Privacy Policy — Canadian Tomorrow
Effective date: On publication Last updated: April 16, 2026
This Privacy Policy explains how 1404349 B.C. LTD ("Canadian Tomorrow," "we," "us," or "our"), operated by Caio Cesar Santos de Resende in British Columbia, Canada, collects, uses, discloses, and protects personal information when you use the Canadian Tomorrow mobile and web application (bundle ID com.caioresende.canadianTomorrow / package com.caioresende.canadiantomorrow), our website at canadiantomorrow.com, and related services (collectively, the "Service").
The Service helps you prepare for the Canadian Citizenship test, track the supporting documents needed for your application, and calculate the days of physical presence required for Canadian citizenship or permanent residency.
We are committed to respecting your privacy and complying with Canadian privacy laws, including the Personal Information Protection and Electronic Documents Act (PIPEDA), Quebec's Act Respecting the Protection of Personal Information in the Private Sector (the "Quebec Privacy Act," as modernized by Law 25), British Columbia's Personal Information Protection Act (BC PIPA), and Alberta's Personal Information Protection Act (Alberta PIPA).
By creating an account or using the Service, you acknowledge that you have read and understood this Privacy Policy.
1. Who we are and how to contact us
Canadian Tomorrow is operated by:
- Legal entity: 1404349 B.C. LTD (operated by Caio Cesar Santos de Resende)
- Business address: 404 – 4180 Nanaimo St, Vancouver, BC V5H 5N7, Canada
- Privacy Officer: Caio Cesar Santos de Resende, Founder
- Email: hey@caioresende.com
- Website: https://canadiantomorrow.com
Our Privacy Officer is accountable for our compliance with this Policy and applicable privacy law, as required by PIPEDA Principle 1 (Accountability) and section 3.1 of the Quebec Privacy Act.
2. Scope
This Policy applies to personal information we collect through:
- The Canadian Tomorrow iOS app
- The Canadian Tomorrow Android app
- The Canadian Tomorrow web application
- Our website at canadiantomorrow.com
- Email and direct interactions with our support team
The Service is available in English, French, Spanish, and Portuguese.
This Policy does not apply to third-party websites, apps, or services you access through links in the Service.
3. Personal information we collect
We only collect personal information that is reasonably necessary to provide and improve the Service. The specific information we collect depends on how you interact with the Service.
3.1 Account information
When you create an account we collect:
- Your email address and, if you set one, your display name.
- A unique user ID (assigned by our authentication provider, Firebase Authentication).
- Authentication method and the timestamp your account was created and last used.
- If you sign in with Google, we receive your email address, name, and a unique Google identifier (we request a Google ID token and access token for sign-in only).
- If you sign in with Facebook, we request only the
public_profileandemailpermissions and receive the corresponding basic profile fields and email address. - If you sign in with email and password, we never see your password in plaintext — it is handled and stored as a salted hash by Firebase Authentication.
3.2 Citizenship-preparation content you create
The Service is built around three categories of user content:
- Quiz activity: your answer attempts, skipped questions, mock-exam ("simulation") results, and personal performance statistics.
- Document checklist items: the title, description, category, status (e.g., "in progress," "prepared," "uploaded," "validated"), expiry date, country of origin, language, and your personal notes for each document.
- Uploaded document files (paid tiers only): images and PDF files (up to 5 MB per file) of documents you upload to the checklist, together with their file name, size, and format.
- Residency and presence tracking: date ranges and status types (Permanent Resident, Temporary Student, Temporary Worker, Temporary Visitor, Absent, Gap) you enter to calculate days of physical presence, including the country associated with each entry.
- Language-practice activity: your language-proficiency steps and interactions, on plans where this feature is enabled.
- Family group data: if you create or join a household group, we record your role (owner or member), the invite code, and the list of members. Family members can read one another's citizenship-preparation information in order to coordinate an application.
This content belongs to you. We process it on your behalf solely to provide the Service.
3.3 Payment and subscription information
All payments for paid plans are processed through Apple App Store, Google Play, and our subscription platform RevenueCat. We do not collect or store your full credit-card or banking information. From these providers we receive:
- A RevenueCat user identifier linked to your account.
- The subscription product you purchased (for example,
ct_essential_999,ct_complete_2499, orct_family_3999), the plan tier ("essential," "complete," or "family"), and whether your subscription is active, renewing, or cancelled. - Transaction identifiers and event types (purchase, renewal, cancellation, refund) delivered through the RevenueCat webhook.
