Website Policies
Privacy Policy
As a law firm, we collect, use and disclose information on a daily basis in order to render our services in consultation, litigation and transaction. Confidentiality is important to us, as we put professional secrecy at the heart of our client relationship. We use all information, especially personal information, in accordance with the highest ethical standards.
This Privacy Policy aims to help you understand our personal information collection, use, disclosure and retention practices. By providing personal information to us (whether via our website or client portal, by email, in person or over the phone), you agree to the processing set out in this Privacy Policy as well as authorize Szpiech Ellis Skibinski Shipton Law Office L.L.P. (SESS Law), its third parties and service providers to process your personal information for purposes set out below.
This Privacy Policy does not apply to, and SESS Law is not responsible for, any third-party websites which may be accessible through links from this website. If you follow a link to any of these third-party websites, they will have their own privacy policies and you will need to check these policies before you submit any personal information to such third-party websites.
1. Who we are and what we do?
Szpiech Ellis Skibinski Shipton Law Office L.L.P. (“SESS Law”, “we”, “us” or “our”) is an Ontario based law firm. Unless we notify you otherwise, SESS Law is the “data controller” and “responsible party” of your personal information, i.e. the organization who alone or jointly determines the purposes for which, and the manner in which, any personal information is, or is likely to be, processed.
2. What personal information do we collect?
We may collect and process different types of personal information in the course of operating our business and providing our services. These include:
- Contact information such as name, physical address, email address and telephone number;
- Biographical information such as job title, employer, photograph and video or audio content;
- Marketing, communication preferences and related information such as meal preferences, feedback and survey responses;
- Billing and financial information such as billing address, bank account and payment information;
- Services information such as details of services that we have rendered to you;
- Website usage and other technical information such as details of visits to our websites or information collected through cookies, your interaction with our online advertising and content and other tracking technologies;
- Information provided to us by or on behalf of our clients or generated by us in the course of providing our services, which may, where relevant, include special categories of personal information (such as racial or ethnic origin, political opinions, religious or philosophical beliefs, trade-union membership, health or sexual orientation, etc.);
- Identification and other background verification data such as a copy of driver’s licence, passports or utility bills or evidence of beneficial ownership or the source of funds to comply with anti-money laundering laws and collected as part of our client acceptance and ongoing monitoring procedures;
- Any other personal information provided. Please note that if you provide personal information to us about other people (such as your customers, directors, officers, shareholders or beneficial owners), you must ensure that you have given those individuals an appropriate notice that you are providing their information to us and have obtained their consent to that disclosure;
- Where applicable, Records of consent given to us (date, time, means of consent), in circumstances where such consent is need for the processing of personal information; and
- Where we need Special Personal Information, it will happen in the ordinary course of business, in accordance with the applicable law and/or for a legitimate purpose.
We do not knowingly collect information from children or other persons who are under 16 years old. If you are a minor under 16 years old, please do not provide us with any personal information without the express consent of a parent or guardian. If you are a parent or guardian and you know that your children have provided us with personal information, please contact us. If we learn that we have collected personal information from minor children without verification of parental consent, we will take steps to remove that information from our servers.
You cannot send us confidential information until we have confirmed in writing that we represent or act for you or your company or organization. Unsolicited emails sent to us from non-clients do not establish a lawyer-client relationship. They may not be privileged and, therefore, are subject to disclosure to third parties.
3. How do we collect your personal information?
We collect your personal information from yourself and during interactions with you during the course of providing legal services to you
We also collect information publicly available notably in public platforms, including our website.
