Privacy Policy

Last updated: October 21, 2025

mvt+ (Mouvement Plus Inc., “we”) is committed to protecting your personal information in accordance with applicable laws, including Law 25 (Quebec) and PIPEDA. This document describes what data we collect, why, how we use it, with whom it is shared, and your rights.

 

1. Who we are and how to contact us

Person in charge of the protection of personal information (PIPI)
Mouvement Plus Inc. (mvt+)
169 Jarry E, Montreal (Quebec) H2P 1T4
Email: info@mvtplus.ca • Tel.: 438-601-1509

 

In accordance with Law 25, we identify a PIPI and publish their contact information; we respond to requests within a maximum of 30 days (PIPEDA – right of access and correction). Cai+2Office of the Privacy Commissioner+2

 

1. Who this policy applies to

This policy applies to our services offered in Quebec and to our website. We offer services to minors aged 12 and over with parental consent (section 10).

 

1. What data do we collect

3.1 Data provided by you

Appointment booking & clinical record (Jane): identity, contact details, history, questionnaires, clinical notes, documents, preferences, communications, in-person or telehealth appointments, and payments (via Stripe Express). Jane provides PIPEDA compliance guides and security features adapted for clinics; its online appointments are described as compliant with PIPEDA/PHIPA/GDPR/HIPAA frameworks. Jane - Clinic Management Software+2Jane - Clinic Management Software+2

Website / contact forms (Wix or integrations): name, email, phone number, message content.

Newsletter (Mailchimp): email address and preferences (promotions, education, updates).

3.2 Data collected automatically (cookies & pixels)

Analytics: Google Analytics 4 (traffic, page views, approximate geographic areas, device, etc.).

Marketing/measurement: Google Ads and Meta Pixel (audiences, conversions).

Functional/essential: cookies necessary for operation (e.g., security).

Under Law 25, certain categories (analytics/marketing) require clear, free, and informed consent through a consent management banner. Cai+1

 

1. Why we use this data (purposes)

Provision of care (assessment, treatment plan, interdisciplinary follow-up).

Appointment booking, reminders, telehealth (Jane).

Payment and fraud prevention (Stripe). stripe.com+1

Communication (responding to your requests).

Newsletter (Mailchimp): promotional/educational content/updates, approx. 1×/month.

Website improvement and measurement (GA4, Ads, Meta Pixel).

 

1. Legal bases / grounds

Consent (e.g., newsletter, non-essential cookies).

Performance of a contract / provision of services (appointment booking, care, payment).

Legitimate interest (security, fraud prevention, aggregated statistics).
These bases reflect PIPEDA’s principles of accountability and purpose limitation. Office of the Privacy Commissioner+1

 

1. With whom we share data (providers & third parties)

We limit access to personal information to persons/third parties who need it for the purposes above:

Jane (clinical record, telehealth, reminders). Compliance guides and PIPEDA practices available. Jane - Clinic Management Software+1

Stripe (via Jane – Stripe Express) for payment processing and fraud prevention (see Stripe’s Privacy Policy and Privacy Center). stripe.com+1

Mailchimp for the newsletter; Mailchimp indicates that data may be processed/stored in the United States and by subcontractors; standard contractual clauses (SCCs) apply to transfers. Mailchimp+1

GoDaddy (hosting).

Google (Analytics/Ads) and Meta (Pixel) for campaign measurement and performance.

Cross-border transfers: PIPEDA does not prohibit transfers abroad but requires accountability and contractual protection when outsourcing; we frame these transfers with our providers. Office of the Privacy Commissioner

 

1. Clinical records & internal sharing

mvt+ operates as a multidisciplinary team. Your mvt+ therapists directly involved in your care may consult the relevant elements of your file as needed to coordinate the intervention (the “need to know” principle). Jane provides tools that facilitate compliance with PIPEDA’s 10 fair information principles. Jane - Clinic Management Software

 

1. Telehealth

We offer telehealth through Jane. According to Jane, this feature is designed to comply with PIPEDA/PHIPA/GDPR/HIPAA, subject to your local settings and our internal practices. Jane - Clinic Management Software

 

1. Newsletter (Mailchimp)

Consent: voluntary subscription (opt-in by clicking).

Content: promotions, education, updates (≈ once/month).

Unsubscribe: link included in every email.

Server location / transfers: your data may be processed in the United States and by subcontractors approved by Mailchimp; SCCs or equivalent mechanisms apply. Mailchimp+1

1. Minors

We welcome minors (12+ years). Opening a file, collecting, and sharing information are done with the consent of the parent/guardian, in accordance with applicable laws and professional standards.

1. Cookies and similar technologies

Essential: necessary for the website and security.

Analytics: GA4 to understand website use.

Marketing: Google Ads and Meta Pixel to measure/optimize our campaigns.

In Quebec (Law 25), explicit consent is required for analytics/marketing; you can accept/refuse by category and withdraw your consent at any time via the consent management banner. mccarthy.ca

1. Retention

Marketing data (e.g., newsletter, user-linked analytics): retained for the time necessary for the purposes; if you remain inactive, we may deactivate/delete your marketing data after a reasonable period.

Clinical record: retained for the periods required by applicable laws/regulations and professional standards (minimum periods vary depending on the profession and the client’s age).
We apply the limitation and accountability principles required by PIPEDA. Office of the Privacy Commissioner

1. Security

We apply proportionate organizational and technical measures (access controls, encryption in transit with our providers, backups, logging, internal practices). Jane, Stripe, and Mailchimp publicly describe security and compliance measures in their trust/help centers. Mailchimp+3Jane - Clinic Management Software+3stripe.com+3

1. Your rights

You may access your personal information, request its correction, ask questions, withdraw certain consents (e.g., newsletter, non-essential cookies), and file a complaint. The principles of access and correction are recognized by PIPEDA and Law 25 (informed consent). To exercise your rights, write to info@mvtplus.ca (target response time: 30 days). Office of the Privacy Commissioner+1

External recourse

Commission d’accès à l’information du Québec (CAI): information, rights, and complaints. Cai

Office of the Privacy Commissioner of Canada (OPC): PIPEDA information and complaints. Office of the Privacy Commissioner

1. Transfers outside Quebec/Canada

Our providers (e.g., Mailchimp, Stripe, Google, Meta) may process data outside Canada (notably in the United States). In accordance with PIPEDA, these transfers are permitted with contractual safeguards and accountability on our part; we monitor our providers and govern transfers (e.g., SCCs). Office of the Privacy Commissioner+1

1. Policy updates

We may amend this policy to reflect legal or operational changes. The date of the last update appears at the top. In the event of a significant change, we may publish a notice on the website.

“Clear summary” section (optional for the top of the page)

Appointments & records: managed in Jane (secure, compliant with Canadian laws). Jane - Clinic Management Software

Payments: via Stripe. stripe.com

Newsletter: via Mailchimp, unsubscribe at any time; processing may occur in the U.S. with safeguards. Mailchimp+1

Cookies: you control Analytics and Marketing (Law 25). mccarthy.ca

Your rights: access, correction, withdrawal of consent, complaint (CAI/OPC). Cai+1