Genetically Engineered Group of Companies

Our Commitment to Privacy

The Genetically Engineered Group of Companies (GEGoC) and all its subsidiaries are committed to protecting the privacy and security of personal information entrusted to us. We operate with the highest standards of ethical governance and transparency, striving to meet or exceed privacy requirements under Canadian and United States legislation, including but not limited to:

• Canada's Personal Information Protection and Electronic Documents Act (PIPEDA)
• Nova Scotia's Personal Information International Disclosure Protection Act
• California Consumer Privacy Act (CCPA)
• General Data Protection Regulation (GDPR) where applicable

We believe that ethical data handling is not just a legal requirement but a moral obligation. This Privacy Policy outlines how we collect, use, protect, and share your personal information across all GEGoC subsidiaries and services.

Information We Collect

Personal Information

We may collect the following types of personal information:

• Contact Information: Name, email address, phone number, mailing address
• Business Information: Company name, job title, business contact details
• Vehicle Information: VIN numbers, vehicle specifications, service history (for GEV customers)
• Financial Information: Payment details, billing addresses, credit information (processed securely through third-party processors)
• Communications: Records of correspondence, support requests, and feedback
• Technical Information: IP addresses, browser type, device information, website usage data

How We Collect Information

• Directly from you when you contact us, make purchases, or use our services
• Through our websites and digital platforms
• From business partners and authorized dealers (with your consent)
• Through cookies and similar tracking technologies
• From publicly available sources where permitted by law

How We Use Your Information

We use your personal information for the following purposes:

• Service Delivery: To provide products and services, process orders, and fulfill contracts
• Customer Support: To respond to inquiries, provide technical support, and resolve issues
• Business Operations: To manage our business relationships, process payments, and maintain records
• Marketing Communications: To send promotional materials, newsletters, and updates (with your consent)
• Legal Compliance: To comply with applicable laws, regulations, and legal processes
• Safety and Security: To protect our business, customers, and employees from fraud and security threats
• Improvement: To analyze usage patterns and improve our products and services

SMS

Text Messaging Services and Communication Policy

GEGoC and its subsidiaries may use SMS (Short Message Service) text messaging to communicate with customers, partners, and stakeholders who have explicitly consented to receive such communications. Our SMS practices are governed by the following principles:

Consent and Opt-In

• We will only send SMS messages to phone numbers where explicit consent has been provided
• Consent may be obtained through written forms, digital opt-ins, or verbal confirmation with documented records
• We will clearly explain the types of messages you may receive and the frequency of communications

Types of SMS Communications

• Transactional Messages: Order confirmations, delivery updates, appointment reminders, service notifications
• Marketing Messages: Promotional offers, event invitations, product announcements (only with explicit marketing consent)
• Service Messages: Account alerts, security notifications, urgent service updates

Your Rights and Controls

• Opt-Out: You may unsubscribe from SMS communications at any time by replying "STOP" to any message
• Help: Reply "HELP" to any message for assistance or contact information
• Frequency Management: You can request to reduce message frequency by contacting us directly

Data Handling and Security

• Phone numbers are stored securely and used only for authorized communications
• We do not sell or share phone numbers with third parties for marketing purposes
• SMS communications may be logged for quality assurance and compliance purposes
• We comply with Canadian Anti-Spam Legislation (CASL) and US CAN-SPAM Act requirements

Third-Party SMS Providers

We may use reputable third-party SMS service providers to deliver messages. These providers are contractually bound to protect your information and use it only for authorized purposes. We ensure all SMS partners meet our security and privacy standards.

Data Security and Protection

We implement comprehensive security measures to protect your personal information:

• Encryption: Data is encrypted both in transit and at rest using industry-standard protocols
• Access Controls: Strict access controls ensure only authorized personnel can access personal information
• Regular Audits: We conduct regular security assessments and vulnerability testing
• Employee Training: All staff receive privacy and security training as outlined in our Employee Handbook
• Incident Response: We maintain comprehensive breach response procedures
• Data Minimization: We collect and retain only the information necessary for our legitimate business purposes
• Human Verification: We use Cloudflare Turnstile verification to protect contact information from automated harvesting and spam while ensuring legitimate users can access our contact details

Cloudflare Turnstile Verification (Invisible Mode)

To protect our contact information from automated bots and spam while maintaining seamless accessibility for legitimate users, we implement Cloudflare Turnstile verification in invisible mode. This security measure:

• Protects Privacy: Helps prevent unauthorized automated access to personal contact information
• Invisible Operation: Verification happens automatically in the background without user interaction
• Session-Based: Verification is valid for the duration of your browsing session
• Seamless Experience: Users typically don't see any challenge while still being protected
• Third-Party Service: Cloudflare's privacy policy governs the verification process
• Token Management: Verification tokens are stored temporarily for session continuity

The invisible verification process runs automatically and is designed to distinguish between human users and automated systems without disrupting your browsing experience. In rare cases where additional verification is needed, the system may present a brief challenge.

Data Retention

We retain personal information only as long as necessary to fulfill the purposes for which it was collected, comply with legal obligations, resolve disputes, and enforce our agreements. Specific retention periods vary by information type and are determined based on:

• Legal and regulatory requirements
• Business operational needs
• The nature of our relationship with you
• Legitimate interests in maintaining records

Information Sharing and Disclosure

We do not sell personal information to third parties. We may share your information in the following limited circumstances:

• GEGoC Subsidiaries: Information may be shared among GEGoC subsidiaries to provide integrated services and support
• Service Providers: With trusted third-party service providers who assist in our operations (under strict confidentiality agreements)
• Legal Requirements: When required by law, court order, or to protect our legal rights
• Business Transfers: In connection with a merger, acquisition, or sale of business assets (with notice to affected individuals)
• Consent: With your explicit consent for specific purposes
• Emergency Situations: To protect the safety and security of individuals or property

Your Privacy Rights

You have the following rights regarding your personal information:

• Access: Request copies of your personal information
• Correction: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your personal information (subject to legal and business requirements)
• Portability: Request your information in a portable format
• Restriction: Request limitation of processing in certain circumstances
• Objection: Object to processing based on legitimate interests or for marketing purposes
• Withdrawal of Consent: Withdraw consent for processing where consent is the legal basis

To exercise these rights, please contact us using the information provided below. We will respond to your request within the timeframes required by applicable law.

International Data Transfers

As a Nova Scotia-based company operating across multiple jurisdictions, we may transfer personal information across provincial and national borders. When we do so, we ensure appropriate safeguards are in place, including:

• Adequacy decisions by relevant privacy authorities
• Standard contractual clauses
• Binding corporate rules
• Industry-recognized certification schemes

Cookies and Tracking Technologies

Our websites use cookies and similar technologies to enhance user experience, analyze website performance, and deliver personalized content. You can control cookie settings through your browser preferences. For detailed information about our cookie practices, please refer to our Cookie Policy.

Children's Privacy

Our services are not directed to children under the age of 13 (or the applicable age of consent in your jurisdiction). We do not knowingly collect personal information from children. If we become aware that we have collected information from a child without appropriate consent, we will delete that information promptly.

Updates to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or business operations. We will notify you of material changes through:

• Email notifications to registered users
• Prominent notices on our websites
• Direct communication for significant changes

The "Last Updated" date at the top of this policy indicates when the most recent changes were made. We encourage you to review this policy regularly.

Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

We are committed to resolving privacy concerns promptly and transparently. If you are not satisfied with our response, you may contact the applicable privacy authority in your jurisdiction.