4. How do we use personal information?
We may use personal information in the following ways, either with your consent or, where applicable, according an other legal basis under the General Data Protection Regulation (“GDPR”). In each case, we identify the grounds that we rely on to use your personal information:
- To provide our legal and other services and to conduct our business, to administer and perform our services, including to carry out our obligations arising from any agreements entered into between you and us. Applicable legal basis under the GDPR: contract performance and to carry out actions for the conclusion of the contract;
- To respond to requests for information or enquiries from visitors to our websites. Applicable legal basis under the GDPR: contract performance;
- To facilitate use of our websites and to ensure content is relevant and to ensure that content from our websites is presented in the most effective manner for you and for your device. Applicable legal basis under the GDPR: legitimate interests (to allow us to provide the content and services on the websites);
- For marketing and business development purposes – to provide details of new services, legal updates and invitations to events where an individual has chosen to receive these. Applicable legal bases under the GDPR: legitimate interests, consent; you may require that this service ceases at any time;
- For research and development purposes (including from a security perspective) – analysis in order to better understand our clients’ services and marketing requirements and to better understand our business and develop our services and offerings. Applicable legal basis under the GDPR: legitimate interests (to allow us to improve our services); you may unsubscribe at any time;
- To fulfil our legal, regulatory, or risk management obligations – to comply with our legal obligations (performing client due diligence/“know your client”, anti-bribery, sanctions or reputational risk screening, identifying conflicts of interests). Applicable legal basis under the GDPR: legal obligation;
- To fight against fraud and/or other relevant background checks, notably as may be required by applicable law and regulation and/or best practice at any given time (if false or inaccurate information is provided and fraud is identified or suspected, details may be passed to fraud prevention agencies and may be recorded by us or by them). Applicable legal basis under the GDPR: legitimate interests (to cooperate with law enforcement and regulatory authorities, to ensure acceptable risk profile and to assist with the prevention of crime and fraud). Where we process special categories of personal information we may also rely on substantial public interest (prevention or detection of crime) or legal claims;
- To enforce our legal rights, to comply with our legal or regulatory reporting obligations and/or to protect the rights of third parties. Applicable legal basis under the GDPR: legal obligations;
- To ensure that we are paid – to recover any payments due to us and where necessary to enforce such recovery through the engagement of debt collection agencies or taking other legal action (including the commencement and carrying out of legal and court proceedings). Applicable legal basis under the GDPR: contract performance;
- To reorganize or make changes to our business – In the event that we undergo a reorganization (for example if we merge, combine or divest a part of our business), we may need to transfer some or all of personal information to the relevant third party (or its advisors) as part of any due diligence process or transfer to that reorganized entity or third party your personal information for the same purposes as set out in this Privacy Policy or for the purpose of analyzing any proposed reorganization. Applicable legal basis under the GDPR: legitimate interests (in order to allow us to change our business).
5. With whom do we share personal information?
SESS Law is an Ontario based law firm and as such, any personal information that we collect may be shared with and processed by any SESS Law entity within our network. We may also share personal information with certain third parties such as:
- Third-party service providers and/or partners who provide website, application development, hosting, maintenance, and other services to us. These third parties may have access to, or process personal information as part of providing those services for us. We limit the information provided to these service providers to that which is reasonably necessary for them to perform their functions, and our contracts with them require them to maintain the confidentiality of such information;
- Law enforcement and governmental entities when required by law. For greater clarity, we may disclose personal information or other information if required to do so by law or in the good faith belief that such action is necessary to comply with applicable laws, in response to a court order, judicial or other government subpoena or warrant, or to otherwise cooperate with law enforcement or other governmental agencies;
- An acquirer, successor or assignee as part of any merger, acquisition, debt financing, sale of assets, or similar transaction, as well as in the event of an insolvency, bankruptcy, or receivership in which information is transferred to one or more third parties as one of our business assets; and
- We will only use personal information to fulfil the primary purpose and applicable legitimate purpose it was collected for, or for a purpose compatible with that primary purpose.
6. How long do we keep personal information?
We will only keep personal information for as long as reasonably necessary to fulfil the relevant purposes set out in this Policy Privacy and in order to comply with our legal and regulatory obligations. If you would like further information regarding the periods for which personal information will be kept, please contact us as set forth in the “How to contact us?” section.
7. Where do we store personal information and international transfers?
As an Ontario based law firm, personal information is stored and processed in Canada or where we engage third party service providers (i.e. United States). You consent to the transfer of information to countries outside your country of residence, which may have different data protection rules than in your country of residence. While such information is outside of your country of residence, it is subject to the laws of the country in which it is held, and may be subject to disclosure to the governments, courts or law enforcement or regulatory agencies of such other country, pursuant to the laws of such country.
However, our practices regarding your personal information will at all times continue to be governed by this Privacy Policy and, if applicable, we will comply with, where applicable, the GDPR and/or the South African Protection of Personal Information Act requirements providing adequate protection for the transfer of personal information from the EU/EEA/South Africa to third country, notably by implementing appropriate safeguards such as standard contractual clauses. SESS Law will hold organizations outside Canada accountable under Canadian law for any personal information which may be transferred to them.
8. How do we protect personal information?
We follow generally accepted industry standards to protect the information submitted to us, both during transmission and once we receive it. We maintain appropriate physical, technical and administrative safeguards to protect personal information against accidental or unlawful destruction, accidental loss, unauthorized alteration, unauthorized disclosure or access, misuse, and any other unlawful form of processing of the personal information in our possession. We have taken steps to ensure that the only personnel, under a duty of confidentiality, who are granted access to your personal information are those with a business ‘need-to-know’ or whose duties reasonably require such information.
However, no method of transmission over the Internet, or method of electronic storage, is 100% secure. We cannot ensure or warrant the security of any information you transmit or provide to us, and you do so at your own risk. We also cannot guarantee that such information may not be accessed, disclosed, altered, or destroyed by breach of any of our physical, technical, or administrative safeguards. If you believe personal information has been compromised, please contact us as set forth in the “How to contact us?” section.
9. What rights does someone have in relation to its personal information?
Under certain circumstances and in accordance with applicable data protection laws, an individual has the following rights:
- Access: entitled to ask if we are processing information and, if we are, request access to personal information. Subject to applicable law and, where applicable, payment of a possible fee, this enables the individual to receive a copy of the personal information we hold and certain other information about him or her or it;
- Accuracy: we are required to take reasonable steps to ensure that the personal information in our possession is accurate, complete, not misleading and up to date; and
- Correction: entitled to request that any incomplete or inaccurate personal information we hold be corrected.
Under the GDPR, you may be entitled to the following additional rights:
- Erasure: entitled to ask us to delete, destroy or remove personal information in certain circumstances. There are certain exceptions where we may refuse a request for erasure or destruction, for example, where the personal information is required for compliance with law or in connection with claims or required by contract between the parties;
- Restriction: entitled to ask us to suspend the processing of certain personal information, for example to establish its accuracy or the reason for processing it;
- Transfer: request the transfer of certain personal information to another party;
- Objection: one may challenge when we are processing personal information based on a legitimate interest (or those of a third party) or for certain direct marketing purposes. However, we may be entitled to continue processing information;
- Automated decisions: contest any automated decision made where this has a legal or similar significant effect and ask for it to be reconsidered; and
- Consent: where we are processing personal information with consent, withdrawal of consent in the circumstances permitted by law.
Finally, you have also a right to make a complaint with a data protection supervisory authority, in particular in the country/province/state where you normally reside, where we are based or where an alleged infringement of data protection law has taken place.
To exercise any of these rights, please contact us as set forth in the “How to contact us?” section.
10. How do we use cookies and similar technologies?
For details of the cookies employed by us, please see our Cookie Policy, which forms part of this Privacy Policy.
11. How to contact us?
For any questions or comments about this Privacy Policy or personal information, to exercise any applicable rights, to make a complaint, or to obtain information about our policies and practices with respect to any service providers outside Canada, our Privacy Officer can be reached by email at reception@sesslaw.ca or by mail using the following contact information:
SESS Law
Attn: Privacy Officer
414 Main St. East
Hamilton Ontario L8N1J9, Canada
12. How we may update this Privacy Policy?
We may change the content of our websites and how we use cookies without notice and consequently our Privacy Policy and Cookies Policy may change from time to time in the future. We therefore encourage you to review them whenever you visit the website to stay informed of how we are processing personal information.
