We take your privacy seriously - like, really seriously. Here's the full story on how we handle your information.
Last Updated: November 13, 2025
Download PDFLook, we get it. Privacy policies can be a drag to read through, but since we're lawyers who deal with intellectual property and digital rights all day, we figured we'd make ours actually readable and honest.
Crystal Wyrm Legal Services operates out of Vancouver, BC, and we're bound by Canadian privacy laws including PIPEDA (Personal Information Protection and Electronic Documents Act). That means we've got strict rules to follow, and honestly, we're glad we do.
This policy explains what info we collect when you reach out to us, visit our site, or become a client. No tricks, no fine print surprises - just straight talk about how we protect your data while serving you.
When you fill out our contact form, schedule a consultation, or hire us, you'll share stuff like:
We only ask for what we actually need to help you. If we're not representing you, we collect way less info than if you're a full client.
Like pretty much every website out there, we automatically collect some technical stuff when you visit:
This helps us understand if our site's actually useful and where we need to improve. We use analytics tools that anonymize most of this data anyway.
When you email us, call, or chat through our contact form, we keep records of those conversations. That includes:
This is standard legal practice - we need these records to serve you properly and protect both of us if questions come up later.
We're not in the business of selling your data or spamming you with junk. Here's what we actually do with your info:
Providing the trademark registration, contract drafting, licensing deals, and other legal work you hired us for. Can't do our job without your info, obviously.
Responding to your inquiries, sending case updates, scheduling meetings, and keeping you in the loop about your matters.
Processing payments, sending invoices, maintaining client files, and handling the boring-but-necessary admin stuff.
Meeting our professional obligations as lawyers, including conflict checks, trust accounting requirements, and regulatory compliance.
Making our website better, understanding what clients need most, and improving how we deliver our services.
Sending relevant legal updates or firm news if you've opted in. You can unsubscribe anytime - we won't get offended.
We're paranoid about security - comes with the territory when you're protecting people's creative work and business interests. Here's what we do:
SSL/TLS encryption for our website, encrypted email options, secure file transfer systems. Your data's scrambled when it moves around.
Cloud servers with enterprise-grade security, regular backups, and data centers located in Canada to keep everything under Canadian law.
Multi-factor authentication, role-based access, and strict limits on who can see what. Only people working on your matter can access your files.
Look, no system is 100% bulletproof, and anyone who tells you otherwise is lying. But we use the same security standards that banks and major corporations use, and we're constantly updating our protocols to stay ahead of threats.
Under Canadian privacy law (and we extend similar rights to all our clients regardless of location), you've got some solid rights:
You can ask to see what personal information we have about you. We'll provide it within a reasonable timeframe, usually 30 days.
If something's wrong or outdated, let us know and we'll fix it. Accurate records are important for both of us.
You can ask us to delete your info, but there are limits - we might need to keep certain records for legal/regulatory reasons.
If we're processing your data based on consent, you can withdraw it anytime. Might affect our ability to provide certain services though.
Want your data in a machine-readable format to take elsewhere? We can arrange that for most types of information.
If you think we've mishandled your data, you can complain to the Office of the Privacy Commissioner of Canada. We'd rather you talk to us first though.
We don't keep your stuff forever, but we can't just delete everything the moment our engagement ends either. Here's our approach:
While we're working together, we keep everything related to your matter. That's obvious - we need it to do our job.
After your matter wraps up, we typically keep files for 7-10 years. That's the standard in BC for legal records, and it protects both of us if questions come up years later. Some jurisdictions require even longer retention for certain types of cases.
If you're just on our mailing list but never became a client, we'll keep your contact info until you unsubscribe or we do a periodic cleanup of inactive contacts (usually every couple years).
Most of our analytics data is anonymized and aggregated. We typically keep this stuff for 12-24 months, then it gets automatically purged.
When we do delete data, we do it securely - no just tossing files in the recycling bin. We use secure deletion methods to make sure your information can't be recovered.
Privacy laws evolve, technology changes, and sometimes we update our practices. When we make changes to this policy, here's what happens: