Privacy Policy

LAST UPDATED: JANUARY 23 2025

This Privacy Policy describes how JLG Legal Limited t/a Johnson Law Group (“JLG UK,” “we,” “our,” or “us”) collects, uses, and shares information about you in the course of providing legal, advisory and/or consultancy services and carrying out marketing activities. It also describes your privacy rights under the data protection law. It also applies to your use of our websites (https://johnsonlawgroup.co.uk/) and all features, content, and other services that we own, control, and make available to you (collectively, the “Website(s)”). For more detail on who this Privacy Policy applies to please see the section below titled “Who Does This Privacy Policy Apply To?”.

It is important that you read this privacy policy together with any other privacy policy or fair processing notice we may provide on specific occasions when we are collecting or processing personal data about you so that you are fully aware of how and why we are using your data. This privacy policy supplements other notices and privacy policies and is not intended to override them.

Controller

JLG UK is the controller and responsible for your personal data. JLG UK is part of the wider JLG Group which is headquartered in the US with a number of subsidiaries such as JLG UK. For information on when we share your personal data with other members of the JLG Group please see the sections below titled “How Do We Use Your Personal Data”, “Who might we share your personal data with?” and “International Transfers”.

If you have any questions about this Privacy Policy or wish to exercise “Your Rights”, please contact us using the details in the “Contact Us” section below.

Third Party Links
We may offer portions of our services through a third party or include or offer third party products or services, or links to third party websites, locations, platforms, and services operated and owned by third parties on our Website, subject to your preferences (where applicable). This also includes where you connect to our Website through a third party site. For example, on social networks such as Facebook and Twitter. We do not control these third party websites and are not responsible for their privacy policies. When you leave our Website, we encourage you to read the privacy policy of every website you visit.

Who Does This Privacy Policy Apply To?

This Privacy Policy applies to individuals in the following categories below or who work for any of the following:

• our clients;

• other lawyers and law firms, including barristers;

• people who are involved in court or other legal proceedings (including legal claims, criminal actions, inquests, tribunals, arbitrations, mediations, investigations and regulatory actions) or the provision of related or other legal, advisory and/or consultancy services, or people who are involved in claims we are handling for clients. This may include claimants, defendants, witnesses, experts and service providers related to such court or other legal proceedings, services or claims, such as investigators, mediators and costs lawyers;

• people who are involved in contracts and transactions we are working on, such as other businesses or individuals our clients are contracting with;

• our regulators, insurers, auditors, professional advisers and certification/accreditation bodies;

• people who use our Website; and

• people whose details we process in connection with our marketing activities.

What Personal Data Do We Collect?

Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the individual cannot be identified (anonymous data).

In the course of our business, we will need to collect and process various types of personal data for various purposes. We will however only process and collect personal data where we have a lawful basis to do so. Below we have listed the types of personal data we normally expect to collect and process about you:

• identity and contact data for individuals (such as full name, job title, organisation, date of birth, address, email address, telephone number, emergency contact, and JLG UK claim portal log in credentials). We may collect additional data to enable the identity of individuals to be verified;

• financial and payment data, including your bank account and payment card details, other related billing information and other data necessary for processing payments and fraud prevention;

• information relevant to our legal advice and your case, including personal data relevant to any dispute, grievance, investigation, arbitration or other legal advice we have been asked to provide to you as our client, your requirements and personal or professional situation, for any  vehicle related claims this will include driving licence, details about vehicles you drive or have driven, and details about the financing of those vehicles;

• enquiries data, including the content of messages and correspondence you send to us (including via social media), such as questions and information you provide;

• visitor data, including details of your visits to our premises;

• information about individuals employed by or associated with our clients, advisers or the organisations involved in a matter on which we are instructed;

• criminal convictions and offences data may be processed if necessary, for the legal matter we are advising on;

• special category personal data may be processed if necessary for the legal matter we are advising on, this includes information revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, genetic data, biometric data processed for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person’s sex life or sexual orientation;

• marketing and communications data, including your marketing preferences and interests and any feedback you provide to us (for example, by completing a survey); and

• technical data, including information about your browsing activities and your equipment collected automatically through our Website, such as:

• the webpages you visit and actions taken on them;

• the emails and advertisements you view;

• the time of day you browse;

• the time you last logged into the JLG UK claim portal;

• referring and exiting pages;

• information about your device such as your device type, browser, operating system, internet service provider, regional and language settings and connectivity and configuration data;

• device identifiers such as IP address; and

• location data, including imprecise location data (such as location derived from an IP address or data that indicates a city or postal code level).

