FinanceIt Canada Inc. and its affiliates (collectively, “Financeit”) is committed to keeping personal information accurate, confidential, secure and private. Your personal information is handled in accordance with this policy and all federal privacy laws and regulations including the Personal Information Protection and Electronic Documents Act (“PIPEDA”). Ten Principles guide our privacy practices. Click on any of the Principles below or scroll down to know more.
Principle 1 — Financeit’s Accountability
Principle 2 — Identifying The Purposes of Collecting Personal Information
Principle 3 — Obtaining Consent
Principle 4 — Limits On The Collection Of Personal Information
Principle 5 — Limits On Using, Disclosing And Keeping Personal Information
Principle 6 — Keeping Personal Information Accurate
Principle 7 — Safeguarding Personal Information
Principle 8 — Making Information About Policies And Procedures Available To Clients
Principle 9 — Access To Personal Information
Principle 10 — Handling Complaints And Questions
Important information for CleanBC Participants
Chief Privacy Officer:
Dante Tamburro, General Counsel & Chief Compliance Officer
(888) 536-3025 or firstname.lastname@example.org
“Client” or “Clients” means borrowers and prospective borrowers of Financeit and may include, as applicable, business owners and/or representatives of merchants where their personal information may have been provided to Financeit.
Customer Service Representatives (CSR)
The public is encouraged to address their initial questions and concerns about any Financeit product or service to our Client Services Representatives (“CSRs”). CSRs may be reached by telephone at: 1 888 536 3025 or email at: email@example.com
“Financeit” is the operating name of FinanceIt Canada Inc.
Personal Information is information about an identifiable individual, but does not include the name, title or business address or business telephone number of an employee of an organization for the purpose of communicating with the Client in relation to their work.
Financeit’s Privacy Office is responsible for ensuring the protection of personal information at Financeit. To request access to, or correction of, your personal information, or to make other inquiries regarding your personal information, you may contact our Privacy Office at:
Attention: Chief Privacy Officer
FinanceIt Canada Inc.
Suite 2400, 8 Spadina Avenue
Toronto, Ontario, M5V 0S8
Tel: 1 888 536 3025
A word about your personal information
We use personal information to arrange to provide credit to Clients and otherwise administer our business with merchants, including to: open, administer, enforce and collect on loans; verify identity in compliance with requirements under anti-money laundering legislation (which may include checking identity against watch lists established by regulatory agencies and similar bodies in Canada and foreign countries); verify current and ongoing creditworthiness; protect Clients and us from theft, fraud or other unlawful activities.
The Ten Principles of Privacy in Summary
These ten principles are interrelated and must be read in conjunction with the accompanying commentary.
- Financeit’s Accountability
- Identifying The Purposes Of Collecting Personal Information
Financeit will inform Clients of the purpose for which personal information will be used before or when they consent to its collection.
- Obtaining Consent
A Client can provide consent to the collection, use and disclosure of personal information about them expressly, implicitly, or through an authorized representative. A Client can withdraw consent at any time subject to certain exceptions.
Financeit will collect, use or disclose personal information without an individual’s consent only in limited circumstances as permitted by law.
- Limits For Collecting Personal Information
- Limits For Using, Disclosing And Keeping Personal Information
Financeit will use or disclose personal information only for the reasons it was collected, unless a Client gives consent to use or disclose it for another reason or such Consent may be inferred from the actions of the Client. Under certain circumstances, Financeit may have a legal duty or right to disclose personal information without consent.
Financeit will keep personal information in accordance with its data retention policy.
- Keeping Personal Information Accurate
Financeit will keep the personal information in its possession or control accurate, complete, current and relevant, based on the most recent information available to Financeit.
Clients may challenge the accuracy and completeness of personal information about them and have it amended as appropriate by contacting the Privacy Office located at:
Attention: Chief Privacy Officer
Financeit Canada Inc.
Suite 2400, 8 Spadina Avenue
Toronto, Ontario, M5V 0S8
Tel: 1 888 536 3025
- Safeguarding Personal Information
Financeit protects personal information with safeguards appropriate to the sensitivity of the information.
- Making Information About Policies And Procedures Available
- Providing Access To Personal Information
When a Client requests it, when possible, Financeit will advise or provide access to the Client what personal information Financeit has in its possession or control about the individual, what it is being used for, and to whom it has been disclosed. In certain situations, however, Financeit may not be able to give Clients access to all of their personal information.
