Privacy Policy

Introduction

Look, we get it - nobody really wants to read privacy policies. But since we're lawyers who deal with corporate governance daily, we figured we'd make ours actually readable.

At Kinetovariant Legal Services, we've been helping businesses navigate complex legal waters since day one. That means we understand the value of confidential information better than most. This policy isn't just some template we grabbed off the internet - it's how we actually handle your data when you work with us or visit our site.

We're bound by Canada's privacy laws, particularly PIPEDA (which we'll get into), and honestly, we'd follow these principles anyway. Trust is everything in our line of work, and we don't take that lightly.

Information We Collect

When you reach out for a consultation or hire us, we'll ask for the basics - your name, company details, phone number, email, that sort of thing. If we're drafting contracts or handling M&A work for you, we'll obviously need more detailed business information.

Contact details (name, email, phone, business address)
Company information (registration numbers, corporate structure)
Financial information (only when necessary for transactions)
Employment details (for advisory services)
IP documentation (for protection services)

We only collect what we actually need to do our job properly. No unnecessary data hoarding here.

Like pretty much every website out there, ours collects some technical info automatically. We're talking IP addresses, browser types, which pages you looked at, how long you stuck around - standard web analytics stuff.

This helps us figure out if our site's actually working properly and where we might need to improve things. We've had clients tell us our resources page is super helpful, and we only know that because of this data.

We keep records of our conversations with you - emails, phone call notes, meeting summaries. This isn't about being nosy; it's about maintaining proper documentation and making sure we don't miss important details about your matter.

In corporate law, having a clear paper trail isn't optional. It protects both of us down the road.

How We Use Your Data

We're not in the business of selling data or bombarding you with marketing emails. Here's what we actually do with your information:

Legal Services Delivery

Providing the corporate law services you hired us for - drafting contracts, handling acquisitions, advising on compliance, protecting your IP, whatever we agreed to do.

Client Communication

Staying in touch about your matters, answering questions, providing updates on regulatory changes that might affect your business.

Record Keeping

Maintaining proper file documentation as required by our professional obligations and Canadian law. We're legally required to keep certain records for specific periods.

Service Improvement

Analyzing how we can better serve our clients. If lots of people are asking about the same regulatory issue, maybe we should write a guide about it.

Quick note: We won't use your information for purposes you haven't agreed to without asking first. That's just common courtesy (and also the law).

Cookie Policy

Yeah, our site uses cookies. Not the chocolate chip kind, unfortunately. These are small text files that help the website remember you and work properly.

Cookie Type	Purpose	Duration
Essential Cookies	Make the website actually function - things like keeping you logged into our client portal	Session/1 year
Analytics Cookies	Help us understand how visitors use the site so we can make it better	2 years
Preference Cookies	Remember your choices (like language settings)	1 year

You can disable cookies in your browser settings, but heads up - some parts of the site might not work as smoothly. Most browsers let you control cookies pretty easily these days.

Third Party Disclosure

We don't sell your information. Period. That's not our business model and never will be.

That said, there are some limited situations where we might share your data:

Service Providers

We use certain trusted vendors for things like document storage, email services, and our practice management software. They're all under strict confidentiality agreements and only get access to what they absolutely need.

Legal Requirements

If we're legally compelled to disclose information (court orders, regulatory investigations, that kind of thing), we have to comply. We'll give you a heads up if we can.

With Your Consent

Sometimes in M&A deals or when bringing in specialized counsel, we'll need to share info with other parties. We'll always get your okay first.

Business Transfers

If we ever sold our practice or merged with another firm (unlikely, but you never know), client files would transfer as part of that. You'd be notified in advance.

PIPEDA Compliance

As a Canadian law firm, we're bound by the Personal Information Protection and Electronic Documents Act (PIPEDA). It's actually pretty solid legislation - sets out fair principles for how private sector orgs should handle personal data.

