Privacy Policy

This Privacy Policy (Notice) describes how personal information is collected, used and stored through use of the management platform by MYSOFTDAY Inc. (“MYSOFTDAY” or “we” or “us” or “our”) and through use of our websites and web-based resources. We refer to our platform, websites and web-based resources as the “Services”.

In this Policy, we use the word “Subscriber” to refer to anyone who has subscribed to and paid or not to paid for use of our  management platform, and also includes their individual sub-users (Subscriber's Clients). We use the word “you” and “your” to refer to any individual user of our Services, such as a Service Provider, staff member or client of a Subscriber, or an individual browsing or using our websites and web-based resources. We use the word “Subscriber's Client (s)” to refer to any individual that interacts with MYSOFTDAY’s management platform to book or use the services of a Subscriber.

Notice to Subscriber's Clients
If you are a Subscriber's Client at any of our Subscriber, your Subscriber controls your information, including your contact information, billing details and other records. Please contact your Subscriber (Service provider) for any questions about your information. See the section titled Subscriber's Client Data below for further information.

Why MYSOFTDAY Collects Personal Information
MYSOFTDAY collects personal information in order to provide our Services to our Subscribers and their users, for our own business purposes (such as managing subscription and payments), to learn about use of our Services (for improvement, accessibility and relevant content), and to provide with information about our Services, including features and promotions. We collect only the minimum amount of personal information needed for these purposes. We do not sell or trade personal information, and we will only share your personal information with third parties in the ways that are described in this Privacy Notice.

Information MYSOFTDAY Collects from You
Contact Information. We collect your contact information, such as your name, email address and organization, when you fill out our online forms or set up your user account for our Services. We use your contact information to activate your user account, give you access to the Services, and to send you notices about your user account. We may also use your contact information for marketing purposes, such as promotional emails, direct mail and sales contacts. You can opt-out of our marketing communications at any time by unsubscribing or contacting us at [email protected]. Please note that other than email addresses used in authentication credentials, MYSOFTDAY does not collect or manage the contact information of Subscriber's Clients, or any marketing or other communications between a Subscriber (Service provider) and its clients. MYSOFTDAY may integrate with third-party services to enhance functionality, such as payment processors, SMS services, and authentication providers. MYSOFTDAY is not responsible for the privacy practices, security measures, or policies of these third parties. Users are encouraged to review the privacy policies of any third-party services they interact with through the platform.

Subscriber's Client Authentication Information
We collect your authentication credentials (user ID or email and password) (“Subscriber's Client Authentication Information”) when you create an account to link, book and obtain services from one or more Subscriber websites as a Client. We manage the authentication process to allow you to use the same authentication credentials for the different Subscriber websites you elect to have an account with.

Billing Information
When a Subscriber subscribes to our Services, we also ask them to provide credit card information to process payments.

Log and Device Information
When you access and browse our Services, we collect information about how you are accessing our Services, such as your internet or mobile network connection, your browser or the type of mobile device you are using (if applicable). We use this log and device information to identify how our Services are being accessed and used so we can optimize them for the types of connections, browsers and devices being used. This information is not used to market or send promotions at an individual user level.

Cookies and Tracking Information
Our website uses cookies. Cookies are small data files that are downloaded to your computer or device by a website. Your web browser lets you manage cookies through its “settings” or “options” menus. You can change your browser settings to display a warning before accepting a cookie or to refuse all cookies other than essential cookies required for the functioning of the Services. You can also delete cookies at any time; however, please note that certain cookies must remain in order to use certain portions of the Services. We also use web beacons, which are tiny graphic objects embedded in a web page or an email which allows us to determine if a user has viewed the web page or email.

 

We use cookies and web beacons:

  • To learn about use of our websites, such as user traffic patterns and the effectiveness of our navigational structure
  • To identify email open rates in order to gauge the effectiveness of certain communications or marketing campaigns to Subscriber websites
  • To allow you to login to secure areas of our Services
  • To store your login credentials for easy access to our Services

For more information about cookies, see our Cookie Policy below.

 

Social Media
If you login to our Services using a third-party sign-in service, such as Google, Facebook Connect or Twitter, we will receive personal information from those services, such as your name and email address in order to pre-populate our online forms. We also include social media “Like” and “Share” buttons on our websites. These features may collect your IP address and the page you are visiting on our website. They may also set a cookie to enable the feature to function properly. Your interactions with these features are governed by the privacy policies of the third parties who provide them.

