Legal & Compliance

Privacy policy

This Privacy Policy of Oneremit Inc. (“Oneremit”) delineates the obligations of all Users. As an extension of the Terms of Service of Oneremit, both documents should be reviewed collectively.

Oneremit prioritizes your privacy. Our Privacy Policy delineates the methodologies by which we gather, utilize, disclose, and safeguard information pertinent to our Services, as well as your options concerning the collection and utilization of your data.

This Privacy Policy has been formulated in accordance with Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA). PIPEDA establishes regulations concerning the collection, use, and disclosure of personal information within the scope of commercial activities. In conjunction with PIPEDA, this Privacy Policy also complies with provincial privacy legislation, including but not limited to the British Columbia Personal Information Protection Act and the Alberta Personal Information Protection Act.

Oneremit shall not (a) be subject to any confidentiality obligations concerning any User Generated Content, except as specified in Oneremit’s Privacy Policy or as otherwise explicitly agreed to or mandated by law; (b) be obligated to compensate you or any third party for any User Generated Content; and (c) be required to respond to any submissions you make as User Generated Content.

We reserve the right to amend this Privacy Policy and will update the Website to reflect the most current version. It is your responsibility to review this Privacy Policy regularly to ensure familiarity with the latest provisions. In the event of any modifications, notice will be provided and an opportunity to “opt-in" will be offered as appropriate.

Definitions

Personal Data refers to information concerning any living individual who can be identified either from that data alone or in conjunction with other information in our possession or likely to come into our possession. Usage Data is data collected automatically generated by using Oneremit services or from the infrastructure of the services themself (i.e., the duration of a page visit).

Cookies are diminutive data files generated by a web server during a user’s browsing session and stored on the user’s computer or other device by the web browser.

A Data Controller refers to a natural or legal person who, either independently or jointly with others, determines the purposes and means of processing personal data. For the purposes of this Privacy Policy, Oneremit acts as the Data Controller of your data.

Data Processors (or Service Providers) refer to any natural or legal persons who process data on behalf of the Data Controller. The organization may engage the services of various Service Providers to facilitate more efficient data processing.

A Data Subject refers to any living individual whose Personal Data is collected by Oneremit.

1. Information Collection

Information shared on the Website by user while creating a user account:

Depending on the manner in which the User utilizes the Website, we may request that the User disclose personally identifiable information ("Personal Information") to us. The decision to share Personal Information rests entirely with the individual. Nonetheless, withholding Personal Information may restrict access to certain sections of the Website. Personal Information pertains to any data that identifies or can be employed to identify, contact, or locate the User. Oneremit gathers the following data when a user engages with Oneremit services.

  • Full Legal Name
  • E-mail Address
  • Date of Birth
  • Nationality
  • Signature
  • Utility Bills
  • Photographs
  • Phone Number
  • Home Address
  • Formal identification information (i.e =, Tax ID number, driver’s license details, passport number, national identity card details, photograph identification cards, and/or visa information)

2. Cookies

2.1. When visiting Websites, your browser may automatically send information to these Websites during your session. We utilize “cookies” and similar technologies to gather data through our website. Cookies are small data files stored on your device that serve as a unique identifier for your browser.

2.2. Our cookies do not, by themselves, contain Personal Information, and we do not combine the information collected through cookies with other Personal Information to identify you. We utilize cookies to recognize that your web browser has accessed features of our Services and may link that information to your Account, should you have one.

2.3. Examples of Cookies we use:

  • Session cookies: We use Cookies to operate our Service
  • Preference cookies: We use Preference Cookies to remember your preferences and various settings.
  • Security cookies: We use Security Cookies for security purposes
  • Advertising cookies: Advertising cookies are used to serve you with advertisements that may be relevant to you and your interests

2.4. Most web browsers offer an option to disable cookies, which prevents the browser from accepting new cookies. Additionally, depending on the sophistication of the browser software, users may have the ability to selectively accept or reject new cookies. We strongly advise users to keep cookies enabled, as they facilitate access to the most valuable features of Oneremit’s Services.

