Look, we get it - privacy policies can be a slog. But when you're trusting us with your business's legal matters, you deserve to know exactly what we do with your information. We've tried to make this as straightforward as possible, because that's how we operate.
At Krythorian Bastion Legal, we're bound by some pretty strict professional obligations when it comes to client confidentiality. This privacy policy works alongside those obligations - it covers how we handle your personal information both as potential clients browsing our site and as active clients working with us.
This policy applies to our website, email communications, and any other digital touchpoints you might have with us. If something's unclear or you've got questions, don't hesitate to reach out - we'd rather clarify now than have confusion later.
Personal Information You Give Us
When you reach out or engage our services, we'll collect things like:
- Contact details - name, email, phone number, business address
- Company information - your organization's name, structure, industry sector
- Case-specific data - whatever you share with us about your legal matters
- Financial information - billing details, payment info for our services
- Professional background - your role, decision-making authority, that sort of thing
Information We Collect Automatically
Like pretty much every website out there, we gather some technical data when you visit:
- Usage data - pages you visit, time spent, how you navigate around
- Device info - IP address, browser type, operating system
- Location data - general geographic location based on IP
- Referral sources - how you found us (search engines, direct visits, etc.)
We don't collect sensitive personal information through our website unless it's absolutely necessary for providing legal services - and if we do, we'll handle it with extra care.
We're not in the business of hoarding data for no reason. Here's what we actually do with your information:
Providing Legal Services
This is the big one. We use your info to represent you, advise you, handle your matters - basically everything you're hiring us to do. Can't really provide corporate legal services without knowing who we're working for, right?
Communication
We'll use your contact info to reach out about your matters, send updates, respond to inquiries, or occasionally share relevant legal developments that might affect your business. We're not gonna spam you with weekly newsletters unless you specifically ask for that.
Billing & Administration
Gotta keep the lights on - we use your financial info for invoicing, processing payments, maintaining financial records as required by our professional regulations.
Website Improvement
That automatic data we collect? It helps us understand what's working on our site and what's not. If everyone's bouncing off a particular page, maybe we need to rework it.
Legal Compliance
Sometimes we're required by law or professional rules to maintain certain records. We'll keep what we need to stay compliant with the Law Society of British Columbia and other regulatory bodies.
We won't sell your data to third parties, use it for unrelated marketing purposes, or share it outside the scope of providing you legal services (except where we're legally required to or you've given us permission).
We're pretty protective of client information - it's literally part of our professional duty. But there are some limited situations where we might need to share your data:
Service Providers
We work with carefully vetted vendors who help us run our practice - things like cloud storage providers, practice management software, IT support, and accounting services. They only get access to what they need to do their job, and they're contractually bound to protect your info.
Legal Obligations
If we're compelled by court order, subpoena, or other legal process, we might have to disclose information. We'll push back if we think it's overreaching, but sometimes our hands are tied. We'll also comply with Law Society requirements and other regulatory obligations.
With Your Consent
If you ask us to share info with opposing counsel, expert witnesses, or other parties in your matter - we'll do that. But we'll always confirm first.
Business Transfers
If our firm is ever involved in a merger, acquisition, or sale (not planning on it, but you never know), client files and information might be transferred as part of that transaction. Any successor firm would be bound by the same confidentiality obligations we are.
Important: Our duty of confidentiality as lawyers goes beyond typical privacy obligations. Even within these sharing scenarios, we'll protect privileged information to the fullest extent possible under law.
We take security seriously - both because it's the right thing to do and because our professional rules require it. Here's what we've got in place:
Encryption
All data transmitted to and from our website is encrypted using industry-standard SSL/TLS protocols. Client files are stored with encryption at rest.
Access Controls
Only authorized personnel can access client data, and we use multi-factor authentication plus role-based access restrictions.
Secure Infrastructure
We use enterprise-grade hosting with regular security audits, firewalls, intrusion detection, and continuous monitoring.
Regular Backups
Encrypted backups are performed regularly and stored securely off-site, so your data's protected even in worst-case scenarios.
That said, no system is 100% bulletproof. If we ever experience a data breach that affects your information, we'll notify you promptly and take immediate steps to mitigate any damage, as required by applicable laws and our professional obligations.
Yeah, we use cookies - those little data files that websites drop on your browser. Nothing shady, just standard website functionality stuff.
Types of Cookies We Use:
-
Essential Cookies
These are necessary for the website to actually work - things like maintaining your session, remembering your preferences, basic security functions. You can't really opt out of these without breaking the site. -
Analytics Cookies
We use these to understand how people use our site - which pages are popular, where people are coming from, that kind of thing. Helps us make the site better. The data's anonymized and aggregated. -
Functional Cookies
These remember your choices (like language preferences or font size) so you don't have to set them every time you visit.
Managing Cookies
Most browsers let you control cookies through their settings. You can usually block or delete cookies, but doing so might affect how our site works for you. Check your browser's help section for specifics.
We don't use: Third-party advertising cookies, cross-site tracking, or any of that creepy retargeting stuff where ads follow you around the internet.
Under Canadian privacy laws (particularly PIPEDA and British Columbia's PIPA), you've got some pretty solid rights when it comes to your personal information:
Right to Access
You can request a copy of the personal information we hold about you. We'll provide it within a reasonable timeframe, though there might be some limitations around privileged legal communications.
Right to Correction
If something's wrong or out of date, let us know and we'll fix it. Accuracy matters, especially in legal work.
Right to Deletion
You can ask us to delete your personal information, but there are some caveats here. As lawyers, we're required to maintain certain records for specific periods. We'll delete what we can while staying compliant with our professional obligations.
Right to Withdraw Consent
If we're processing your data based on consent (rather than legal obligation), you can withdraw that consent anytime. Just know it might affect our ability to provide certain services.
Right to Opt-Out
Don't want marketing emails? No problem - every email we send has an unsubscribe link. We'll still need to contact you about active legal matters though.
To exercise any of these rights, reach out to us at:
Email: contact@krythorianbastion.info
Phone: (604) 788-2940
We'll respond to your request within 30 days. If there's a reason we can't fulfill it (like legal retention requirements), we'll explain why.