Privacy Policy

We get it - nobody actually reads these things, but trust us, this one's worth your time.

Last Updated: November 13, 2025
Quick Navigation

Introduction

Look, we're lawyers who deal with tech stuff all day, so we know how important your privacy is.

At Aetherion Riftborn Legal, we've seen enough data breaches and privacy nightmares to know what NOT to do. This policy isn't just some copy-paste job from a template site - it's actually written by people who understand both the legal landscape and the technology behind it.

When you work with us or just browse our site, you're trusting us with your information. We don't take that lightly. This policy explains what we collect, why we collect it, and what we do with it. No legal jargon overload, just straight talk.

Quick Note: We comply with Canada's PIPEDA, GDPR for our European clients, and various other privacy frameworks depending on where you're located. Yeah, it's complicated, but that's literally what we do.

Here's the rundown on what info we gather. We're not out here collecting stuff for kicks - everything has a purpose.

Personal Information You Give Us
  • Contact Details: Name, email, phone number, business address. Pretty standard stuff when you reach out or schedule a consultation.
  • Professional Info: Your company name, role, industry. Helps us understand your context better.
  • Case-Related Data: Whatever you share about your legal needs. This is obviously privileged information once we're representing you.
  • Payment Information: Credit card details, billing addresses. We use secure payment processors, so we're not storing full card numbers on our end.
  • Communication Records: Emails, messages, call notes. We keep these for reference and to cover both our backs legally.
Stuff We Collect Automatically
  • Technical Data: IP address, browser type, device info, operating system. Standard web analytics stuff.
  • Usage Data: Which pages you visit, how long you stick around, what you click on. Helps us improve the site experience.
  • Location Data: General geographic location based on IP. We're not tracking your exact coordinates, don't worry.
  • Cookie Data: See the cookies section below for the full breakdown on this.
Important: If you're already a client, additional data collection rules apply. Check your engagement letter for specifics.

We're not selling your data to random third parties or using it for weird purposes. Here's what we actually do with it:

Legal Services

To actually provide the legal services you're hiring us for. Obvious, but we gotta say it.

Communication

To respond to your inquiries, send updates, and keep you in the loop about your matters.

Billing

To process payments and manage accounts. Lawyers gotta eat too.

Improvement

To analyze trends and improve our services. We're constantly learning and adapting.

Legal Obligations

To comply with law society rules, tax regulations, and other legal requirements.

Marketing

Occasionally we'll send updates about our services. You can opt out anytime - we won't take it personally.

Legal Basis (For Our GDPR Friends)

We process your data based on:

  • Contract: When it's necessary to provide our services to you
  • Legitimate Interests: For business operations, fraud prevention, and improving our services
  • Legal Obligation: When we're required by law to process certain data
  • Consent: When you've explicitly agreed (like for marketing communications)

We're pretty protective of your information, but there are times when we need to share it. Here's when and why:

Service Providers We Trust

We work with carefully vetted third parties who help us run our practice. Think cloud storage, email services, payment processors, document management systems. They're all under strict contracts to keep your data secure.

Legal Requirements

Sometimes we're legally required to disclose information - court orders, regulatory investigations, law enforcement requests. We'll always verify the legitimacy of these requests and only share what's absolutely necessary.

Professional Advisors

Occasionally we need to consult with other professionals - accountants, insurance providers, external counsel. When we do, they're bound by the same confidentiality obligations we are.

Business Transfers

If we ever merge with another firm or sell our practice (not planning on it, but you never know), your information would transfer to the new entity. You'd be notified if this happens.

Our Promise: We NEVER sell your personal information to marketers, data brokers, or anyone else. That's not how we roll.

Given that we specialize in tech law, we'd look pretty silly if we didn't have solid security practices. Here's what we've got in place:

Encryption

All data transmitted to and from our systems uses TLS encryption. Data at rest is encrypted too.

Access Controls

Multi-factor authentication, role-based access, and regular access reviews. Only authorized people see your stuff.

Secure Infrastructure

We use enterprise-grade cloud services with proper data residency controls. Regular security audits are part of the deal.

Staff Training

Our team gets regular security and privacy training. Everyone signs confidentiality agreements.

Regular Backups

Automated backups with encryption and offsite storage. We test restoration procedures regularly.

Incident Response

We've got a plan for if things go wrong. If there's a breach affecting you, you'll know about it.

Real Talk: No system is 100% secure, but we're doing everything reasonable (and then some) to protect your information.

You've got rights when it comes to your personal data. Here's what you can do:

You can request a copy of the personal information we hold about you. We