Privacy and Cyber Policy

At Essential Skills Group Inc. (ESG), we take the privacy and security of our users’ data seriously. Our commitment to safeguarding personal information is reflected in the policies and procedures we have in place to protect data.

Privacy Policy (In Compliance with PIPEDA):

Data Collection
We collect personal information about test takers fairly and lawfully. We collect personal information from our users to provide our services and enhance their experience. We obtain individual consent for the collection, use, or disclosure of personal information, except where the law provides an exemption. This information may include names, email addresses, preference data and any other information necessary to administer and score our tests. Your data is also used to train and improve our AI algorithms, personalize user experience, and to suggest career and skill-enhancement opportunities.

Sharing of Information
We do not sell or rent personal information to third parties. We may share data with trusted partners for purposes such as data analysis, technology support, service improvement and fraud prevention.

User Rights
Test takers are informed of the existence, use, and disclosure of their personal information and are given access to it, upon request. Individuals may verify the accuracy and completeness of their personal information and may request that it be amended, if appropriate.

We employ robust security measures to protect your data from unauthorized access, alteration, disclosure, or destruction. Our systems are designed to prevent unauthorized access, and we conduct regular audits and vulnerability assessments to identify and address potential security threats. See the cyber policy below for more information.

Data Retention
Personal information is retained as long as necessary for the purposes outlined in this policy, unless a longer retention period is required or permitted by law.

Cyber Policy:

ESG recognizes the importance of protecting our users’ data from cyber threats. To achieve this, we have implemented a comprehensive cybersecurity program that includes measures such as:

  • Regular security assessments and vulnerability scans
  • Strict access controls to limit access to sensitive data
  • Data encryption
  • Incident response procedures to quickly identify and respond to any potential security incidents
  • Ongoing employee training and awareness programs to promote cybersecurity best practices
  • We regularly review and update our cybersecurity measures to ensure we provide the highest level of protection for our users’ data.

Contact Information:

If you have any questions or concerns about our policies or practices, please contact our Data Protection Officer at