privacy policy

Some Cookies are set by third parties that provide services to AMLI (e.g., analytics, advertising, social media integrations). AMLI does not control how these third parties use information once collected and their use is governed by their own privacy policies. We maintain contracts and require appropriate safeguards where applicable.

Cookie data is kept for the period stated above for each category (generally session to 24 months, unless a shorter or campaign-specific period applies). Server logs containing IP addresses are retained for a limited period necessary for security, diagnostics, and compliance.

When you engage with AMLI, you may provide your company name and address, your name, affiliated reporting entity type (if applicable), phone number, and email address. We use this information to deliver our products and services, provide access to tailored content obtained from the website or client portal, and perform internal analytics to improve our offerings, services, and communications. We do not disclose your information to third parties except as needed to deliver our products and services or as required by Canadian or international law.

“Personal Data” means information that identifies you or could reasonably be linked to you (for example, your name, email address, telephone number, postal address, employer, job title, or date of birth). We collect and process Personal Data to operate the Site, respond to inquiries, provide our services, manage our relationship with you and our clients, and to comply with applicable laws (including anti-money laundering, anti-terrorist financing, sanctions, and privacy laws such as PIPEDA).

To meet legal and contractual obligations, AMLI may request or receive Personal Data necessary for KYC/KYB/EDD and sanctions screening, such as legal name, date of birth, residential or business address, nationality, government-issued identifiers, beneficial ownership and control information, and supporting documentation.

We may use third-party payment processors (each, a “Payment Service”) to collect payments made through the Site. If you choose to make a payment, you may be redirected to a webpage hosted by a Payment Service (or its providers). Any Personal Data you submit on that page is collected by the Payment Service and is governed by its privacy policy, not this Privacy Policy. AMLI does not control a Payment Service’s use of such information. We may receive limited information from the Payment Service (e.g., transaction status, amount, and non-sensitive identifiers) for reconciliation, fraud prevention, and recordkeeping.

You may visit the public portions of the Site without providing Personal Data. If you choose not to provide information we request, certain Site features or AMLI services may be unavailable.

We disclose Personal Data for the purposes described below. In some engagements, AMLI acts as a service provider/processor to our clients; in those cases, we disclose Personal Data on our client’s documented instructions and in accordance with our agreement.

If your employer, client, or another third party pays for or sponsors your access to AMLI services (e.g., platform access, training, or advisory deliverables), we may—upon their request—share information related to the specific services they funded (for example, service usage, attendance/completion for trainings, or project status). We will not share such information with other parties unless we have your consent or are legally required to do so.

Where required or permitted by law, we may disclose Personal Data to regulators and public authorities, including FINTRAC, the Bank of Canada (RPAA), provincial/territorial regulators, law-enforcement agencies, courts, or self-regulatory bodies, to: (i) comply with legal obligations and lawful requests; (ii) assist our clients in meeting their own obligations (e.g., responding to examinations, audits, or information requests); or (iii) report significant incidents where legally required.

We share Personal Data with carefully selected service providers that perform services on our behalf, such as: hosting and cloud infrastructure, identity verification and sanctions/PEP/adverse-media screening, analytics, customer support tools, document management, payment processing, training/event administration, auditing, and professional advisors. These providers are bound by contract, must use Personal Data only for the contracted purpose, and must apply appropriate security and confidentiality measures.

Where applicable and in compliance with law, we may share Personal Data with AMLI affiliates for operational support and—where permitted—marketing communications about relevant products or services. You can opt out of affiliate marketing at any time (see Your Choices).

We may collaborate with partners to offer joint services, events, or content (including co-branded webpages). Information you provide in connection with these Jointly Offered Items may be shared with the relevant partner. Their use of Personal Data is governed by their own privacy policies. If you do not want your information shared in this context, please refrain from submitting Personal Data on those pages or offerings.

If you subscribe to AMLI services that include third-party data or tools (e.g., screening databases or analytics), we may be required to provide limited Personal Data to those providers (for example, to verify authorized users or meet reporting obligations set by the provider).

If we run contests, sweepstakes, or similar promotions, we may disclose Personal Data to sponsors or as otherwise described in the promotion rules. If those rules differ from this Policy, the promotion rules govern for that activity.

Where relevant (e.g., for training certificates, workshop completion lists, or professional recognitions issued by AMLI), we may publish participant names and business affiliations, subject to applicable law and any choices we make available.

We may disclose or transfer Personal Data to an acquirer, affiliate, or other third party (and their advisors) in connection with a corporate transaction (e.g., merger, reorganization, financing, sale of assets), subject to appropriate safeguards and applicable law.

We may disclose Personal Data as we believe necessary or appropriate to: (i) comply with laws and legal processes (including outside your country of residence); (ii) respond to governmental or public-authority requests; (iii) enforce our terms and agreements; (iv) protect the rights, privacy, safety, or property of AMLI, our clients, you, or others; (v) detect, prevent, and address fraud, financial crime, or security incidents; or (vi) pursue remedies or limit damages. Where permitted, we will resist, narrow, or challenge overbroad requests for Personal Data.

AMLI will use Personal Data only in ways that are compatible with the purposes for which it was collected, authorized by this Privacy Policy, or authorized by you. We will take reasonable steps to ensure that Personal Data is relevant to its intended use, and is accurate, complete, and current (as provided by you). AMLI depends on you to update or correct your Personal Data whenever necessary.

We store information on servers that may be located outside Canada or the USA, including other jurisdictions. Any data stored outside Canada or the USA is subject to the laws of the jurisdiction where it is located. We retain information only as long as needed for the purposes described above, to operate our business, or as required by law.

This Site is not directed to individuals under the age of eighteen (18), and we request that these individuals do not provide Personal Data through this Site.

Unless specifically requested by AMLI to comply with AML/ATF, sanctions, KYC/KYB/EDD or other legal obligations, please do not provide any sensitive Personal Data to us or via the Site (including in free-text fields or attachments). “Sensitive Personal Data” includes, for example: social insurance/social security numbers, passport or ID numbers, racial or ethnic origin, political opinions, religious or philosophical beliefs, trade-union membership, health information, biometric or genetic data, and criminal background.

If AMLI needs such information, we will ask for it through secure channels, limit collection to what is necessary, and process it in accordance with applicable law and our contractual safeguards. If you submit sensitive data without a request, we may delete or restrict it to protect your privacy.

We may update this Policy from time to time by posting a new version on our website with a revised “Last Modified” date. We encourage you to review this Policy periodically for any changes. Your continued use of our website or Services after changes are posted indicates your acceptance of the updated Policy.