Privacy Statement (CA)

This privacy statement was last changed on November 5, 2025, last checked on November 5, 2025, and applies to citizens and legal permanent residents of Canada.

In this privacy statement, we explain what we do with the data we obtain about you via https://whenwomeninspire.com. We recommend you carefully read this statement. In our processing we comply with the requirements of privacy legislation. That means, among other things, that:

we clearly state the purposes for which we process personal data. We do this by means of this privacy statement;
we aim to limit our collection of personal data to only the personal data required for legitimate purposes;
we first request your explicit consent to process your personal data in cases requiring your consent;
we take appropriate security measures to protect your personal data and also require this from parties that process personal data on our behalf;
we respect your right to access your personal data or have it corrected or deleted, at your request.

If you have any questions, or want to know exactly what data we keep of you, please contact us.

1. Purpose and categories of data

We may collect or receive personal information for a number of purposes connected with our business operations which may include the following: (click to expand)

2. Sharing with other parties

We only share or disclose this data to other recipients for the following purposes:

Purpose of the data transfer: Hosting, sending newsletters, comments form, spam/bot protection, security, general settings troubleshooting, site search feature, improve our website performance, enhance user experience, and support for plugins and themes developed by WordPress.com
Country or state in which this service provider is located: United States
Purpose of the data transfer: Provides affiliate program
Country or state in which this service provider is located: United States

Purpose of the data transfer: Serves ads, including third-party ads through Google certified ad networks
Country or state in which this third party is located: United States
Purpose of the data transfer: Enhances user experience on our site and helps us improve content based on what is popular (only for users logged into WordPresscom)
Country or state in which this third party is located: United States
Purpose of the data transfer: Jetpack Newlsetter sends newsletters
Country or state in which this third party is located: United States

3. Disclosure practices

We disclose personal information if we are required by law or by a court order, in response to a law enforcement agency, to the extent permitted under other provisions of law, to provide information, or for an investigation on a matter related to public safety.

If our website or organisation is taken over, sold, or involved in a merger or acquisition, your details may be disclosed to our advisers and any prospective purchasers and will be passed on to the new owners.

4. How we respond to Do Not Track signals & Global Privacy Control

Our website responds to and supports the Do Not Track (DNT) header request field. If you turn DNT on in your browser, those preferences are communicated to us in the HTTP request header, and we will not track your browsing behavior.

5. Cookies

Our website uses cookies. For more information about cookies, please refer to our Cookie Policy on our Cookie Policy (CA) webpage.

6. Security

We are committed to the security of personal data. We take appropriate security measures to limit abuse of and unauthorized access to personal data. This ensures that only the necessary persons have access to your data, that access to the data is protected, and that our security measures are regularly reviewed.

7. Third party websites

This privacy statement does not apply to third party websites connected by links on our website. We cannot guarantee that these third parties handle your personal data in a reliable or secure manner. We recommend you read the privacy statements of these websites prior to making use of these websites.

8. Amendments to this privacy statement

We reserve the right to make amendments to this privacy statement. It is recommended that you consult this privacy statement regularly in order to be aware of any changes. In addition, we will actively inform you wherever possible.

9. Accessing and modifying your data

If you have any questions or want to know which personal data we have about you, please contact us. Please make sure to always clearly state who you are, so that we can be certain that we do not modify or delete any data of the wrong person. We shall provide the requested information only upon receipt of a verifiable consumer request. You can contact us by using the information below.

9.1 You have the following rights with respect to your personal data

You may submit a request for access to the data we process about you.
You may request an overview, in a commonly used format, of the data we process about you.
You may request correction or deletion of the data if it is incorrect or not or no longer relevant. Where appropriate, the amended information shall be transmitted to third parties having access to the information in question.
You have the right to withdraw consent at any time, subject to legal or contractual restrictions and reasonable notice. You will be informed of the implications of such withdrawal.
You have the right to address a challenge concerning non-compliance with PIPEDA to our organization and, if the issue is not resolved, to the Office of the Privacy Commissioner of Canada.
We shall give access to personal information in an alternative format to an individual with a sensory disability who has a right of access to personal information under PIPEDA and who requests that it be transmitted in the alternative format if (a) a version of the information already exists in that format; or (b) its conversion into that format is reasonable and necessary in order for the individual to be able to exercise rights.