PIPEDA's Ten Principles (And How We Follow Them)

Accountability: We've got designated people responsible for privacy compliance - it's not just something we shrug off on an intern.
Identifying Purposes: We tell you why we're collecting your info before or when we collect it. No surprises.
Consent: We get your permission for how we use your data. You can withdraw consent too, though that might affect our ability to help you.
Limiting Collection: We only grab the data we actually need. No random fishing expeditions.
Limiting Use, Disclosure, and Retention: Your info is used only for what we said, shared only when appropriate, and kept only as long as necessary.
Accuracy: We keep your information up to date and accurate. Let us know if something's changed.
Safeguards: We protect your data with security measures appropriate to its sensitivity (more on this below).
Openness: Our privacy practices are outlined right here. We're not hiding anything.
Individual Access: You can ask to see what personal info we have about you. We'll show you (with some legal exceptions).
Challenging Compliance: If you think we've messed up on privacy, you can complain and we'll investigate. You can also contact the Privacy Commissioner of Canada.

Data Retention

We don't keep your stuff forever just for fun. But we do have legal and professional obligations that dictate how long we need to maintain certain records.

Generally speaking:

Active client files: Kept for the duration of our engagement plus the applicable limitation period (usually 2-6 years after the matter closes, depending on the type of work).
Financial records: Seven years minimum, as required by tax laws.
Corporate records: Often indefinitely, especially for incorporation documents and major transaction records - these have ongoing legal significance.
Website analytics: Typically 26 months, then it's automatically deleted.
Marketing communications: Until you unsubscribe or we close our practice, whichever comes first.

Once the retention period expires and there's no legal reason to keep the data, we securely destroy it. We're talking shredding, secure deletion, the works.

Your Rights

Under Canadian privacy law, you've got several rights when it comes to your personal information. Here's the practical rundown:

Access

Right to Access

You can request a copy of the personal information we hold about you. We'll provide it within 30 days (or explain why we can't).

Correction

Right to Correct

If something in your file is wrong, let us know and we'll fix it. Keeping accurate records benefits everyone.

Withdrawal

Withdraw Consent

You can withdraw consent for certain uses of your data, though this might affect our ability to continue working together on your matter.

Complaint

Right to Complain

If you're not happy with how we've handled your privacy, you can file a complaint with us or directly with the Privacy Commissioner of Canada.

Important: Some of these rights have limitations. For example, we can't destroy records we're legally required to maintain, and solicitor-client privilege might prevent us from disclosing certain information. We'll always explain our reasoning if we can't fulfill a request.

Security Measures

We take security seriously - it's kinda important when you're handling sensitive corporate and business information all day. Our approach combines technology, procedures, and good old-fashioned common sense.

Technical Safeguards

Encryption, firewalls, secure servers, regular security audits, two-factor authentication for system access.

Physical Security

Locked offices, controlled access to our suite, secure file storage, proper disposal procedures for documents.

Administrative Controls

Staff training, confidentiality agreements, access limited on need-to-know basis, regular policy reviews.

Nobody's system is 100% hack-proof, but we do everything reasonably possible to protect your information. If there's ever a security breach that affects your data, we'll notify you and the relevant authorities as required by law.

Changes to This Policy

Privacy laws evolve, technology changes, and we might adjust our practices accordingly. When we update this policy, we'll change the "Last Updated" date at the top and notify current clients if the changes are significant.

We recommend checking back here occasionally, especially if it's been a while since you last looked. We won't make material changes without giving you proper notice.

Previous versions of this policy are available upon request if you want to see what's changed over time.

Questions or Concerns?

If you've got questions about this privacy policy, want to exercise any of your rights, or have concerns about how we're handling your information, just reach out. We're pretty responsive.

Privacy Officer Contact

Email:

info@kinetovariant.info

Phone:

(416) 555-8742

Mail:

Suite 1800, 181 Bay Street
Toronto, ON M5J 2T3

Office of the Privacy Commissioner of Canada:

If you're not satisfied with our response to a privacy concern, you can contact the Privacy Commissioner at 1-800-282-1376 or visit www.priv.gc.ca

Quick Navigation