Last Updated: June 30, 2025

 

EpiSense is a platform of EpiSense Data Inc. (“EpiSense”, “we”, or “us”). EpiSense presents a platform [which provides individuals with access to infectious disease information relevant to Ontario, Canada. In providing our services, we are committed to respecting and protecting your privacy. We have developed this privacy policy (“Privacy Policy”) to help protect your personal information. This Privacy Policy explains how we gather and use your information and applies to any user using the Site (as hereinafter defined) and/or Services (as hereinafter defined). 

The web page located at https://www.episense.ca/, any mobile application that we make available to you (each a “Mobile Application”) and all linked pages together form the “Site”. When used herein, the term “Services” shall refer to any product or services we make available to or perform for you through the Site, including any landing pages or informational pages and emails.

Please read this Privacy Policy carefully and review it periodically for the latest information about our privacy practices. By accepting our Terms of Service or by accessing or using the Services or our Site, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy, and consent to the use of your information by EpiSense as set forth herein. If you are using our Services on behalf of a company, business or other legal entity, you represent that you have the authority to bind such entity and its affiliates to this Privacy Policy, in which case the terms “you” or “your” shall refer to such entity and its affiliates. If you do not agree with the practices described in this Privacy Policy, or if you do not have authority to agree to this Privacy Policy, please do not provide us with your personal information or interact with the Site and/or Services. 

We will routinely update this Privacy Policy to clarify our practices and to reflect new or different privacy practices, such as when we add new services, functionality or features to the Site and/or Services. If we make any material changes, we will notify you by email (such email will be sent to the e-mail address specified in your account) or by means of notice on the Services prior to the change becoming effective. You can determine when this Privacy Policy was last revised by referring to the date it was “Last Updated” above. If you do not agree to the revised Privacy Policy, please stop using the Site and/or Services.

1. Personal Data we Collect

 

We believe in democratic data - people contribute to our community by reporting an illness that is used to build an accurate disease dashboard about health updates near you. We also believe in radial data transparency, and we only collect what we need to provide the Services.

 

We collect information that alone or in combination with other information in our possession could be used to identify you (“Personal Data”) as follows:

 

1.1 Personal data you provide

 

We may collect the following categories of Personal Data from you when you visit or interact with the Site or the Services:

1. Identification Data: We may collect your name, email address, website address when you engage in certain activities on the Site, when using the Service, or when a customer uses a website or mobile application in which the Service is integrated.

2. Health Information: We collect information about symptoms you have and want to disclose to us. Such data will be anonymized and posted in aggregate with health information of other users, to create a symptom database that better informs the community about outbreaks in their area.

3. Financial Data: We process our payments through Wix Payments by Wix.com Inc. (“Wix”), which uses processing services by either Adyen N.V. (“Adyen”), Stripe Inc. (“Stripe”) or PayPal Inc. (“PayPal”) (each, the “Processor” and collectively, the “Processors”). The Processors collect the financial information necessary to process your payments for the Service. Accordingly, in addition to this Privacy Policy and our Terms of Service, your Financial Data is also processed pursuant to Wix’s, Adyen’s, Stripe’s, and PayPal’s services agreement and privacy policy.

4. Communication Data: We may collect information when you contact us with questions or concerns and when you voluntarily respond to questionnaires, surveys or requests for market research seeking your opinion and feedback. Providing communication data is optional to you.

5. Commercial Data: We may retain a history of the products you browse and/or purchase using the Services. Using Cookies, we track how users interact with our in order to provide valuable analytics and a better experience for our users.  

6. Social Media Data: We have pages on social media sites like Instagram, Facebook, and LinkedIn (“Social Media Pages”). When you interact with our Social Media Pages, we will collect Personal Data that you elect to provide to us, such as your contact details. In addition, the companies that host our Social Media Pages may provide us with aggregate information and analytics regarding the use of our Social Media Pages.

 

1.2 Internet activity data 

 

When you visit, use, and interact with the Services, we may receive certain information about your visit, use, or interactions. For example, we may monitor the number of people that visit the Services, peak hours of visits, which page(s) are visited, the domains our visitors come from (e.g., google.com, yahoo.com, etc.), and which browsers people use to access the Services (e.g., Chrome, Firefox, Microsoft Internet Explorer, etc.), broad geographical information, and navigation patterns. In particular, the following information is created and automatically logged in our systems:

1. Log Data: Information that your browser automatically sends whenever you visit the Site. Log Data includes your IP address, browser type and settings, the date and time of your request, and how you interacted with the Site.

2. Cookies Data: Please see the “Cookies” section below to learn more about how we use cookies.

3. Device Data: Includes name of the device, operating system, and browser you are using. Information collected may depend on the type of device you use and its settings.

4. Usage Data: We collect information about how you use our Service, such as the types of content that you view or engage with, the features you use, the actions you take, and the time, frequency, and duration of your activities.

5. Location Data: We derive a rough estimate of your location from your IP address. We collect your location information through the App using your device IP address, WiFi, Bluetooth, and GPS coordinates (e.g. latitude/longitude) of your mobile device. If you want to opt-out of the collection of your location data, please adjust your settings in your mobile device to limit the App’s access to your location data.