10. Children

Our website is not designed to attract children and it is not our intent to collect personal data from children under the age of consent in their country of residence. We therefore request that children under the age of consent do not submit any personal data to us.

11. Contact details

Christy Birmingham-Reyes
Mailbox #142
2, 70 Church Street
Nanaimo, BC
V9R 5H4
Canada
Website: https://whenwomeninspire.com
Email: christy@ex.comwhenwomeninspire.com

12. Data Requests

For the most frequently submitted requests, we also offer you the possibility to use our data request form

We have appointed a contact person for the organization’s policies and practices and to whom complaints or inquiries can be forwarded:
Christy Birmingham-Reyes
Mailbox #142
2, 70 Church Street
Nanaimo, BC
Canada
V9R 5H4

Annex

Automattic

Automattic is the parent company of these products that we use on our site:

WordPress.com
Jetpack
Akismet

Automattic’s privacy policy https://automattic.com/privacy/ outlines the use of information only for specific purposes necessary to provide us with their service. Automattic does not share your personal data with third parties for their own purposes without your consent. We encourage you to review Automattic’s privacy policy regarding the data they collect and how it is used; contact them if you have concerns.

1.WordPress.com

Our site is hosted by WordPress.com (owned by Automattic). For more information on how WordPress.com collects your data and your choices about it, we encourage you to read the Automattic Privacy Policy.

We use two-factor authentication as the owner/admin to help protect our users’ personal data.

Cookies

We encourage you to inform yourself about Automattic cookies to understand the types of cookies used on WordPress.com and how they are used to provide our services while collecting the minimal amount of data necessary. We disclose cookies related to WordPress on our Cookie Policy. These cookies are for functional purposes, including storing user preferences for convenience for one year.

WordPress Comments

Visitors can leave opt-in comments on our site using the WordPress Comments feature. We receive personal data for every comment left for three purposes: (1) to receive it successfully (both in our notifications tab and by email); (2) to publish it in the comments area at the bottom of our blog posts, and (3) to reply to the commenter. This data includes the commenter’s name, email address, IP address, browser user agent string, commenter’s site URL (if provided), the comment itself, and the comment date and time. Also, an anonymized string created from the commenter’s email address (also called a hash) may be provided to the Gravatar service to see if the commenter uses it. The Gravatar service privacy policy is available at https://automattic.com/privacy/. After approval of your comment, your profile picture is made visible to the public in the context of your comment via Gravatar.

Within the comment form is an opt-in ‘Remember me’ box, which functions to make commenting faster the next time the same visitor makes a comment on our site, thus creating a better user experience. Voluntarily consenting by checking the ‘Remember me’ box saves the visitor from having to re-enter name and email address for future comments. To automatically fill in the commenter’s name and email address the next time leaving a comment on our site, the commenter’s information will be stored in a cookie in the commenter’s browser. The cookie lasts 14 days; after that, the visitor will need to manually enter their information again. To understand more about how WordPress.com handles comments and their use of your data, please refer to Automattic’s Privacy Policy.

Visitor comments may be checked through Akismet, Automattic’s automated spam detection service for security purposes. See the section on this page titled “Akismet” for more info.

If a visitor leaves a comment, the comment and its metadata are retained on our site for as long as we use the comments feature on our site; that is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue. We delete the email notification of the comment after replying to it. However, if you request that we delete the comment from our site, we will do so. Contact us at christy@whenwomeninspire.com if you want us to delete some or all of your comments and its metadata, with the exception of any data we are obliged to keep for administrative, legal, or security purposes. You may also email us to request to receive an exported file of the personal data we hold on you, including any data you have provided us.

