How we handle your data and what it means for you
Last Updated: January 16, 2026Look, nobody really reads these things from start to finish - we get it. Jump to what matters to you:
Alright, let's talk privacy. As a tech law firm, we know exactly how important your data is - we spend half our time helping clients protect theirs. So yeah, we take this seriously.
This policy covers Morphic Lattice Legal's website and how we handle any info you share with us. We've tried to make it readable (not the usual legal jargon marathon), but it's still comprehensive because, well, we're lawyers and we can't help ourselves.
We collect what we need to serve you as clients, we don't sell your data to anyone, and we follow PIPEDA and privacy best practices. If you want more details, keep reading.
By using our website or services, you're agreeing to this policy. If something doesn't sit right with you, reach out - we'd rather talk it through than have you uncomfortable.
Here's what we gather and why we need it:
When you fill out a contact form, call us, or become a client, we'll collect:
Once you're a client, everything you tell us is protected by solicitor-client privilege. That's not just a policy thing - it's a fundamental legal protection we can't breach even if we wanted to.
Like pretty much every website out there, we automatically collect some technical stuff:
This helps us understand how people use the site and where we can improve things.
We use standard web technologies to collect this data:
We're not in the business of hoarding data just because. Here's what we actually do with it:
We won't bombard you with emails. If we send newsletters or updates, there's always an unsubscribe link. One click and you're out - no questions asked, no hurt feelings.
We don't sell your data. Period. But there are some situations where we might need to share it:
We work with trusted third parties who help us run our practice:
All of these folks are bound by contracts that require them to keep your data secure and not use it for their own purposes.
Sometimes the law requires us to disclose information:
We'll always verify the legitimacy of such requests and, where possible, let you know before disclosing anything.
If Morphic Lattice Legal were ever sold, merged, or restructured (not planning on it, but you never know), your information would likely be transferred as part of that transaction. Any new owner would be bound by this privacy policy unless they give you notice and opportunity to opt out.
We're a tech law firm, so we practice what we preach when it comes to data security:
We do everything we reasonably can to protect your data, but let's be real - no online system is 100% secure. If we ever experience a breach that affects your information, we'll let you know promptly and tell you what happened and what we're doing about it.
Under PIPEDA and general Canadian privacy law, you've got rights. Here's what you can do:
You can ask to see what personal information we have about you and request corrections if something's wrong. Just reach out and we'll get you a copy.
You can withdraw consent for us to use your data at any time (subject to legal and contractual restrictions). For example, you can opt out of marketing emails instantly.
Want your data in a format you can take elsewhere? We'll provide it in a commonly used format when feasible.
You can ask us to delete your personal information. We'll do so unless we have a legal obligation to keep it (like financial records for tax purposes or litigation files).
We'll respond to requests within 30 days, as required by PIPEDA. If we need more time, we'll let you know why and when you can expect a response.
If you're not happy with how we've handled your privacy concerns, you can file a complaint with the Office of the Privacy Commissioner of Canada. We'd rather resolve things directly, but that option's always there.
We don't keep your data forever just for kicks. Here's our general approach:
We're required to keep client files for a minimum period under Law Society rules (typically 7-10 years after a matter closes). After that, we'll securely destroy files unless there's a specific reason to keep them longer.
Tax laws require us to keep financial records for at least 7 years. Can't get around that one.
If you've subscribed to our newsletter or updates, we'll keep that data until you unsubscribe or ask us to delete it.
We typically keep analytics data for 26 months, then it gets automatically deleted.
Our website might link to other sites or use third-party services. We've vetted the ones we use, but once you leave our site, you're subject to their privacy policies, not ours.
All of these are based in Canada or have adequate safeguards for cross-border data transfers.
Some of our service providers might store data on servers outside Canada. When that happens, your data could be subject to foreign laws (like US surveillance laws). We try to minimize this and use providers with strong privacy protections, but it's something to be aware of.
We'll update this policy from time to time as our practices evolve or laws change. When we make significant changes, we'll let you know by:
We'll give you reasonable notice before any changes take effect. If you continue using our services after the changes, that means you're cool with the updated policy.
If you've got questions about this privacy policy or how we handle your data, don't hesitate to reach out. We'd rather answer questions upfront than deal with concerns later.
Morphic Lattice Legal
Suite 1840, 100 King Street West
Toronto, ON M5X 1C7
Please include "Privacy Inquiry" in the subject line so we can route it properly.