Privacy Policy for Quantum AI investment platform (Canada)

Overview and scope

This Privacy Policy explains how Quantum AI investment platform (“we”, “us”, “our”) collects, uses, discloses, and protects personal information when you access https://quantumaiinvestmentplatform.org (the “Website”) and related services (the “Services”).

The Services are intended for individuals aged 18+ only.

Who we are and how to contact us

If you have questions, requests, or complaints related to privacy, contact us:

Email: [email protected]

Phone: +1 (416) 555-0198

Address: 200 Bay Street, Suite 2900, Toronto, ON M5J 2J2, Canada

Key privacy principles

We aim to follow generally accepted privacy principles, including limiting collection to what is necessary, using information for identified purposes, safeguarding information with appropriate controls, and providing access and correction rights where applicable under Canadian privacy laws (including PIPEDA and provincial equivalents).

Information we collect

Information you provide directly

Depending on how you use the Services, you may provide:

• Account details (name, email, username, password, verification details)
• Identity or eligibility information (age confirmation; verification information where required)
• Support and communications (messages, attachments, preferences)
• Payment and billing details (if applicable; typically processed via payment providers)

Information we collect automatically

When you use the Website, we may collect:

• Device and browser data (IP address, device identifiers, OS, language, time zone)
• Usage and log data (pages viewed, clicks, session timestamps, error logs)
• Approximate location derived from IP (city/region-level)
• Cookie and similar technology data (as described below)

Information from third parties

We may receive information from:

• Identity verification providers (if used)
• Analytics and fraud-prevention providers
• Broker/execution, liquidity, or platform integration partners (where you choose to connect)
• Payment processors (confirmation tokens and status, not always full card numbers)

How we use personal information

We use personal information to:

• Create and manage accounts and user authentication
• Provide platform features such as dashboards, analytics, alerts, and settings
• Facilitate connectivity to third-party execution or account services you choose (where applicable)
• Monitor for security threats, suspicious activity, and service misuse
• Respond to support requests and communicate service updates
• Improve and test platform performance and user experience
• Meet legal, regulatory, and contractual obligations (where applicable)

Legal bases and consent (Canada)

In Canada, collection and use are typically based on your consent (express or implied), except where permitted or required by law (e.g., fraud prevention, security, compliance, or responding to lawful requests). You may withdraw consent where feasible, but doing so may limit your ability to use certain features.

Cookies and similar technologies

We may use cookies, SDKs, and similar tools to:

• Keep you signed in (where enabled)
• Store preferences and security settings
• Measure performance and traffic patterns
• Detect abuse and protect accounts

You can manage cookies via browser settings. Blocking some cookies may affect functionality.

How we share personal information

We do not sell personal information as “selling” is commonly understood. We may share information with:

Service providers (processors)

Vendors who help us operate the Website (hosting, analytics, support tools, security monitoring) under contractual confidentiality and security obligations.

Partners you choose to connect

If you link your account with third-party services (e.g., execution/broker connectivity), we share data necessary to enable that connection and operate it as you instruct.

Legal and safety reasons

We may disclose information to comply with legal obligations, enforce our terms, protect rights and safety, investigate fraud, or respond to lawful requests.

Business changes

If we undergo a merger, acquisition, or asset sale, information may be transferred as part of that transaction, subject to appropriate safeguards and notice where required.

International transfers

Some service providers may process data outside Canada. When this occurs, your information may be subject to the laws of the destination jurisdiction. We use contractual and technical measures designed to protect information during cross-border processing.

Account security expectations

You are responsible for maintaining the confidentiality of your login credentials. We strongly recommend:

• Using a unique, strong password and updating it periodically
• Enabling multi-factor authentication (if available)
• Avoiding sharing credentials or reusing passwords across sites
• Notifying us promptly if you suspect unauthorized access

Data retention

We retain personal information only as long as necessary for the purposes described, including security, dispute handling, audit needs, and legal requirements. Retention periods may vary by data type and context. When no longer needed, we take steps to delete, de-identify, or securely destroy information.

Your privacy rights and choices (Canada)

Subject to applicable law, you may request to:

• Access personal information we hold about you
• Correct inaccurate or incomplete information
• Withdraw consent (where feasible)
• Request deletion or de-identification in certain cases
• Ask questions about our policies and practices, including cross-border processing

How to submit a request

Email [email protected] with:

• Your account email/identifier
• The specific request (access, correction, deletion, etc.)
• Any supporting details to help us locate records

For security, we may verify your identity before fulfilling a request. We aim to respond within a reasonable timeframe consistent with applicable law.

Children and minors

The Services are not intended for individuals under 18. If you believe a minor has provided information to us, contact support so we can review and take appropriate action.

Security measures

We use a combination of administrative, technical, and physical safeguards appropriate to the nature of the information and the risks, which may include encryption in transit, access controls, monitoring, and secure development practices. No method of transmission or storage is fully secure; therefore, we cannot guarantee absolute security.

Updates to this Privacy Policy

We may update this Policy to reflect changes in practices, technology, or legal requirements. If changes are material, we will provide notice on the Website and/or through account communications. The “effective date” will be updated when revisions are posted.

Effective date

This Privacy Policy is effective as of the date it is published on the Website.