- Handling Complaints And Questions
Principle 1: Financeit’s Accountability
Financeit is accountable for all personal information in its possession or control, including any personal information transferred to third parties for processing on our behalf. Senior management have ultimate accountability for protecting personal information, and they in turn delegate the day-to-day management of procedures involving personal information protection to the Chief Privacy Officer and the Chief Compliance Officer.
- has established procedures to protect the privacy of personal information;
- has established procedures to receive and respond to questions and complaints;
- has trained Financeit staff to understand and follow Financeit’s privacy procedures.
Financeit is also accountable for personal information that has been transferred to a third party for processing. Financeit’s policies for safeguarding personal information transferred to third parties are set out in sections 7.4 and 7.5 below.
Principle 2: Identifying The Purposes of Collecting Personal Information
- Financeit collects personal information (which may include credit, employment and other financially-related or identification-related information) for the following purposes:
- to identify clients
- to review creditworthiness
- to assess risk
- to set up and manage products and services that meet an individual’s needs;
- to offer products and services to meet those needs
- to provide ongoing service, and
- to meet legal and regulatory requirements, such as requirements under the Income Tax Act, anti-money laundering, anti-bribery and credit reporting requirements.
- In addition, Financeit may collect, disclose and use personal information for some or all of the following purposes:
- to verify information on an application
- to help verify a new client’s identity
- to verify the identity of a client when corresponding with that client, and to protect the client and Financeit from error or fraud
- to investigate specific transactions or patterns of transactions for the purpose of detecting unauthorized or illegal activities
- to ensure that a client’s instructions can be properly verified, and,
- to investigate client complaints.
- Personal information is:
- exchanged with credit bureaus, credit reporting agencies, credit insurers, telecommunications providers, vendors completing identity verification work on our behalf, and other financial institutions, to maintain the integrity of the credit- granting process and to determine eligibility for financial products and services (in certain cases, Clients have a right to access their personal information in the control of these institutions; contact our CSRs to find out how to access their personal information in the control of these institutions)
- used by Financeit to determine initial and ongoing eligibility for financial products and to notify clients of such products by website, mail, email, text message, or phone
- may be used by Financeit and disclosed to affiliates to satisfy regulatory reporting requirements and international banking standards
- may be used by Financeit and disclosed to affiliates, or may be received by an affiliate and disclosed to Financeit to provide services to customers that are common to Financeit and its affiliates
- may be collected, used and disclosed for the purpose of legal, regulatory and/or governmental requirements in accordance with law
may be collected, used and disclosed for the purpose of conducting risk assessments
- may be collected, used and disclosed to provide specific services associated with an account; and,
- may be disclosed to a joint account holder.
- When a Client applies for a product or service:
- Financeit will make the Client aware of the purposes for which Financeit is requesting the personal information.
- If Financeit identifies other purposes for which the personal information
may be used, Financeit will seek the individual’s consent prior to starting these uses.
- Financeit will explain that it is the individual’s right to refuse permission for Financeit to use personal information for any such other purposes
- You may provide us with a Social Insurance Number (“SIN”) at your option, which we may use to match credit bureau information
- Should you open an account to be operated on behalf of a third party, personal information of that third party will be collected from you in accordance with money laundering legislation
- Clients can ask for information about the purposes for which Financeit collects personal information when they phone Financeit or by writing the Chief Privacy Officer.
- Please note that the purposes for collecting a name or address are sometime obvious and therefore do not need to be explained (such as when applying for a loan), but on occasion the purposes for collecting other information may not be as self-evident and when this is so, we will do our best to identify those purposes. Further, in some cases, Financeit will not explain those purposes or obtain the individual’s consent. (See section 3.4 and section 5.1 for details).
Principle 3: Obtaining Consent
Financeit obtains consent when or before it collects, uses or discloses personal information. Generally, Financeit will seek consent to use and disclose personal information at the same time it collects the information. In some circumstances, Financeit may identify a new purpose and seek consent to use and disclose personal information after it has been collected. In some instances, Financeit may seek your consent to verify your identity using a third-party identity verification service.
Financeit will collect, use or disclose personal information without an individual’s consent only in limited circumstances as permitted by law (see below.)
Subject to certain legal and contractual restrictions and reasonable notice, a Client can refuse or withdraw their consent to the collection, use or disclosure of personal information about them at any time, although the withdrawal of consent may affect your ability to do business with us and to receive products and services.
