Edouard Beauchesne (1985) Inc.
Distribution Ste Foy (1982) Ltée
EB Métal Inc.
(Hereinafter collectively referred to as ‘Groupe Beauchesne’)
1. Introduction
At Groupe Beauchesne (“Groupe Beauchesne“, “we”, “our”), we place the utmost importance on protecting the personal information of our employees, clients, suppliers, and partners. In accordance with the provisions of Law 25, which modernizes personal information protection rules in Quebec, we have implemented strict measures to ensure the security and confidentiality of the data collected.
These measures have been developed in compliance with applicable personal information protection laws, including but not limited to:
- The Act to modernize legislative provisions respecting the protection of personal information (Law 25).
- The Personal Information Protection and Electronic Documents Act (S.C. 2000, c. 5).
- The Act Respecting the Protection of Personal Information in the Private Sector (CQLR, c. P-39.1).
- The Access to Documents Held by Public Bodies and the Protection of Personal Information Act (CQLR, c. A-2.1).
- Other applicable provincial and federal privacy laws
2. Our Policy
At our company, the protection of personal information is a top priority. This Privacy Policy (the “Policy”) aims to clearly and transparently explain our practices regarding the collection, use, retention, and destruction of personal information.
Through this Policy, we commit to obtaining your consent whenever necessary and as required by applicable laws, to enabling you to exercise your rights regarding your personal information, and to protecting its confidentiality.
The Personal Information Protection Officer (“PRP Officer”), whose contact details are provided in Section 14, is responsible for implementing and ensuring compliance with this Policy.
3. Individuals Covered by the Collection of Personal Information.
As part of its operations, Groupe Beauchesne collects, uses, and processes personal information concerning several categories of individuals, including:
- Employees and job applicants.
- Clients.
- Suppliers, subcontractors, and business partners.
- Visitors to our website and other stakeholders.
Please note that this Policy does not cover the practices of third-party websites to which our website may refer.
4. Types of Personal Information Collected and Their Uses
Personal information is any data that directly or indirectly identifies a natural person. We only collect the information necessary for the following purposes:
4.1 In an Employment Context
Employment Relationship Management:
- Payroll processing and benefits administration.
- Performance evaluation and training tracking.
- Compliance with legal and regulatory obligations.
For these purposes, we collect, for example:
- Your banking details for payroll processing.
- Emergency contact information of a relative in case of an accident.
After the end of your employment, we use some of your information to fulfill our legal obligations, particularly those related to taxation or the Commission for Standards, Equity, Health and Safety at Work.
Recruitment:
- Pre-selection and interviews, specifically information essential for assessing your application, including information provided during your application, in your resume, or during pre-employment interviews, including those related to experience, education, and training.
- Background checks: absence of conflicts of interest, your criminal record, and references from previous employers
4.2 In a Business Context
Provision of materials and services:
- Client identification and authentication:
- Information related to the organization.
- First name, last name, address, and phone number of contact persons.
- Billing and customer service:
- Information regarding product and service needs.
- Data required for billing and follow-up.
Legal compliance:
- Compliance with tax and regulatory obligations.
- Response to legal or judicial requests.
5. Sources and Methods of Information Collection
Groupe Beauchesne collects personal information from several sources, depending on the interactions and relationships maintained with various stakeholders.
- Direct collection (contracts, forms, direct communication, calls, in-person meetings).
- Via our website and digital platforms (online forms, cookies, client portals)
- Via our partners and affiliates (suppliers, subcontractors, client references)
- From authorized third parties (former employers, credit agencies).
- Public or third-party sources (public registers, verification agencies).
6. Company Commitment
In a spirit of transparency and compliance with legal requirements, Groupe Beauchesne is committed to:
- Ensuring responsible and secure management of personal information
- Informing individuals about the reasons and methods for collecting their data
- Implementing appropriate governance and security mechanisms
- Enabling individuals to exercise their rights regarding data protection
- Responding promptly in the event of an incident involving personal information
7. Collection and Use of Personal Information
The personal information collected by Groupe Beauchesne is gathered in strict accordance with the principles of necessity, legitimacy, and transparency.
8. Security and Governance Measures
In our field of activity, managing personal information involves specific measures tailored to industry requirements, including:
- Implementation of governance policies.
- Implementation of security controls.
- Training and awareness for employees.
- Regular audits.
9. Protection of Personal Information
Consequently, we apply security measures appropriate to the nature of the information:
- Technical measures: data encryption, two-factor authentication, system monitoring.
- Administrative measures: internal training, access restrictions.
- Physical measures: secured offices, controlled access.
10. Management of Privacy Incidents
In the event of an incident involving personal information, Groupe Beauchesne commits to:
- Recording all incidents in a log in accordance with the requirements of Law 25.
- Assessing the risk of serious harm that may result from the incident.
- Notifying the Commission d’accès à l’information du Québec and the affected individuals when required.
- Implementing corrective actions to mitigate risks and strengthen security measures.
11. Sharing of Personal Information
We only share your information with:
-
Service providers: IT partners, accounting firms, security services.
Information is only shared when necessary for the execution of their service contract.
In all cases, we implement written contracts ensuring that the shared information remains confidential, is used solely for the performance of their service contract and is deleted when no longer required.
- Legal authorities: courts, regulatory bodies if required.
- Affiliated companies: only within the scope of this Policy.
12. Retention and Destruction of Personal Information
We retain information for as long as necessary to achieve the objectives of this Policy and to meet our legal obligations. When no longer required, the information is securely destroyed.
13. Rights of Individuals
Any concerned individual may exercise the following rights:
- Access and rectification: review and correct their information.
- Objection and withdrawal of consent: limit or stop certain data processing.
- Data portability: request a copy of their information.
- Complaint: contact the PRP Officer in case of dissatisfaction.
14. Contact
For any questions regarding this Policy, please contact our PRP Officer:
Human Resources Department at email address rh@groupebeauchesne.com
15. Compliance, Continuous Improvement and Policy Updates
Groupe Beauchesne makes every effort to ensure strict compliance with the obligations of Law 25 as well as other applicable privacy protection laws.
We reserve the right to modify this Policy based on the evolution of our practices and applicable laws. Any significant changes will be communicated on our website or via email.