Our email provider is GDPR compliant.

SSL through WordPress.com

Our domain, which is registered and connected to a WordPress.com website, is encrypted with an SSL certificate to reduce the risk of those with malicious intent (hackers or identity thieves) stealing sensitive information, such as visitor passwords. SSL is an important part of encrypting data in transit between WordPress and users. To further uphold the security of our site, WordPress.com will 301 redirect all insecure HTTP requests to the secure HTTPS version.

WordPress Search

The WordPress Search feature on our site helps route the search request on the WordPress.com servers and improve the visitor’s search experience. WordPress.com anonymously tracks when and what visitors search for and click on, and aggregates this data, to improve search functionality on our site. WordPress.com does not collect any personally identifiable information through the Search feature and does not store it indefinitely.

If you have any concerns or want more detailed information about the data collected by WordPress.com and how it is used, and for how long, you can refer to the privacy policy and privacy notice provided by Automattic, the company behind WordPress.com. You can also adjust your Privacy Settings in your WordPress.com account.

2.Akismet

We use the Akismet Anti-spam plugin, embedding this service within our site’s comments and contact forms. Akismet (owned by Automattic) only collects the personal data that is needed to carry out its core function of protecting our website against comment and contact form spam/bots (a legitimate interest purpose).

The information Akismet collects may include the commenter’s IP address, user agent, referrer, and site URL, along with other information that the commenter directly provides, such as their name, username, email address, and the comment itself. The contact form submission data may include the IP address, user agent, name, email address, site URL, and the message itself. Read more about our site’s contact forms on this page in the “WPForms Lite with Akismet” section of this policy page.

Akismet stores the collected data on servers located all over the world to offer a fast and reliable service. When Akismet transfers data to the US and other countries outside of the EU, they do so under the Standard Contractual Clauses (SCCs), which have been upheld by the EU Court of Justice as a legal means of transferring data under GDPR requirements.

For more information or any concerns, we encourage you to review the Akismet privacy policy and the Automattic policy notice.

3.Jetpack

We use Jetpack for WordPress (owned by Automattic) to improve the user experience on our site and make our site safer and faster. Jetpack processes personal data when you visit our website, as described below, including IP address, date, time, requested page or post, and browser information. This includes the possible transfer of personal data out of the EU are covered by the Standard Contractual Clauses where there isn‘t already an adequacy agreement in place with the receiving country.

Jetpack syncs all the data required by all of its features, whether they are activated or not, to Automattic’s servers. Find more info at https://jetpack.com/support/what-data-does-jetpack-sync/ and read Automattic’s privacy policy.

We have disabled the Jetpack Site Stats module.

Jetpack Likes

(Only accessible to users logged in to WordPress.com)

Visitors can use the Like button displayed at the bottom of our blog posts to show their appreciation for these posts, thus enhancing our site experience, and we improve our site content based on what is popular. Jetpack Likes collects data about the likes on our site, including the post or page that was liked, the user who liked it (if they were logged in to WordPress.com), their Gravatar profile info if they have attached it to their WordPress.com account (including making their Gravatar profile photo public), and the timestamp of the like. This data is stored securely on WordPress.com servers, which provides managed hosting for us. The data collected by Jetpack Likes is subject to Automattic’s privacy policy for the protection and privacy of user data. For more information about Jetpack Likes and its data collection, please read the Jetpack Likes documentation.

Jetpack Brute Force Attack Protection

In order to check login activity and potentially block fraudulent attempts, our site enables JetPack Brute Force Attack Protection. It collects information solely to identify and block potential threats to our site security, including the attempting user’s IP address, attempting user’s email address/username (i.e. according to the value they were attempting to use during the login process), and all IP-related HTTP headers attached to the attempting user. After the attacker fails to log in after several consecutive attempts, Jetpack temporarily blocks any further login attempts from their IP address.

Jetpack Newsletter

To initiate and process subscriptions, we use JetPack Newsletter, which enables visitors to our site to subscribe to and receive email notifications of new blog posts and for us to send subscribers the new posts by email after consenting through a double opt-in.

