Family.one network collects some Personal Data from its Users.
Permissions: About Me; Access Page CTA; Access private data; Access Requests; Activities; App Notifications; Birthday; Books Actions; Checkins; Contact email; Current City; Family Members and Relationship Status; Likes; List of Friends
Personal Data: email address
Personal Data: Cookies; Usage Data
Personal Data: email address; first name; last name
Personal Data: address; city; Cookies; date of birth; email address; first name; gender; last name; phone number; Usage Data
Personal Data: phone number
Personal Data: Cookies; Usage Data
Personal Data: email address
Personal Data: address; country; date of birth; email address; first name; gender; last name; phone number; Usage Data
Personal Data: phone number
A senior company officer has been appointed as the Privacy Officer at family.one. The Privacy Officer is accountable for all personal information at family.one. You may contact the Privacy Officer at:
By Mail: Chief Privacy Officer
PO BOX 5082 RPO Major Mackenzie
Richmond Hill, Ontario
Fax: (289) 475-5958
family.one's practices privacy in accordance with all federal and provincial laws and regulations as well as the Personal Information Protection and Electronic Documents Act (PIPEDA) and Canada's Anti-Spam Legislation (CASL) and communicates with independent industry experts as well as the Office of the Privacy Commissioner of Canada and Competition Bureau Canada.
Passwords are never stored as clear text - they are always hashed (and salted) securely using bcrypt. Wherever possible, traditional passwords are replaced by third-party authentication methods such as auto-expiring one-time emailed login tokens which require access to your email account or third-party login via OAuth2 partners such as Google, Facebook and Twitter.
Registration is always performed through a secure SHA2 2048bit encrypted SSL connection. All personally identifiable data is stored on AICPA SOC 2 Type II Compliant and PCI DSS Certified servers. Our servers are physically secured 24/7 with biometric scanners and other technical security measures and hold ISO27001 and ISO27018 certification status provided by a third party. All servers are DDOS mitigated and have documented "in case of nuclear attack on data centre" infrastructure continuity plans in place.
Access to the database is restricted to a required access only basis and accessed only through a secure connection. Login to the database is secured against brute force and tested on a regular basis.
family.one collects information such as full name, age, email address(s), mailing address(s), billing address, phone number, relationship to children, relationship to other users, socio-economic status, such as employment position level, annual household income, as well as requested information on shopping preferences, product experience, newborn feeding preference and other information from time to time based on specific offers.
Requested Data Collection refers to any specific requests for information from the user. Requested data collection is broken down into three stages:
“Initial Registration”. “My Family” and “Additional Data”.
Initial Registration refers to data collected at the point of registration. This data includes at most the user’s full name, email address, mailing address, relationship to dependent children, dependent children including their date of birth.
My Family refers to the building of a family network including inviting other members of their family to join family.one and connect with one another. Connections established through My Family enable members of a family to share contests, freebies and other programs with one another and increase their odds of winning contests through additional entry points, as well as, from time to time, receive other benefits for increased activity.
Additional Data refers to instances where offers, contests, freebies or other programs require additional data as part of participation in them. By collecting data in this manner, family.one ensures that data is only collected with specifically relevant. In these instances, the user will be prompted to provide the requested data or choose not to participate in the program. Further, should the requested data require additional consent, specific terms and conditions will be presented along with the choice to participate or not.
Understanding Requested Data Collection and Usage
Each time data is requested, an "i" symbol provides an explanation of data collected at that point and how it will be used.
All registrants are required to complete a Double Opt-in Process wherein:
1. The User submits their information.
2. Information submitted is quarantine pending confirmation along with any account activity relevant to family.one's privacy policies and/or terms and conditions.
3. The User is then required to log in via email token to verify their email address.
4. Upon verification, data is removed from quarantine and transferred to active membership.
Data collected is used to provide additional services and aid in targeting marketing efforts by brands, including giveaways, baby starter packs and other boxes, exclusive items, other opportunities which family.one determines to be of benefit to specific members within its membership; and where relevant to aid in directing engagement towards those with whom they are most relevant. family.one prefers to engage only those who its services are relevant to, and only when they are relevant.
