Privacy Policy

1. Privacy Accountability

CJD Inc. has designated a Privacy Officer responsible for compliance.

Contact: [email protected]

We will respond to access or correction requests within 30 days unless an extension is permitted by law.

1A. Electronic Communications & Anti-Spam Compliance (CASL)

We may send you electronic communications related to your account, transactions, and use of the Platform.

Where required by Canada's Anti-Spam Legislation (CASL), we will obtain express or implied consent before sending commercial electronic messages (CEMs).

Commercial electronic messages will:

• Clearly identify CJD Inc. as the sender;
• Include our contact information;
• Contain a functional unsubscribe mechanism.

You may withdraw consent to receive marketing communications at any time by using the unsubscribe link in our messages or contacting us directly. Transactional or service-related communications may still be sent where permitted by law.

2. Identified Purposes for Collection

We collect personal information for the following identified purposes:

• Creating and managing user accounts;
• Providing AI-generated outputs;
• Enabling commerce and bookings;
• Processing payments;
• Improving and securing the Platform;
• Communicating with users;
• Complying with legal obligations.

3. Consent and Withdrawal

By using the Platform, you consent to the collection, use, and disclosure of personal information as described in this Policy.

You may withdraw consent at any time by contacting the Privacy Officer, subject to legal or contractual restrictions. Withdrawal of consent may limit your ability to use certain features.

4. Information We Collect

• Account information (name, email);
• Usage and device information (IP address, browser, logs);
• User-submitted content;
• Payment information (processed by third parties).

5. AI Data Usage

We process user inputs solely to provide Platform functionality.

We do not use user inputs to train our own general AI models.

6. Aggregated & De-Identified Data

We may aggregate and de-identify data for analytics, research, and improvement purposes. Such data does not identify individuals.

7. Data Storage & Cross-Border Transfers

Primary data is stored in Canada. Third-party providers may process data in other jurisdictions, including the United States.

Where personal data is transferred outside of your jurisdiction, we implement appropriate safeguards as required by applicable law, which may include contractual protections, reliance on adequacy decisions, or other lawful transfer mechanisms.

8. Retention

We retain personal information only as long as necessary to fulfill the identified purposes, comply with legal obligations, resolve disputes, and enforce agreements. Retention periods are determined based on the nature of the information and legal requirements.

9. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area or United Kingdom, we process personal data on the basis of contract performance, legitimate interests, consent, or legal obligations.

10. Your Rights

Depending on jurisdiction, you may request access, correction, deletion, restriction, or portability of your personal data.

Requests may be submitted to [email protected].

11. Data Breach Notification

In the event of a reportable breach, we will notify affected individuals and regulators as required by law.

12. Children

Not intended for individuals under 18.

13. Contact