Legal Basis (GDPR EU/UK)
For personal information that is subject to the General Data Protection Regulation (GDPR), we rely on the following legal bases for collecting and using your personal information:

Your consent
The performance of the contract between the Subscriber or Subscriber's Client and us, as the provider of the Services

Our legitimate interests (which are not overridden by your privacy rights), such as operating our business, understanding and improving our Services, direct marketing related to our Services, communicating with Subscribers and Subscriber's Clients about our Services, events or related resources, improving our websites and protecting our legal rights and interests.

You may withdraw your consent at any time. Where we are using your personal information for our legitimate interests, you have the right to object to that use. See below under Your Rights for how to withdraw consent or object.

If you are a Subscriber's Client of one of our Subscriber, please contact your Service provider if you have any questions about the legal basis for collecting and using your personal information other than your MYSOFTDAY ID authentication information, about which you can contact us. Our Subscribers may have a different legal basis for collecting and using a Subscriber Client’s personal information.

Service provider Data
Service provider Data. Subscribers (Service providers) use our management platform to collect personal information from their clients and create client records. These records may include a client’s name, address, insurance and billing information, appointment history and other data (“Client Data” or "Subscriber's Client Data"). This information is sometimes referred to as “personal information”, “protected information” or “sensitive data” depending on the location of the Subscribers and the privacy laws applicable to them. If you are a Client, Client Data is collected from you when you visit your Subscriber website and when you create a profile or book appointments with the Subscriber through our online booking Service.

Subscriber’s Role
Subscribers retain sole control over Client Data and may be referred to as a “information custodian”, a “covered entity” or a “controller” depending on their location and the privacy laws applicable to them. Subscribers determine:

  • What Client Data to collect;
  • How the Subscriber will use the Client Data;
  • Who has access to Client Data;
  • How long the Subscriber will store Client Data; and
  • On what basis the Subscriber may delete Client Data.

Subscribers are responsible for complying with laws and regulations governing the use of Client Data, and for determining the legal basis for such use. MYSOFTDAY does not verify, monitor, or control the data collected, processed, or stored by Subscribers or their Clients. MYSOFTDAY shall not be held liable for any inaccuracies, legal violations, or damages resulting from the collection, processing, or use of such data. Any disputes regarding Client Data must be resolved directly between the Subscriber and their Client.

MYSOFTDAY’s Role
MYSOFTDAY is a service provider to Subscribers and may be referred to as an “agent”, “business associate” or “processor” of the Subscriber. MYSOFTDAY stores Subscriber’s Client Data in its secure data centers and makes it available to Subscribers and their users through our management platform. Therefore, except in relation to Client Authentication Information, MYSOFTDAY otherwise has no control over Client Data. MYSOFTDAY will only access Client Data on the instructions of the Subscriber or its representatives or, in rare cases, where needed in order to prevent or address technical problems, your requests for support, or if required by law or court order. Please note that in order for MYSOFTDAY to verify that we have true consent to access your account and its data, that we may verify the person requesting that we access. We may store and access non-identifiable usage data in connection with managing your subscription and licenses.

Client Authentication Data
In the interest of facilitating a more convenient and comprehensive experience to Clients, MYSOFTDAY allows Clients to use their Client Authentication Information to link, book and obtain services from multiple Subscribers; the user ID, email, phone number and password for these unified accounts used by Clients are referred to as Client Authentication Data. MYSOFTDAY shall be considered a “personal information custodian” or a “controller” of Client Authentication Data for the purpose of administration of authentication and access to the management platform and to each of the Subscriber accounts that the Client is linked to. Client Authentication Data shall not be considered Subscriber Data. MYSOFTDAY assumes responsibility for the safeguarding of Client Authentication Data and will not disclose Client Authentication Data to any Subscriber without the prior consent of the Client. MYSOFTDAY shall be responsible to ensure that only Clients who have successfully authenticated and are linked to a specific Subscriber account are allowed to access such Subscriber account.