For further details about technical data we collect automatically from your use of our Website, please see the “Cookies” section below. 

If you fail to provide personal data
Where we need to collect personal data by law, or under the terms of a contract we have with you, and you do not provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you (for example to provide you with our services). Should this happen and we are unable to provide you with any services you have requested, we have the right to end any involvement with you. We will notify you of any problems prior to terminating any relationship with you. 

How Do We Collect Your Personal Data?

Information You Provide through direct interactions with us

We collect information you provide directly to us, such as when you:

• request a free case evaluation from us;

• email us or send us a letter;

• speak with us through a live chat;

• speak with us in person or on the phone;  

• access the JLG UK claim portal, at your request open an account on the portal, and when submit information on your claim; or

• give us feedback.

Information collected through automated tracking technologies or interactions

As you interact with our Website, we will automatically collect technical data (as set out above). We use various technologies to collect this data (“Tracking Technologies”), including the following:

• Log Files, which are files that record events that occur in connection with your use of our Website.

• Cookies, which are small files transferred to your device through your Web browser that enable websites to recognise your browser and capture and remember certain information. Cookies make it easier for you to navigate our Website and help us to personalise your experience, support security features, and bring you advertising. Cookies generally may be controlled through your browser settings.

• Pixels (also known as web beacons), which is code embedded in a website, email, or advertisement that sends information about your use to a server. There are various types of pixels, including image pixels (which are small graphic images) and JavaScript pixels (which contains JavaScript code). When you access a website, video, email, or advertisement that contains a pixel, the pixel may permit us or a third party to drop or read cookies on your browser. Pixels are used in combination with cookies to track activity by a particular browser on a particular device. We may incorporate pixels from third parties that allow us to track our conversions (understand whether you came to us through a particular advert, link or social media post), bring you advertising, and provide you with additional functionality.

We may also receive your technical data if you visit other websites employing our cookies. Please see the “Cookies” section below for further details. 

Information from Third Parties or Publicly Available Sources

We also collect your personal data from other sources, including:

• Our clients, agents, and professional advisers instructed by us.

• Lead generators, who provide us with your information so that we may contact you to verify your information and evaluate your potential claims.

• Publicly available sources (which we may be required to pay a fee to access), including data in the public domain such as Companies’ House, your website or professional and personal social networking websites like LinkedIn, Facebook, Instagram amongst others and any publicly reported court case where you are a named party.

• Credit reference agencies and agencies who assist us with ‘Know Your Client’ checks to verify the accuracy of your information.

How Do We Use Your Personal Data?

Lawful Basis for Processing Your Personal Data

We will only use your personal data when the law allows us to do so, i.e. where we have a lawful basis for processing it. Most commonly, we will use your personal data in the following circumstances:

• Where we need to perform the contract, we are about to enter into or have entered into with you or take any steps you ask us to before entering into a contract with you.

• Where it is necessary to do so in order to comply with any legal obligations we have, such as under money laundering laws.

• On the basis of consent:

• Where we rely on your consent for processing this will be brought to your attention when the information is collected from you.

• You have the right to withdraw consent at any time, see the “Your Rights” section below for further information about how you may withdraw your consent.

• We do not rely on or require your consent for the majority of our processing.

• Where the processing is necessary for our legitimate interests in:

• providing legal and/or advisory services;

• ensuring regulatory compliance and maintaining accreditations;

• providing our clients with the best service;

• promoting our services;

• receiving feedback; and

• improving our services and identifying ways to grow our business; and/or

• for the legitimate purposes of our clients or other third parties in receiving those services.

