Privacy Policy

Last Updated: November 14, 2025

Quick Navigation

Introduction

Effective: November 14, 2025

Look, we get it—nobody actually enjoys reading privacy policies. But here's the thing: we're lawyers who specialize in data privacy and tech law, so we've tried to make this one actually readable and, dare I say, honest.

At Obsidrax Frontier Legal Services, we work with clients navigating some pretty complex cross-border technology issues. That means we're handling sensitive information daily, and we take that responsibility seriously. This policy explains what data we collect, why we need it, and what we're doing to keep it safe.

We're based in Vancouver, BC, Canada, which means we follow Canadian privacy laws (including PIPEDA), but given our international practice, we also align with GDPR principles and other global standards. If you've got questions after reading this, just reach out—we'd rather clarify things upfront than leave you confused.

Last reviewed: November 14, 2025

We're not out here collecting data for fun. Everything we gather serves a specific purpose related to providing legal services or improving our website. Here's what we typically collect:

Personal Information You Give Us
  • Contact Details: Name, email, phone number, business address—basically what you'd put on a business card
  • Professional Info: Company name, job title, industry sector, because context matters when we're discussing legal needs
  • Case Information: Whatever details you share about your legal situation, whether it's IP concerns, blockchain regulations, or cross-border deals
  • Communication Records: Emails, notes from calls, documents you send us—we keep records to provide consistent service
Information We Collect Automatically
  • Usage Data: Which pages you visit, how long you stick around, what links you click—helps us understand what's useful
  • Device Info: Browser type, operating system, IP address, screen size—technical stuff that helps us optimize the site
  • Cookies: Small data files that remember your preferences (more on this in the dedicated section below)

We don't buy data from third-party brokers, and we're not interested in tracking you across the internet. What we collect is limited to what's genuinely needed for our attorney-client relationship or website functionality.

Last reviewed: November 14, 2025

Let's cut to the chase—here's what we actually do with your data:

Providing Legal Services

This is the main event. We use your information to represent you, draft documents, conduct research, communicate about your case, and generally do the legal work you've engaged us for. Without this data, we literally can't do our job.

Communication

We'll use your contact info to respond to inquiries, send updates about your matters, share relevant legal developments in your industry, or occasionally invite you to events or webinars that might be useful for your business.

Improving Our Services

We analyze how people use our website to figure out what's working and what's confusing. If everyone's bouncing off our blockchain regulation page, that's a signal we need to rewrite it.

Legal & Compliance Obligations

Sometimes we're legally required to maintain records—think anti-money laundering rules, law society requirements, court orders. We're not thrilled about bureaucracy either, but it's part of operating a legitimate practice.

We won't sell your data to marketers, use it for unrelated commercial purposes, or share it carelessly. Our professional obligations as lawyers actually forbid a lot of that stuff anyway.

Last reviewed: November 14, 2025

We're pretty protective of client information—it's kind of our whole thing. But there are limited situations where we might need to share your data:

  • Service Providers: Think cloud storage, email hosting, document management systems—tech vendors that help us operate. They're bound by strict confidentiality agreements and can only use data for the specific services we've contracted them for.
  • Professional Advisors: Sometimes we'll consult with other lawyers, accountants, or experts on your matter. This is normal practice and covered by professional confidentiality rules.
  • Legal Requirements: If we're subpoenaed, served with a court order, or legally obligated to disclose information, we'll comply—but we'll notify you first unless we're prohibited from doing so.
  • With Your Consent: If you ask us to share information with a third party (like a business partner or another advisor), we'll obviously do that.
  • Business Transfers: If we ever merge with another firm or sell our practice (unlikely but possible), your information would transfer as part of that, though it'd still be protected by the same confidentiality obligations.

We don't engage in data brokering, ad network sharing, or any of that surveillance capitalism nonsense. Our business model is providing legal services, not monetizing your personal information.

Last reviewed: November 14, 2025

Yeah, we use cookies—but not the creepy kind that follow you around the internet. Here's the breakdown:

Cookie Type Purpose Can You Opt Out?
Essential Cookies Make the website actually work—security features, session management, form submission Nope, these are required
Functional Cookies Remember your preferences, language settings, that kind of thing Yes
Analytics Cookies Help us understand site usage patterns so we can improve things Yes

We don't use advertising cookies or let third-party ad networks track you through our site. You can manage your cookie preferences using your browser settings or through our cookie consent tool (see the panel below on this page).