6. Email Open/Click Data: We use Wix Analytics in our email campaigns that allow us to collect your email and IP address as well as the date and time you open an email or click on any links in the email.

 

1.3 Cookies 

 

We may use cookies to operate and administer our Site, gather usage data on our Site, and improve your experience on it. A “cookie” is a piece of information sent to your browser by a website you visit. Cookies can be stored on your computer for different periods of time. Some cookies expire after a certain amount of time, or upon logging out (session cookies). Others survive after your browser is closed until a defined expiration date is set in the cookie (as determined by the third party placing it), and help recognize your computer when you open your browser and browse the Internet again (persistent cookies).

 

On most web browsers, you will find a “help” section on the toolbar. Please refer to this section for information on how to receive a notification when you are receiving a new cookie and how to turn cookies off. 

 

Please note that if you limit the ability of websites to set cookies, you may be unable to access certain parts of the Site and you may not be able to benefit from the full functionality of the Site.

Advertising networks may use cookies to collect Personal Data. Most advertising networks offer you a way to opt out of targeted advertising. 

 

If you access the Site on your mobile device, you may not be able to control tracking technologies through the settings.

 

2. How we use Personal Data

 

2.1 When you provide us with your Personal Data, we may use such information for a number of purposes, including:

1. To provide the Services;

2. To facilitate communication between you and EpiSense including, without limitation, responding to your questions or comments, sending emails concerning our products and services, or to contact you for feedback regarding us, our advertisers or our business partners;

3. To provide you with important functionality changes to the Site and/or Services, new services and special offers from EpiSense and reputable third parties that we think you will find valuable;

4. To customize, analyze, adjust and improve the Site and/or Services to meet your, our, or our business partners' needs and expectations;

5. To prevent fraud, criminal activity, or misuse of our Services, and to ensure the security of our IT systems, architecture, and networks;

6. To enforce our agreements with you and to comply with legal obligations and legal processes, and to protect our rights, privacy, safety, or property, and/or that of our affiliates, you, or other third parties; 

7. To contact you with non-essential business communications by email, if you have opted to be contacted by EpiSense via email; and

8. To update our symptom database.

2.2 Aggregated information

 

We collect, anonymize, and aggregate the Personal Data about your symptoms with health information of other users to create a symptom database that better informs the community about outbreaks in their area.

 

We may also aggregate Personal Data and use the aggregated information to analyze the effectiveness of our Services, to improve and add features to our Services, and for other similar purposes. In addition, from time to time, we may analyze the general behavior and characteristics of users of our Service and share aggregated information like general user statistics with prospective business partners. We may collect aggregated information through the Services, through cookies, and through other means described in this Privacy Policy.

 

2.3 Marketing

 

We may use your Personal Data to contact you to tell you about products or services we believe may be of interest to you. For instance, if you elect to provide your email or telephone number, we may use that information to send you special offers. You may opt out of receiving emails by following the instructions contained in each promotional email we send you. If available in our system, you can also control the marketing emails and/or text messages you receive by updating your settings through your account. In addition, if at any time you do not wish to receive future marketing communications, you may contact us at hello@episense.ca. If you unsubscribe from our marketing lists, you will no longer receive marketing communications, but we will continue to contact you regarding management of your account, other administrative matters, and to respond to your requests.

 

3. Disclosure of Personal Data to Third Parties

 

EpiSense represents and warrants that it will not sell your Personal Data. In certain circumstances we may share the categories of Personal Data described herein without further notice to you, unless such notice is required by applicable laws, with the following categories of third parties:

 

3.1 Fulfilment of Services

 

We may retain other companies and individuals to assist us in meeting business operations needs and to perform certain functions on our behalf. Examples include, but are not limited to, companies and individuals who: (i) administer EpiSense accounts; (ii) process payments; (iii) conduct surveys or promotional activities; (iv) deliver products or services; or (v) provide customer support, web hosting, internet service, and data analysis. Such third parties may be provided with access to information needed to perform their functions but may not use such information for any other purpose. We take commercially reasonable steps to ensure our service providers adhere to the security standards we apply to your Personal Data under this Privacy Policy.

3.2 Business transfers

 

In the event of a merger, acquisition, financing due diligence, reorganization, bankruptcy, receivership, sale of all or a portion of our assets, or transition of service to another provider (collectively a “Transaction”), your Personal Data and other information may be shared in the diligence process with counterparties and others assisting with the Transaction and transferred to a successor or affiliate as part of that Transaction along with other assets. Disclosure of your Personal Data under this section shall be governed by confidentiality agreements associated with the Transaction. 

 

3.3 Legal Requirements 

 

We may be required to share your Personal Data by law or in the good faith belief that disclosure of your Personal Data is necessary to (i) comply with a legal obligation, including to meet national security or law enforcement requirements, (ii) protect and defend our rights or property, (iii) prevent fraud, (iv) act in urgent circumstances to protect the personal safety of our employees, users of the Service, or the public, or (v) protect against legal liability.

 

3.4 EpiSense Personnel and Affiliates

 

EpiSense personnel and authorized consultants and/or contractors may have access to Personal Data, where such access is necessary in the normal course of EpiSense business.

