Privacy Policy

MYHIVE INC.

Effective Date: June 15, 2026
Version: 1.0
Approved By: MyHive Inc. Management

TABLE OF CONTENTS

Introduction
Scope of this Policy
Definitions
Privacy Principles
Information We Collect
Healthcare Information
Account Registration Information
Information Collected Automatically
Cookies and Tracking Technologies
How We Use Information
Artificial Intelligence and Automated Processing
Legal Basis for Collection and Processing
Disclosure of Information
Service Providers and Subprocessors
Cross-Border Transfers
Data Security Safeguards
Data Retention
Data Export and Portability
Access and Correction Rights
Deletion Requests
Children's Privacy
Marketing Communications
Privacy Breach Response
Franchisees, Affiliates and Partners
Third-Party Websites and Services
Regulatory Compliance
Changes to this Privacy Policy
Privacy Officer Contact Information

1. INTRODUCTION

MyHive Inc. ("MyHive", "Company", "we", "our", or "us") is committed to protecting the privacy, confidentiality, integrity, availability, and security of personal information entrusted to us.

This Privacy Policy describes how MyHive collects, uses, stores, discloses, protects, transfers, retains, exports, and deletes personal information in connection with our websites, mobile applications, healthcare workforce platform, staffing marketplace, software products, artificial intelligence tools, scheduling systems, credential management systems, communication systems, and related services (collectively, the "Services").

MyHive recognizes privacy as a fundamental right and is committed to operating in accordance with applicable privacy legislation, including:

Personal Information Protection and Electronic Documents Act (PIPEDA)
Personal Health Information Protection Act (PHIPA)
Applicable provincial privacy legislation
Quebec Law 25 where applicable
Applicable data protection requirements imposed by healthcare organizations, regulators, accreditation bodies, and contractual obligations

2. SCOPE OF THIS POLICY

This Privacy Policy applies to:

Healthcare professionals
Nurses
Personal Support Workers
Registered Practical Nurses
Registered Nurses
Physicians
Allied health professionals
Clients
Employers
Healthcare organizations
Long-term care homes
Retirement homes
Community agencies
Franchisees
Contractors
Employees
Website visitors
Mobile application users
Business partners
Vendors

3. DEFINITIONS

Personal Information

Information about an identifiable individual, including information that can directly or indirectly identify a person.

Personal Health Information

Information relating to an individual's physical or mental health, health history, provision of healthcare services, eligibility for services, or payment for healthcare services.

User

Any individual or organization using the Services.

Processing

Any collection, use, disclosure, storage, transfer, retention, deletion, analysis, or handling of information.

4. PRIVACY PRINCIPLES

MyHive follows the following privacy principles:

Accountability

MyHive is responsible for personal information under its control.

Transparency

Individuals are informed regarding collection, use, and disclosure practices.

Limiting Collection

Only information necessary for legitimate business purposes will be collected.

Limiting Use

Information will only be used for authorized purposes.

Accuracy

Reasonable efforts will be made to maintain accurate information.

Safeguards

Appropriate technical, administrative, and physical safeguards will be implemented.

Individual Access

Individuals may request access to their personal information.

Compliance

MyHive will comply with applicable privacy laws and regulations.

5. INFORMATION WE COLLECT

MyHive may collect:

Identity Information

Full legal name
Preferred name
Date of birth
Government-issued identification
Driver's licence information
Professional registration numbers

Contact Information

Home address
Mailing address
Telephone number
Mobile number
Email address

Employment Information

Resume
Curriculum vitae
Employment history
References
Certifications
Training records
Professional licences
Credential verification results

Financial Information

Banking information
Direct deposit information
Tax information
Billing records
Payment records
Invoicing information

Emergency Contact Information

Emergency contact names
Emergency contact numbers
Relationship information

6. HEALTHCARE INFORMATION

Where legally authorized and necessary, MyHive may collect:

Immunization records
Tuberculosis testing records
Fit testing records
Vulnerable sector screening results
Occupational health documentation
Workplace accommodation information
Professional competency assessments
Clinical training records

MyHive only collects healthcare information required for staffing, compliance, regulatory, accreditation, safety, or contractual purposes.

7. ACCOUNT REGISTRATION INFORMATION

When creating an account, users may provide:

Username
Password
Security credentials
Multi-factor authentication information
User preferences
Communication preferences
Notification settings

Users are responsible for maintaining confidentiality of account credentials.

8. INFORMATION COLLECTED AUTOMATICALLY

MyHive may automatically collect:

IP addresses
Device identifiers
Browser type
Operating system
Geographic region
Device settings
Login activity
Session duration
Platform usage information
Network information
Error logs
Security logs

9. COOKIES AND TRACKING TECHNOLOGIES

MyHive may use:

Session cookies
Authentication cookies
Analytics cookies
Performance cookies
Security cookies
Preference cookies

Cookies help us:

Authenticate users
Improve functionality
Analyze usage patterns
Enhance security
Personalize user experience

Users may disable cookies through browser settings, though some functionality may be affected.

