PRA Group Canada Inc. (“PRA”) is committed to protecting personal information entrusted to the company by ensuring and maintaining its accuracy, security, and confidentiality. Collecting, using, and disclosing personal information in an appropriate, responsible, and ethical manner in accordance with applicable legislation and the specific contractual obligations towards its business partners, is part of PRA’s core values and fundamental to PRA’s daily operations.
Purposes and limiting collection, use or disclosure: PRA will state the purpose for which information is collected or used at or before the time information is collected or used. The purposes will be limited to those related to PRA’s business operations and those that are authorized or required by the applicable privacy legislation and/or other applicable legislation.
PRA has identified the following purposes for which it collects and uses personal information to the extent permissible by law:
- To collect debts owed to PRA or to its affiliates, if any;
- To ensure correctness of personal information transferred from business partners;
- To ensure proper identification before discussing an account;
- To provide requested services, and accurately assess and determine payment plans and options that will meet the needs and specific requirements of each of its customers;
- To obtain and/or update credit information and credit reports, and evaluate credit standing;
- To process payments and issue releases related to an account;
- To provide information to anyone working with or for PRA, on a need to know basis, for operational purposes, including data service providers, collections agencies, barristers and solicitors, credit bureaus, registry agents, and other suppliers of products and services;
- To engage in business transactions, including financing, sale, transfer, or other disposition of assets or liabilities of PRA;
- To satisfy valid information requests from regulators and other organizations or individuals who are legally entitled to make such requests;
- To comply with legal and regulatory requirements.
PRA limits the collection of personal information to that which is necessary for the purposes identified. PRA uses personal information only for purposes for which the information was collected and only in accordance with privacy legislation and other applicable laws. PRA discloses personal information only in accordance with privacy legislation and other applicable laws.
Safeguards: PRA recognizes its legal obligations to protect the personal information it has obtained or collected about customers and other individuals during the course of its operations.
All personal information collected by PRA, or by persons or entities on its behalf, is protected through physical or electronic measures in order to reduce the risk of its unauthorized use, disclosure, or destruction. The level of protection depends on the sensitivity of the personal information and may include, by way of example: a) password protected computers; b) industry standard firewall, software solutions and encryption technology; c) locked cabinets; d) restricted access; e) security cameras; f) voice recording; g) annual employee training; h) other physical, electronic and managerial procedures. In addition, access to personal information is limited on a “need-to-know” basis to PRA employees who are bound by confidentiality clauses in their employment agreements.
Confidentiality and security are not 100 percent assured when information is transmitted over the Internet, using a contact request form, through email, or other electronic communication. PRA will not be responsible for any loss or damage as a result of a breach of security and/or confidentiality when information is transmitted to PRA by such means or when PRA transmits information by such means at the customer’s request, and the customer does so at his or her own risk. However, once PRA receives personal information, every effort is made to ensure its security.
Accuracy: PRA will make all reasonable efforts to ensure that personal information within its custody is as accurate, complete, and up to date as is necessary for the purposes for which it is to be used.
If inaccuracy or incompleteness of personal information is demonstrated, PRA will amend the information as required. If and where appropriate, PRA will send the amended information to third parties to whom the information has been disclosed.
Providing Access: Upon written request by a customer and authentication of his identity, PRA will provide that customer access to his personal information under PRA’s control. PRA may also provide information about the ways in which this information is being used and a description of the individuals and organizations to whom that information has been disclosed. PRA will make the information available within 30 days or provide written notice where additional time is required to fulfill the request. PRA may charge reasonable fee for providing information in response to an access request and may require a deposit for all or part of the fee.
In some situations, PRA may not be able to provide access to certain personal information. Where an access request is refused, PRA will notify the customer in writing, document the reasons for refusal and outline further steps which are available.
Retention of Personal Information: PRA will retain personal information only as long as necessary for the fulfillment of the identified purposes and as authorized or required by law. Personal information that is no longer relevant or required to fulfill the identified purposes will be destroyed, erased or made anonymous on documents or other records containing it, as soon as reasonably possible. PRA will take due care when destroying personal information so as to prevent unauthorized access to the information.
PRA Compliance Specialist
205-130 Dufferin Avenue
London (Ontario) N6A 5R2
Phone: 519.432.0075 (ext. 2536)
Upon a visit of PRA websites, certain traffic data, with no personal identification, is recorded. The purpose is to ascertain the number of visits, the average amount of time spent on each website and the number of pages that are visited, and ultimately, to improve PRA websites.
“Cookies” are used to ensure that the browser remembers website visitors’ preferences. Cookies can be deselected under “Internet options” on the browser.