those countries.
3. Retention and Safeguarding
(a) Retention.In order to preserve the information for governmental and professional purposes, and to serve you better, we will retain and safeguard your information for as long as we determine is necessary, in accordance with applicable law, even if you are no longer a client.
(b) Safeguarding. We respect the privacy of our client’s information and we strive to protect such information by putting in place a range of technical and organizational measures to safeguard and secure such information. We are continuously utilizing security measures to protect our client’s information from unauthorized access or against loss, misuse, or alteration. For example, CPA4IT stores personal information in electronic and physical files to which access is restricted. Unfortunately, no data transmission over the Internet or by electronic mail can be guaranteed to be 100% secure. As a result, CPA4IT cannot ensure or warrant the security of any information transmitted electronically or otherwise.
4. Third Party Service Providers
5. Limits for Collecting, Using, Disclosing and Retaining Information
In all cases, CPA4IT limits the amount and type of information collected to only the personal, business, and financial information that is required to provide the client with the applicable advice and services for which CPA4IT was formally engaged. Every one of our employees, agents, representatives, and contractors is responsible for maintaining the privacy of all personal, business, and financial information to which they have access. It is mandatory that such individuals sign an agreement concerning their acceptance of this responsibility.
6. Accuracy of and Access to Information Collected
CPA4IT makes commercially reasonable efforts to keep personal, business, and financial information as accurate, complete, current, and relevant as necessary for the purpose of providing accounting and other related services to clients. We are committed to maintaining accurate information and urge you to notify us promptly of any changes in your personal, business, or financial information. With reasonable notice, our clients may review their personal, business, or financial information and request corrections if necessary.
If you wish to discuss our firm’s policies and procedures regarding your privacy, please contact CPA4IT by email at firstname.lastname@example.org