Introduction
UK Data Privacy/Data Protection Law changed significantly on 25th May 2018. The EU General Data Protection Regulation (GDPR) was a step towards giving individuals more control over their data. From 11pm on 31st December 2020, UK GDPR replaced EU GDPR for personal data held or processed in the UK. The provisions remain largely the same.
Your Rights Under UK GDPR
- The right to access personal data we hold about you.
- The right to object to receiving information from us.
- The right to be informed about the collection and use of your data.
- The right to rectification of inaccurate or incomplete data.
- The right to erasure of your personal data in certain cases.
- The right to restrict processing of your data.
- The right to data portability for reusing your data across different services.
- Rights in relation to automated decision-making and profiling (we do not use automated decision-making).
How We Use Your Personal Data
We use your data to provide a high-quality client service, including tailored communications. We respect your privacy, adhere to strict regulatory requirements, and will not sell your data to third parties.
Lawful Bases for Processing Your Data
The law permits processing of personal data under the following bases:
- Contract: Processing necessary to fulfill a contract.
- Legal Obligation: Processing required by law.
- Legitimate Interest: Processing necessary for business needs unless overridden by your rights.
- Consent: You have given explicit consent for a specific purpose.
Special Categories of Data
For sensitive data, we rely on legal claims and safeguarding conditions under the Data Protection Act 2018. These include protection from harm and legal proceedings.
Types of Personal Data We Process
- Financial details (e.g., bank account information).
- Contact information (e.g., address, email, phone).
- Socio-demographic data (e.g., profession, nationality).
- Transactional data (e.g., payments).
- Behavioral and communication data.
- Health data (if necessary for legal matters).
Who We Share Your Data With
- Legal professionals (barristers, experts, other solicitors).
- Regulatory bodies (Solicitors Regulation Authority, HMRC).
- Fraud prevention agencies.
- Government authorities where legally required.
How Long We Keep Your Data
We retain data for at least 5 years and typically store case files for 6 years. Legal Aid cases may be stored longer. Wills and other critical documents are retained indefinitely.
Your Rights
You have the right to request access, correction, erasure, and restriction of your personal data. You can also object to processing or request data portability.
How to Complain
If you have concerns about how we process your data, you can contact:
Data Protection Manager: Mohammed Khalid
14 Milkstone Road, Rochdale, Greater Manchester, OL11 1ED
If unresolved, you may complain to the Information Commissioner’s Office (ICO).
Updates to This Notice
This notice may be updated in line with regulatory guidance and data protection developments.