We will only rely on this lawful basis where we consider that your interests and fundamental rights do not override such interests.

Special category data

In most cases, when we process special category data (see “What Personal Data Do We Collect?” for what data this includes) it is because it is necessary to do so for the establishment, exercise or defence of legal claims or whenever instructed by the courts acting in their judicial capacity. We may however process special categories of data with your explicit consent (for example for the purpose of providing legal advice), where it is necessary to protect your vital interests (for example in the event of an emergency where you are attending our premises) or where the data has been manifestly made public by you.

Purposes for which we use your personal data

We may process your personal data for the following purposes:

• Pursuant to our contract to provide you with our services, or to take steps linked to a contract with you or your organisation. This includes:

• To register you as a client.

• To provide and administer legal services as requested by you, including updating you in relation to the progress of your case and requesting information or documentation from you as required to promote your case.

• To process payments, billing and collection of any debts owed to us.

• To send you transactional and service messages (we may provide you with notices, updates, security alerts, information regarding changes to our policies, and support and administrative messages).

• As required by us to conduct our business and pursue our legitimate interests, including:

• .

• To prevent and address fraud, breach of policies or terms, and threats or harm.

• To analyse and improve our Website or other JLG Group websites, apps, marketing efforts, products and services (we continually strive to improve our offerings based on the information and feedback we receive from you).

• To personalise your experience and improve the quality of our communications with you (your information helps us to better respond to your individual needs).

• To develop and send you direct marketing communications, including advertisements and promotional communications about our services, other group action claims that we are or may be accepting new clients for, and events.

• To utilise centralised services for JLG Group.

• To administer and manage our relationship with you, including accounting, auditing, and taking other steps linked to the performance of our business relationship.

• To manage access to our premises and for security purposes.

• To protect the security of our communications and other systems and to prevent and detect security threats, frauds or other criminal or malicious activities.

• For insurance purposes.

• To exercise or defend our legal rights, including bringing or defending legal claims on our own behalf.

• To ask you to provide your feedback or fill out a survey.

• On the basis of your consent:

• To develop and send you direct marketing communications where your consent is required to do so.

• To fulfil any other purpose disclosed to you and with your consent.

• To comply with legal requirements relating to:

• the provision of regulated products and services;

• data protection;

• tax;

• health and safety;

• anti-money laundering, fraud investigations or other crime;

• anti-discrimination;

• mandatory reporting obligations;

• assisting law enforcement; and

• any other legal obligations placed on us from time to time.

 For the JLG UK claim portal we also collect and process your identity and contact data, enquiry data, information relevant to our legal advice and your case and technical data:

• Pursuant to our contract to provide you with our services, or to take steps linked to a contract with you or your organisation. This includes:

• To register you as a client.

• To provide and administer legal services as requested by you, including updating you in relation to the progress of your case and requesting information or documentation from you as required to promote your case.

• As required by us to conduct our business and pursue our legitimate interests, including:

• To analyse and improve the JLG UK claim portal, our Website or other JLG Group websites, apps, marketing efforts, products and services (we continually strive to improve our offerings based on the information and feedback we receive from you).

• To administer and manage our relationship with you, including accounting, auditing, and taking other steps linked to the performance of our business relationship.

• To develop and send you direct marketing communications, including advertisements and promotional communications about our services, other group action claims that we are or may be accepting new clients for, and events.

• On the basis of your consent:

• To develop and send you direct marketing communications where your consent is required to do so.

• To comply with legal requirements relating to:

• the provision of regulated products and services;

• data protection;

• tax;

• health and safety;

• anti-money laundering, fraud investigations or other crime;

• anti-discrimination;

• mandatory reporting obligations;

• assisting law enforcement; and

• any other legal obligations placed on us from time to time.