From time to time, family.one may develop new services and make them available for general or restricted access to members of the program or collaborate with other organizations.
family.one may contract a neutral party to perform redundancy tests on its membership to ensure that partnering brands, contributors, and others interacting with family.one are engaging its membership efficiently.
family.one may contract or collaborate with a communications service partner to facilitate distribution of a communication on behalf of itself or a third party while protecting the confidentiality of your data from transfer directly to a third party.
We may share Personal Information:
Pursuant to a court order, subpoena, warrant, or when otherwise permitted or required by law, or in response to a government inquiry or request, or with an organization in the case of a breach of an agreement or contravention of law, or to detect, suppress or prevent fraud;
Where it is necessary for the establishment, exercise or defense of legal claims, and to investigate or prevent actual or suspected loss or harm to persons or property (including the Services);
In connection with an actual or potential sale, merger, or acquisition, or other transfer of all or part of our assets, including as part of a bankruptcy proceeding or other corporate reorganization or change in corporate control;
With affiliated companies, as permitted by law;
With third party service providers to assist us with our Services, such as to process payments, distribute packages or other products or materials, send communications, or help operate the website and/or applications;
With affiliated companies to provide you with cooperative or third-party products, services, promotions, offers, or any opportunity that we deem of potential benefit to you;
With partners that offer educational and other additional features through our Services and with partners (such as hospitals) to operate our programs and respond to your requests, as permitted by law;
In a limited manner in order to establish Family Share connections upon your consent; or
With your consent.
From time to time, we may ask for your consent to share your Personal Information with selected third parties so that they can provide you with information or offers that may interest you. If you do not want your information shared in this way, you can choose not to engage with or can decline the option when it is presented.
We may send you promotional email communications, with your consent. If you would like to stop receiving a specific type of promotional email communication, you can do so by clicking on the unsubscribe option in our emails or contact us at firstname.lastname@example.org. You will continue to receive other types of service messages from us to the extent permitted by law.
We may contact you via phone or text message, including for marketing purposes, after obtaining your consent if required by applicable local law. If you would like to stop receiving marketing calls and text messages from us, you can text “STOP” via reply text or you can register your choice over the phone or by emailing email@example.com.
For information on the choices available to you in connection with digital advertising and analytics, please see the Digital Advertising & Analytics section above.
family.one will, as necessary, obtain consent under applicable privacy laws if it seeks to collect, use or disclose your personal information for purposes materially different from those for which your Personal Information has been collected unless otherwise required or permitted by law.
We take reasonable steps to make sure that the information we hold is accurate, complete and up to date. If you wish to access to your Personal Information, make corrections or updates to your Personal Information, you may do so by logging in at https://family.one and accessing your profile. Should you wish to terminate your account, you may do so via your profile or by contacting firstname.lastname@example.org. We may continue to retain information in our records after your termination request, for example for legal or recordkeeping purposes as long as necessary for our operations.
We also enable communications between you and others through our Services, including for example invitations, family sharing, families, friends and messages between connections.
In order to improve our services, we may collect and retain analytical data of your usage for reasons such as developing and organizing products, services, programs and other offerings according to your past activity
From time to time, opportunities for users may arise where benefits require the transfer of user data to a partner. In these instances, these programs including but not limited to freebies, samples and perks will require additional consent on a program by program basis and provide users with:
Program specific terms, conditions and privacy data
Details on what data is required to be transferred
Who the data is transferred to
How the data will be used
Links and/or instructions on how to update and/or unsubscribe and/or contact the recipient partner, regarding the data they have received.
All such instances will be presented to users on an opt-in only basis wherein only users that choose to participate will benefit from the specific program and have the relevant data transferred.
Where family.one users are members of the same household or extended family, users can invite and connect with each other. Connected family.one user have the ability to share, gain access to and increase the odds of winning/receiving contests, freebies. Connections are only established when a receiving users accepts an invitation to connect.
family.one is a membership based organization. As a member you have access free, subsidized and discounted product, contests, perks (discounts) and more. Periodically, we’ll send you notifications on behalf of these programs, for login and other activity-based transactional emails. Where relevant, we will present you with the opportunity to unsubscribe with the exception of transactional emails which are sent based on account activity.
Baby Box Canada / Family.One
PO BOX 5082 RPO MAJOR MACKENZIE
RICHMOND HILL, ON
Owner contact email: email@example.com