We may also share Personal Data with our current and future affiliates, such affiliates being entities that control, are controlled by, or are under common control with EpiSense. Our affiliates may use the Personal Data we share but will do so in a manner consistent with this Privacy Policy.

 

4. Data retention

 

We store Personal Data for as long as reasonably necessary for the purposes described in this Privacy Policy, while we have a business need to do so, or as required by applicable law (e.g. for tax, legal, accounting, or other purposes), whichever is longer. All data exchanged with this Site is protected by SSL encryption, the same standard used to protect the transmission of credit card information and other sensitive data over the internet.   

 

5. Update your information

 

To change or correct your Personal Data, please contact us at hello@episense.ca. Note however that any health information uploaded to the Site to be included in our symptom database, will be anonymized and integrated with all other anonymized data received from other users. Once this information is uploaded, it cannot be corrected, removed or deleted. 

 

6. Children

 

You must be at least of the age of majority in your jurisdiction (the “Required Age”) to use our Services. By using our Site, you confirm that you are the Required Age. We do not intentionally collect information about or from persons under the Required Age. If we learn that we have collected information from persons under the Required Age, we will promptly delete such information and access to our Services by such person will immediately cease. If you believe that we may have collected Personal Information from someone under the Required Age, please submit your complaint in writing to the email address provided below.

 

7. Links to Third-Party websites

 

Our Site may contain links to other websites not operated or controlled by EpiSense, including social media platforms (“Third Party Sites”).

 

The information that you share with Third Party Sites shall be governed by the specific privacy policies and terms of service of such Third-Party Sites and not by this Privacy Policy, and EpiSense bears no responsibility or liability in law or otherwise with respect to the content or terms of such Third-Party Sites. By providing these links we do not imply that we endorse or have reviewed the Third-Party Sites or their corresponding Privacy Policies or Terms of Use. Please contact the Third-Party Sites directly for information on their privacy practices and policies.

 

8. Data Security

 

We implement commercially reasonable technical, administrative, and organizational measures to protect Personal Data both online and offline from loss, misuse, and unauthorized access, disclosure, alteration, or destruction.

 

For example, we use industry accepted tools and techniques to protect against unauthorized access to our systems.

You should be aware, however, that EpiSense has no control over the security of other Websites on the Internet that you might visit, even where such other sites are linked to our Services. If you share your computer or use a computer that is accessed by the general public, remember to sign off and close your browser window when you have finished your session. This will help to ensure that others cannot access your information.

We want you to feel confident using the Services. However, no system can be completely secure. Therefore, although we take commercially reasonable steps to secure your information, we do not promise, and you should not expect, that your information, searches or other communications will always remain secure. In the event of a breach of the confidentiality or security of your information, we will notify you if reasonably possible and as reasonably necessary so that you can take appropriate protective steps. We may notify you under such circumstances using the email address(es) we have on record for you. You should also take care with how you handle and disclose your information. 

9. Governing Law

 

The Site is intended for use by individuals in Canada and is governed by the laws of the Province of Ontario and the federal laws of Canada applicable therein. While EpiSense aims to store Personal Data, including any personal health information in Canada where possible, the Site is hosted on platforms that may use servers located in other jurisdictions, including the United States and the European Union. As a result, your information may be transferred to, stored, or processed outside of Canada. The data protection and other laws of Canada and other countries might not be as comprehensive as those in your country. 

Transfer of Personal Data will be subject to and occur if permitted by applicable privacy laws, including the Personal Health Information Protection Act, 2004 (Ontario) and the Personal Information Protection and Electronic Documents Act (Canada). By using this Site and providing us with your information, you consent to this transfer, storage, and processing, in accordance with this Privacy Policy and applicable laws.

10. Your choices with respect to your Personal Data

 

In certain circumstances providing Personal Data is optional. However, if you choose not to provide Personal Data that is required to use certain features of our Service, you may be unable to use those features.

 

To update or correct your Personal Data, you can contact us at hello@episense.ca. Alternatively, you may delete your account. If you choose to delete your account and end your service with us, please note that we will need to verify that you have the authority to delete the account. You acknowledge that certain activity generated prior to deletion of the account may be stored by us and shared with third parties as detailed in this Privacy Policy, and / or as required by applicable laws.

 

You also acknowledge that any Health Information reported to us which is anonymized and integrated with anonymized data of other users in the symptom database to report up to date information about symptoms or diseases in your area, may not be retrieved, removed and/or deleted once it is so anonymized and integrated. 

 

11. Changes to privacy policy

 

The Services and our business may change from time to time. As a result, we bear the sole discretion to make changes to this Privacy Policy, at any time. When we do so, we will post an updated version on this Privacy Policy, unless another type of notice is required by applicable law. By continuing to use our Service or providing us with Personal Data after we have posted an updated Privacy Policy, or notified you by other means, if applicable, you consent to the revised Privacy Policy and practices described in it.

 

CONTACT US: If you have any questions about EpiSense generally, this Privacy Policy or the Site, please feel free to contact us by sending an email to hello@episense.ca.