2.5. This Privacy Policy pertains solely to our use of cookies and does not encompass the use of cookies by third parties. We do not have authority over when or how third parties implement cookies on your device. For instance, third-party websites or applications linked within this platform may establish cookies on your device.

3. Analytics

3.1 We may engage third-party Service Providers to oversee and analyze the utilization of our Service.

3.2 Google Analytics is a web analytics service provided by Google that monitors and reports on website traffic. The company utilizes the collected data to observe and analyze the usage of Oneremit Services. This data is also shared with other Google services.

3.3 Google may utilize the collected data to contextualize and personalize advertisements within its own advertising network.

3.4 For more information on the privacy practices of Google, please visit the Google Privacy Terms web page: https://policies.google.com/privacy?hl=en

3.5 We also encourage you to review the Google’s policy for safeguarding your data: https://support.google.com/analytics/answer/6004245.

4. Behavioural Remarketing

Utilizes remarketing services to advertise on third-party websites following your visitation to our Service. We and our third-party vendors employ cookies to inform, optimize, and deliver advertisements based on your previous visits to our Service.

4.1 Google Ads (AdWords): Google Ads (AdWords) remarketing service is provided by Google LLC.

4.1.1 You one has the option to opt out of Google Analytics for Display Advertising and to customize Google Display Network advertisements by visiting the Google Ads Settings page. http://www.google.com/settings/ads

4.1.2 Google also recommends installing the Google Analytics Opt-out Browser Add-on – https://tools.google.com/dlpage/gaoptout – for your web browser. The Google Analytics Opt-out Browser Add-on offers users the capability to prevent the collection and utilization of their data by Google Analytics.

4.1.3 For more information on the privacy practices of Google, please visit the Google Privacy Terms web page: https://policies.google.com/privacy?hl=en

4.2 Bing Ads Remarketing: The remarketing service for Bing Ads is supplied by Microsoft Corporation.

4.2.1 You can opt-out of Bing Ads interest-based ads by following their instructions: https://advertise.bingads.microsoft.com/en-us/resources/policies/personalized-ads

4.2.1 You can learn more about the privacy practices and policies of Microsoft by visiting their Privacy Policy page: https://privacy.microsoft.com/en-us/PrivacyStatement

4.3 Twitter/X: Twitter remarketing service is provided by Twitter Inc

4.3.1 You can opt out from Twitter’s/X’s interest-based ads by following their instructions: https://support.twitter.com/articles/20170405

4.3.2 You can learn more about the privacy practices and policies of Twitter/X by visiting their Privacy Policy page: https://twitter.com/privacy

4.4 Facebook: Facebook remarketing service is provided by Meta Platforms Inc.

4.4.1 You can learn more about interest-based advertising from Facebook by visiting this page: https://www.facebook.com/help/164968693837950

4.4.2 To opt-out from Facebook’s interest-based ads, follow these instructions from Facebook: https://www.facebook.com/help/568137493302217

4.4.3 Facebook adheres to the Self-Regulatory Principles for Online Behavioral Advertising established by the Digital Advertising Alliance. You can also opt out from Facebook and other participating companies through the Digital Advertising Alliance in the USA http://www.aboutads.info/choices/ , the Digital Advertising Alliance of Canada in Canada http://youradchoices.ca/ or the European Interactive Digital Advertising Alliance in Europe http://www.youronlinechoices.eu/ , or opt-out using your mobile device settings.