Billing, refunds, and auto-renewal are controlled by Apple or Google under your App Store or Play account settings.
3.4 Technical and usage information
We automatically receive some technical data:
- Device and app data: device model, operating system and version, language, time zone, app version, and platform (iOS, Android, or web).
- Diagnostic and crash data: stack traces and crash context collected by Firebase Crashlytics in release builds only when the app crashes or encounters an unhandled error. Crashlytics is disabled in debug builds.
- Usage analytics: standard Firebase Analytics events such as screen views, session information, and interactions with core features. Analytics are collected in release builds only.
- Device integrity attestation: we use Firebase App Check (Play Integrity on Android, App Attest on iOS) to verify that requests come from a genuine installation of our app. App Check does not identify you personally.
- Connectivity status: whether your device is online or offline, used to decide when to sync.
3.5 Information we do not collect
To be clear, Canadian Tomorrow does not:
- collect precise or approximate device location (no
location,geolocator, orgeocodingintegration); - send push notifications (no Firebase Cloud Messaging or similar is integrated);
- use advertising or advertising-ID tracking, or run any in-app ads;
- use artificial intelligence, machine learning, or large-language-model services to process your data;
- use third-party analytics or attribution SDKs such as Sentry, Mixpanel, Amplitude, Adjust, or AppsFlyer;
- collect social-insurance numbers, government-issued ID numbers, biometric data, or payment-card numbers;
- set advertising cookies or tracking pixels on our web build.
Documents you upload may, by their nature, contain sensitive information (for example, passport or status documents). We treat these files as confidential — see Sections 6 and 9.
3.6 Camera and photo-library access
On iOS, the app requests permission to use your camera and photo library only so that you can take or select a photo of a document to upload:
- "Take a photo of your document to upload it."
- "Select a document photo from your library to upload."
On Android and web, you can choose a file through the system file picker. We never read your camera roll or files in the background.
4. Why we collect and use your personal information (purposes)
We use personal information only for the purposes below. If we ever need to use your information for a materially new purpose, we will notify you and, where required by law, obtain your consent.
| Purpose | Examples | Legal basis |
|---|---|---|
| Provide and operate the Service | Create and secure your account; sync quizzes, documents, dates, and language activity across devices | Contract performance; consent |
| Process subscriptions and entitlements | Verify your Apple, Google, or RevenueCat purchase and unlock the features of your plan | Contract performance; legal obligation |
| Customer support | Respond to questions, investigate issues, restore purchases | Legitimate interest; consent |
| Family (household) features | Enable invited members of your household plan to coordinate their applications | Contract performance; consent |
| Service improvement and analytics | Diagnose crashes, understand aggregate feature usage, improve reliability | Legitimate interest; consent |
| Communications | Send service-related messages (email verification, security alerts, receipts, policy updates) | Contract performance; legal obligation |
| Security and abuse prevention | Validate device integrity with App Check; detect account-takeover or abuse | Legitimate interest; legal obligation |
| Legal compliance | Respond to valid legal requests; enforce our Terms of Service | Legal obligation |
We currently do not send marketing emails. If we ever do, we will obtain your express opt-in consent first, in compliance with Canada's Anti-Spam Legislation (CASL), and you will be able to unsubscribe at any time.
5. Automated decision-making and profiling
We do not use your personal information to make decisions about you that are based exclusively on automated processing and that produce legal or similarly significant effects on you, as referenced in section 12.1 of Quebec's Law 25. Quiz performance statistics and residency-day calculations are calculated automatically but they are informational only — Canadian Tomorrow does not decide anything about your citizenship eligibility. Only Immigration, Refugees and Citizenship Canada (IRCC) makes those decisions.
6. How we share personal information
We do not sell your personal information. We share personal information only as described below.
6.1 Service providers and processors
We rely on vetted third-party providers that process personal information on our behalf, under contract, for the purposes below:
| Provider | Purpose | Location |
|---|---|---|
| Google LLC — Firebase (Authentication, Firestore, Cloud Functions, Cloud Storage, App Check, Analytics, Crashlytics) | Account management, secure database, serverless back-end, file storage, device attestation, analytics and crash reporting | United States (Firebase project region: us-central1) |
| Google LLC — Google Sign-In | Optional Google single sign-on | United States |
| Meta Platforms, Inc. — Facebook Login | Optional Facebook single sign-on (Facebook App ID: 2142680306473384, scopes: public_profile, email) |
United States |
| RevenueCat, Inc. | Subscription management and receipt validation across the App Store and Google Play | United States |
| Apple Inc. — App Store | Processing iOS subscription purchases | United States / regional |
| Google LLC — Google Play Billing | Processing Android subscription purchases | United States / regional |
A current list of sub-processors is available on request and at https://www.canadiantomorrow.com/subprocessors.
