Privacy Policy

Last updated September 15, 2025.

Benchmark Intelligence Group Inc., operating as BIG Healthcare (“BIG,” “we,” “us,” or “our”), is committed to protecting the privacy and security of your information. This Privacy Policy explains how we collect, use, disclose, and protect personal information and other data in connection with our Benchmark Indicators and Management Information Systems Trial Balance Data Sharing Program (the “Program”), accessible at https://big.healthcare (the “Site”). This policy applies to all Member Organizations and their authorized users who access our Software-as-a-Service (SaaS) platform, as governed by our Terms of Service https://bighealthcare.ca/terms-of-service.

1. Information We Collect
We collect the following types of information through the Program:

a. Personal Information
Personal information is data that identifies an individual or can be used to identify one. We collect limited personal information, including:

  • User Account Details: Names, email addresses, and organizational affiliations of Authorizing Members and individual users to manage accounts and facilitate Program communication.
  • Usage Data: Technical information, such as IP addresses, browser types, device information, and login times, collected automatically when you access the Site to ensure functionality and security.

b. Non-Personal Information
We collect and process Management Information Systems Trial Balance (MIS TB) data and other data submitted by Member Organizations to generate operational performance reports (Program Results). This data is de-identified and aggregated to prevent identification of individuals or specific organizations.

We do not collect personal health information as defined under Ontario’s Personal Health Information Protection Act (PHIPA). If you believe any submitted data contains personal health information, please contact us immediately to address it.

2. How We Use Your Information
We use the information we collect for the following purposes:

  • Program Operation: To provide and manage access to the Program, including generating and delivering operational performance reports via the Site or offline formats.
  • User Account Management: To authenticate users, manage individual accounts, and communicate with users about the Program (e.g., updates, account audits).
  • Data Analysis: To analyze de-identified MIS TB data to produce aggregated Program Results shared among Member Organizations, as outlined in our Terms of Service.
  • Consulting Services: To support additional consulting services for Member Organizations, using de-identified data to provide insights and recommendations.
  • Site Improvement and Security: To monitor and enhance Site functionality, performance, and security, including analyzing usage patterns and detecting potential threats.
  • Legal Compliance: To comply with applicable laws, such as PIPEDA, and respond to legal requests.

3. How We Share Your Information

a. Personal Information
We do not share personal information with third parties except:

  • When required by law (e.g., court orders, regulatory requirements).
  • With service providers (e.g., cloud hosting providers) who assist in operating the Site, subject to strict confidentiality agreements and compliance with privacy laws.
  • In aggregated, de-identified form for Program analytics, where it cannot identify individuals.

b. MIS TB Data and Program Results
Per our Terms of Service:

  • De-identified MIS TB data and Program Results are shared with other Member Organizations to support the Program’s benchmarking objectives.
  • Member Organizations may use their own Program Results in perpetuity and other Members’ data during their membership term for internal purposes.
  • If membership is canceled, Members who received your data prior to cancellation may continue using it unless you arrange otherwise directly with them.

4. Data Security
We implement reasonable technical and organizational measures to protect your information, including:

  • Encryption: SSL/TLS encryption for data transmitted to and from the Site.
  • Access Controls: Role-based access to ensure only authorized users access the Program.
  • Secure Hosting: Data is stored on secure servers in Canada, compliant with Canadian privacy laws.
  • Regular Audits: Periodic reviews of user accounts and security practices.

Despite these efforts, no system is completely secure. We are not liable for unauthorized access or disclosure beyond our reasonable control, as noted in our Terms of Service.

5. Data Storage and Retention

  • Personal Information: We retain user account details for the duration of your membership in the Program or as required to provide services. Upon membership cancellation or account deletion, we delete personal information within 30 days, unless required by law to retain it.
  • MIS TB Data: Per our Terms of Service, we have a perpetual license to use de-identified MIS TB data for Program purposes. Upon cancellation, we may retain aggregated, de-identified data for analytics but will delete any identifiable data upon request, subject to legal obligations.
  • Storage Location: All data is stored on servers located in Canada to comply with Canadian privacy laws.

6. Your Privacy Rights
Under PIPEDA, you have the right to:

  • Access: Request a copy of your personal information we hold.
  • Correction: Request corrections to inaccurate or incomplete personal information.
  • Deletion: Request deletion of your personal information, subject to legal retention requirements.
  • Complaints: File a complaint with us or the Office of the Privacy Commissioner of Canada.

To exercise these rights, contact our Privacy Officer at support@BIGhealthcare.ca. We will respond within 30 days.

7. Third-Party Service Providers
We may use third-party service providers (e.g., cloud hosting, analytics tools) to operate the Site and Program. These providers are bound by contracts to protect your information and comply with applicable privacy laws. We do not sell or share your personal information for marketing purposes.

8. Cookies and Tracking Technologies
We use cookies and similar technologies to enhance Site functionality, monitor usage, and improve security. These may include:

  • Essential Cookies: For Site operation and user authentication.
    Analytics Cookies: To collect de-identified usage data (e.g., page views, session duration).

You can manage cookie preferences through your browser settings, though disabling essential cookies may affect Site functionality.

9. Privacy Breaches
In the event of a privacy breach involving personal information, we will notify affected users and relevant authorities (e.g., Office of the Privacy Commissioner of Canada) as required by law, typically within 72 hours of discovery.

10. Updates to This Privacy Policy
We may update this Privacy Policy to reflect changes in our practices or legal requirements. The updated policy will be posted on the Site with the “Last Updated” date revised. We will notify Member Organizations of significant changes via email or Site announcements.

11. Contact Us
For questions, concerns, or to exercise your privacy rights, contact our Privacy Officer:
Benchmark Intelligence Group Inc.
2967 Dundas St. West #1448, Toronto, ON, M6P 1Z2
Email: support@BIGhealthcare.ca

If you are not satisfied with our response, you may contact the Office of the Privacy Commissioner of Canada at https://www.priv.gc.ca.