· Scope & Definitions
This Privacy Policy applies to Daily Promotions (“DP”) and its platform and tools. “Client” means a business that signs up with DP; “End User” means an individual whose data a Client collects or contacts using DP.
· Platform Role (Processor vs. Controller)
DP provides marketing and data-collection tools and generally acts as a processor for Client-directed activities. DP is a controller only for its own account, billing, support, security, and website operations.
· Where Sign-Ups Occur
Clients may collect End User data at their premises or events, including through NFC or QR codes using DP. Data captured on-site is initiated and controlled by the Client, not DP.
· What We Collect (Categories)
From Clients: account details, billing information, administrative contacts, and usage logs. From End Users (on a Client’s instructions): contact details, consent preferences, and interaction events (e.g., scans, clicks, unsubscribe).
· How Data Is Collected
Data is provided directly by Clients or their staff, or by End Users via forms, NFC/QR flows, or opt-ins configured by the Client. DP also logs technical information for security and service operations.
· Lawful Basis and Consent
Clients are responsible for determining and recording the lawful basis (e.g., consent, contract, legitimate interests) for End User data they collect. DP relies on the Client’s instructions and legal basis when processing such data.
· How We Use Information
DP processes data to operate the platform, deliver emails and campaigns as configured by Clients, provide support, and maintain security. DP may use de-identified or aggregated data to improve and analyze service performance.
· Client Responsibilities (Critical)
Clients must obtain all required consents, provide required notices, honor opt-out requests, and keep their credentials secure. Clients must configure suppression lists, unsubscribe links, and lawful content for all messages.
· No Liability for Client-Site Breaches
Data collected, stored, or handled at the Client’s site, on the Client’s devices, or by the Client’s personnel remains the Client’s sole responsibility. DP is not responsible or liable for any loss, theft, or disclosure occurring in those environments.
· Staff Misuse (Recording/Photos/Downloads)
DP is not liable if Client personnel or third parties record, screenshot, photograph, download, or otherwise capture data from Client systems or premises. Also if the client or his staff forwards a malicious link such conduct is outside DP’s control and falls under the Client’s policies and oversight.
· Email Sending & Deliverability
DP transmits emails and messages under the Client’s configuration and recipient lists. The Client is responsible for content legality, recipient permissions, and compliance with anti-spam and marketing laws.
· Sharing with Service Providers
DP may engage vetted sub-processors (e.g., hosting, email delivery, analytics) under confidentiality and data-processing agreements. A list of material sub-processors will be provided upon reasonable request where required by law.
· Security Measures & Limitations
DP implements appropriate technical and organizational measures to protect personal information. Due to the inherent nature of electronic transmission and storage, absolute security cannot be assured in all circumstances.
Data Retention & Deletion
DP retains End User personal information only as long as necessary to comply with legal obligations, or enforce our agreements, or until we receive a verified deletion request. Upon verification, we remove the data from active systems and instruct our service providers to do the same; residual copies may persist in backups and audit logs for a limited period and are purged or irreversibly anonym zed per our retention schedule, except where law or security requires longer retention.
· Your Privacy Rights
End Users should contact the relevant Client to exercise rights such as access, correction, deletion, objection, restriction, or portability, where applicable. When DP is the controller (e.g., for DP account data), contact DP using the information below.
· Cookies & Similar Technologies
DP uses cookies or similar tools for authentication, fraud prevention, and performance. You may control cookies via browser settings, but some features may not function properly.
· Legal Disclosures & Protection of Rights
DP may disclose information if required by law, regulation, subpoena, or court order, or to protect the rights, safety, and security of DP, Clients, End Users, or the public. Any such disclosure will be limited to what the law requires.
· Changes to This Policy
DP may update this Privacy Policy to reflect legal, technical, or business changes. The “Last Updated” date indicates the latest version, and material changes will be communicated as required.
· Contact & Complaints
For DP-controlled data or policy questions, contact: contact@dailypromotions.ca. End Users seeking to exercise rights for data controlled by a Client should contact that Client directly.
· Governing Terms & Conflicts
If this Policy conflicts with a signed agreement between DP and a Client, the signed agreement governs to the extent of the conflict. Additional jurisdiction-specific notices may apply based on your location.
Consent
To give you the best online experience, we use cookies and similar technologies for performance, analytics, personalization, advertising, and to help our site function. For more details, please see our Cookies & Similar Technologies Policy.