Storage Location
Client Data and Subscriber Data are stored in the data centre. We currently have data centre in the United States, Seattle, though this may change from time to time. Please note that we use Canada and US-based service providers for appointment reminders sent by SMS and, therefore, Client Data contained in appointment reminders will go through and may be stored temporarily in the United States. Similarly, the group Service is facilitated by a provider which utilizes the nearest available data centre to ensure quality of calls and sms notifications; therefore, in such cases, we do not guarantee that the processing of your data will always remain within your chosen region. We require all our data centres and service providers to maintain a high level of security and to comply with applicable privacy laws. MYSOFTDAY does not guarantee that all data processing will remain within the Subscriber’s selected jurisdiction due to the use of third-party services (e.g., SMS notifications, email communications). By using our Services, you acknowledge and accept that some data transfers may occur outside your chosen region as required to provide the Services.

Client Rights
Clients have certain rights with respect to their Client Data, which may include knowing what information your Subscriber has about you, correcting any inaccurate Client Data, obtaining a record of your Client Data and, in certain circumstances, deleting or removing your Client Data. Please note that Subscribers have strict legal and regulatory obligations around Client Data and may not always be permitted to delete or remove Client Data.

Questions about Client Data
If you have any questions about your Client Data or wish to exercise any or your client rights, please contact your Subscriber (Service Provider). If your Subscriber has any questions about the management of Client Data in the Services, they may contact us and we will support them as needed to respond to your request. Please note that, in order to maintain strict security of your Client Data, we can only access Client Data upon instruction from the Account Owner of the Subscriber. If your questions are about your Client Authentication Data, you may contact us directly and we will respond to your request.

 

User Agreement & Liability Waiver

By using the Services, you acknowledge and agree that:

  • MYSOFTDAY does not assume liability for any legal claims, damages, or disputes arising from the use of the platform by Subscribers or Clients.
  • You waive any claims against MYSOFTDAY regarding data accuracy, security breaches beyond our control, or the conduct of Subscribers.
  • You are solely responsible for verifying the credentials, policies, and data handling practices of the Subscribers you interact with.

 

Sharing Your Information
We do not sell or distribute personal information to third parties for their own commercial or marketing purposes. We will only share personal information we collect in the following circumstances:

Suppliers and Providers
In order to operate our business and provide the Services to our Subscribers and their users, we may need to share a limited amount of personal information, including Client Data, with our third-party suppliers and service providers. Before sharing personal information, we ensure that the third parties receiving the personal information have provided appropriate safeguards, and that privacy rights are protected and preserved. Some of the areas where we use third-party suppliers and providers include:

  • Our data centers where all platform data is stored
  • Customer support services to help us collect feedback and manage our support services
  • Communication services to send out email and SMS notices or reminders
  • Payment processors

Corporate Transactions
We may share personal information in connection with negotiating or carrying out a financing or acquisition of our business, a merger or amalgamation with another business, or a sale of all or part of our company assets. Before sharing personal information, we will ensure that appropriate confidentiality and non-disclosure undertakings are in place. We will not share Client Data in these circumstances.

MYSOFTDAY may, at its sole discretion, notify users about the transfer of their personal data as part of such a transaction, provided that such notification does not violate legal or contractual obligations.

Compliance with Laws
We may disclose personal information to governmental or judicial authorities (to respond to a request, subpoenas, registrations, or legal processes) or other third parties (as required by law, to comply with our legal and regulatory obligations, or to protect and secure our interests, rights, and our assets), to enforce security requirements, or to respond to an emergency which we believe, in good faith, requires us to disclose personal information.

We may also be required to disclose personal information to enforce our legal rights, to enforce security requirements, or to respond to an emergency which we believe, in good faith, requires us to disclose personal information. In such instances, we carefully review a request to make sure it complies with applicable law; if we consider the request to be too broad, we may try to narrow it to minimize the scope of the request, and, if permissible, we will make every reasonable effort to give you as much notice and detail as we can regarding the disclosure of your personal information, what information was disclosed and why.

MYSOFTDAY is not liable for any consequences resulting from the disclosure of personal information if such disclosure is carried out in accordance with applicable laws.

MYSOFTDAY will not disclose Client and Subscriber Data unless legally required to do so.

Client Authentication Data
MYSOFTDAY shall not share your Client Authentication Data with any of the Subscribers that you, as a client, elect to link your account to.

MYSOFTDAY is not responsible for data breaches or compromise of authentication data caused by the client’s own actions, including but not limited to weak passwords, sharing credentials with third parties, or other negligent security practices.

