Privacy Policy

Your trust matters to us - here's how we keep your information secure

Last Updated: November 13, 2025
Quick Navigation
Questions About Privacy?

We're here to help clarify anything you need.

Get in Touch

Look, we get it - privacy policies can feel like just another legal document you're expected to skim through. But here at Nexurion Citadel Legal, we actually want you to understand how we handle your information. No corporate jargon, no runaround.

We've been practicing corporate law and commercial litigation in Toronto since our doors opened, and one thing hasn't changed: client confidentiality isn't just some regulatory checkbox for us. It's literally the foundation of everything we do.

This policy explains what info we collect when you work with us or visit our site, why we need it, and how we protect it. We've structured it so you can jump to whatever section matters most to you using the sidebar.

Quick Note: This privacy policy works alongside our professional obligations under the Law Society of Ontario's rules. In other words, we're bound by both this policy AND our professional ethics rules.

We collect different types of information depending on whether you're browsing our site or actually working with us as a client. Here's the breakdown:

Personal Information You Give Us Directly
  • Contact Details: Name, email, phone number, business address - the usual stuff you'd expect when reaching out to a law firm
  • Business Information: Company name, position, industry sector, corporate structure details
  • Financial Information: For billing purposes - payment details, invoicing information, tax numbers
  • Case-Related Information: Contracts, corporate documents, dispute details, employment records - basically everything we need to represent you properly
  • Communication Records: Emails, call notes, meeting minutes, correspondence with opposing parties
Information We Collect Automatically
  • Website Usage Data: IP addresses, browser types, pages visited, time spent on site
  • Device Information: Operating system, screen resolution, referring websites
  • Cookies & Similar Tech: Session cookies, preference cookies, analytics cookies (more on this below)
Information from Third Parties

Sometimes we'll receive info from other sources - court records, public registries, opposing counsel, expert witnesses, or other professionals involved in your matter. We treat all of this with the same level of care.

We're not in the business of collecting data for the sake of it. Every piece of information we gather serves a specific purpose related to providing you with top-notch legal services. Here's what we do with your info:

Legal Representation

To actually represent you - drafting contracts, handling disputes, providing advice, negotiating deals, and all the legal work you've hired us for.

Client Communication

Staying in touch about your case, sending updates, scheduling meetings, responding to your questions and concerns.

Billing & Accounting

Processing payments, generating invoices, maintaining financial records as required by law.

Compliance

Meeting our professional obligations, conflict checks, anti-money laundering requirements, law society regulations.

Service Improvement

Understanding how clients use our site, improving our services, and making sure we're delivering what you need.

Security

Protecting our systems, preventing fraud, detecting security threats, keeping your data safe from unauthorized access.

What We Don't Do: We don't sell your information. Period. We're not in that business, and frankly, it would violate every professional obligation we have as lawyers.

We're pretty protective of your information, but there are times when we need to share it with others to do our job properly. Here's when and why that happens:

With Your Consent

When you explicitly tell us it's okay to share your info with someone - like when you ask us to bring in an expert witness or coordinate with your accountant.

Service Providers & Partners

We work with trusted third parties who help us run our practice:

  • Cloud storage providers (for secure document management)
  • IT support and cybersecurity firms
  • Billing and accounting software providers
  • Legal research platforms
  • Court filing services

All these folks are bound by strict confidentiality agreements and only get access to what they absolutely need.

Professional Advisors

Sometimes your case needs specialized expertise - forensic accountants, industry experts, co-counsel in other jurisdictions, or mediators. We'll always let you know when we're bringing someone else on board.

Legal Obligations

We might have to disclose information when:

  • A court issues a valid subpoena or court order
  • We're required by law to report something (like suspected money laundering)
  • We need to defend ourselves in a legal dispute
  • There's an imminent threat to someone's safety
Business Transfers

If we ever merge with another firm or sell our practice (which isn't on the horizon, but you never know), your information would transfer to the new owners - but they'd still be bound by the same confidentiality rules we are.

We take security seriously - not just because we have to, but because your business depends on it. Here's how we protect your data:

Encryption

All data is encrypted both in transit (TLS 1.3) and at rest (AES-256). Your info is scrambled up tight.

Access Controls

Multi-factor authentication, role-based access, and strict need-to-know protocols for all staff.

Secure Infrastructure

Canadian-based servers with enterprise-grade firewalls, intrusion detection, and 24/7 monitoring.

Regular Backups

Daily encrypted backups stored in separate secure locations. We're prepared for worst-case scenarios.

Staff Training

Regular security training for all team members on phishing, social engineering, and data handling.

Security Audits

Annual third-party security assessments and penetration testing to find vulnerabilities.

Real Talk About Security

No system is 100% hack-proof - anyone who tells you otherwise is selling something. But we invest heavily in security and stay on top of emerging threats. If there's ever a breach affecting your data, we'll notify you immediately as required by law.

This is probably the most important section if you're an actual client. Attorney-client privilege isn't just a privacy policy thing - it's a fundamental legal protection that's been around for centuries.

What It Means

When you communicate with us for the purpose of getting legal advice, those communications are privileged. That means:

  • We can't be forced to disclose them (except in very narrow circumstances)
  • You control whether the privilege is waived
  • The privilege survives even after our representation ends
  • It covers everything - emails, phone calls, in-person meetings, documents you share with us
Important Limitations

Privilege doesn't cover everything though:

  • If you're asking us to help commit a crime or fraud, there's no privilege
  • If you put the advice at issue in a legal proceeding, you might waive privilege
  • Business advice that's not legal in nature might not be privileged
  • Communications made in the presence of non-clients can lose protection