When sending emails of new blog posts to subscribers via email, Jetpack collects some basic server data, including the subscriber’s email address, the content of the emails sent, and information about the delivery status of each email. This information is collected to ensure the delivery of our emails to subscribers.

Upon activating a new subscription, we receive the subscriber’s name and/or WordPress.com username (alias), email address, associated WordPress site URL (if any), country, date subscribed, and activity (open rate, click rate, and number of emails sent). This info is only visible to our site owner. Subscriber email addresses are used solely to send email notifications to subscribers and are not shared with any third parties.

In the event of a new subscription being initiated, Jetpack also collects some basic server data, including all of the subscribing user’s HTTP request headers, the IP address from which the subscribing user is viewing the page, and the URI that was given in order to access the page (REQUEST_URI and DOCUMENT_URI). This server data is used for the exclusive purpose of monitoring and preventing abuse and spam, and the data is stored securely on Automattic’s servers. Automattic does not share this data with any third partiers, except when necessary to comply with legal obligations or to protect users’ rights and safety.

If you request a password reset for your WordPress.com account, which you may have created upon starting your Jetpack Newsletter subscription with us, your IP address will be included in the reset email. We encourage you to read the Jetpack Newsletter Privacy Information page for details or if you have any concerns.

To unsubscribe from receiving emails about new posts, click the unsubscribe link in the emails, manage your subscription, or contact us directly at christy@whenwomeninspire.com with your request to unsubscribe from the service.

WPForms Lite, with Akismet integration

To create forms on our site so visitors can contact us, we use the free version of the WPForms Lite plugin. When a user fills out the form, we collect first name and last name (if the user provides one or both), email address, and the message itself. We collect this information solely to enable us to be able to reply to the user. WPForms Lite sends us the contact form data via email, and it is not stored in our WordPress database. We do not back up entries in the cloud. When our service with the visitor is completed, we purge the entry from our email within the next three months. Our email provider is GDPR compliant.

WPForms does not store or process data of users from our site. We encourage you to review the WPForms Lite privacy policy to review what information the free version of WPForms collects on website visitors and your GDPR-related data protection rights.

We integrate Akismet (owned by Automattic) within the WPForms plugin to collect data from form submissions to analyze and determine if they are spam or legitimate messages. This data includes information such as the sender’s IP address, timestamp, user agent, referrer, and the content of the message itself. Akismet collects this data to accurately identify and filter out spam messages, ensuring our site remains clean and free from unwanted content. It is in users’ best interests to review how sender data is used, as outlined in the Akismet privacy policy and the Automattic policy notice, as well as reading the section titled ‘Akismet’ above in our policy on the page you are reading right now.

Burst Statistics for WordPress (Pro)

We use the Burst Statistics (Pro version) plugin, a privacy-focused statistics tool, to analyze visitor behavior so that we can provide a better user experience and improve our site performance. Burst enables us to collect stats locally on our WordPress.com server and not share them with any third party, except where legally required to disclose.

We collect anonymized data through Burst Statistic’s cookieless approach and honor ‘Do Not Track’ requests. Anonymized visitor data is stored locally, including overall site stats, page-level stats, user devices, and referrers while preserving visitors’ privacy without cookies, and processing IP address only to determine visitor country.

Burst gathers device and browser information, such as browser type, operating styem, and device settings; this collected data is used to create a unique identifier or ‘fingerprint’ for each visitor. This means we track visitor site activity without storing personal information.

We delete the anonymized activity stats from our WordPress.com database every 13 months.

For more information about Burst, please read the Privacy Statement at https://wordpress.org/plugins/burst-statistics/

Google AdSense

We use Google AdSense to display ads on some of our pages and posts that might interest our users. Third-party vendors, including Google, use cookies in order to serve ads based on a user’s prior visits to our website or other websites. Google’s use of advertising cookies enables it and its partners to serve ads to our users based on their visit to our site and/or other sites on the Internet. Read how Google manages ads in its ads products.