4.4.4 For more information on the privacy practices of Facebook, please visit Facebook’s Data Policy: https://www.facebook.com/privacy/explanation

4.5 The Pinterest remarketing service is offered by Pinterest Inc.

4.5.1 You can opt out from Pinterest’s interest-based ads by enabling the “Do Not Track” functionality of your web browser or by following Pinterest instructions: http://help.pinterest.com/en/articles/personalization-and-data

4.5.2 You can learn more about the privacy practices and policies of Pinterest by visiting their Privacy Policy page: https://about.pinterest.com/en/privacy-policy

4.6 Microsoft Clarity: Clarity, a behavior analytics tool provided by Microsoft Corporation (‘Microsoft’).

4.6.1 Clarity utilizes cookies to facilitate an analysis of our website’s usage, including tracking code. The information gathered is transmitted to Clarity and stored on servers managed by Microsoft and its partners. The purpose of storing this data is to analyze customer behavior. Please refer to the Microsoft Privacy Statements for further details. For additional information regarding Clarity, please consult Clarity’s Privacy Statement. The retention period refers to the duration during which the collected data is stored for processing. Such data must be deleted promptly once it is no longer necessary for the identified processing purposes.

4.6.2 You can opt out of Clarity telemetry by selecting Microsoft here (https://optout.aboutads.info/?c=2&lang=ES ). If you install the Protect My Choices (https://youradchoices.com/pmc ) app for your browser, you can ensure your opt-out preference is saved.

5. Information Sharing

5.1 Third Party Platforms: To provide you with optimal service, Oneremit connects to a variety of third-party devices and services, including third-party payment processors. Oneremit disclaims responsibility for the privacy policies or practices of such third parties or third-party websites and applications, including any that are linked or link to other websites. If you disclose personally identifiable information to any of these third parties, different rules may apply regarding their use and disclosure of such information. We strongly advise reviewing the privacy policies of these websites and applications prior to sharing your personal data. By linking to third-party websites and applications, you may be subject to their terms and conditions, as well as other policies. Oneremit makes no assurances or guarantees concerning the accuracy or authenticity of information contained within any third- party websites or applications, and accessing such links is undertaken at your own risk. Oneremit disclaims all liability in this regard.

6. Opting Out or Unsubscribe

6.1 We collect your name and email address to facilitate the distribution of our daily, weekly, or monthly newsletter service. The email address provided will be utilized solely for the delivery of information you have requested from this Website or Application.

6.2 The data we gather is solely used to deliver the services you requested. We do not share it with other organizations for marketing or commercial purposes. Your email address will never be sold or rented by us for any reason.

6.3 Our subscriptions lists are in compliance with Canada’s Anti-Spam Law (CASL), as amended on of July 1, 2014

6.4 To unsubscribe from our electronic communications, please utilize the "unsubscribe" link located at the footer of the email or access your account to modify your preferences. Nonetheless, this section does not encompass messages and advertisements received through other means within the platform Website/App.

How Long is This Data Stored?

FINTRAC mandates that we retain User data for a period of 5 years. Therefore, we are obliged to preserve your data for the same duration years.

7. Security

7.1 We establish and uphold security measures suitable to the nature of the personal information we collect, utilize, retain, transfer, or otherwise process. Our security program is executed and maintained in compliance with applicable laws. Consequently, although our security framework is designed to address data security risks and aid in preventing data security incidents and breaches, it cannot be assumed that the occurrence of any specific incident or breach results from our failure to implement and uphold such measures security.

8. User Data Rights

8.1 By utilizing our Services and engaging in Marketing Activities, you grant yourexplicit consent to the collection and utilization of your Personal Information in accordance with this Privacy Policy. This consent does not influence lawful processing under applicable laws based on alternative legal grounds, such as contractual obligations, compliance with statutory requirements, and legitimate interests purposes.

9. Child Protection

9.1 Our Services are not intended for or directed to children. Children under 18 are not eligible to use our Services. Our policies comply with the Canadian Child Welfare Research Portal of Canada and Protection Act. By utilizing the Services, you confirm that you are at least 18 years old and understand that creating an account, purchasing, and using the Services advertised through our platform requires a minimum age of 18. We do not intentionally collect or retain Personal Information from individuals under the age of 18. Should we discover that we have inadvertently collected Personal Information from minors under 18 years of age, we will take appropriate measures to delete or destroy such information records.

