Privacy Policy

Last updated: 12 June 2026

This Privacy Policy describes how Ridgeline Bondvale (“we”, “our”, “us”) collects, uses and protects your personal information when you visit ridgelinebondvale.org or open an account with us. The policy is written to comply with Canadian privacy law, including PIPEDA and applicable provincial frameworks.

Information We Collect

To open an account and meet our regulatory duties, we collect identity details (full name, date of birth, residential address, government-issued ID, source-of-funds declaration), contact details (email, phone), financial information needed to process deposits and withdrawals, and technical data such as device type, browser, IP address and basic usage analytics.

How We Use It

  • • To verify your identity under KYC/AML obligations.
  • • To execute trades, deposits and withdrawals you request.
  • • To detect and prevent fraud, money laundering and account takeover.
  • • To send service notifications, security alerts and statements.
  • • To improve the platform, including aggregated analytics and customer-experience research.

Cookies and Tracking

We use cookies and similar technologies to keep you signed in, remember your interface preferences and measure how the site performs. Analytics cookies are anonymised before aggregation. You can clear cookies in your browser settings at any time; doing so may sign you out.

Sharing and Disclosure

We share personal data only with vetted service providers (identity-verification vendors, payment processors, cloud hosting, customer-support tooling) and with competent regulators and law-enforcement bodies when a lawful request requires it. We do not sell or rent your personal data to third parties for marketing.

Data Retention

Account, transaction and verification records are retained for at least seven years after the closure of your account, in line with Canadian record-keeping rules. After that, records are permanently deleted or anonymised.

Your Rights

You may request a copy of the personal information we hold, ask us to correct inaccuracies, or withdraw consent for non-essential processing. Some processing is mandatory while your account is open (for example, KYC/AML record-keeping). Send all requests to [email protected] and we will respond within thirty days.

Security

Personal information is encrypted in transit and at rest. Access is restricted on a need-to-know basis, logged, and reviewed regularly. We run third-party penetration tests, internal red-team exercises, and a public bug-bounty programme to strengthen the platform.

Changes

If we update this policy, the “Last updated” date above will change and material updates will be highlighted in your account dashboard before they take effect.

Contact

Questions about this policy can be sent to [email protected]. For complaints you cannot resolve with us directly, you may contact the Office of the Privacy Commissioner of Canada.