Privacy Policy

Information We Collect

At Xuneha-Comame, we collect various types of information to provide you with exceptional corporate finance services. The information we gather helps us understand your needs and deliver personalized financial analysis solutions.

Personal Information

• Contact details including your name, email address, phone number, and business address
• Professional information such as job title, company name, industry sector, and role responsibilities
• Account credentials and security information for platform access
• Financial data and documents you upload for analysis purposes
• Communication records including emails, chat logs, and support interactions

Technical Information

We automatically collect technical data when you interact with our platform. This includes your IP address, browser type and version, operating system, device information, and usage patterns. We also track how you navigate through our platform, which features you use most frequently, and your interaction preferences.

Financial Analysis Data

As a corporate finance platform, we collect financial statements, market data, transaction records, and other financial documents you provide for analysis. This information is essential for delivering accurate financial insights and recommendations tailored to your specific business needs.

How We Use Your Information

Your information serves multiple purposes within our corporate finance ecosystem. We've designed our data usage practices to maximize value for our clients while maintaining the highest standards of privacy and security.

• Service Delivery: Processing financial analyses, generating reports, and providing personalized recommendations based on your business requirements
• Platform Improvement: Enhancing user experience, developing new features, and optimizing our analytical tools based on usage patterns
• Communication: Sending service updates, market insights, educational content, and responding to your inquiries
• Security Monitoring: Protecting against unauthorized access, fraud prevention, and maintaining platform integrity
• Compliance: Meeting regulatory requirements in the financial services industry and maintaining audit trails

Information Sharing and Disclosure

Xuneha-Comame maintains strict controls over information sharing. We understand that corporate financial information is highly sensitive, and we've implemented comprehensive policies to protect your data while enabling essential business operations.

Service Providers

We work with carefully selected third-party service providers who assist in platform operations, data processing, and technical infrastructure. These partners are bound by strict confidentiality agreements and are only permitted to access information necessary for their specific functions. All service providers undergo thorough security assessments before engagement.

Legal Requirements

In certain circumstances, we may be required to disclose information to comply with legal obligations, court orders, or regulatory requests. Such disclosures are made only when legally mandated and are limited to the minimum information required. We will notify you of such requests when legally permissible.

Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the business transaction. We would notify you of any such change in ownership and provide options regarding your data.

Data Security and Protection

Security is paramount in our operations. We employ multiple layers of protection to safeguard your information against unauthorized access, alteration, disclosure, or destruction.

• Encryption: All data is encrypted both in transit and at rest using industry-standard AES-256 encryption protocols
• Access Controls: Strict role-based access controls ensure only authorized personnel can access specific information types
• Network Security: Advanced firewalls, intrusion detection systems, and regular security monitoring protect our infrastructure
• Regular Audits: Comprehensive security audits and penetration testing ensure our protective measures remain effective
• Employee Training: All staff receive ongoing security training and sign confidentiality agreements

Our security measures are regularly reviewed and updated to address emerging threats and maintain compliance with industry best practices. We maintain cyber liability insurance and have incident response procedures in place to address any potential security events promptly.

Your Rights and Choices

You have significant control over your personal information. We respect your privacy rights and provide multiple options for managing your data preferences.

Access and Correction

You can request access to your personal information at any time. We'll provide a comprehensive overview of the data we hold about you, including how it's being used. If you identify any inaccuracies, you can request corrections, and we'll update your information promptly.

Data Portability

You have the right to receive your personal data in a structured, commonly used format. This allows you to transfer your information to other service providers if desired. We'll provide your data in CSV or PDF format within 30 days of your request.

Deletion Requests

You can request deletion of your personal information, subject to certain legal and contractual obligations. We'll honor deletion requests within 60 days, though some information may need to be retained for regulatory compliance or legitimate business purposes.

Communication Preferences

You can control the types of communications you receive from us. Opt out of marketing emails while still receiving essential service notifications, or adjust frequency preferences to match your needs.

Data Retention and International Transfers

We retain your information only as long as necessary to provide services and meet legal obligations. Personal information is typically retained for the duration of your account plus seven years for regulatory compliance purposes.

Retention Periods

• Account information: Retained while account is active plus 7 years after closure
• Financial analysis data: Retained for 10 years to support historical analysis and regulatory requirements
• Communication records: Retained for 3 years for service quality and dispute resolution
• Technical logs: Retained for 12 months for security and performance monitoring

International Data Transfers

As a Canadian company, your data is primarily processed within Canada. However, some service providers may process data in other countries with adequate privacy protections. All international transfers are protected by appropriate safeguards including contractual clauses and adequacy decisions.

Updates to This Policy

We regularly review and update this privacy policy to reflect changes in our practices, technology, and legal requirements. When we make significant changes, we'll notify you through email or prominent notices on our platform at least 30 days before the changes take effect.

Minor updates that don't materially affect your rights may be made without prior notice, but we'll always maintain the current version on our website with clear date stamps. We encourage you to review this policy periodically to stay informed about how we protect your information.