DREAM LogoDREAM

Privacy Policy — DREAM

Department Resource & Equipment Asset Management

Version 1.0Effective Date: 2026-04-19
Provided by: Egregius Digital
Contact: admin@egregius.tech

1. Introduction

Egregius Digital ("we", "us", or "our") operates DREAM (Department Resource & Equipment Asset Management), a software platform that helps organizations manage assets, equipment, assignments, inventory records, and lifecycle planning.

We respect privacy and are committed to handling personal information in accordance with applicable laws, including Alberta's Personal Information Protection Act (PIPA) and other applicable privacy laws where relevant.

This Privacy Policy explains how information is collected, used, disclosed, stored, and protected when DREAM websites or services are used.

2. Scope

This Privacy Policy applies to:

  • Public Website Visitors: Visitors to public-facing DREAM pages such as marketing, pricing, or support pages.
  • Account Users: Administrators, Editors, Viewers, and other authorized users of the DREAM platform.
  • Customer Data: Information entered into DREAM by customer organizations relating to employees, departments, locations, assets, and operational records.

3. Role of Customer Organizations

DREAM is business software used by organizations. Customer organizations determine what information they upload to the platform and are responsible for ensuring they have lawful authority to collect, use, and provide that information to DREAM.

Egregius Digital provides and operates the software platform and processes information as necessary to deliver, secure, maintain, and support the service.

4. Information We Collect

A. Account Information

We may collect:

  • Email address
  • User role and access permissions
  • Organization name
  • Authentication identifiers provided through Firebase Authentication
  • Login timestamps
  • Technical telemetry related to security, fraud prevention, and service reliability

Users who sign in using Google OAuth may provide their Google account email address and a unique authentication identifier.

B. Employee / Workforce Information Entered by Customers

Customer organizations may store:

  • First and last name
  • Employee ID or badge number
  • Work email address
  • Work telephone number
  • Department or cost centre
  • Employment status (active / inactive)

We do not request or require highly sensitive employee information such as Social Insurance Numbers, dates of birth, home addresses, or personal banking information.

C. Asset and Operational Information

Customer organizations may store:

  • Asset categories, descriptions, makes and models
  • Serial numbers or internal asset tags
  • Purchase prices and estimated replacement values
  • Assignment history to employees or locations
  • Lifecycle planning data
  • Audit logs of changes and assignments

D. Uploaded Content

Organizations may upload branding images such as organization logos.

E. Website Analytics

DREAM may use cookies or similar technologies on public-facing marketing pages, including Google Analytics 4, to understand website traffic and improve our website. These technologies are not intentionally deployed inside authenticated customer dashboard areas.

5. How We Use Information

We may use information to:

  • Provide and operate DREAM
  • Authenticate users and manage permissions
  • Maintain subscriptions and account access
  • Enable asset management, assignment tracking, forecasting, and reporting
  • Facilitate audits or verification of assigned assets
  • Improve functionality and user experience
  • Detect abuse, fraud, or unauthorized access
  • Maintain audit trails and system integrity
  • Respond to support requests
  • Comply with legal obligations

We do not sell personal information.

6. Payments

DREAM uses Paddle as its payment processor and Merchant of Record. We do not collect, process, or store payment card numbers or billing addresses on our own systems.

Payment transactions are handled directly by Paddle under Paddle's own terms and privacy practices. We may retain limited subscription metadata such as plan type, status, expiry dates, and anonymous subscription identifiers.

7. Hosting and International Processing

DREAM uses Google Firebase and Google Cloud services.

Primary application data is hosted in Canada in the Toronto region (northamerica-northeast2).

Some authentication or supporting service functions may be processed through systems located outside Canada, including the United States.

8. Disclosure to Third Parties

We may disclose limited information to service providers who help operate DREAM, including:

  • Google Firebase / Google Cloud (Database and Hosting)
  • Paddle (Merchant of Record and Subscription Management)
  • Website analytics providers used on public pages

We may also disclose information where required by law, court order, lawful authority, or where reasonably necessary to protect users, customers, or the public. We do not sell customer data to advertisers or data brokers.

9. Retention

We retain information only as long as reasonably necessary for operational, contractual, legal, accounting, and security purposes.

Certain records may be archived rather than immediately deleted in order to preserve assignment history, audit integrity, reporting continuity, and customer operational records.

10. Security

We use reasonable administrative, technical, and organizational safeguards designed to protect information, including: encrypted network transmission, authentication controls, role-based access controls, logging and monitoring, and reputable cloud infrastructure providers.

No system can guarantee absolute security.

11. Breach Notification

If we determine that a privacy or security incident involving personal information creates a real risk of significant harm, we will take steps required by applicable law, which may include notifying regulators, affected organizations, or individuals as appropriate.

12. Access and Correction Requests

Individuals may request access to or correction of personal information we control, subject to applicable law.

Where information was entered by a customer organization, requests may need to be directed first to that organization.

Requests may be sent to: admin@egregius.tech

13. Children

DREAM is a business-oriented platform and is not intended for children.

14. Changes to This Policy

We may update this Privacy Policy from time to time. Updated versions will be posted on the applicable DREAM website and the Effective Date will be revised.

15. Contact

Egregius Digital
Alberta, Canada
admin@egregius.tech