Privacy Policy

Effective Date: June 6, 2025

1. Introduction

Biobi Health Group Inc. (the "Website") is committed to protecting the privacy and confidentiality of the personal information of its visitors and customers. This Privacy Policy outlines how we collect, use, disclose, process, and manage your personal information when you visit or interact with our Website, including our educational talks and consultation services.

By accessing or using our Website, you agree to the collection, use, and disclosure of your personal information in accordance with this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not use our Website.

We adhere to the principles of the Personal Information Protection Act (PIPA) of British Columbia and, where applicable, the Personal Information Protection and Electronic Documents Act (PIPEDA) of Canada, which set out rules for how private sector organizations collect, use, and disclose personal information.

2. What is Personal Information?

"Personal information" means information about an identifiable individual, such as name, address, email address, phone number, health information, or other information that can be used to identify you. It does not include business contact information (name, title, business address, or telephone number of an employee of an organization) or aggregated information that cannot be associated with a specific individual.

3. Collection of Personal Information

We collect various types of personal information from and about users of our Website, including:

a. Information You Provide Directly to Us:

Contact Information: Name, email address, phone number, and mailing address when you register for an account, subscribe to our newsletter, request information, or contact us.
Health Information: Information related to your health or well-being that you choose to share during consultations or when completing intake forms. (Please note: This is highly sensitive. Ensure your systems for collecting and storing this are robust and secure).
Payment Information: Billing details, such as credit card numbers and billing addresses, when you make purchases (e.g., for consultations or educational talks). Please note that payment processing is typically handled by third-party payment processors, and we do not store your full credit card details on our servers.
Account Information: Username, password, and preferences when you create an account on our Website.
Communications: Records and copies of your correspondence with us (e.g., emails, chat logs, consultation notes).
User Contributions: Information you post on public areas of our Website, such as comments on blog posts or forum discussions.

b. Information Collected Automatically (Usage Data): As you navigate through and interact with our Website, we may use automatic data collection technologies to gather certain information about your equipment, Browse actions, and patterns, including:

IP Address: Your Internet Protocol address, which identifies your computer on the internet.
Browser Type and Operating System: Information about the web browser and operating system you are using.
Referral Source: The website or link that led you to our Website.
Pages Visited: Details of your visits to our Website, including the pages you view, the time and date of your visit, and the time spent on those pages.
Interaction Data: Information about how you interact with our Website, such as clicks, scrolling, and search queries.

c. Information from Third Parties: We may receive personal information from third parties, such as analytics providers (e.g., Google Analytics), social media platforms, or payment processors, in accordance with their privacy policies.

4. How We Collect Information

We collect information through:

Direct Interactions: When you fill in forms, register for services, make purchases, or communicate with us.
Automated Technologies: As you interact with our Website, through technologies like cookies, web beacons, and similar technologies.
Third Parties: From our business partners or service providers.

5. How We Use Your Personal Information

We use the personal information we collect for the following purposes:

To Provide Services: To deliver educational talks, conduct consultations, process payments, and fulfill your requests for products or services.
To Manage Your Account: To create and manage your user account, provide customer support, and communicate with you about your account.
To Improve and Personalize: To improve our Website, products, and services, and to personalize your experience on our Website (e.g., showing relevant content based on your interests).
For Communication: To send you newsletters, promotional materials, updates, or other information that may be of interest to you, in accordance with your preferences and applicable anti-spam laws (e.g., CASL).
For Analytics and Research: To understand how users interact with our Website, track trends, and gather demographic information for internal research and analysis.
For Security and Fraud Prevention: To maintain the security and integrity of our Website and to prevent fraud and other illegal activities.
To Comply with Legal Obligations: To meet our legal and regulatory requirements, including record-keeping and reporting obligations.
For Internal Business Purposes: Such as data analysis, audits, developing new products and services, identifying usage trends, and determining the effectiveness of our promotional campaigns.

6. Disclosure of Your Personal Information

We may disclose your personal information in the following circumstances:

Service Providers: To third-party service providers who perform functions on our behalf, such as payment processing, website hosting, data analysis, email delivery, IT services, and customer service. These service providers are contractually obligated to protect your personal information and use it only for the purposes for which we disclose it to them.
Business Transfers: In connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company.
Legal Requirements: When required by law, court order, or governmental regulations, or in response to a valid subpoena or other legal request.
To Protect Our Rights: To enforce our Terms & Conditions, or to protect the rights, property, or safety of Biobi Health Group Inc., our users, or others.
With Your Consent: We may disclose your personal information for any other purpose with your explicit consent.
Aggregated or Anonymized Data: We may share aggregated or de-identified information that cannot reasonably be used to identify you with third parties for various purposes, including marketing, analytics, and research.

