Stonegate
 Contact Us

Privacy Policy

Last Updated: January 2025

Introduction

Stonegate is committed to protecting the privacy and confidentiality of personal information entrusted to us by clients and website visitors. This Privacy Policy explains how we collect, use, disclose, and protect personal information in accordance with Canadian privacy legislation, including the Personal Information Protection and Electronic Documents Act (PIPEDA) and applicable provincial privacy laws.

This policy applies to information collected through our website, during consultations, and throughout legal service delivery. By using our services or website, you consent to the data practices described in this policy.

Information We Collect

Contact Information

  • Full name and business name
  • Mailing address and email address
  • Phone numbers (mobile and business)
  • Professional titles and business affiliations

Legal Service Information

  • Documentation required for legal services (incorporation papers, visa applications, property documents)
  • Financial information necessary for transaction completion or government filings
  • Background information relevant to legal matters
  • Communications regarding legal services and consultations

Website Usage Data

  • IP addresses and browser information
  • Pages visited and time spent on site
  • Referral sources and navigation patterns
  • Device information and operating system details

Cookie Data

Our website uses cookies and similar technologies for functionality, analytics, and user preference storage. For detailed information about cookie usage, please review our Cookie Policy.

Legal Basis for Processing

We collect and process personal information based on the following legal grounds:

Consent

Express consent provided through form submissions, service agreements, or explicit authorization for specific purposes.

Contract Fulfillment

Information necessary to provide requested legal services and fulfill contractual obligations.

Legitimate Interest

Processing required for our legitimate business interests, including service improvement and fraud prevention.

Legal Obligation

Compliance with applicable laws, regulations, and Law Society requirements.

How We Use Your Information

Service Provision

  • Preparing and filing legal documentation
  • Conducting consultations and providing legal advice
  • Coordinating with government agencies and third parties
  • Managing client relationships and matter files

Communication

  • Responding to inquiries and consultation requests
  • Providing status updates on legal matters
  • Sending appointment reminders and deadlines
  • Delivering relevant legal information and updates

Service Improvement

  • Analyzing website usage to enhance user experience
  • Evaluating service quality and client satisfaction
  • Developing new services based on client needs
  • Training staff on effective client service

Legal Compliance

  • Maintaining records as required by Law Society regulations
  • Complying with tax reporting and financial record-keeping requirements
  • Responding to lawful requests from authorities
  • Protecting against fraud and unauthorized access

Data Retention

We retain personal information for different periods depending on the type of information and purpose for collection:

Client Files: Maintained for minimum of seven years after matter completion, as required by Law Society rules

Financial Records: Retained for seven years following applicable tax and accounting legislation

Communications: Stored for duration of client relationship plus retention period for legal compliance

Website Analytics: Anonymized after 26 months or earlier upon request

Information is securely destroyed or anonymized once retention periods expire, unless longer retention is required for legal or regulatory purposes.

Information Security

Stonegate implements administrative, technical, and physical safeguards to protect personal information against unauthorized access, disclosure, alteration, or destruction:

  • Encrypted transmission of sensitive data using SSL/TLS protocols
  • Secure file storage systems with access controls and authentication
  • Regular security assessments and system updates
  • Staff training on privacy obligations and information handling
  • Physical security measures at office locations
  • Confidential disposal procedures for paper and electronic records

While we maintain robust security measures, no system is completely secure. We cannot guarantee absolute security but commit to prompt notification in the event of any data breach affecting client information.

Your Rights

You have the following rights regarding your personal information:

Right to Access

Request copies of personal information we hold about you, subject to legal and professional privilege protections.

Right to Rectification

Request correction of inaccurate or incomplete personal information in our records.

Right to Erasure

Request deletion of personal information where no legal or regulatory retention requirement exists.

Right to Restrict Processing

Request limitation on how we use your information in certain circumstances.

Right to Data Portability

Receive personal information in structured, commonly used format for transfer to another service provider where technically feasible.

Right to Object

Object to processing based on legitimate interests or for direct marketing purposes.

Right to Withdraw Consent

Withdraw previously provided consent for data processing, though this may affect our ability to provide certain services.

To exercise any of these rights, please contact us at [email protected]. We will respond to requests within 30 days.

Third-Party Service Providers

We may share personal information with trusted third parties who assist in service delivery:

  • Government Agencies: Information shared for filing purposes (IRCC, provincial registries, CRA)
  • Professional Service Providers: Accountants, translators, or other specialists as needed for client matters
  • Technology Vendors: Secure cloud storage, practice management software, and IT service providers
  • Financial Institutions: Banks and payment processors for transaction handling

All third-party processors are contractually bound to maintain confidentiality and security standards consistent with Canadian privacy legislation. Information is shared only to the extent necessary for service provision.

International Data Transfers

Personal information is primarily stored and processed within Canada. When international transfer becomes necessary (for example, cloud services with foreign servers), we ensure adequate safeguards are in place:

  • Standard contractual clauses approved for international transfers
  • Verification that receiving jurisdictions provide adequate data protection
  • Encryption during transmission and storage
  • Regular compliance assessments of international service providers

Cookies and Tracking Technologies

Our website uses cookies for functionality, analytics, and user experience enhancement. For comprehensive information about cookie types, purposes, and management options, please review our Cookie Policy.

Policy Updates

This Privacy Policy may be updated periodically to reflect changes in our practices, legal requirements, or service offerings. Material changes will be communicated through:

  • Prominent notice on our website
  • Email notification to active clients
  • Updated "Last Modified" date at the top of this policy

Continued use of our services following policy updates constitutes acceptance of revised terms.

Contact Information

For questions, concerns, or requests regarding this Privacy Policy or our data handling practices, please contact:

Privacy Officer

Stonegate

333 Bay Street, Suite 2900

Toronto, ON M5H 2T4

Email: [email protected]

Phone: +1 (416) 738-2954

If you have concerns about our privacy practices that remain unresolved after contacting us, you may file a complaint with the Office of the Privacy Commissioner of Canada.