Notwithstanding the above, we may use information in connection with the services provided that does not identify you (including information that has been aggregated or de-identified) for any purpose except as prohibited by applicable law. For information on your rights and choices regarding how we use information about you, please see the “Your Rights” section below.

Marketing Communications Choices

We strive to provide you with choices regarding certain personal data uses, particularly around marketing and advertising.

We may use your personal data to form a view on what we think you may want or need, or what may be of interest to you. This is how we decide which services and offers may be relevant for you (we call this marketing).

You will receive marketing communications from us if you have:

• opted-in to receive these including via text, at an event or by any other opt-in mechanism; or

• you have requested information from us or paid for our services and you have not opted out of receiving those communications.

Opting out and withdrawing consent

You can ask us to stop sending you marketing communications at any time using the following unsubscribe methods:

• Emails. Should you wish to stop receiving further promotional emails from us, please follow the instructions as provided in the promotional emails you receive to click on the unsubscribe link or email us at Privacyofficer@johnsonlawgroup.co.uk   with the word UNSUBSCRIBE in the subject field of the email. Please note that you cannot opt-out of non-promotional emails, such as those about your ongoing business relations with JLG UK – however you can change your preferred contact method, see “Our Communication With You About Your Case” section below for further details.

• Text Messages. You can opt-out of receiving text messages to your phone number at any time by texting “STOP” in response to any text message you receive from us or contacting us as set forth in the section entitled “Contact Us” below and specifying you want to opt-out of text messages.

• JLG UK Claim Portal. Within the portal you can opt-out of receiving marketing communications  

Our Communication With You About Your Case
We typically communicate with our clients through the following means:

• E-mail

• Text messaging (also referred to as SMS)

• WhatsApp

• Facebook Messenger

• Letters by post

• Telephone calls

We always aim to contact you via your preferred contact method(s). If you change your mind about your preferred contact method(s) at any time, please let us know by emailing Privacyofficer@johnsonlawgroup.co.uk . Please state clearly which form of communication you no longer wish to be contacted via.

Cookies

What are cookies?
A cookie is a small file of letters and numbers that we store on your browser or the hard drive of your computer if you agree. Cookies contain information that is transferred to your computer's hard drive.

Our Website uses cookies and other similar technologies (together referred to as “cookies”) to distinguish you from other users of our Website. This helps us to provide you with a good experience when you browse our Website and also allows us to improve our site. For example, we use cookies to enable certain features (eg. logging in), to track site usage (eg. analytics), to store your user settings (eg. time zone preferences), and to personalise your content (eg. language).

What types of cookies do we use?
We use the following types of cookies:

• Essential cookies: these cookies are strictly necessary for the operation of the site. For example, cookies that help ensure that the content of a page loads quickly and effectively.

• Functionality cookies: these cookies are important for the site to operate, although not strictly necessary. For example, a cookie that remembers the settings you may configure on the Website (like language and time zone settings).

• Analytics/tracking cookies: these cookies analyse or predict your behaviour on the site. For example, by monitoring your movements around the site.

• Marketing cookies: these cookies track and profile users for direct marketing and advertising. For example, a cookie that tracks someone from a site across to a social media site, and shows adverts on that user’s social media page relating to the original site. 

Cookies can be first party (set by the website that the user is visiting) or third party (set by a domain other than the one the user is visiting). They can also be session (last for the duration of a session on the website) or persistent (continue once that session has ended).

The tables below explain the cookies we use and why.

For more information about how to change your cookie preferences, please see below.

Cookies used on our website

First Party Cookies
Not applicable

Third-party cookies
Some of the cookies we use are set by third parties. We work with other companies, such as search engine providers, so that we can learn more about our customers, in order to understand performance and engagement, provide a personalised experience and deliver more relevant advertising. The table below further explains the third party cookies that are used and their purposes.

To learn more about how these third parties process personal data, to the extent relevant, follow the links in the table below to the third party privacy notice.