Last reviewed: November 14, 2025

You've got rights when it comes to your personal data. Depending on where you're located, these might vary slightly, but here's what you can generally do:

Access Your Data

Request a copy of the personal information we hold about you

Correct Inaccuracies

Update or fix any information that's outdated or wrong

Request Deletion

Ask us to delete your data (subject to legal retention requirements)

Restrict Processing

Limit how we use your information in certain circumstances

Data Portability

Get your data in a portable format to transfer elsewhere

Object to Processing

Say no to certain uses of your information

To exercise any of these rights, just email us at counsel@obsidraxfrontier.info with your request. We'll respond within 30 days (usually faster). Keep in mind that some requests might be limited by legal or ethical obligations—for example, we can't delete records we're required to keep for regulatory purposes.

Last reviewed: November 14, 2025

Given that we handle sensitive legal matters—including IP portfolios, corporate transactions, and regulatory compliance issues—we take security pretty seriously. Here's what we've implemented:

  • Encryption: All data transmitted to and from our servers uses TLS encryption. Sensitive files are encrypted at rest.
  • Access Controls: Not everyone on our team can access everything. We use role-based permissions and the principle of least privilege.
  • Secure Infrastructure: Our systems are hosted on enterprise-grade cloud platforms with strong security certifications (SOC 2, ISO 27001, etc.)
  • Regular Audits: We conduct periodic security assessments and vulnerability scans to identify potential weaknesses.
  • Employee Training: Everyone on our team receives ongoing training about data protection and security best practices.
  • Incident Response: We've got a plan in place for responding to security incidents, including notification procedures if there's ever a breach.

That said, no system is 100% bulletproof. We're doing everything we reasonably can to protect your information, but perfect security doesn't exist. If you ever notice something suspicious related to your data, let us know immediately.

Last reviewed: November 14, 2025

Here's the deal: we're a cross-border practice, which means we often work with clients and partners across different countries. Your data might be processed or stored in jurisdictions outside Canada, including the United States and the European Union.

When we transfer data internationally, we make sure appropriate safeguards are in place:

  • Standard Contractual Clauses approved by relevant data protection authorities
  • Adequacy decisions where applicable (for example, EU-Canada data transfers)
  • Contractual protections with service providers
  • Assessment of the legal landscape in receiving countries

If you're concerned about where your data is being stored or processed, reach out and we can discuss the specifics of your situation. For certain high-sensitivity matters, we can arrange for data to be kept within specific geographic boundaries.

Last reviewed: November 14, 2025

We don't keep your data forever—but we also can't just delete everything the moment our engagement ends. Here's our general approach:

Client Files & Matter Records

We typically retain complete client files for 7-10 years after the matter closes. This is partly driven by law society requirements, limitation periods for potential malpractice claims, and just good practice in case you need historical records.

Financial Records

Accounting and billing information is kept for 7 years minimum, as required by tax authorities and financial regulations.

Marketing & Website Data

If you've just filled out a contact form but never became a client, we'll keep that information for 2-3 years unless you ask us to delete it sooner.

Analytics Data

Website usage data is typically aggregated and anonymized, stored for 26 months to help us understand long-term trends.

Once the retention period expires, we securely delete or destroy the information. If you'd like more specific information about retention periods for your particular data, just ask.

Cookie Consent Management

Control how we use cookies and tracking technologies on this website. Toggle these settings based on your preferences:

Essential Cookies

Required for the website to function properly

Functional Cookies

Remember your preferences and settings

Analytics Cookies

Help us improve by understanding how you use the site

Questions About This Policy?

Updated: November 14, 2025

Privacy law is literally what we do, so we're happy to answer questions about this policy or your data rights. Whether you're concerned about a specific aspect of how we handle information, want to exercise one of your rights, or just need clarification on something we've written here, don't hesitate to reach out.

Email
counsel@obsidraxfrontier.info
Phone
(604) 788-3490
Mailing Address

1288 West Georgia Street, Suite 2100
Vancouver, BC V6E 4R3, Canada

If you're not satisfied with our response to a privacy concern, you also have the right to lodge a complaint with the Office of the Privacy Commissioner of Canada or your local data protection authority.

Changes to This Policy

We'll update this privacy policy as needed to reflect changes in our practices or legal requirements. When we make significant changes, we'll notify active clients directly and update the "Last Updated" date at the top. For minor tweaks (typo fixes, clarifications), we'll just update the date. It's worth checking back periodically if you're curious about any changes.

Privacy Matters

As data privacy lawyers, we practice what we preach. Your information is protected with the same standards we recommend to our clients.

Discuss Your Privacy Needs
Related Resources