Privacy Policy

We take your privacy seriously - not just because we have to, but because trust is everything in our line of work. Here's the straight talk on how we handle your information.

Last Updated: November 18, 2025

Introduction

Look, I'll be honest with you - privacy policies can be a real snooze-fest. But when you're dealing with international business law and cross-border transactions like we do, your data privacy isn't just some checkbox exercise. It's actually critical.

We're bound by Canada's Personal Information Protection and Electronic Documents Act (PIPEDA), and we take that responsibility pretty seriously. This policy explains what info we gather, why we need it, and how we're keeping it safe. No legal jargon overload, I promise.

Important Note

By using our services or even just browsing our site, you're agreeing to this privacy policy. If something here doesn't sit right with you, let's chat before we move forward - we're reasonable people.

What We Collect

When you reach out to us or become a client, we'll need the basics:

  • Full name and any business aliases you operate under
  • Email addresses (both personal and corporate)
  • Phone numbers where we can actually reach you
  • Business addresses and sometimes residential (especially for corporate formation work)
  • Job title and company details

Nothing too wild here - just what we need to know who we're working with and how to keep in touch.

For the actual legal work, we're gonna need more detailed stuff:

  • Corporate registration numbers and tax IDs
  • Financial statements (when we're handling M&A or due diligence)
  • Banking information for trust account purposes
  • Trade compliance documentation
  • Intellectual property portfolios
  • Contract histories and existing agreements

This is where things get sensitive. We handle this data with extra care because, well, your business depends on it.

Like pretty much every website out there, we collect some technical info:

  • IP addresses (helps us spot suspicious activity)
  • Browser type and device info
  • Pages you visit and how long you stick around
  • Referring websites
  • General location data (country/city level, not your exact address)

We use this to make the site better and keep it secure. We're not tracking your every move - that'd be creepy and unnecessary.

We keep records of our conversations with you:

  • Emails back and forth
  • Phone call notes (not recordings - we don't record calls)
  • Meeting minutes from consultations
  • Documents you send us
  • Any instructions or feedback you provide

This is partly for client service (so we don't forget what you told us last week) and partly because the Law Society requires us to maintain proper files.

How We Use Your Information

We're not in the business of collecting data for fun. Everything we gather has a purpose.

Legal Services Delivery

Obviously, we need your info to actually do the legal work you're hiring us for. Can't draft contracts or handle compliance matters without knowing the details of your business and what you're trying to accomplish.

Compliance & Legal Obligations

We've got our own regulatory requirements to meet. The Law Society of Ontario mandates certain record-keeping. Plus, there are anti-money laundering rules and client identification requirements we can't skip.

Communication

We'll use your contact info to reach you about your matters, send updates on regulatory changes that might affect you, and occasionally share insights we think you'd find useful. Don't worry - we're not spamming your inbox every day.

Service Improvement

We analyze how clients use our services (in aggregate, not individually) to figure out what's working and what needs tweaking. This helps us get better at what we do.

We Don't Sell Your Data

Let's be crystal clear here - we're not selling, renting, or trading your information to third parties for marketing purposes. That's not our business model, and frankly, it'd be unethical given the nature of our client relationships.

How We Protect Your Data

Security isn't just IT buzzwords for us - it's fundamental to maintaining client trust.

Technical Safeguards

We use industry-standard encryption for data transmission (that's the "https" you see in your browser). Our servers are hosted in Canadian facilities with physical security measures, and we maintain regular backups in case something goes sideways.

All sensitive documents are stored in encrypted formats. We use multi-factor authentication for system access, and our networks are protected by enterprise-grade firewalls.

Organizational Safeguards

Not everyone in our office has access to everything. We operate on a need-to-know basis - staff only get access to the info they need to do their specific jobs.

Everyone who works here signs confidentiality agreements, and we do regular training on data security and privacy obligations. When someone leaves the firm, their access gets terminated immediately.

Physical Safeguards

Our offices at 181 Bay Street have controlled access - you can't just walk in off the street. Physical files are kept in locked cabinets in secure areas. When we need to dispose of documents, they're shredded or securely destroyed.

We also have clean desk policies - can't leave sensitive stuff lying around when you head home for the day.

Reality Check: Look, no security system is 100% foolproof. We do our best with solid measures, but we can't guarantee absolute security. That said, we monitor for breaches and have an incident response plan ready if something does happen.

When We Share Your Information

We generally keep your info to ourselves, but there are situations where we need to share it:

We work with certain third-party providers who help us run our practice:

  • Cloud storage providers (for secure document management)
  • IT support and cybersecurity consultants
  • Accounting and billing software providers
  • Email and communication platforms
  • Research databases and legal technology tools

These providers are contractually obligated to protect your info and can only use it for the specific services they're providing to us. We vet these folks carefully before we work with them.

Since we handle international business law and cross-border transactions, sometimes we need to share your info with:

  • Foreign counsel we're working with on your matter
  • International regulatory bodies or government agencies
  • Foreign business partners or counterparties (with your permission)
  • Customs and trade authorities in various jurisdictions

We'll always let you know when this is necessary and make sure appropriate data protection agreements are in place.

Sometimes we don't have a choice - the law requires us to disclose information:

  • Court orders, subpoenas, or other legal processes
  • Law Society of Ontario audits or investigations
  • Law enforcement requests (with proper documentation)
  • Tax authorities when required
  • Anti-money laundering reporting obligations

We'll push back on overly broad requests and only disclose what's legally required.