AdSense collects personal data, which includes collecting IP addresses primarily to identify and prevent click fraud. These ads may use information (not your name, address, email address, or phone number) about your visits to this and other websites to provide advertisements about goods and services of interest to you.

For information on how Google manages data in its ad products, visit the Google AdSense Privacy Policy. Google is certified under the EU-U.S. Data Privacy Framework (“EU-U.S. DPF”) as an alternative transfer solution to transfer EEA personal data to the U.S.

We only allow first-party Google AdSense cookies on our site; we do not allow user-based ads, additional ad technology vendors, or limited ads. We enable these cookies for personalization to provide a better user experience. We use Google-Certified Ad Networks through AdSense; these networks compete for our ad inventory. All Google certified ad networks must meet and follow the standard Google ad format policies.

AdSense may collect information about user activity, such as how many unique visitors visit our site within a certain timeframe. Google may transfer customer personal data to third countries.

Users may op out of personalized advertising by visiting Ads Settings.

You can change or withdraw your consent at any time. See the “Placed Cookies” section in our Cookie Policy to adjust cookies. Also, see our Opt-Out Preferences page.

Astra

We use the Astra WordPress theme (free version) from Brainstorm Force. Astra theme does not track anything and does not send a request to their servers. We use System Fonts in Astra. Find more about Astra in their Brainstorm Force privacy policy.

Complianz | The Privacy Suite for WordPress

Our website uses the Privacy Suite for WordPress from Complianz to create and publish several of our privacy center pages to meet our legal requirements as a publisher and provide a transparent approach to our site’s use of data with our visitors that meets legal frameworks, such as GDPR compliance. For the latter functionality, your IP address is anonymized and stored in our database. For more information, we suggest that you read the Complianz Privacy Statement.

To process the cookie compliance process accurately on our site, Complianz uses cookies. These cookies do not store personally identifiable data from users; they are functional, non-track cookies.

If Complianz detects that a visitor of our site has “TC String” (= TCF consent) that was created by Complianz, and is older than 13 months; it will automatically ensure that the “old” TC String is invalidated and that visitor will be asked to provide their consent preferences again via the cookie banner.

Link Whisper

Our site uses the Link Whisper plugin to analyze our content and suggest internal links to improve SEO and user experience. The plugin may collect data about the pages and posts we create, including the URLs, titles, and content. This data is used solely for the purpose of prividing internal link suggestions and improving the plugin’s functionality. The data collected by Link Whisper is not shared with any third parties. Our actions follow the privacy policy for the Link Whisper plugin.

Affiliate Partnerships and Sponsors

We partner with a range of brands, retailers, and PR firms through affiliate links and sponsored collaborations.

When we link to products and services, these links may be affiliate links to advertisers, such as those through the Amazon.com Associates Central network. Our site and these networks may collect limited data: the link clicked and any products and services purchased from the said link (including the date). We earn commissions from qualifying products and services; the affiliate companies may place cookies to track when any purchases you make through the links originated from our site so we can receive this commission. The retailers pay the commission, not you. The income earned helps to pay for expenses relating to this site to keep it afloat. Not all links on this site are affiliate links. We are not responsible for linked sites, including any information or materials found on these linked sites.

If you have questions or concerns, or want to collaborate with us at the When Women Inspire blog, reach out by email to christy@whenwomeninspire.com

Preference Changes

Change your cookie settings and preferences at any time. See the “Placed Cookies” section in our Cookie Policy to adjust cookies. Also, see our Opt-Out Preferences page. We also encourage you to read our Terms and Conditions page. These pages are always in our site Footer for your convenience. Any questions, please contact us at christy@whenwomeninspire.com

If we refuse your request for information and you wish to appeal it, or if we don’t provide the information you asked for, please contact us at christy@whenwomeninspire.com and we will respond within 14 business days. If you don’t receive a response, please send another email to us.