- Consent to the collection, use and disclosure of personal information can be expressed, implied, or given through an authorized representative of the individual.
- Clients can express consent verbally, such as when information is collected over the telephone, in writing, such as when completing and signing an application, or electronically, such as when applying through a computer.
- Clients can also imply their consent, for example, by applying for a Financeit product or service. In such a case, Financeit may assume that the Client consents to the use of the personal information for purposes of administering their application.
- Financeit may collect, use or disclose personal information without the individual’s knowledge and consent only in limited circumstances as permitted by law. For example:
- Financeit may collect, use and disclose personal information without the individual’s knowledge or consent if it is clearly in the individual’s best interests to do so and consent cannot be sought in a timely manner. An example of such a circumstance is when a Client is seriously ill.
- Financeit may collect, use and disclose personal information without an individual’s knowledge or consent in certain circumstances where the information is publicly available. An example would be the name, address and phone number of a subscriber to a telephone directory that is available to the public where the subscriber can refuse to have their personal information appear in the telephone directory.
- Financeit may collect, use and disclose personal information without the Clients’ knowledge or consent in accordance with law or upon the lawful request of a government institution or part of a government institution. An example would be when a government institution lawfully requests the information for the enforcement of any law of Canada, a province or a foreign jurisdiction. Subject to certain legal or contractual restrictions and reasonable notice, a Client may refuse or withdraw consent at any time.
- Financeit will inform Clients of the consequences of refusing or withdrawing consent when Clients seek to do so. Refusing or withdrawing consent for Financeit to collect, use or disclose personal information could mean that Financeit cannot provide the Client with a product, service or information of value to the individual. For example, if a Client does not allow Financeit to obtain a credit history report, Financeit may not be able to lend money or allow access to the Financeit platform due to prudent lending practices, or other regulations. However, Financeit will not unreasonably withhold products, services or information from Clients who refuse to give consent or who withdraw consent.
- Withdrawal of consent is not permitted in relation to a credit product where Financeit must collect and report information after credit has been granted. This is to maintain the integrity of the credit system.
- Financeit is required by law to collect certain types of personal information in order to verify the identity of its clients. If a Client does not allow Financeit to collect and use this information, or if the client later attempts to withdraw their consent, Financeit may not be able to open an account or maintain the account on behalf of that client.
- Financeit will not deny credit to a Client solely because the Client does not provide a SIN for this purpose. However, a SIN may be required where the Client is not able to provide any other adequate means of identification.
Principle 4: Limits On The Collection Of Personal Information
Financeit limits the amount and type of personal information it collects. Financeit will collect personal information only for purposes it has already identified to the Client or as permitted by law. Financeit will collect personal information about a Client primarily from that individual.
Principle 5: Limits On Using, Disclosing And Keeping Personal Information
Financeit will use or disclose personal information only for the reasons it was collected, unless consent is given to use or disclose it for another reason.
Under certain exceptional circumstances, Financeit may have a legal duty or right to disclose personal information without the individual’s knowledge or consent.
Financeit will keep personal information only as long as necessary for the identified purposes.
- Financeit may disclose personal information without consent when required or permitted by law. Examples of such disclosure include:
- subpoenas, search warrants and other court and government orders;
debt collection or demands from other parties who have a legal right to personal information; and
- disclosure of personal information to a lawyer (or, in Quebec, a notary or an advocate) who represents Financeit.
In any of the circumstances referred to in Principle 5.1, Financeit will protect the interests of its clients by making sure that:
- orders or demands appear to comply with the laws under which they were issued — Financeit does not comply with casual requests for personal information from government or law enforcement authorities.
- Note that when permitted by law, Financeit may notify Clients that an order or demand has been received. Financeit may notify Clients by telephone, or by letter to the client’s usual address.
Financeit may use personal information in its possession or control to market its own products and services to Clients or those of its affiliates, either directly through Financeit or through our approved network of independent merchants. In this regard, Financeit complies with the requirements of Canada’s anti-spam legislation (commonly known as “CASL”), and will only send commercials electronic messages (“CEMs”) of a promotional nature with a client’s express or implied consent. Such messages will include an unsubscribe mechanism, allowing clients to opt-out of such emails or text messages. However, clients cannot opt-out of all CEMs: transactional messages such as those relating to terms and conditions of products or services, amounts owing, missed payments and annual statements, are mandatory.
If personal information has been used to make a decision about an individual, Financeit will keep the personal information long enough for the Client to have access to it after the decision has been made, or for as long as required by law.