We do not sell, rent, or trade your personal information to third parties for their direct marketing purposes.

7. Data Retention

We will retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, or as required by applicable laws and regulations. When your personal information is no longer needed, we will securely destroy or de-identify it.

8. Security of Your Personal Information

We have implemented reasonable physical, technical, and administrative measures designed to protect your personal information from accidental loss and from unauthorized access, use, alteration, and disclosure. Our Electronic Medical Rcords vendor Arya Health protects patient data through robust security and strict adherence to Canadian privacy laws like PIPEDA and BC's PIPA. They employ state-of-the-art encryption for data at rest and in transit, implement stringent access controls, and use advanced network security like firewalls. Regular penetration testing and SOC 2 Type II certification validate their security. Their secure Patient Portal enables encrypted, password-protected communication. Arya's integrated EHR system centralizes data, enhancing overall security, with continuous employee training and an incident response plan ensuring data integrity and rapid breach mitigation. Arya Health, a Canadian EHR system, prioritizes patient data protection through comprehensive security and privacy measures. They adhere to Canadian privacy laws like PIPEDA and BC's PIPA. Key safeguards include state-of-the-art encryption for data at rest and in transit, stringent access controls, robust network security (firewalls, intrusion detection), and regular third-party penetration testing and SOC 2 Type II audits. Their secure Patient Portal uses encrypted, unique logins for confidential information sharing, and they maintain an incident response plan to address any breaches.

For health-related information, we employ enhanced security protocols to protect this sensitive data.

While we strive to protect your personal information, no method of transmission over the internet or method of electronic storage is 100% secure. Therefore, we cannot guarantee the absolute security of your personal information.

9. Your Privacy Rights

As a resident of British Columbia, you have certain rights regarding your personal information under PIPA, including:

Right to Access: You have the right to request access to the personal information we hold about you.
Right to Correction: You have the right to request corrections to any inaccuracies in your personal information.
Right to Withdraw Consent: You have the right to withdraw your consent to the collection, use, or disclosure of your personal information at any time, subject to legal or contractual restrictions and reasonable notice. Please note that withdrawing consent may affect your ability to use certain features of the Website or receive certain services.
Right to Complain: You have the right to complain about our privacy practices to the Office of the Information and Privacy Commissioner for British Columbia (OIPC BC) if you believe we have handled your personal information in a manner that violates PIPA.

To exercise any of these rights, please contact us using the contact information provided in Section 13 below. We may require you to verify your identity before processing your request.

10. Minors' Data Collection

Our Website is not intended for individuals under the age of 16. We do not knowingly collect personal information from minors without verifiable parental consent. If we learn that we have collected or received personal information from a minor without parental consent, we will take steps to delete that information as quickly as possible. If you believe we might have any information from or about a minor, please contact us at jeff@biobi.ca.

11. Cookies and Other Tracking Technologies

We use cookies and similar tracking technologies (like web beacons and pixels) to enhance your experience on our Website.

Cookies: Small text files placed on your device by a web server. They help us remember your preferences, understand how you use our Website, and deliver more relevant content.
Web Beacons: Small graphic images (also known as "pixel tags" or "clear GIFs") that may be included on our Website pages or emails to help us track user activity and measure the effectiveness of our marketing efforts.

You have the ability to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer. However, if you choose to decline cookies, you may not be able to fully experience the interactive features of our Website.

12. Third-Party Websites

Our Website may contain links to third-party websites that are not operated by us. We have no control over, and assume no responsibility for, the content, privacy policies, or practices of any third-party websites or services. We encourage you to review the privacy policies of any third-party sites you visit.

13. Changes to Our Privacy Policy

It is our policy to post any changes we make to our Privacy Policy on this page. If we make material changes to how we treat our users' personal information, we will notify you through a notice on the Website homepage or by email to the primary email address specified in your account, if applicable. The date the Privacy Policy was last revised is identified at the top of the page. You are responsible for ensuring we have an up-to-date active and deliverable email address for you, and for periodically visiting our Website and this Privacy Policy to check for any changes.

14. Contact Information

To ask questions or comment about this Privacy Policy and our privacy practices, or to exercise your privacy rights, please contact us at jeff@biobi.ca.