Personal data management policy under the GDPR

As part of the General Data Protection Regulation (GDPR), we would like to inform you that we collect personal data about you, exclusively within the framework of your temporary or permanent immigration application to Canada.

In this regard, please take note of the following information regarding the collection of this data.

Data Protection Officer

Lorine BENOIT
103-2727 St-Patrick Street
Montreal (Quebec)
Canada, H3K 0A8

T. (514) 446-1940
E. lbenoit@immetis.com

Activities that collect and use personal data

  • Preparation of a temporary or permanent immigration application to Canada.
  • Collection of resumes as part of job search efforts in Canada.
  • Legal consultations on immigration to Canada.
  • E-newsletter form requesting first and last name as well as email address.
  • Free immigration options assessment form requesting email address.
  • Social media (Facebook, LinkedIn, Instagram) which allow the collection of various personal information.

Data sharing

s part of an immigration application to Canada, our clients’ data may be shared, depending on the nature of the immigration application and with the client’s written consent, with the following entities, all based in Canada:

  • Canada Border Services Agency.
  • Immigration, Refugees and Citizenship Canada.
  • Employment and Social Development Canada.
  • Quebec Ministry of Immigration, Francisation and Integration.
  • Ontario Immigrant Nominee Program.
  • Government of New Brunswick.
  • Nova Scotia Nominee Program.

To immigrate to Canada, it is mandatory for our firm to transmit this data for verification purposes.

Categories of persons concerned by data sharing

  • Clients of the firm who wish to obtain temporary or permanent residence in Canada.
  • Companies wishing to establish themselves in Canada or transfer employees from Europe.
  • Job seekers wishing to share their resumes with Canadian companies.

Categories of data collected

  • Civil status, identity, identification data, images, qualifications.
  • Personal and professional life.
  • Economic and financial information.
  • Connection data.
  • Internet data

Are sensitive data processed?

As part of a temporary or permanent immigration application to Canada, we must collect and transfer to the aforementioned government agencies certain particularly sensitive data. This includes data revealing, among other things, the union or political affiliation of individuals, health data, data relating to criminal convictions or offenses, as well as data on the person’s identity (e.g., passport, national identity card). This data is required for Canada’s national, economic, and social security.

Data retention periods 

Under the rules imposed by the Quebec Bar, we must keep our files for a minimum of seven (7) years from the date of their closure, i.e., when we cease to act for a client. We must also ensure the confidentiality and security of the files kept. The files are not accessible to unauthorized persons.

Data security measures 

Data security measures All our data is stored on computer media. We use secure cloud services and keep a backup copy of all information hosted in the cloud to ensure the availability of this information in case of failure. This data is accessible only to the firm’s employees, all of whom have unique identifiers. Each employee’s identifiers are regularly changed. In addition, access to certain data requires two-factor authentication, often by code sent by SMS or via a two-factor authentication application. Clients’ data is transmitted via various technologies allowing data encryption during electronic transfer to our firm. Each client is given access to a personal client portal, which is protected by a password known only to the data holder.

Each work tool (laptop, desktop) is protected by a password known only to the employee and management. In addition, each work tool has up-to-date antivirus software. Data is backed up daily. Once the file is closed, it is removed from the cloud to be transferred to a hard drive, which is protected by a password. The hard drive is also placed in a fireproof and locked safe. Only the data protection officer and another member of senior management have access to the safe keys.

Obtaining details 

You can obtain details on the above at any time from our data protection officer using the contact details provided above.