Privacy Policy

Who We Are and What This Policy Covers

floroasium operates at 1562 Lakeridge Dr, Regina, SK S4X 4L6, Canada. We provide budget software tools designed to help individuals and businesses manage their finances more effectively. This policy applies to all data we collect through our website at floroasium.world, our software applications, and any related services we offer.

When we say "personal information," we mean any data that could identify you as an individual. That might be your name and email address, or it could be usage patterns that are uniquely yours. We take all of it seriously.

Information We Collect

We're upfront about what we collect. Here's what we gather and why we need it:

We don't collect information we don't need. If you're just browsing our public website without creating an account, we only gather basic technical data that most websites collect.

How We Use Your Information

Your data serves specific purposes. We don't use it for random marketing campaigns or sell it to third parties. Here's what we actually do with it:

• Service Delivery: We use your financial data to power our budgeting tools, generate reports, and provide the features you signed up for. This is the core reason we collect this information.
• Account Management: Your contact information helps us manage your subscription, process payments, and send you important updates about your account or our services.
• Customer Support: When you reach out for help, we use your information to understand your issue and provide effective solutions.
• Product Improvement: Usage data shows us which features work well and which need refinement. This helps us build better software.
• Security and Fraud Prevention: Technical information helps us identify suspicious activity and protect your account from unauthorized access.
• Legal Compliance: Sometimes we're required by law to retain certain records or respond to valid legal requests.

Your Rights Under Canadian Privacy Law

Canada's Personal Information Protection and Electronic Documents Act (PIPEDA) gives you specific rights over your personal information. We comply with these requirements and have processes in place to help you exercise these rights.

To exercise any of these rights, contact us at help@floroasium.world or call +1 705 569 3928. We'll verify your identity before processing requests that involve accessing or changing your data.

Data Sharing and Third Parties

We don't sell your personal information to anyone. Period. But we do work with certain service providers who help us operate our business. Here's who sees your data and why:

Service Providers We Work With

• Payment Processors: We use third-party payment services to handle credit card transactions securely. They receive only the payment information necessary to process your subscription.
• Cloud Hosting Providers: Our software and data are hosted on secure cloud infrastructure. These providers maintain the servers but don't access your actual budget data.
• Email Service Providers: We use email platforms to send you account notifications and support responses. They handle delivery but don't use your information for their own purposes.
• Analytics Tools: We use privacy-focused analytics to understand how our software is used. This data is anonymized and aggregated.
• Customer Support Tools: When you contact support, we use ticketing systems to manage and track your requests efficiently.

All our service providers are bound by strict confidentiality agreements and are required to handle your data in compliance with Canadian privacy laws. We only share the minimum information necessary for them to provide their specific service.

Legal Disclosures

We may disclose your information if required by law, such as in response to a valid court order or subpoena. We'll notify you of such requests unless legally prohibited from doing so. We may also disclose information if we believe in good faith that it's necessary to protect our rights, your safety, or the safety of others.

How We Protect Your Data

Security isn't just about technology—though we use plenty of that. It's about creating multiple layers of protection so your financial information stays private.

• Encryption: All data transmitted between your device and our servers is encrypted using industry-standard TLS protocols. Your financial data is also encrypted at rest in our databases.
• Access Controls: Only authorized employees who need access to perform their jobs can view personal information. We use role-based access controls and multi-factor authentication.
• Regular Security Audits: We conduct regular security assessments and penetration testing to identify and fix vulnerabilities before they can be exploited.
• Secure Development Practices: Our development team follows secure coding guidelines and conducts security reviews before deploying new features.
• Incident Response Plan: We have procedures in place to detect, respond to, and recover from security incidents quickly.
• Employee Training: All team members receive regular privacy and security training to ensure they understand their responsibilities.

While we implement strong security measures, no system is completely immune to attacks. If we experience a data breach that affects your personal information, we'll notify you and relevant authorities as required by Canadian law.

Data Retention and Deletion

We don't keep your data forever. Here's how long we retain different types of information:

• Active Account Data: While your account is active, we retain all your budget information and usage data to provide our services.
• After Account Closure: If you close your account, we'll delete your financial data within 90 days. We may retain basic account information (name, email, transaction history) for up to seven years to comply with financial record-keeping requirements.
• Communication Records: Support tickets and correspondence are retained for three years to help us improve our service and resolve any disputes.
• Technical Logs: Server logs and technical data are typically deleted after 12 months unless needed for security investigations.
• Marketing Data: If you opt out of marketing communications, we'll keep your email address on a suppression list to ensure we don't accidentally contact you again.

You can request early deletion of your data by contacting us directly. We'll honor these requests except where we have legitimate legal obligations to retain certain information.

Cookies and Tracking Technologies

Like most websites, we use cookies and similar technologies. These are small files stored on your device that help our site function properly and remember your preferences.

Types of Cookies We Use

• Essential Cookies: These are necessary for our website to work. They handle things like keeping you logged in and remembering your security settings.
• Functional Cookies: These remember your preferences, like language settings or display options, to make your experience more convenient.
• Analytics Cookies: We use these to understand how people use our site so we can improve it. The data is anonymized and aggregated.
• Performance Cookies: These help us identify technical issues and monitor our site's performance to ensure it runs smoothly.

You can control cookies through your browser settings. Note that disabling certain cookies may affect your ability to use some features of our software. We don't use advertising cookies or track you across other websites.

International Data Transfers

Our servers are primarily located in Canada, but we use some cloud services that may store data in other jurisdictions. When your data is transferred outside Canada, we ensure that appropriate safeguards are in place, such as standard contractual clauses or adequacy decisions.

If you're accessing our services from outside Canada, please understand that your information will be transferred to and processed in Canada, where privacy laws may differ from those in your country.

Children's Privacy

Our services are not designed for or directed at children under 13 years of age. We don't knowingly collect personal information from children. If you're a parent or guardian and believe your child has provided us with personal information, please contact us immediately and we'll delete that information from our systems.

Changes to This Privacy Policy

We review and update this policy periodically to reflect changes in our practices or legal requirements. When we make significant changes, we'll notify you by email or through a prominent notice in our software at least 30 days before the changes take effect.

Continued use of our services after changes become effective means you accept the updated policy. If you don't agree with changes, you can close your account before they take effect.

Questions and Complaints

If you have questions about this privacy policy or concerns about how we handle your data, we want to hear from you. Most issues can be resolved quickly through direct communication with our team.

If you're not satisfied with our response, you have the right to file a complaint with the Office of the Privacy Commissioner of Canada. However, we hope you'll give us the opportunity to address your concerns first.