10. HOW WE USE INFORMATION

Information may be used for:

Service Delivery

User registration
Credential verification
Scheduling
Workforce management
Staffing placement
Communication services

Compliance

Regulatory compliance
Accreditation requirements
Audit requirements
Professional licensing verification

Financial Administration

Payroll administration
Payment processing
Invoicing
Tax reporting

Platform Improvement

Analytics
Product development
Quality assurance
Service enhancements

Security

Fraud prevention
Identity verification
Cybersecurity monitoring
Threat detection
Incident investigation

11. ARTIFICIAL INTELLIGENCE AND AUTOMATED PROCESSING

MyHive may utilize artificial intelligence and machine learning technologies to:

Match candidates to opportunities
Optimize scheduling
Improve workforce forecasting
Detect fraud
Enhance platform performance
Generate recommendations

Automated tools are intended to support decision-making and do not replace human judgment in healthcare delivery.

MyHive reserves the right to review and validate automated recommendations before implementation.

12. LEGAL BASIS FOR COLLECTION AND PROCESSING

MyHive processes information based on:

User consent
Contractual necessity
Legal obligations
Regulatory requirements
Legitimate business interests
Protection of health and safety
Accreditation requirements

13. DISCLOSURE OF INFORMATION

Information may be disclosed to:

Healthcare Organizations

Hospitals
Long-term care homes
Retirement homes
Community agencies
Clinics

Service Providers

Cloud providers
Payroll providers
Background screening providers
Credential verification providers
IT support providers
Security monitoring providers

Professional Advisors

Lawyers
Accountants
Auditors
Insurers

Government and Regulatory Bodies

Where required by law, subpoena, warrant, court order, regulatory requirement, or legal process.

14. SERVICE PROVIDERS AND SUBPROCESSORS

Third-party vendors may process information on behalf of MyHive.

All vendors must maintain appropriate:

Confidentiality obligations
Security safeguards
Privacy protections
Regulatory compliance measures

Vendor relationships are reviewed periodically for compliance and risk management purposes.

15. CROSS-BORDER DATA TRANSFERS

Information may be stored or processed in jurisdictions outside Canada.

Where information is transferred internationally, MyHive implements reasonable safeguards including:

Contractual protections
Encryption controls
Security assessments
Vendor due diligence

16. DATA SECURITY SAFEGUARDS

MyHive employs industry-standard security controls including:

Administrative Controls

Privacy policies
Security policies
Employee training
Access management procedures

Technical Controls

Encryption in transit
Encryption at rest
Multi-factor authentication
Firewall protection
Endpoint protection
Intrusion detection
Audit logging

Physical Controls

Restricted facility access
Secure storage systems
Visitor controls

17. DATA RETENTION

MyHive retains information only as long as necessary for:

Service delivery
Legal obligations
Regulatory requirements
Accreditation requirements
Dispute resolution
Business operations

Upon expiry of retention periods, information may be:

Permanently deleted
Securely destroyed
Anonymized
Archived where legally required

18. DATA EXPORT AND PORTABILITY

Subject to applicable law, users may request:

Copies of personal information
Data export files
Electronic records in commonly used formats

Reasonable identity verification may be required before release.

19. ACCESS AND CORRECTION RIGHTS

Individuals may request:

Access to personal information
Correction of inaccurate information
Updates to outdated information

Requests may be submitted to the Privacy Officer.

20. DELETION REQUESTS

Users may request deletion of personal information where legally permitted.

MyHive may decline deletion requests where retention is required for:

Legal obligations
Regulatory compliance
Accreditation requirements
Contractual obligations
Ongoing investigations

21. CHILDREN'S PRIVACY

MyHive Services are not intended for children under sixteen (16) years of age unless otherwise authorized by law.

MyHive does not knowingly collect information from minors without appropriate authorization.

22. MARKETING COMMUNICATIONS

Users may receive:

Newsletters
Product updates
Service announcements
Promotional communications

Users may unsubscribe at any time using available unsubscribe mechanisms.

Operational and account-related communications may continue where necessary.

23. PRIVACY BREACH RESPONSE

In the event of a privacy or security incident, MyHive will:

Investigate the incident
Contain the incident
Assess risks
Mitigate harm
Notify affected individuals where required
Notify regulators where required
Maintain breach records

24. FRANCHISEES, AFFILIATES AND PARTNERS

MyHive may share information with:

Franchisees
Affiliates
Subsidiaries
Authorized partners
Healthcare organizations

Such sharing will be limited to legitimate operational purposes and governed by appropriate agreements.

25. THIRD-PARTY WEBSITES AND SERVICES

The Services may contain links to third-party websites and applications.

MyHive is not responsible for the privacy practices of third parties.

Users should review applicable third-party privacy policies independently.

26. REGULATORY COMPLIANCE

MyHive maintains policies, procedures, controls, and governance measures designed to support compliance with:

PIPEDA
PHIPA
Applicable provincial legislation
Quebec Law 25 where applicable
Accreditation standards
Contractual privacy obligations

27. CHANGES TO THIS PRIVACY POLICY

MyHive reserves the right to amend this Privacy Policy at any time.

Updated versions will be posted through appropriate channels.

Continued use of Services following publication of revisions constitutes acceptance of the updated Privacy Policy.

28. PRIVACY OFFICER CONTACT INFORMATION

Privacy inquiries, complaints, requests, and concerns may be directed to:

Privacy Officer
MyHive Inc.

Email: privacy@myhive.ca

General Inquiries: info@myhive.ca

Website: www.myhive.ca

Document Control

Document Name: Privacy Policy
Owner: MyHive Inc.
Version: 1.0
Effective Date: June 15, 2026
Review Frequency: Annual or as required by law