Privacy Policy
& GDPR Notice

Who We Are

Chancery Solicitors is a law firm regulated by the Solicitors Regulation Authority (SRA No. 627745). We are the data controller for the personal information we hold about you, meaning we determine how and why your data is processed.

Our registered offices are:

• Head Office: 124 Whitechapel Road, 2nd Floor, London, E1 1JE
• Stepney Branch: 129 Mile End Road, London, E1 4BG

Contact us about data matters: info@chancery-solicitors.com  |  Tel: 020 7247 9338

Data We Collect

We collect personal data in the following ways:

Information you provide to us

• Identity data: Full name, date of birth, nationality, passport or ID numbers
• Contact data: Postal address, email address, telephone numbers
• Case data: Details of your legal matter, documents, correspondence and instructions you give us
• Financial data: Bank account details for billing and payment purposes
• Special category data: In some cases, information about health, immigration status, family circumstances or criminal convictions — only where necessary for your legal matter

Information we collect automatically

• IP address and browser type when you visit our website
• Pages visited, time spent, and referral sources (via cookies)

Information from third parties

• From courts, government bodies, opposing solicitors or other parties in your matter
• From identity verification services for anti-money laundering checks (required by law)

How We Use Your Data

We use your personal data for the following purposes:

• Providing legal services: To carry out your instructions and conduct your legal matter
• Client onboarding: Identity verification and conflict-of-interest checks before accepting instructions
• Regulatory compliance: Anti-money laundering (AML) checks, Solicitors Accounts Rules, SRA requirements
• Communication: Responding to your enquiries, sending updates about your case, and providing costs information
• Billing and accounts: Raising invoices, processing payments and managing your account
• Legal obligations: Complying with court orders, legal holds, HMRC or regulatory requirements
• Website improvement: Understanding how visitors use our website to improve it

We will not use your data for automated decision-making or profiling that produces legal effects.

Legal Basis for Processing

Under the UK GDPR, we rely on the following lawful bases:

• Contract: Processing is necessary to perform the legal services contract with you
• Legal obligation: We must process certain data to comply with law (e.g. AML regulations, SRA rules, court orders)
• Legitimate interests: For example, keeping records of our work, protecting ourselves from legal claims, and improving our services — where this does not override your rights
• Consent: Where we ask for your consent (e.g. to send marketing communications) — you may withdraw consent at any time
• Vital interests or public task: In rare circumstances, such as safeguarding concerns

Where we process special category data (e.g. health, immigration status), we rely on the additional basis of processing being necessary for legal claims or substantial public interest.

Sharing Your Data

We may share your personal data with:

• Courts and tribunals in connection with your legal proceedings
• Opposing solicitors and parties in your matter, where required
• Barristers and expert witnesses instructed on your behalf
• Government bodies: Home Office, HMRC, Local Authorities, UKVI, where required by your matter or by law
• Identity verification and AML providers — to meet our legal obligations
• IT and cloud service providers who process data on our behalf under strict data processing agreements
• Our insurers and auditors for regulatory and risk management purposes

How Long We Keep Your Data

We retain personal data only for as long as necessary. Our standard retention periods are:

• Client files and matter records: 6 years after the conclusion of your matter (consistent with the Limitation Act 1980)
• Financial and accounts records: 6 years (required by HMRC)
• AML/identity verification records: 5 years from the end of the business relationship (as required by the Money Laundering Regulations 2017)
• Website enquiry data: 12 months, or until the purpose is fulfilled
• Marketing consent records: Until you withdraw consent plus 1 year

After the applicable retention period, we will securely destroy or anonymise your data in accordance with our data deletion procedures.

Your Rights Under GDPR

Under the UK General Data Protection Regulation (UK GDPR) and Data Protection Act 2018, you have the following rights:

To exercise any of these rights, please contact us at info@chancery-solicitors.com. We will respond within one calendar month of receiving your request. There is no charge for most requests.

Cookies

Our website uses cookies — small text files stored on your device — to help it function properly and to understand how visitors use it.

Cookies we use

• Essential cookies: Necessary for the website to function. These cannot be disabled.
• Analytics cookies: Help us understand how visitors interact with the site (e.g. pages visited, time spent). We use this data in aggregate and anonymised form only.

You can control cookies through your browser settings. Disabling cookies may affect how our website functions. By continuing to use our website without changing your cookie settings, you consent to our use of essential cookies.

Security

We take the security of your personal data seriously and have implemented appropriate technical and organisational measures, including:

• Secure encrypted email and document transmission
• Password-protected client files and access controls
• Restricted access to personal data on a need-to-know basis
• Regular staff training on data protection and confidentiality
• Secure disposal of physical documents containing personal data

In the event of a personal data breach that is likely to risk your rights and freedoms, we will notify the Information Commissioner's Office (ICO) within 72 hours and you as soon as reasonably practicable.

International Data Transfers

In some cases, your data may be processed or stored outside the United Kingdom — for example, where we use cloud-based IT services. Where this occurs, we ensure that appropriate safeguards are in place, such as:

• UK adequacy decisions
• Standard Contractual Clauses (SCCs) approved by the ICO
• Binding corporate rules or other approved transfer mechanisms

We will not transfer your data to countries that do not provide an adequate level of data protection without your consent or without a lawful transfer mechanism.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in law, regulatory guidance, or how we operate. The most current version will always be available on our website, with the date of last update shown at the top.

For significant changes, we will notify existing clients directly by email where possible.

Contact Us & How to Complain

If you have any questions about this policy or how we handle your personal data, please contact us:

• Email: info@chancery-solicitors.com
• Phone: 020 7247 9338
• Post: Chancery Solicitors, 124 Whitechapel Road, 2nd Floor, London, E1 1JE

Raising a Complaint

If you are unhappy with how we have handled your personal data, you have the right to lodge a complaint with the Information Commissioner's Office (ICO) — the UK's data protection regulator:

• Website: ico.org.uk
• Helpline: 0303 123 1113
• Post: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF

We would, however, appreciate the opportunity to address your concerns before you contact the ICO. Please reach out to us in the first instance.