On Charge

Privacy Policy

Effective Date: Jun 14, 2025

Welcome to On Charge! At On Charge, we value your privacy and are committed to protecting your personal and business information. This Privacy Policy explains what data we collect, how we use it, and your rights regarding that data. Please take a moment to review this policy carefully.

By using On Charge, you agree to the terms outlined in this Privacy Policy. If you do not agree, please discontinue use of the platform.

1. Introduction

This Privacy Policy is designed to help you understand:

What information we collect.
How we use and safeguard your data.
Your rights regarding your personal and business information.

On Charge operates in compliance with relevant privacy laws and regulations, including GDPR for European Union users, and applicable U.S. and Canadian privacy laws.

2. Information We Collect

We collect information to provide, improve, and personalize our services. This includes:

A. Information You Provide Us

Account Information: Name, email address, phone number, pharmacy/business name, and payment details.
Uploaded Content: Invoice data, such as Drug Identification Numbers (DINs), supplier details, and other invoice-related information.

B. Automatically Collected Information

Usage Data: Pages visited, features used, actions performed, and other interaction data.
Device Data: IP address, browser type, operating system, and device details.

C. Information from Third-Party Integrations

When you connect On Charge to third-party services (e.g., accounting software), we collect data necessary for integration.

Why we collect this information:

To enable key features, such as invoice digitization and PA reconciliation.
To improve platform performance and user experience.

3. How We Use Your Information

We use your information to:

Provide core services, such as processing invoices, reconciling Professional Allowances (PAs), and generating reports.
Enhance your experience by generating insights into expenditures, supplier performance, and savings.
Communicate effectively through notifications, updates, and customer support messages.
Ensure security by protecting against fraud, unauthorized access, and misuse of the platform.
Handle billing and payments securely.
Share product updates and promotions, where applicable. (You can opt out of these communications at any time.)

4. How We Share Your Information

We do not sell or rent your data. However, we may share information in the following cases:

A. With Service Providers

We work with trusted vendors for payment processing, data storage, and system performance. These vendors adhere to strict confidentiality agreements.

B. For Legal and Regulatory Reasons

We may disclose your information to comply with legal obligations, such as Health Canada or FDA requirements for DIN verification.

C. Aggregated or Anonymized Data

For analytics or research purposes, we may share aggregated data that cannot identify individual users or businesses.

5. Data Security

We implement robust measures to safeguard your information:

Encryption: Data is encrypted both in transit and at rest using AES-256 encryption.
Access Controls: Role-based access limits ensure only authorized personnel can access sensitive data.
Regular Audits: We conduct security audits and vulnerability assessments to maintain platform integrity.
Data Backups: Daily automated backups with disaster recovery protocols in place.

Incident Response: In the event of a data breach, we will notify affected users within the legally required timeframe.

6. Data Retention

We retain your data only as long as necessary to provide our services or comply with legal obligations.

Invoice and Business Data: Retained for the duration of your subscription and 30 days after termination, unless required longer for legal purposes.
Account Data: Retained until your account is deleted.

Aggregated or anonymized data may be retained for research or analytics purposes.

7. Your Rights

You have the following rights regarding your personal and business data:

A. Access and Correction

Request access to your data or correct inaccuracies in your account.

B. Data Portability

Export your data into CSV, Excel, or PDF formats.

C. Data Deletion

Request account deletion and associated data, subject to legal retention requirements.

D. Consent Withdrawal

Withdraw consent for specific data processing activities at any time.

To exercise these rights, contact us at privacy@oncharge.ai.

8. International Users

If you access On Charge from outside of [Primary Data Storage Country], your data will be stored and processed in accordance with applicable laws. For EU users, we comply with GDPR and use safeguards like Standard Contractual Clauses to protect cross-border data transfers.

9. Third-Party Links

Our platform may contain links to third-party websites or services. We are not responsible for their privacy practices. Review their privacy policies before sharing information.

10. Updates to This Policy

We may update this Privacy Policy to reflect changes in our practices or legal requirements.

Effective Date: Updates will include a revised effective date.
Notifications: Significant changes will be communicated via email or platform notifications.

Your continued use of On Charge signifies your acceptance of the updated policy.

11. Contact Us

If you have questions or concerns about this Privacy Policy, please reach out to us:

Email: privacy@oncharge.ai
Phone: +1 (647) 871-1682
Address: Hamilton, Ontario, Canada

We aim to respond to all inquiries within 5 business days.

12. Cookie Policy

On Charge uses cookies to improve user experience and track platform performance. For more details, refer to our Cookie Policy.

13. Frequently Asked Questions (FAQs)

Q: How do I delete my account?

A: You can delete your account by contacting privacy@oncharge.ai or accessing account settings.

Q: How long is my data retained after account termination?

A: Your data is retained for 30 days after termination for auditing purposes.

Q: Is my payment data secure?

A: Yes, payment details are handled securely using PCI-DSS compliant systems.