6.2 Within a family (household) plan
If you join a household plan, the plan owner and other invited members of that household may see the citizenship-preparation information in your account (quiz progress, documents, residency dates, language progress, and profile) to coordinate the family's applications. You can leave a household at any time, which removes this cross-access going forward. The plan owner may also remove members or regenerate the invite code.
6.3 Legal, safety, and compliance
We may disclose personal information if we have a good-faith belief it is reasonably necessary to:
- comply with a subpoena, court order, or other valid legal process;
- enforce our Terms of Service;
- protect the rights, property, or safety of Canadian Tomorrow, our users, or the public;
- detect, prevent, or address fraud, security, or technical issues.
Where permitted by law, we will notify the affected user first.
6.4 Business transactions
If Canadian Tomorrow is involved in a merger, acquisition, reorganization, financing, or sale of assets, personal information may be transferred as part of that transaction. We will ensure that any recipient continues to protect your information in a manner consistent with this Policy, and will notify affected users of any material change.
6.5 With your direction
We share information with third parties when you ask us to — for example, if you choose to sign in with Google or Facebook, or contact a third-party immigration representative using data exported from the Service.
7. Cross-border transfers of personal information
Our back-end runs on Google Firebase in the us-central1 region in the United States. This means that data you enter — including your account details, document records, document files, quiz activity, and residency entries — is stored and processed in the United States. Your information may also be accessible to U.S. governments, courts, law enforcement, or regulators under U.S. law, and to our payment and authentication providers in the U.S.
To protect your information across borders we:
- enter written data-processing agreements with our providers that incorporate standard contractual protections;
- encrypt personal information in transit (TLS 1.2 or higher) and at rest (Google-managed AES-256 for Firestore and Cloud Storage);
- validate client requests with Firebase App Check to reduce abuse;
- apply strict security rules that allow each user to read and write only their own data (and household members only for shared household data), and forbid client-side deletion of records that must be retained.
Before transferring personal information outside Quebec, we conduct a privacy impact assessment as required by section 17 of the Quebec Privacy Act. You may contact our Privacy Officer for more detail about where your information is processed.
8. How long we keep your personal information
We retain personal information only as long as necessary to fulfill the purposes described in this Policy, or as required by law — whichever is longer. Typical retention periods:
- Active account data: kept for the life of your account.
- Deleted account data: when you delete your account in-app, your Firebase Authentication record is deleted immediately. Your user profile, documents, document files, residency entries, quiz records, simulation results, and language activity are then queued for back-end deletion and purged from production systems within 30 days, and from encrypted backups within 90 days, except where retention is required for legal, tax, or fraud-prevention reasons.
- Uploaded document files: retained until you delete the item in-app or delete your account; then removed on the schedule above.
- Quiz performance data: aggregate, non-identifying statistics (for example, how often a question is answered correctly) are retained indefinitely to improve the Service; individual attempts are tied to your account and deleted on account deletion.
- Purchase and tax records: retained for up to 6 years after the relevant fiscal year to comply with Canadian tax law (Income Tax Act and Excise Tax Act) and Apple / Google / RevenueCat audit requirements.
- Support tickets and crash logs: typically retained for 24 months.
- Unsubscribe records: retained for 3 years after withdrawal of consent to demonstrate CASL compliance.
When retention is no longer necessary, we either securely destroy the information or irreversibly anonymize it.
9. How we protect your personal information
We maintain administrative, technical, and physical safeguards appropriate to the sensitivity of the information — especially because uploaded documents can include passports, status cards, and other sensitive identifiers. Our safeguards include:
- Encryption in transit (TLS 1.2+) and at rest (AES-256 managed by Google Firebase).
- Access controls: Firestore and Storage security rules restrict reads and writes so that each user — and, for household plans, their invited household members — can only access their own data. Client-side deletion is blocked on records that must be preserved for integrity.
- Storage restrictions: uploaded document files are limited to images and PDFs up to 5 MB per file and are stored under a private, per-user path (
users/{userId}/documents/…). Links are signed and time-limited. - App integrity verification using Firebase App Check (Play Integrity on Android, App Attest on iOS) to block spoofed requests.
