Privacy Policy

PRIVACY POLICY

This Privacy Policy explains how Chisty Law Chambers Limited (“CLC UK”, “we”, “us”, “our”) (Company No. 10768907), registered in England & Wales with registered office at 1 Grace House, Bessborough Road, Harrow, England, HA1 3EX, collects, uses, stores, shares and protects personal data.

This Privacy Policy must be read together with our Terms & Conditions / Terms of Business, Disclaimer, Cookie Policy and Website Terms of Use (together, the “Policies”).

1. Our role and scope

For the purposes of the UK General Data Protection Regulation (“UK GDPR”) and the Data Protection Act 2018, CLC UK is the data controller in respect of personal data processed in connection with our non-regulated consultancy, coordination and administrative support services.

This Privacy Policy applies to:

visitors to our website and social-media pages;
individuals who contact or correspond with us;
clients, prospective clients and their representatives;
suppliers, partners and professional contacts; and
any other individual whose personal data we process in connection with our activities.

2. What personal data we collect

Depending on your interaction with us, we may collect and process the following categories of personal data:

2.1 Identity and contact data

name, title, date of birth;
postal address, email address, telephone/VOIP/WhatsApp numbers;
nationality and country of residence.

2.2 Client and engagement data

information you provide in enquiries, forms, consultations, instructions or correspondence;
documents and information supplied for consultancy, coordination or administrative support purposes;
records of advice, communications and service delivery.

2.3 Compliance and verification data

copies of identity documents;
source-of-funds or source-of-wealth information;
sanctions screening and due-diligence results;
records required for AML/CTF compliance.

2.4 Technical and usage data

IP address, browser type, device type, operating system;
website usage data, logs and analytics information (see our Cookie Policy).

2.5 Financial and transaction data

invoices, payments, bank details (where required);
transaction references and records.

3. How we collect personal data

We collect personal data:

directly from you (e.g. when you contact us, complete forms, sign documents or provide information);
from your authorised representatives or advisers;
from third parties you have instructed us to liaise with;
from publicly available sources (where relevant and lawful); and
automatically through cookies and similar technologies (see Cookie Policy).

4. Lawful bases for processing

We process personal data only where we have a lawful basis under UK GDPR, including:

Contract – where processing is necessary to enter into or perform a contract with you;
Legal obligation – where processing is required to comply with legal or regulatory obligations (including AML/CTF);
Legitimate interests – where processing is necessary for our legitimate business interests and does not override your rights;
Consent – where you have given clear consent (e.g. for non-essential cookies or certain communications).

5. How we use personal data

We use personal data to:

respond to enquiries and communications;
provide our consultancy, coordination and administrative support services;
prepare documents based on information you supply;
manage client relationships, billing and accounts;
carry out AML/CTF checks, identity verification and compliance screening;
communicate with third parties at your request or where reasonably required for service delivery;
operate, secure and improve our website and systems;
protect our legal rights, enforce agreements and manage risk; and
comply with applicable laws and regulatory requirements.

6. No regulated services and reliance on client information

CLC UK does not provide UK immigration advice, regulated legal services or reserved legal activities.

We may rely on information and documents provided by you without independent verification. You remain responsible for ensuring that all personal data supplied is accurate, complete, lawful and up to date. CLC UK shall not be responsible for consequences arising from inaccurate, incomplete or misleading data supplied by or on your behalf.

7. Sharing and disclosure of personal data

We may share personal data, where lawful and necessary, with:

third-party service providers (IT, hosting, payment processing, document management);
overseas partners or professional contacts for coordination or administrative purposes;
independent regulated professionals, where you request or authorise a referral;
government authorities, regulators, free zones, endorsement bodies or institutions, where required for your matter or by law;
banks, auditors, insurers and professional advisers; and
law-enforcement or competent authorities where required or permitted by law.

All third parties act independently and under their own legal obligations. CLC UK does not supervise or control third-party data processing beyond what is required by law.

8. International transfers

Some recipients of personal data may be located outside the United Kingdom. Where personal data is transferred internationally, we ensure appropriate safeguards are in place in accordance with UK GDPR (such as adequacy regulations or recognised contractual protections).

9. Data retention

We retain personal data only for as long as necessary for the purposes for which it was collected, including:

to perform services;
to comply with legal, regulatory, AML/CTF and accounting obligations;
to resolve disputes or enforce agreements.

Retention periods may vary depending on the nature of the data and applicable legal requirements. Data is securely deleted or anonymised when no longer required.

10. Data security

We implement reasonable technical and organisational measures to protect personal data against unauthorised access, loss, misuse or disclosure. However, no system is completely secure, and we cannot guarantee absolute security, particularly where data is transmitted via third-party platforms or the internet.

11. Your data protection rights

Subject to UK GDPR and applicable exemptions, you may have the right to:

access your personal data;
request correction of inaccurate data;
request erasure of data;
restrict or object to processing;
request data portability;
withdraw consent (where processing is based on consent); and
lodge a complaint with the Information Commissioner’s Office (ICO).

Requests should be made in writing using the contact details below. We may need to verify your identity before responding.

12. Cookies and online tracking

We use cookies and similar technologies in accordance with our Cookie Policy. Non-essential cookies are used only with your consent, and you can manage your preferences at any time.

13. Third-party websites and platforms

Our website or communications may contain links to third-party websites or platforms. We are not responsible for the privacy practices, content or security of third-party sites. You should review their privacy policies before providing personal data.

14. Children’s data

Our services and website are not directed at children, and we do not knowingly collect personal data from individuals under 18 years of age.

15. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in law, guidance or our practices. The current version will be published on our website with an updated effective date. Continued interaction with us constitutes acceptance of the updated Policy, subject to any required consent.

16. Contact details

For privacy-related enquiries, requests or complaints, please contact:

Chisty Law Chambers Limited (CLC UK)
Registered Office: 1 Grace House, Bessborough Road, Harrow, England, HA1 3EX
Email: info@chistylawchambers.co.uk

If you remain dissatisfied, you have the right to complain to the Information Commissioner’s Office (ICO) at www.ico.org.uk.