Personal information and non-personal information is primarily stored in Canada. Financeit may transfer and/or store such information with Financeit’s service vendors, which may be located in the United States. In the event that a service vendor is located in the United States, the personal information on file may be processed and stored in the United States, and the United States governments, courts of law enforcement or regulatory agencies may be able to obtain disclosure of this information through the laws of the United States.
Financeit will destroy, archive, erase or make anonymous any personal information no longer needed for its identified purposes or for legal requirements.
Special Note Respecting Trade-In Vehicle Loans: Where an applicant seeks to trade-in a vehicle with an existing Financeit loan in exchange for a new vehicle with a new Financeit loan, Financeit will share information relating to the existing vehicle loan with the merchant facilitating the purchase of the new vehicle and corresponding loan application. This disclosure is necessary to ensure the correct discharge of the existing loan and proper adjudication of the new loan.
Principle 6: Keeping Personal Information Accurate
Financeit will keep the personal information in its possession or control as accurate, complete, current and relevant as possible, based on the most recent information available to Financeit.
Individuals may question the accuracy and completeness of personal information about them and have it amended as appropriate.
Financeit will make reasonable efforts to minimize the possibility of using inaccurate, incomplete or outdated personal information to make a decision about the individual.
Financeit will update personal information only if it is necessary for the purposes for which it was collected.
Financeit will make reasonable efforts to keep personal information in its possession and control accurate and current if the information is used on an ongoing basis, unless limits on the need for accuracy are clearly set out by Financeit.
Financeit will also rely on Clients to keep certain personal information relating to them accurate, complete and current. If a Client demonstrates to Financeit that personal information relating to them is inaccurate, incomplete, out of date or irrelevant, Financeit will revise or delete the personal information. If necessary, Financeit will disclose the revised personal information to third parties to whom Financeit disclosed wrong or outdated information in order to permit them to revise their records.
If Financeit does not agree to revise personal information as requested by the individual, the Client may challenge Financeit’s decision. Financeit will make a record of this challenge, and, if necessary, disclose the challenge by the Client to any third parties to whom Financeit has disclosed the personal information.
Principle 7: Safeguarding Personal Information
Financeit will protect personal information with safeguards appropriate to the sensitivity of the information.
Financeit will safeguard personal information in its possession or control from loss or theft and from unauthorized access, disclosure, duplication, use or modification.
The safeguards employed by Financeit to protect personal information will vary depending on the sensitivity, amount, distribution, format and storage of the personal information. Financeit stores much of your information electronically. Recent paper records containing Clients’ personal information are stored in files kept onsite at our Toronto head office or offsite though our secure data centre, and older records containing Clients’ personal information may be stored at an offsite storage facility. Financeit will give the highest level of protection to the most sensitive personal information.
Financeit will safeguard personal information in its possession or control through security measures. For example:
- physical security, such as secure locks on filing cabinets and restricted access to offices;
- organizational security, such as controlled entry in data centres and limited access to relevant information; and
- electronic security, such as passwords, personal identification numbers and encryption.
Financeit discloses personal information to businesses such as credit bureaus (with consent), credit insurers and lenders, as well as vendors to whom certain activities are outsourced. Financeit relies on the added protection of credit reporting legislation to ensure that credit bureaus protect personal information which is disclosed to them.
Financeit will use care when disposing of, archiving or destroying personal information in order to prevent unauthorized access to the information.
Principle 8: Making Information About Policies And Procedures Available To Clients
Financeit may make information about its procedures available in a variety of ways, depending on the nature of the services Clients are using and the sensitivity of the personal information.
Financeit may mail, or email or text information to its clients, establish a toll-free telephone service or provide online access.
Principle 9: Access To Personal Information
When a Client requests it, Financeit will advise what personal information Financeit has in its possession or control about the individual, what it is being used for and to whom it has been disclosed.
When a Client requests it, Financeit will give the Client access to personal information about them which is in the possession or control of Financeit. In certain exceptional situations Financeit may not be able to give Clients access to all of the personal information about them.
A Client has the right to know, on request, what personal information about the Client Financeit has in its possession or control, a right to access that personal information and to know to which third parties Financeit has disclosed that information. Clients may direct their requests by telephone to the CSR or, in writing, to the Privacy Office.