Third Party

Purpose

Cookie duration

Link to third party privacy notice

Essential cookies

Not Used

Functionality cookies

Cookiebot

Stores the user cookie state for current domain

1 year

https://www.cookiebot.com/en/privacy-policy/

1.gif

Used to count the number of sessions to the website, necessary for optimizing CMP product delivery

Session

https://www.cookiebot.com/en/privacy-policy/

test_cookie

Used to check if user’s browser supports cookies

1 day

https://policies.google.com/privacy

CONSENT

Used to detect if the visitor has accepted the marketing category in the cookie banner. Necessary for GDPR-compliance

2 years

https://policies.google.com/privacy

Analytics/tracking cookies

_ga[x2]

Registers a unique ID that is used to generate statistical data on how the visitor uses the site

2 years

https://policies.google.com/privacy

_ga_#[x2]

Used by google analytics to collect data on the number of times a user has visited the website as well as the dates for the first and most recent visit

2 years

https://policies.google.com/privacy

Personalization_id

Used by twitter to allow the visitor to share content from the website onto their twitter profile

400 days

https://twitter.com/en/privacy

Marketing cookies

_fbp [x2]

Used by Facebook to deliver a series of advertisement products such as real time bidding from third party advertisers.

3 months

https://www.facebook.com/privacy/policy/?entry_point=data_policy_redirect&entry=0

lastExternalReferrer

Detects how the user reached the website by registering their last URL-address.

Persistent

https://www.facebook.com/privacy/policy/?entry_point=data_policy_redirect&entry=0

lastExternalReferrerTime

Detects how the user reached the website by registering their last URL-address.

Persistent

https://www.facebook.com/privacy/policy/?entry_point=data_policy_redirect&entry=0

_gcl_au [x2]

Used by Google AdSense for experimenting with advertisement efficiency across websites using their services.

3 months

https://policies.google.com/privacy

IDE

Used by Google DoubleClick to register and report the website user's actions after viewing or clicking one of the advertiser's ads with the purpose of measuring the efficacy of an ad and to present targeted ads to the user.

1 year

https://policies.google.com/privacy

pagead/landing

Collects data on visitor behaviour from multiple websites, in order to present more relevant advertisement - This also allows the website to limit the number of times that they are shown the same advertisement.

Session

https://policies.google.com/privacy

ads/ga-audiences

Used by Google AdWords to re-engage visitors that are likely to convert to customers based on the visitor's online behaviour across websites.

Session

https://policies.google.com/privacy

_uetsid

Used to track visitors on multiple websites, in order to present relevant advertisement based on the visitor's preferences.

Persistent

https://policies.google.com/privacy

_uetsid_exp

Contains the expiry-date for the cookie with corresponding name.

Persistent

https://privacy.microsoft.com/en-US/privacystatement

_uetvid

Used to track visitors on multiple websites, in order to present relevant advertisement based on the visitor's preferences.

Persistent

https://privacy.microsoft.com/en-US/privacystatement

_uetvid_exp

Contains the expiry-date for the cookie with corresponding name.

Persistent

https://privacy.microsoft.com/en-US/privacystatement

MSPTC

Pending

1 year

https://privacy.microsoft.com/en-US/privacystatement

MUID

Used widely by Microsoft as a unique user ID. The cookie enables user tracking by synchronising the ID across many Microsoft domains.

1 year

https://privacy.microsoft.com/en-US/privacystatement

_uetsid [x2]

Collects data on visitor behaviour from multiple websites, in order to present more relevant advertisement - This also allows the website to limit the number of times that they are shown the same advertisement.

1 day

https://privacy.microsoft.com/en-US/privacystatement

_uetvid [x2]

Used to track visitors on multiple websites, in order to present relevant advertisement based on the visitor's preferences.

Session

https://privacy.microsoft.com/en-US/privacystatement

tt_appInfo

Used by the social networking service, TikTok, for tracking the use of embedded services.

Session

https://www.tiktok.com/legal/page/us/privacy-policy/en

tt_pixel_session_index

Used by the social networking service, TikTok, for tracking the use of embedded services.