10. Right to Access or Correct Personal Information

10.1 You have the right to access and rectify your Personal Information. If you wish to review or amend your Personal Information, you may visit your account profile page or contact us via email using the contact information provided in our Help Centre.

10.2 Upon receipt of your written request, we shall furnish you with a copy of your Personal Information. However, in certain limited circumstances, we may be unable to disclose all relevant information, such as when the information also concerns another individual. In such cases, we will provide you with the reasons for the denial upon request. We commit to processing all requests for access and amendments promptly. We will make every reasonable effort to ensure that your Personal Information remains accurate and current, and we will offer mechanisms for you to update, correct, delete, or add to your Personal Information as appropriate. When applicable, any amended Personal Information will be transmitted to the parties authorized to receive such disclosures information.

11. Notice to EU Residents as per GDPR Regulations

11.1. Personal Information

11.1.1 Concerning data subjects within the European Union, the terminology "personal information" employed in this Privacy Policy corresponds to "personal data" as delineated in the European Union General Data Protection Regulation (GDPR).

11.2. Processing Purposes

11.2.1 To communicate with you, to optimize our platform, for compliance, fraud prevention, and to provide our service.

11.3. Sensitive Data

11.3.1 Certain information you provide to us may be classified as sensitive data under the GDPR, also known as special categories of personal data, including details such as your race or ethnicity as indicated on government-issued identification documents.

11.4. Legal Bases for Processing

11.4.1 We utilize your personal information solely in accordance with legal provisions. We are obligated to inform you of the legal grounds underpinning the processing of your personal information, as delineated below. Should you have any inquiries regarding the legal bases for our data processing activities, please contact our Help Centre.

11.4.2 These processing activities constitute our legitimate interests. We attempt to consider and balance any potential impacts on you (both positive and negative) and your rights before we process your personal information for our legitimate interests. We do not use your personal information for activities where our interests are overridden by any adverse impact on you (unless we have your consent or are otherwise required or permitted to by law).

11.4.3 where our utilization of your personal data is predicated upon your consent, you retain the right to withdraw this consent at any time, using the method specified within the Service or by reaching out to our Help Centre.

11.5. Your Rights

Under the General Data Protection Regulation (GDPR), you possess specific rights concerning your personal data. You may request that we undertake the following actions regarding your personal information that we hold:

11.5.1 Opt-out: Oneremit shall cease dispatching direct marketing communications to you, which you have previously consented to receive. Nonetheless, we may persist in sending you service-related and other non-marketing communications.

11.5.2 Access: Oneremit shall furnish you with details regarding our handling of your personal information and shall grant you access to your personal data information.

11.5.3 Correct: Oneremit will revise or fix any errors in your personal details.

11.5.4 Delete: Oneremit will delete your personal information.

11.5.5 Object: The user has the right to object to our reliance on our legitimate interests as the basis for processing your personal information that affects you rights.

11.5.6 Requests Regarding Data Subject Access Rights: We may seek specific information from you to verify your identity and facilitate the processing of your request. Applicable legislation may require or authorize us to reject your request. In the event of a rejection, we will inform you of the reasons, subject to legal restrictions. Should you wish to file a complaint concerning our handling of your personal information or our response to your requests, you may contact us through our Help Centre.

11.5.7 Use for New Purposes: We may utilize your personal information for purposes not described in this Privacy Policy, provided we are permitted by law to do so and such purposes are compatible with the original collection intent. In the event that we need to process your personal information for an unrelated purpose, we will notify you and clarify the legal basis applicable to that processing. If our reliance on your consent was specific to a particular use of your personal information, we will seek your consent for any additional purposes and offer the option to terminate your use of the service at that time object.

