Brixton Legal Centre takes data protection and data security extremely seriously. This Privacy Policy explains the types of personal data we may collect about you. It also explains how we store and handle that data and keep it safe.
We understand there’s a lot of information here, but we want you to be fully informed about your rights and how Brixton Legal Centre uses your data. We hope the following sections will answer any questions you may have – but if not, please get in touch with us.
Conditions for Processing Data
We are only entitled to hold and process your data where the law allows us to. The current law on data protection sets out a number of different reasons for which we may collect and process your personal data. These include:
Contractual Obligations
Our main purpose in holding your data is to provide you with legal services under the agreement we have with you. This agreement is a contract between us, and the law allows us to process your data to fulfil that contract (or take steps to enter into one). We may also need to process your data to meet our contractual obligations to the Legal Aid Agency if your case or matter is publicly funded.
Legitimate Interests
In certain situations, we require your data to pursue our legitimate interests in a way which you might reasonably expect as part of running Brixton Legal Centre and which does not materially impact your rights, freedoms, or interests. This may include compliance with external quality audits or regulatory reviews.
Legal Compliance
Where required by law, we may need to collect and process your data—for example, in relation to fraud or criminal activity.
Consent
In some situations, we may collect and process your data with your specific and informed consent.
When collecting your data, we will always make clear which information is necessary in connection with a particular service.
When Do We Collect Your Data?
We typically collect your data when you provide it to us, or when it is provided to us by others on your behalf. You may give us your data through:
- Online forms
- Telephone conversations
- In-person meetings
- Postal correspondence
What Sort of Data Do We Collect?
We collect your name and contact details. This may include a copy of your identification (passport, driving licence) and proof of address.
We may also gather demographic details such as age, gender, or ethnicity where required by the Legal Aid Agency. If your matter is legally aided, we will also collect financial information.
Additionally, we hold information about your legal case or issue.
How Do We Use Your Data?
We only use your data to:
- Provide legal advice, assistance, and where applicable, representation
- Meet our obligations to the Legal Aid Agency, regulators, or auditors
- Maintain records of your case and our service delivery
How Do We Protect Your Data?
We treat your data with the utmost care. Your data may be protected by Legal Professional Privilege and is often confidential.
Brixton Legal Centre has robust data protection and information security policies in place, assessed regularly through our internal processes and quality standards.
Our IT systems are safeguarded against cyber threats, with access to personal data restricted and password-protected. We also monitor our systems for vulnerabilities and maintain up-to-date security protocols.
How Long Will We Keep Your Data?
We retain your data only as long as necessary for the purpose it was collected. Generally, we keep client files for 6 years after the end of your matter, in line with regulatory and Legal Aid Agency requirements.
In some cases, it may be appropriate to keep data for longer—for example, where required by the nature of the case. If so, we will let you know.
Who Do We Share Your Data With?
We may share your personal data with trusted third parties necessary for delivering our legal services. These may include:
- Barristers
- Experts
- Interpreters or translators
- Costs draftsmen
- File storage/destruction services
- IT and cloud storage providers
- External auditors or regulators
Our policy ensures:
- We only share what is strictly necessary
- Third parties are contractually obligated to protect your data
- Your privacy is respected and protected at all times
- Data is deleted or anonymised if services are terminated
Where Is Your Data Processed?
Your data is stored and processed within the European Economic Area (EEA). If we need to share data outside the EEA, we will ask for your explicit consent and ensure appropriate safeguards are in place.
Your Rights
You have the right to:
- Access your personal data (free of charge in most cases)
- Correct personal data that is inaccurate or incomplete
- Request deletion of your data when it is no longer necessary
- Withdraw consent to processing where applicable
- Object to processing based on our legitimate interests
To exercise these rights, contact our Data Protection Officer Sue Young at:
Email: enquiries@brixtonunitarians.org
Website: www.brixtonlegalcentre.com
If we refuse your request, we will explain why.
Your Right to Withdraw Consent
If you have given us consent to process your personal data, you have the right to withdraw it at any time. This will not affect the lawfulness of processing before the withdrawal.
If You Have a Complaint
Brixton Legal Centre is registered with the Information Commissioner’s Office (Reg. No. ZB934577).
If you feel your data has not been handled properly or are unhappy with how we’ve dealt with your request, you may lodge a complaint with the Information Commissioner’s Office (ICO).
Phone: 0303 123 1113
Website: www.ico.org.uk/concerns