Session

https://www.tiktok.com/legal/page/us/privacy-policy/en

tt_sessionId

Used by the social networking service, TikTok, for tracking the use of embedded services.

Session

https://www.tiktok.com/legal/page/us/privacy-policy/en

_ttp

Used by the social networking service, TikTok, for tracking the use of embedded services.

1 year

https://www.tiktok.com/legal/page/us/privacy-policy/en

i/adsct [x2]

The cookie is used by Twitter.com in order to determine the number of visitors accessing the website through Twitter advertisement content.

Session

https://twitter.com/en/privacy

muc_ads

Collects data on user behaviour and interaction in order to optimize the website and make advertisement on the website more relevant.

400 days

https://twitter.com/en/privacy

LAST_RESULT_ENTRY_KEY

Used to track user’s interaction with embedded content.

Session

https://policies.google.com/privacy

LogsDatabaseV2:V#||LogsRequestsStore

Pending

Persistent

https://policies.google.com/privacy

remote_sid

Necessary for the implementation and functionality of YouTube video-content on the website.

1 day

https://policies.google.com/privacy

TESTCOOKIESENABLED

Used to track user’s interaction with embedded content.

1 day

https://policies.google.com/privacy

VISITOR_INFO1_LIVE

Tries to estimate the users' bandwidth on pages with integrated YouTube videos.

180 days

https://policies.google.com/privacy

VISITOR_PRIVACY_METADATA

Stores the user's cookie consent state for the current domain

180 days

https://policies.google.com/privacy

YSC

Registers a unique ID to keep statistics of what videos from YouTube the user has seen.

Session

https://policies.google.com/privacy

YtIdbMeta#databases

Used to track user’s interaction with embedded content.

Persistent

https://policies.google.com/privacy

yt-remote-cast-available

Stores the user's video player preferences using embedded YouTube video

Session

https://policies.google.com/privacy

yt-remote-cast-installed

Stores the user's video player preferences using embedded YouTube video

Session

https://policies.google.com/privacy

yt-remote-device-id

Stores the user's video player preferences using embedded YouTube video

Persistent

https://policies.google.com/privacy

yt-remote-fast-check-period

Stores the user's video player preferences using embedded YouTube video

Persistent

https://policies.google.com/privacy

yt-remote-fast-check-period

Stores the user's video player preferences using embedded YouTube video

Session

https://policies.google.com/privacy

yt-remote-session-app

Stores the user's video player preferences using embedded YouTube video

Session

https://policies.google.com/privacy

yt-remote-session-name

Stores the user's video player preferences using embedded YouTube video

Session

https://policies.google.com/privacy

dicbo_id

pending

1 day

https://www.outbrain.com/privacy/#privacy-policy

How you can change your cookie preferences

You can control which types of cookies are set by changing your preferences through our cookie banner when you first visit our website or at any time by clicking the link labeled “Renew or change your cookie consent” located at the bottom of every web page on our website.

Cookies used on the JLG UK claim portal (mycase.johnsonlawgroup.co.uk)

First Party cookies

Name of cookie

Purpose

Cookie duration

Essential

_jlg_client_portal_session

To maintain the session state of users and ensure secure and uninterrupted access to the client portal.  

Session

Analytics

_jlg_client_portal_session

To understand how users interact with the portal, which helps us to analyse and improve its functionality, performance and the overall user experience.

Session

Third-party cookies

Third Party

Purpose

Cookie duration

Link to third party privacy notice

Not Used

How you can change your cookie preferences

You can manage your cookie preferences at any time by visiting the “Account” tab of the portal.

Other ways to control cookies

Cookies can also be controlled by your web browser settings. Whether our cookies are used will depend on your browser settings, so you are in control. You can block cookies by activating the setting on your browser that allows you to refuse the setting of all or some cookies. However, if you use your browser settings to block all cookies (including essential cookies) you may not be able to access all or parts of our Website and you will not receive a personalised service.

To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, please use the following links:

• Internet Explorer cookies information

• Chrome cookies information

• Firefox cookies information

• Safari cookies information

Who might we share your personal data with?