This Privacy Policy was last updated March 2022.
Cookie Policy
We use cookies and similar tools (e.g. pixel, tags or beacons) (together “cookies” or “cookie”) on our website to improve its performance and enhance your user experience. This Cookies Policy explains how we do that, and applies to all the websites (collectively the “Website”) related to Szpiech Ellis Skibinski Shipton Law Office L.L.P. (“SESS Law”, “we”, “us” or “our”).
1. What are cookies?
Cookies are small text files which a website may put on your computer or mobile device when you first visit a site or page. The cookie will help the website, or another website, to recognise your device the next time you visit. We use the term “cookies” in this Cookies Policy to refer to all files that collect information in this way. There are many functions cookies serve. For example, they can help us to remember your preferences, analyse how well the Website is performing, or even allow us to recommend content we believe will be most relevant to you. Most cookies will not collect information that identifies you, but will instead collect more general information such as how users arrive at and use the Website.
Cookies do not cause any damage to the terminal, but make it easier, for example, to find preferences, pre-fill certain fields and adapt the content of the services on the site visited. Such data allows the improvement of ergonomics and services according to your interests.
2. What sort of cookies does the website use?
Information collected through cookies help us to analyze the use of the Website and to enables us to offer users a better experience when visiting the Website. We will only keep cookies for as long as necessary to achieve the relevant purposes set out in this Cookies Policy, notably for marketing and statistical purposes.
Generally-speaking, we use first and third-party(ies) session and persistent cookies. The cookies set by us are called “first-party cookies” and the cookies set by our third-party partners and service providers are called “third-party(ies) cookies.”
Session cookies are temporary cookies that remain on your device until you close your web browser. Many session cookies are essential to make our Website work correctly, as they typically enable you to move around our Website and use our features.
Persistent cookies remain on your device after you close your browser or until you manually delete it (for the former, how long the cookie remains on your device will depend on the duration or “lifetime” of the specific cookie and your browser settings). Persistent cookies help us recognize you as an existing user of our Website, so it’s easier and convenient to return to our Website or interact with our Services without signing in again. In addition, persistent cookies also help us recognize you when you view a resource belonging to our Website from another website or app (such as an advertisement) and help us record information about your web browsing habits during the lifetime of the persistent cookie.
3. Does anyone else use cookies on the website?
We do use or allow third parties to serve cookies that fall into the three categories above. For example, like many companies, we use third party analytic tools to help us monitor our traffic. We may also use third party cookies to help us with market research, improving site functionality and monitoring compliance with our applicable policies.
4. Can I manage my preferences on cookies?
If you have any concerns about our use of cookies, you can take action to prevent them from being set, such as by changing your browser settings to block certain types of cookies. You may also delete cookies held on your device at any time by going to the appropriate settings within your web browser.
You have the option to configure your devices to accept all cookies, to notify you when a cookie is issued or to never accept cookies. However, the latter option may result in some personalized services not being provided and, as a result, you may not be able to take full advantage of all the features offered by the Site. If you do not wish to receive cookies in general or only to refuse certain cookies, you can change your browser settings accordingly.
Instructions to this effect are provided each browser’s website:
- For Edge : https://support.microsoft.com/en-us/windows/delete-and-manage-cookies-168dab11-0753-043d-7c16-ede5947fc64d
- For Chrome : https://support.google.com/chrome/answer/95647?hl=en&hlrm=en
- For Firefox : https://support.mozilla.org/en-US/kb/block-websites-storing-cookies-site-data-firefox
- For Safari : https://support.apple.com/en-us/HT201265
For any other browser not mentioned above, the user should not hesitate to consult the cookie management help information available on the Website.
You can also visit the below link for an overview of how to block or delete cookies on the most common browsers: https://www.allaboutcookies.org.
5. More Information
If you have any queries or comments regarding this Cookies Policy, please contact us by email at reception@sesslaw.ca
Last Update: March 2022