Anonymized / Aggregated Data
MYSOFTDAY may use computer-generated algorithms to gather anonymous and aggregated information from Subscriber Data in order to assist in our continued development and improvement of the Services, and for the purpose of analysis or compiling statistical data.

MYSOFTDAY guarantees that anonymization of data is carried out in compliance with applicable privacy laws and ensures that re-identification of users is not possible.

MYSOFTDAY may use aggregated and anonymized data indefinitely, without restrictions and without compensation to users.

Security
We take reasonable measures, including firewall barriers, SSL/TLS encryption techniques, and authentication procedures, to help protect personal information from accidental loss, theft, misuse, and unauthorized access, disclosure, alteration, and destruction. We protect your personal information, including Subscriber's Client Data stored in our platform, by:

  • Using industry-standard security controls such as encryption and an SSL (Secured Sockets Layers) certificate to ensure information is transmitted over a secured connection between your browser and our web server.
  • Using state-of-the-art data centers with appropriate security and compliance certifications, such as ISO-27001, SOC 2, etc.
  • Requiring password protection of your user account with a password set by you. We cannot access or identify your password. The only way to recover a password is for you to initiate a reset via the email address you use for the Services.

While we employ industry-standard measures to protect your information, no electronic communication or data storage system can be guaranteed to be 100% secure. We cannot guarantee absolute security against unauthorized access, hacking, data breaches, or other cybersecurity incidents.

You share responsibility for the protection of your personal information by:

  • Setting a strong, unique password and keeping it confidential.
  • Enabling two-factor authentication (if available).
  • Avoiding sharing your credentials or accessing your account from unsecured devices or networks.

MYSOFTDAY is not liable for any unauthorized access to, or loss of, personal data resulting from:

  • Cyberattacks, hacking, malware, or other malicious activities beyond our reasonable control.
  • Negligence or improper security practices by the user, including weak passwords or sharing of credentials.
  • Unauthorized access by third parties due to breaches of other services that the user has linked to MYSOFTDAY.
  • Force majeure events, including but not limited to natural disasters, power outages, or government-imposed restrictions.

By using our Services, you acknowledge and accept these security limitations and agree to take appropriate measures to protect your personal data.

 

Storage Period
We retain personal information only for as long as necessary to achieve our stated purposes or as required by applicable law. This includes:

  • Subscriber Account Data: Contact and billing information is retained for as long as a Subscriber account is active and for a reasonable period after deactivation. This allows for potential reactivation and ensures compliance with legal requirements and internal record retention policies.
  • User Account Data: We may retain user account information as necessary to comply with legal obligations, resolve disputes, enforce our agreements, or maintain our relationship with a Subscriber.

After the expiration of the retention period, we will securely delete or anonymize personal data. However, backup copies may be retained for a limited period due to security, compliance, or technical reasons before being permanently erased.

If you are a Client of one of our Subscriber websites, please contact your Service Provider for information regarding the storage period for your Client Data, as MYSOFTDAY does not control such retention policies.

MYSOFTDAY is not responsible for the retention policies of third-party service providers, such as payment processors, cloud storage providers, or external CRM systems that a Subscriber may use. You should refer to their respective privacy policies for more details on their data storage practices.

International Transfers
Personal information may be transferred to and processed in Canada and the United States. Before transferring your personal information, we implement appropriate safeguards to protect your privacy rights, which may include:

  • EU adequacy decisions, where applicable.
  • Certification and adherence to the EU-US Data Privacy Framework, Swiss-US Data Privacy Framework, and the UK Extension to the EU-US Data Privacy Framework.
  • Standard Contractual Clauses (SCCs) approved by the European Commission.
  • International Data Transfer Agreements approved by the Information Commissioner’s Office in the UK.
  • Binding corporate rules or other legally recognized mechanisms.

While MYSOFTDAY takes reasonable precautions to ensure data protection during international transfers, we cannot be held responsible for security vulnerabilities in third-party networks, communication channels, or jurisdictions with weaker data protection laws. By using our Services, you acknowledge that your data may be processed in countries where data protection laws differ from those in your jurisdiction.

Your Rights
Individuals have certain rights regarding their personal information. If you are a Client of one of our Subscriber websites, please contact your Service Provider to exercise any of these rights with respect to your Client Data. To exercise your rights over your Client Authentication Data, please contact us.