For the purposes set out in the “How Do We Use Your Personal Data?” section above, we may share your personal data with the following categories of third parties, some of whom we appoint to provide services, including as follows:

• Our clients. As part of the provision of legal services to them.

• Where you have engaged us to act for you as part of a Group Action, we will need to share your data with other participants within the Group Action for a number of different purposes, including (but not limited to):

• The carrying out any de-duplication exercise to check the same claimant has not instructed more than one representative.

• Addition on to a Group Claim form along with other Claimant participants.

• The entry onto a centrally held “Group Register” in compliance with any Group Litigation Court Order.

• The instruction of counsel for your and more of our clients claims.

• The instruction of “generic counsel” who is instructed on behalf of a number of different firms for the same purpose.

• The setting up and notification to third parties of any contract of legal expense insurance that we have taken out on your behalf.

• Any other purpose which could reasonably be considered a requirement to progress your case within a Group Action where thousands of other individuals combine together in pursuit of a common claim and therefore need to share data with one another.

• Where you have been appointed as a member of a claimant committee on any given case, we may share your personal contact details with other committee members to enable you to confer and collaborate with other members of the committee as required.

• Professional advisors, suppliers and sub-contractors in the course of the provision of legal or other services or in the performance of any contract we enter into with you. This will depend on the legal work we are instructed to carry out but includes parties such as other law firms, barristers, expert witnesses, investigators, courts, registries and regulators.

• Third parties who have a right to access information through legal disclosure rules as part of litigation or to whom we believe release of your data is appropriate to comply with the law or legal process, and where required, in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

• Service providers. Third parties who provide us with services such as website operation and hosting, system administration, technology, data analytics, marketing and advertising, business development, accountancy and bookkeeping, banking, insurance, litigation support, security and technical and operational support. Service Providers are prohibited from using your information for any reason other than to provide these services, although we may permit them to use information that does not identify you (including information that has been aggregated or de-identified) for any purpose except as prohibited by applicable law.

• Event venues, webinar hosts and training providers. To provide you with access to our events and training.

• Our lenders and/or funders. We may be required to share your personal data with our lenders and/or funders in order for them to perform valuation calculations in respect of loans; or, if we default on a loan, to allow it to be enforced.

• Our Regulators. We may be required to disclose personal data about our clients to our regulators to comply with our regulatory requirements and to submit to regulatory audits. Our regulator in the UK is the Solicitors’ Regulatory Authority (SRA).

• Other parts of the JLG Group who we may use as a resource to assist in the progression and successful conclusion of your case.

Additionally, we will disclose your personal data to the relevant third party:

• In the event of a merger or acquisition. We will share information in connection with, or during negotiations of, any proposed or actual merger, purchase, sale or any other type of acquisition or business combination of all or any portion of our assets, or transfer of all or a portion of our business to another business.

• If we are under a duty to share your personal data in order to comply with any legal obligation, or in order to enforce or apply our terms of use and other agreements; or to protect the rights, property or safety of our clients, our regulator or others.

• Where we have your consent to do so. Where we process your information on the basis of your consent, we will bring this to your attention when the consent is obtained.

Notwithstanding the above, we may share information that does not identify you i.e. anonymous data (including information that has been aggregated or de-identified) with third parties except as prohibited by applicable law.

International Transfers

We   transfer your personal data outside the UK to other members of the JLG Group including members located in the US and Peru. Where we transfer your personal data outside the UK to countries not deemed to provide an adequate level of data protection, we will put appropriate safeguards in place, such as an International Data Transfer Agreement or Standard Contractual Clauses, where these are required by applicable data protection law.

How Long Do We Keep Your Personal Data?

We only keep your information for as long as we need it for the purposes for which we process it (as set out above in “Purposes for which we use your personal data”). This includes for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements.

