Privacy Policy

PRIVACY POLICY 

Effective date: May 2026 

Date of last update: May 2026 

 

  1. General Information

 

1.1 Introduction 

This privacy policy (the "Policy") describes the practices of G2S Tobeq Inc. (hereinafter the "Organization") regarding the collection, use, disclosure, retention, anonymization, and destruction of personal information, i.e., any information that relates to an individual and allows that individual to be identified, directly or indirectly (the "Personal Information"). 

 

1.2 Scope 

This Policy applies to anyone who visits or uses the Organization's websites, digital platforms, applications, or services (collectively, the "Services"). 

 

Unless otherwise specified, this Policy does not apply to employees' personal information, which is governed by separate internal policies and procedures. 

 

1.3 Consent 

By using the Services, you consent to the Organization processing your Personal Information in accordance with this Policy and applicable laws. You may withdraw your consent at any time, subject to applicable legal or contractual obligations. 

 

1.4 Cookies 

The Services may use cookies and similar technologies. Information about these cookies is described in a cookie appendix or in a separate policy accessible through the Services. 

 

You can manage your cookie preferences using the consent management banner provided for this purpose. 

 

  1. Collection of personal information

 

2.1 Means of collection 

The Organization may collect Personal Information by the following means: 

  • automatically when using the Services (e.g., technical data); 
  • through electronic or paper forms; 
  • by email or other communications; 
  • through cookies; 
  • by third parties acting on behalf of the Organization. 

 

2.2 Profiling, identification, and location 

Certain features of the Services may enable the profiling, identification, or location of users, in particular through the use of cookies or analytical tools, when the required consent has been obtained. 

 

2.3 Categories of personal information collected 

Depending on the context, the Organization may collect, among other things: 

  • identifying information (e.g., last name, first name); 
  • contact information (e.g., email address, phone number); 
  • financial information (e.g., payment information, where applicable); 
  • technical information (e.g., IP address, device type, browser); 
  • any other information voluntarily provided by the individual concerned. 

 

2.4 Accuracy of information 

Data subjects are responsible for the accuracy of the Personal Information they provide to the Organization and must inform the Organization of any relevant changes. 

 

  1. Use of personal information

 

The Organization uses Personal Information only for specific, explicit, and legitimate purposes, including: 

  • offering and managing the Services; 
  • communicating with users; 
  • managing customer relations; 
  • processing requests and complaints; 
  • improve the Services and user experience; 
  • ensure security and prevent fraud; 
  • comply with legal and regulatory obligations. 

 

  1. Disclosure of personal information

 

4.1 Disclosure to third parties 

The Organization may disclose Personal Information to third parties, including: 

  • service providers; 
  • technology partners; 
  • professional advisors; 
  • competent authorities, when required by law. 

 

These third parties are required to protect Personal Information in accordance with contractual obligations and applicable laws. 

 

4.2 Disclosure outside Quebec 

In certain cases, Personal Information may be disclosed or hosted outside Quebec. The Organization implements reasonable measures to ensure adequate protection, without however guaranteeing a level of protection identical to that provided by Quebec laws. 

 

  1. Retention, anonymization, and destruction

 

Personal Information is retained only for as long as necessary to fulfill the purposes for which it was collected, subject to applicable legal requirements. 

 

Once this period has elapsed, the information is securely destroyed or anonymized. 

 

  1. Security measures

 

The Organization implements reasonable administrative, technical, and physical measures to protect Personal Information from loss, theft, unauthorized access, use, or disclosure. 

 

Despite these measures, no method of transmission or storage is completely secure. Therefore, the Organization cannot guarantee the absolute security of Personal Information and declines all responsibility in the event of an incident resulting from circumstances beyond its reasonable control. 

 

  1. Rights of data subjects

 

Subject to applicable laws, any individual may: 

  • access their Personal Information; 
  • request its correction; 
  • withdraw their consent; 
  • file a complaint with the Organization or the Commission d'accès à l'information. 

 

  1. Privacy Incidents

 

The Organization has procedures in place to detect, manage, and document privacy incidents, and to notify affected individuals and the relevant authorities when required by law. 

 

  1. Links to third-party sites

 

The Services may contain links to third-party sites. The Organization is not responsible for the privacy practices of these sites. 

 

  1. Policy Changes

 

The Organization reserves the right to modify this Policy at any time. The current version is the one published on the Services. 

 

  1. Data Protection Officer

 

The contact details of the Data Protection Officer are provided separately or are available upon request. 

 

  1. Applicable Laws

 

This Policy is governed by the laws applicable in Quebec and Canada, excluding conflict of law rules. 

 

!