14. Notice to California Residents as per CCPA guidelines

This section offers supplementary information regarding the personal data we gather from California consumers and the rights granted to them under the California Consumer Privacy Act, also known as the "CCPA.”

14.1 In accordance with California Civil Code Section 1789.3, residents of California are entitled to the following consumer rights notice: California residents may contact the Complaint Assistance Unit of the Division of Consumer Services of the California Department of Consumer Affairs.

14.2 California consumers may submit a request in accordance with their rights under the CCPA by contacting our Help Centre. Please be advised that you are required to verify your identity and request prior to any further action, such as by providing your government-issued identification. In accordance with California law, you may appoint an authorized agent to make a request on your behalf. To do so, you must furnish a valid power of attorney, the requester’s valid government-issued identification, and the authorized agent’s valid government-issued identification.

14.3 Regarding the categories of personal information we have obtained from you, please refer to the "Information We Collect" section provided above. This information is collected for the business and commercial purposes outlined in the "How We Use Personal Information" section above.

14.4 The potential for fraud risk linked to a specific IP address may be disclosed to an Integrator upon request. The Company does not "sell" (as defined under the CCPA) the personal information it collects. For additional details regarding the types of third-party cookies, if any, we utilize, please refer to the section titled "Third Party Analytics and Tracking Technologies" above use.

14.5 Subject to certain limitations, the California Consumer Privacy Act (CCPA) grants California consumers the right to request detailed information regarding the categories or specific pieces of personal data collected (including its usage and disclosures), to request the deletion of their personal data, to opt out of any potential ‘sales’, and to not face discrimination for exercising these rights.

15. Onerremit Privacy Policy for SMS Messaging

National Do Not Call Registry: https://www.donotcall.gov/

Introduction

At Oneremit, safeguarding your privacy is of utmost importance. This Privacy Policy elucidates the methods by which we collect, utilize, and protect your information when you enroll in our SMS program. By participating, you consent to these terms, which adhere to the 2025 Telephone Consumer Protection Act (TCPA), Campaign Registry requirements, and CTIA Best Practices.

Information We Collect

Phone Number: The mobile number you provide to receive SMS messages.

Message Interaction Data: Delivery and engagement metrics (e.g., delivery status, response keywords).

Consent Records: Timestamps and methods of opt-in (web form, keyword, verbal, or paper).

How We Use Your Information

Send SMS messages (notifications, updates, and reminders) per your opt-in preferences.

Demonstrate regulatory compliance (TCPA 2025, Campaign Registry).

Improve messaging and measure engagement.

One-to-One Consent Requirement

According to the FCC ruling effective January 2024, opt-in consent is exclusively applicable to Oneremit. Your consent is not shared with third parties or affiliates unless you provide explicit authorization agree.

Message Frequency & Data Rates

The frequency of SMS messages may fluctuate but will not exceed 3-5 unless prompted by a notification event. Message and data rates may be applicable; please consult your service provider terms.

Opt-Out & HELP Instructions

Text “STOP” to any message to unsubscribe immediately.

Text “HELP” for assistance or contact us at support@Oneremit.com or call at 1-416-244-2579

Data Sharing & Disclosure

We will never sell your data.

We may share data with service providers (e.g., carriers) with strict confidentiality regarding SMS delivery.

National Do Not Call Registry (DNC) protections apply to SMS; we honor existing DNC registrations unless you expressly opt in.

Security of Your Information

Appropriate measures have been implemented to safeguard your data; however, no system can be considered completely invulnerable. Record-Keeping & Proof of Consent

We maintain all records of opt-in and opt-out preferences, including timestamps and methods of consent, in accordance with TCPA 2025 and Campaign Registry guidelines.

Changes to This Policy

We reserve the right to update this Policy in accordance with the evolution of applicable laws. Significant amendments will be communicated through SMS or via our website. Continued use of our services following such updates shall constitute your acceptance of the revised Policy.