If we need to share your info for reasons not covered above, we'll ask for your permission first. This might include:

  • Introducing you to potential business partners
  • Sharing your success story (anonymously or with attribution, your choice)
  • Providing references or testimonials
  • Participating in industry events or publications

You're always free to say no, and it won't affect our relationship or the quality of service you receive.

Your Rights

Under PIPEDA and other applicable privacy laws, you've got some solid rights when it comes to your personal info.

Access Your Information

You can request to see what personal info we have about you. We'll provide it in a reasonable timeframe (usually within 30 days), though there might be exceptions if releasing certain info would breach solicitor-client privilege or other legal obligations.

Correct Inaccuracies

If something we've got on file is wrong, let us know and we'll fix it. This is actually important - inaccurate info could mess up your legal matters, so we want to keep everything accurate.

Request Deletion

You can ask us to delete your info, but here's where it gets tricky - we have legal obligations to retain client files for certain periods (usually 7-10 years depending on the matter type). We'll delete what we can when we can.

Withdraw Consent

For things where we need your consent (like marketing communications), you can withdraw that consent anytime. Just shoot us an email or give us a call. Keep in mind this won't affect processing that already happened before you withdrew consent.

Data Portability

You can request a copy of your info in a commonly used format if you want to transfer it elsewhere. We'll provide this where it's technically feasible and doesn't compromise others' rights.

File a Complaint

If you think we've mishandled your info, you can complain to us directly (and we'll try to make it right), or you can go straight to the Office of the Privacy Commissioner of Canada. Your choice.

How to Exercise These Rights

Just reach out to us at counsel@nyxariontale.info or call (416) 555-7829. We'll verify your identity (to prevent someone else from accessing your info) and then process your request.

Cookies & Tracking Technologies

Yeah, we use cookies - not the chocolate chip kind, unfortunately.

What Are Cookies Anyway?

They're tiny text files that get stored on your device when you visit our site. They help the site remember stuff about your visit - like your preferences, whether you're logged into our client portal, that sort of thing.

Types of Cookies We Use:

Cookie Type Purpose Duration
Essential Cookies Make the site actually work. Without these, you can't access the client portal or secure areas. Session
Functional Cookies Remember your preferences like language settings or display options. Up to 1 year
Analytics Cookies Help us understand how people use the site so we can make it better. We use these anonymously. Up to 2 years
Security Cookies Help us detect suspicious activity and keep your account secure. Session
Managing Cookies

You can disable cookies through your browser settings, but fair warning - some parts of our site might not work properly if you do. Most browsers let you control cookies on a site-by-site basis if you want more granular control.

International Data Transfers

Here's where things get interesting, given that we specialize in cross-border transactions.

Most of your data stays in Canada - our primary servers are here, and we prefer to keep things on home turf where we understand the legal landscape.

However, when we're handling international matters, your info might need to travel:

  • To foreign regulators where you're doing business
  • To counsel in other jurisdictions we're working with
  • Through communication platforms that might have servers abroad
  • To service providers who might process data outside Canada

When this happens, we make sure there are adequate safeguards in place. This might include standard contractual clauses, ensuring the destination country has adequate privacy protections, or getting your explicit consent for the transfer.

Different Countries, Different Rules

Not every country has Canada's level of privacy protection. When your data goes abroad, it becomes subject to that country's laws. We'll always be upfront about where your data is going and what protections are in place.

How Long We Keep Your Data

We don't hoard your info forever, but we can't just delete everything the moment our work is done either.

Client Files

The Law Society of Ontario requires us to maintain client files for a minimum period after the matter closes. This is typically:

  • General matters: 7 years from the date the file closes
  • Corporate records: 10 years or longer if the corporation remains active
  • Real estate transactions: 10 years
  • Litigation files: 10 years from resolution
  • Wills and estate planning: Potentially indefinitely (we're often the only copy)

These aren't arbitrary - they're based on limitation periods and the time within which claims might be brought.

Financial Records

Tax laws require us to keep financial records and receipts for 7 years. Trust account records have even longer retention requirements - typically 10 years.

Marketing & Communications

If you're on our mailing list but not a client, we'll keep your contact info until you ask us to remove it. Website usage data gets aggregated and anonymized after about 26 months.

After Retention Periods End

Once we're past the required retention period and there's no ongoing reason to keep your info, we'll securely destroy it. Physical documents get shredded, digital files get permanently deleted using secure deletion methods.

Questions or Concerns?

If you've got questions about this privacy policy or how we're handling your info, don't hesitate to reach out.

Get In Touch

Our Office

Nyxarion Tale Legal Services
Suite 1840, 181 Bay Street
Toronto, ON M5J 2T3
Canada

Phone

(416) 555-7829

Email

counsel@nyxariontale.info

Privacy Officer

For specific privacy-related inquiries, you can also contact our designated Privacy Officer directly through the contact info above. We'll respond to privacy requests within 30 days.

Office of the Privacy Commissioner

If you're not satisfied with how we've handled your privacy concerns, you have the right to file a complaint with the Office of the Privacy Commissioner of Canada at www.priv.gc.ca or toll-free at 1-800-282-1376.

Changes to This Privacy Policy

Laws change, our practices evolve, and sometimes we need to update this policy to reflect that. When we make material changes, we'll let you know - either through email, a notice on our website, or both.

We'd recommend checking back here occasionally, especially if it's been a while. The "Last Updated" date at the top tells you when we last revised things.

Continued use of our services after changes means you're cool with the updated policy. If you're not cool with it, we should probably have a conversation about your concerns.