Privacy Policy

Here's the straight truth about what we gather:

Personal Identification Info

• Your name, address, phone number, email - the basics
• Date of birth and Social Insurance Number (when legally required)
• Financial information related to your estate and assets
• Family details, beneficiary information, that kind of thing

Website Usage Data

• IP address, browser type, device info
• Pages you visit, how long you stick around
• Referral sources - where you found us

Communications

• Emails, phone calls, meeting notes
• Contact form submissions
• Any documents you provide during consultations

We only collect what we actually need. If we're asking for something, there's a legitimate reason behind it.

We're not in the business of selling data or spamming people. Here's what we actually do with your info:

• Provide Legal Services: Obviously - drafting wills, managing trusts, handling probate. That's what you hired us for.
• Client Communication: Keeping you updated on your matters, scheduling appointments, answering questions.
• Legal Compliance: Meeting our professional obligations under Canadian law and Law Society regulations.
• Billing & Accounting: Invoicing, payment processing, maintaining financial records.
• Improve Our Services: Understanding how people use our site helps us make it better.
• Marketing: Sending newsletters or updates - but only if you've opted in, and you can bail anytime.

We're bound by solicitor-client privilege, which means your information is protected by some of the strongest confidentiality rules that exist.

Limited Disclosure May Occur With:

• Service Providers: Cloud storage, document management systems, payment processors - all bound by confidentiality agreements.
• Professional Advisors: Sometimes we need to consult with accountants, financial planners, or other lawyers on your behalf.
• Government Authorities: Only when legally required - think court orders, regulatory requests, that sort of thing.
• With Your Permission: When you explicitly tell us to share info with someone (like family members or financial institutions).

We don't sell, rent, or trade your personal information. Period. That's not our business model, and it'd be a massive ethical violation.

Our Security Practices Include:

• Encryption: SSL/TLS encryption for website data transmission, encrypted storage for sensitive documents.
• Access Controls: Limited staff access on a need-to-know basis, multi-factor authentication for all systems.
• Physical Security: Locked filing cabinets, secure office premises, controlled access to our suite.
• Digital Safeguards: Firewalls, antivirus software, regular security updates and patches.
• Regular Audits: We review our security practices and update them as threats evolve.
• Secure Disposal: Shredding physical documents, secure deletion of digital files when they're no longer needed.

That said, no system is 100% foolproof. We do everything reasonable to protect your data, but can't guarantee absolute security. If there's ever a breach affecting your info, we'll let you know promptly.

This is where legal services get a bit different from other businesses. Estate planning documents and trust files aren't something we can just delete after a few years.

Our Retention Policies:

• Active Client Files: Maintained throughout our representation and for the duration of trust administration.
• Closed Matters: Generally kept for a minimum of 10 years after file closure, often longer for estate planning documents.
• Wills & Estate Plans: Maintained indefinitely or until we're notified of your passing and the estate is settled.
• Financial Records: Kept for 7 years minimum to comply with tax and accounting regulations.
• Website Data: Analytics and usage data typically retained for 2-3 years.

Why so long? Because estate matters can span decades, and having accurate historical records is crucial. Plus, the Law Society of Ontario has specific requirements we've gotta follow.

Here's What You Can Do:

• Access Your Info: Request copies of the personal data we hold about you.
• Correct Inaccuracies: Ask us to fix any wrong or outdated information.
• Request Deletion: In certain circumstances, you can ask us to delete your data (though legal retention requirements might prevent this).
• Withdraw Consent: Opt out of marketing communications anytime (won't affect essential service-related communications).
• Data Portability: Request your information in a commonly-used format to transfer elsewhere.
• Lodge a Complaint: Contact the Privacy Commissioner of Canada if you think we've mishandled your data.

To exercise any of these rights, just reach out to us at counsel@grimspireeternal.info or call (416) 555-0847. We'll respond within 30 days.

Note: Some requests might be limited by legal or ethical obligations - like if we're required to maintain records for regulatory purposes.

Yeah, we use cookies - not the chocolate chip kind, unfortunately. These are small data files that help our website work better and give us insights into how people use it.

Types of Cookies We Use:

• Essential Cookies: Required for the site to function - like remembering you're logged into your client portal.
• Analytics Cookies: Help us understand visitor patterns so we can improve the site (we use Google Analytics).
• Preference Cookies: Remember your settings and choices.

What We Don't Use:

• Advertising cookies or retargeting pixels
• Social media tracking (beyond basic share buttons)
• Third-party marketing trackers

You can disable cookies in your browser settings, though some site features might not work properly. Most browsers let you block third-party cookies while keeping first-party ones active - that's usually a good middle ground.

We also respect "Do Not Track" signals from browsers where technically feasible.

Our website might link to external resources - government forms, legal databases, partner organizations, that sort of thing. Once you click through to another site, you're subject to their privacy policies, not ours.

We try to only link to reputable sources, but we can't control what happens on someone else's website. Do your due diligence before sharing personal info elsewhere.

Third-Party Services We Use:

• Payment Processing: We use secure payment gateways that comply with PCI-DSS standards.
• Email Services: Professional email hosting with encryption and spam filtering.
• Cloud Storage: Canadian-based servers with enterprise-grade security.
• Document Signing: Electronic signature platforms for remote document execution.

All our third-party vendors are vetted and required to maintain appropriate security standards.

Our services aren't directed at anyone under 18, and our website isn't designed for kids. We don't knowingly collect personal information from minors without parental consent.

That said, minors do appear in our work - as beneficiaries in wills and trusts, for example. When dealing with information about minors, we follow additional safeguards and typically work through parents or legal guardians.

If you believe we've inadvertently collected information from a child, please contact us immediately so we can address the situation.

Privacy laws evolve, our practices improve, and technology changes. We might update this policy from time to time to reflect those shifts.

When we make significant changes, we'll:

• Update the "Last Modified" date at the top of this page
• Notify active clients via email about material changes
• Post a notice on our homepage for at least 30 days

We encourage you to review this policy periodically, especially if you're concerned about how your information is used. Continued use of our services after changes means you accept the updated policy.

Look, privacy policies can be confusing - we get it. If you've got questions, concerns, or want to exercise any of your privacy rights, we're here to help.

We'll do our best to respond within 48 business hours. For urgent matters involving potential data breaches or security concerns, please call us directly.