Privacy Policy

This Privacy Policy describes how Frozenonprbrexur ("we", "us", or "our") collects, uses, stores, and protects personal information when you visit our website at frozenonprbrexur.world or contact us directly. We are committed to complying with the General Data Protection Regulation (GDPR), the Canadian Personal Information Protection and Electronic Documents Act (PIPEDA), and applicable provincial privacy legislation.

1. Information We Collect

We collect personal information in the following ways:

• Contact form submissions: When you complete and submit the contact form on our website, we collect your name, email address, and the content of your message.
• Cookies and technical data: When you browse our website, we may automatically collect technical data such as your IP address, browser type, operating system, referring URLs, pages visited, and the date and time of your visit. See our Cookie Policy for full details.
• Voluntary correspondence: Any information you voluntarily share with us through email or other communications.

2. Legal Basis for Processing

We process your personal information on the following legal bases:

• Consent (Article 6(1)(a) GDPR): Where you have explicitly consented to the processing of your data — for example, by ticking the consent checkbox on our contact form, or by accepting non-essential cookies.
• Legitimate interests (Article 6(1)(f) GDPR): To respond to your enquiries, improve our website, and operate our business in a lawful and transparent manner.
• Legal obligation (Article 6(1)(c) GDPR): Where we are required by law to retain or process data.

3. How We Use Your Information

• To respond to your enquiries submitted through our contact form
• To send information about our educational programs and services that you have requested
• To improve the content, structure, and performance of our website
• To fulfil any legal or regulatory obligations
• To prevent fraud and ensure the security of our systems

We do not use your personal information for automated decision-making or profiling.

4. Data Sharing and Third Parties

We do not sell, rent, or trade your personal information to any third party. We may share information only in the following limited circumstances:

• Service providers: Trusted third-party service providers who assist us in operating our website and delivering our services (e.g., hosting, email delivery). These providers are contractually bound to handle your data securely and only for the purposes we specify.
• Legal requirements: If required by law, court order, or regulatory authority, we may disclose information as necessary.
• Business transfers: In the event of a merger, acquisition, or business restructuring, your data may be transferred to the successor entity under equivalent privacy protections.

5. Data Retention

We retain personal information only for as long as necessary to fulfil the purposes for which it was collected:

• Contact form data: Retained for up to 24 months from the date of receipt, or until you request deletion, whichever comes first.
• Technical and analytics data: Retained for up to 13 months in aggregated, anonymized form.
• Legal and compliance records: Retained for the period required by applicable law, typically 7 years.

6. Your Rights

Under GDPR and PIPEDA, you have the following rights regarding your personal information:

• Right of access: To request a copy of the personal data we hold about you.
• Right to rectification: To request correction of inaccurate or incomplete data.
• Right to erasure: To request deletion of your personal data where there is no legal basis for continued retention.
• Right to restrict processing: To request that we limit how we use your data in certain circumstances.
• Right to data portability: To receive your data in a structured, commonly used, machine-readable format.
• Right to object: To object to processing based on legitimate interests.
• Right to withdraw consent: Where processing is based on consent, you may withdraw it at any time without affecting prior lawful processing.

To exercise any of these rights, contact us at online@frozenonprbrexur.world. We will respond within 30 days.

7. Security Measures

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These include:

• Transmission of data over HTTPS (TLS encryption)
• Access controls limiting data access to authorized personnel only
• Regular review of data handling practices
• Secure server infrastructure with appropriate firewall protection

8. International Transfers

Our primary operations are based in Canada. If we transfer data outside Canada or the European Economic Area, we ensure appropriate safeguards are in place, such as standard contractual clauses approved by relevant data protection authorities.

9. Children's Privacy

Our website and services are not directed at individuals under the age of 18. We do not knowingly collect personal information from minors. If you believe we have inadvertently collected such data, please contact us immediately and we will delete it promptly.

10. Links to External Sites

Our website may contain links to external websites. We are not responsible for the privacy practices or content of those sites and encourage you to review their respective privacy policies.

11. Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices or applicable law. The date at the top of this page indicates when it was last revised. Material changes will be communicated prominently on our website.

12. Contact & Complaints

For privacy-related questions or concerns, contact us at:

• Email: online@frozenonprbrexur.world
• Phone: +1 416-239-3566
• Address: 2920 Bloor St W, Etobicoke, ON M8X 1B6, Canada

You also have the right to lodge a complaint with your local data protection authority. In Canada, this is the Office of the Privacy Commissioner of Canada. In EU member states, contact your relevant national supervisory authority.