Correction and Deletion
We take reasonable steps to ensure that the personal information we collect is accurate and complete. You may update, correct, or delete your account information at any time by logging into your user account and modifying your personal details, including preferences for receiving communications. You may also submit a request to update, correct, or delete your personal information by contacting us.

Exceptions:

  • We may retain certain data as required by law, regulatory obligations, fraud prevention, or security purposes.
  • Data necessary for ongoing contractual obligations, dispute resolution, or enforcing agreements may also be retained.
  • Backup copies containing personal data may be retained for a limited period before being permanently erased.

Withdrawing Consent

Where we rely on your consent to process personal information, you have the right to withdraw it at any time by contacting us. We will process your request promptly. Additionally, all marketing communications include an option to unsubscribe or “opt-out.”

Exceptions:

  • Withdrawal of consent does not affect the lawfulness of processing that occurred before consent was withdrawn.
  • If withdrawing consent impacts service functionality, certain features may no longer be available.

Access and Data Portability
You have the right to request access to the personal data we have collected about you and, where applicable, request it in a structured, commonly used electronic format.

Limitations:

  • We may not be able to provide certain information if it includes the personal data of another individual, confidential business data, or could compromise security measures.
  • Requests must be reasonable and not excessive; otherwise, we may charge a fee in accordance with applicable laws.
  • We will respond within thirty (30) days of receiving a valid request.

Restriction and Objection
Residents of the EU, Switzerland, or the UK may request that we restrict processing of their personal data or object to processing when based on legitimate interests.

Important Considerations:

  • Restricting or objecting to processing may limit or disable certain functionalities of the Services.
  • Requests will be reviewed on a case-by-case basis, considering legal and operational feasibility.

Complaints and Supervisory Authorities
If you believe we have not adequately addressed your concerns, you have the right to lodge a complaint with the relevant data protection authority:

 

Cookie Policy

What Are Cookies?
Cookies are small data files that are downloaded to your computer or device by a website. They are commonly used to track overall website usage, remember user preferences, and improve and customize the browsing experience.

Cookies may be session-based or persistent:

  • Session-based cookies exist only during a single session and are deleted when you close your browser.
  • Persistent cookies remain on your device for a defined period after you close your browser, typically between 6 months and 2 years.

Cookies We Use and Why We Use Them
When you visit our websites or use our online services, we, or an authorized third party, may place cookies on your browser to collect information about your online activities over time and across different websites.

We use the following types of cookies:

  • Strictly Necessary Cookies – These cookies are essential for the functionality of our websites. They enable you to log in, process transactions, and access secure areas. They also help enforce security settings and determine whether your browser supports cookies. These cookies cannot be disabled.
  • Functional Cookies (if applicable) – These cookies remember your preferences (such as language selection) and provide an enhanced user experience.
  • Analytics Cookies (if applicable) – We use third-party analytics tools (such as Google Analytics) to collect information on how users interact with our websites, helping us improve functionality and performance.
  • Marketing & Advertising Cookies (if applicable) – These cookies track browsing behavior to deliver targeted advertisements and measure their effectiveness. They may be placed by third-party advertising networks.

Third-Party Cookies
Certain third-party service providers (such as analytics or advertising platforms) may also place cookies on your device when you visit our websites. These cookies are governed by the privacy policies of the respective third parties, and MYSOFTDAY does not have control over their usage. We encourage you to review their privacy policies for more details.

Your Consent
By continuing to use our websites, you consent to our use of cookies as described in this Cookie Policy. If you do not agree, you may disable cookies through your browser settings, but certain website features may not function correctly.

How to Change Your Cookie Settings
Most web browsers allow you to control cookies through settings. You can configure your browser to:

  • Block cookies altogether.
  • Alert you before accepting a cookie.
  • Delete stored cookies at any time.

For more information on managing cookies, visit:

Retention Period: Cookies remain active for their designated lifespan (typically 6 months to 2 years) unless deleted manually or replaced by newer cookies.

 

 

Contact Us
If you have any questions regarding the Privacy Policy or concerns about our Privacy Notice and our privacy practices, please contact us at:

 

Email: [email protected]
Phone: +1 672 999 3399

You can also reach us by mail at:
MYSOFTDAY Inc.
1636 1st Ave N, Saskatoon, SK
S7K1Z5, Canada

We will make every effort to answer your questions promptly.

Updated: March 16, 2025