Benefits Login
Talk to an EIO Advisor

Privacy Policy

Last updated: January 1, 2026

This Privacy Policy describes Our policies and procedures on the collection, use and disclosure of Your information when You use the Service and tells You about Your privacy rights and how the law protects You.

We use Your Personal data to provide and improve the Service. By using the Service, You agree to the collection and use of information in accordance with this Privacy Policy.

Accountability & Privacy Officer

Accountability: 

EIO Solutions is responsible for all personal information under its control. We have designated a Privacy Officer to oversee our compliance with the Personal Information Protection and Electronic Documents Act (PIPEDA) and provincial laws such as Quebec’s Act respecting the protection of personal information in the private sector (Law 25).

Privacy Officer Contact Information: 

Tavia Perrault, Chief Financial Officer
privacy@eiosolutions.com
9131 Keele Street, Suite A4 
Vaughan, ON L4K 0G7

Employee Personal Information & Identified Purposes

Types of Information Collected: 

As a Third-Party Provider/Administrator, we collect sensitive employee information including, but not limited to:

  • Identity & Financial: Names, Social Insurance Numbers (SINs), and banking information for payroll and tax reporting.
  • Benefits & Health: Medical history, claims data, and dependent information necessary for administering insurance and health spending accounts.

Identified Purposes: 

We collect this information solely to:

  • Administer group benefits, pension plans, and payroll services.
  • Verify eligibility for claims and benefits.
  • Comply with legal and regulatory tax reporting requirements.

Enhanced Consent (Quebec Compliance)

Meaningful Consent: 

Consent for the collection of sensitive personal information (medical or financial) must be express (opt-in). By using our services, you consent to the collection and use of your data for the purposes identified above. You may withdraw your consent at any time by contacting our Privacy Officer, though doing so may limit our ability to provide certain benefits or services.

Data Retention and Secure Destruction

Retention: 

We retain personal information only for as long as necessary to fulfill the identified purpose or as required by Canadian law (e.g., 7 years for tax records).

Destruction: 

Once information is no longer required, it is destroyed through secure, irreversible methods (such as digital wiping or professional shredding) or rendered anonymous.

Individual Rights (Access, Portability & De-indexing)

You have the following rights regarding your personal information:

Right of Access & Correction: 

You may request to see the data we hold and request corrections to inaccuracies.

Right to Data Portability: 

You may request a copy of your computerized personal information in a structured, machine-readable format.

Right to De-indexing: 

In certain circumstances, you may request that your information cease being disseminated or that links to it be de-indexed.

Response Time: 

We will respond to all requests within 30 calendar days.

Transfers Outside of Quebec/Canada

Cross-Border Transfers: 

Your personal information may be stored or processed outside of your province of residence or outside of Canada (e.g., with cloud service providers). We ensure that any such third-party providers are contractually bound to offer a level of protection equivalent to Canadian standards and have conducted Privacy Impact Assessments (PIAs) for such transfers.

Mandatory Breach Notification

In the event of a “confidentiality incident” (data breach) that poses a risk of serious injury to you, EIO Solutions will notify the relevant Privacy Commissioner and affected individuals as soon as possible, in accordance with PIPEDA and Law 25 protocols.

Links to Other Websites

Our Service may contain links to other websites that are not operated by Us. If You click on a third party link, You will be directed to that third party’s site. We strongly advise You to review the Privacy Policy of every site You visit.

We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.

Changes to this Privacy Policy

We may update Our Privacy Policy from time to time. We will notify You of any changes by posting the new Privacy Policy on this page.

We will let You know via email and/or a prominent notice on Our Service, prior to the change becoming effective and update the “Last updated” date at the top of this Privacy Policy.

You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.

Contact

If you have any questions about this Privacy Policy, You can contact us by email: privacy@eiosolutions.com