Financeit has established procedures for responding to requests for access to personal information. Financeit will respond to requests within a reasonable period of time. Clients must be specific about the personal information that may be in Financeit’s possession or control. In the unlikely event that Financeit determines that there will be a cost to the Client in granting such access, Financeit shall inform the Client of the costs permitted by law prior to granting such access.
Financeit will identify from whom it collected the personal information, to whom it has disclosed the personal information, and how and when the information was disclosed. Financeit will take this data from its records, and will provide it to the individual.
In some cases, Financeit may not provide access to personal information that is in its possession or control. For example, this may occur when:
- providing access to personal information would be likely to reveal personal information about a third party;
- providing the personal information could result in a threat to the security of another individual;
- disclosing the information would reveal confidential commercial information;
- the personal information is protected by solicitor-client privilege;
- the information is the result of arbitration or other formal dispute resolution process; or
- the information has been collected for the purposes of a legal investigation.
Financeit will not record in Client files when personal information was disclosed to third parties for routine purposes. For example:
- regular updating of credit information to credit bureaus
- indicating to third parties when payments are returned for NSF (not sufficient funds)
- If Financeit denies the individual’s request for access to personal information, Financeit will advise the Client of the reason for the refusal. The Client may then appeal Financeit’s decision to the Privacy Commissioner of Canada.
Principle 10: Handling Complaints And Questions
Financeit has policies and procedures to receive, investigate, and respond to Clients’ complaints and questions relating to privacy. Clients are advised to direct their complaints and questions by telephone to the CSR or in writing to the Privacy Office.
Financeit will investigate all complaints. If it finds a complaint justified, Financeit will attempt to resolve it. If necessary, Financeit will modify its policies and procedures to ensure that other Clients will not experience the same problem.
If Clients are not satisfied with the way Financeit has responded to their complaint, they can contact the Privacy Commissioner of Canada.
Other Important Information
For CleanBC Program participants only: As a participant of the CleanBC Low-Interest Financing Program (the “Program”), you consent to the storage of your personal information by FinanceIt Canada Inc. in a secure cloud storage back up location in the U.S. state of Oregon. You understand that your personal information stored at this backup location will only be accessed by FinanceIt Canada Inc. in the unlikely event of a natural disaster or emergency to ensure business continuity and delivery of services.
Please see www.betterhomesbc.ca/financing-privacy for types of personal information collected and more information on how Financeit collects, uses and discloses your information on behalf of the Province of British Columbia.
This consent is valid from the date you submit your application and cannot be revoked.
If you do not consent to the storage of your personal information by FinanceIt Canada Inc. in a secure cloud storage back up location in the U.S. state of Oregon, visit www.betterhomesbc.ca to learn about the CleanBC Home Efficiency Rebates that you may apply for as an alternative to CleanBC Low-Interest Financing.
Within the Website, cookies or other information-tracking technologies may be used to improve the functionality or security of the website, or to provide you with a more customized online experience. Please note that cookies cannot capture files or data stored on your computer.
Financeit’s use of Biometrics
Biometric verification uses one or more of a person’s unique physiological or behavioural characteristics to identify a person and/or to facilitate access to products or services.
For certain loan applications where in-person identity verification is not possible, Financeit uses a sophisticated facial recognition software developed by a leading technology company (the “ID Verification Tool”) to meet its regulatory obligations (i.e., identity verification) and detect fraud.
How the ID Verification Tool Works
Loan applicants (“Applicant(s)”) are directed to our third-party vendor’s platform. Using its secure online platform, the vendor verifies an Applicant’s claimed identity by deploying proprietary software which compares the Applicant’s real-time facial image (captured with the Applicant’s mobile phone) to the Applicant’s government-issued photo identification (such as driver’s licenses or passport.) Applicants may be asked to consent directly to the vendor’s collection and use of their personal information and/or to accept the vendor’s terms and conditions.
The vendor does not share facial images and copies of government-issued photo identification with any other third-party, and ID Verification Tool is only utilized during the loan application process. The vendor retains the biometric information provided to it by the Applicant for one hundred (180) days, then destroys it. For regulatory compliance reasons and as permitted by law, some identification documents (i.e. non-biometric data) that is captured as part of this process is retained in Financeit’s data archives or those of the vendor for longer duration.
Your Consent to the Use of Biometrics
Questions about Biometrics
If you have any questions about Financeit’s Use of Biometrics, please contact our Chief Privacy Officer at firstname.lastname@example.org, or call us at (888) 536.3025.
Last updated: September 2022