- Release-only analytics and crash reporting: Crashlytics and Analytics are disabled in debug builds.
- Least-privilege administration: access to production systems is restricted to authorized personnel, with multi-factor authentication required.
- Change management: code changes are version-controlled and reviewed before deployment to production.
No system is perfectly secure. In the unlikely event of a confidentiality incident that creates a real risk of significant harm, we will notify affected individuals and the Office of the Privacy Commissioner of Canada (and the Commission d'accès à l'information du Québec, where applicable) without undue delay, as required by law.
10. Cookies and similar technologies
On the web build, the Service uses only the minimum storage needed to operate:
- Strictly necessary: Firebase Authentication session tokens stored in your browser so you stay signed in.
- Preference storage: your selected language and UI settings.
We do not use advertising cookies, cross-site trackers, Google Tag Manager, Facebook Pixel, or third-party analytics scripts on the web.
On mobile, we use Firebase Analytics and Firebase Crashlytics SDKs (release builds only) as described in Section 3.4. In Quebec, tracking technologies that identify you are disabled by default, in line with section 8.1 of Law 25.
11. Your privacy rights
Subject to applicable law, you have the following rights regarding your personal information. You can exercise most of these rights directly in the app or by emailing our Privacy Officer at hey@caioresende.com.
- Right of access: confirm what information we hold about you and obtain a copy.
- Right of correction: have inaccurate or incomplete information corrected. Most of your profile and content is editable directly in the app.
- Right to withdraw consent: at any time, subject to legal or contractual restrictions. Withdrawal does not affect the lawfulness of processing before withdrawal.
- Right to delete your account: in-app, from the account settings. Deleting your account removes your Firebase Authentication record immediately and starts the data-deletion process described in Section 8.
- Right to deletion / de-indexing: ask us to delete personal information where it is no longer necessary, where you withdraw consent and no other legal basis applies, or where the processing is not lawful. Under Law 25 you may also request de-indexing of information that causes serious prejudice.
- Right to data portability (Quebec, from September 2024): receive a copy of the computerized personal information you provided us in a structured, commonly used technological format. As of the effective date of this Policy the Service does not offer a one-click export, but you may request an export from our Privacy Officer and we will provide it free of charge within 30 days.
- Right to be informed about automated decisions: we do not currently make such decisions; if this changes, we will inform you and offer a right to human review.
- Right to complain: to us first, and then to the appropriate regulator (see Section 14).
We will respond to verified requests within 30 days. If we need more time, we will let you know within the first 30 days and explain why. There is no fee for most requests; where a request is manifestly unfounded or excessive, we may charge a reasonable fee or refuse, and we will explain our decision in writing.
To protect your information, we verify your identity before acting on a request.
12. Consent
By creating an account and using the Service, you consent to the collection, use, and disclosure of your personal information as described in this Policy. Where we rely on express consent — for example, for marketing emails if we ever send them — we will ask for it separately at the appropriate time. You can withdraw consent at any time, subject to legal or contractual restrictions, by deleting your account or contacting us. Withdrawing consent may limit our ability to provide some features.
13. Children and age
The Service is intended for users preparing a Canadian citizenship or permanent-residency application, which typically involves adult applicants. You must be at least 13 years old (or the age of digital consent in your jurisdiction, if higher) to create an account. If you are between 13 and the age of majority in your province, you must have the involvement of a parent or guardian.
We do not knowingly collect personal information from children under 13. If you believe a child under 13 has provided personal information to us, please contact our Privacy Officer and we will delete it.
14. How to contact us and how to complain
If you have questions, concerns, or wish to exercise a privacy right, contact our Privacy Officer:
- Email: hey@caioresende.com
- Mail: Privacy Officer, 1404349 B.C. LTD, 404 – 4180 Nanaimo St, Vancouver, BC V5H 5N7, Canada
If you are not satisfied with our response, you have the right to complain to the appropriate regulator:
- Office of the Privacy Commissioner of Canada — priv.gc.ca — 1-800-282-1376
- Commission d'accès à l'information du Québec — cai.gouv.qc.ca
- Office of the Information and Privacy Commissioner of Alberta — oipc.ab.ca
- Office of the Information and Privacy Commissioner for British Columbia — oipc.bc.ca
15. Changes to this Policy
We may update this Policy from time to time. When we do, we will revise the "Last updated" date above. If the changes are material, we will notify you by email or in the app before they take effect, and, where required, obtain your renewed consent. Continued use of the Service after an update constitutes acceptance of the revised Policy.