We keep the majority of your personal data for a at least  6 years after the end of our relationship with you unless we are otherwise required to delete it due to a legal obligation or a rights request. Whilst our relationship with you typically ends once our services are no longer required, your claim has concluded, and our fees have been paid unless you have specifically opted out of receiving marketing communications from us, we will retain your data and contact information for that purpose provided always that we are compliant with our obligations under data protection law from time to time. We may retain your personal data for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.

How Do We Protect Your Personal Data?
We implement a variety of reasonable administrative, physical, and technical security measures to help protect your information from loss, theft, misuse and unauthorised access, disclosure, alteration and destruction. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

Transmission via the internet is not completely secure and we cannot guarantee the security of your personal data.

Your Rights

Under certain circumstances, you have rights under data protection laws in relation to your personal data. You have the right to:

• Withdraw consent at any time where we are relying on consent to process your personal data.  However, this will not affect the lawfulness of any processing carried out before you withdraw your consent. If you withdraw your consent, we may not be able to provide certain services to you. We will advise you if this is the case at the time you withdraw your consent.

• Object to our processing of your personal data for direct marketing purposes. We will inform you (before collecting your data) if we intend to use your data for such purposes or if we intend to disclose your information to any third party for such purposes.

• Object to our processing of your personal data where it is processed on the basis of our legitimate interests (or those of a third party) and there is something about your particular situation which makes you want to object to processing on this ground as you feel it impacts on your fundamental rights and freedoms. In some cases, we may demonstrate that there are compelling legitimate reasons for that processing which override your rights and freedoms.

• Request access to your personal data (commonly known as a “data subject access request”). This enables you to request a copy of the personal data we hold about you and to check that we are lawfully processing it.

• Request rectification of the personal data we hold about you if it is inaccurate or incomplete. This enables you to have that data corrected, though we may need to verify the accuracy of the new data you provide to us.

• Request erasure of the personal data we hold about you, provided that the personal data is:

• no longer necessary for the purposes for which it was collected;

• you withdraw consent (if the legal basis for processing is consent);

• you exercise your right to object, set out above, and there are no overriding legitimate grounds for processing;

• the data is unlawfully processed by us;

• the data needs to be erased to comply with a legal obligation; or

• the data is children’s data and was collected in relation to an offer of information society services;

• Request restriction of processing of the personal data we hold about you where:

• you want us to establish the data’s accuracy;

• we have unlawfully processed it, but you do not want us to erase it;

• the personal data is no longer necessary for the purposes for which it was collected, but you want us to keep it in order to create, exercise or defend legal claims; or

• you exercise your right to object (pending verification of whether there are legitimate grounds for processing);

• Request the transfer of the personal data we hold about you to you or a third party, only if the processing is carried out by automated means and the legal basis for the processing is consent or for the performance of a contract with you. We will provide to you, or a third party you have chosen, your personal data in a structured, commonly used, machine-readable format. This is known as the right of data portability.  

You may exercise your rights by submitting a request to us using the contact details set out in the “Contact Us” section below.

Should you have any issues, concerns or problems in relation to your data, or wish to notify us of data which is inaccurate, please let us know using the contact details set out in the “Contact Us” section below.

Time limit to respond
We will aim to respond to your request within 1 month, unless the request is complex or you have made a number of requests, in which case, we may require up to an additional 2 months to provide a full response. We will notify you if we need to use such an extension, setting out our reasons for the same.

What we may need from you
We may request specific information from you to help us confirm your identity and process your request. This is a security measure to ensure that personal data is not disclosed to any person who does not have a right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.

No fee usually required
You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we could refuse to comply with your request in these circumstances.

If you are not satisfied with our processing of your personal data, you have the right to lodge a complaint at any time with the Information Commissioner’s Office (ICO), the UK regulator for data protection issues (www.ico.org.uk). However, we would encourage you to contact us using the details in the “Contact Us” section below, in the first instance using the information below, so that we may try to resolve your complaint before you approach the ICO.

Children
Our Website and services are directed to people who are at least 16 years old, and we do not knowingly collect personal data from children under 16 years of age. If you are a parent or guardian and believe JLG UK has collected your child’s personal data unlawfully, please contact us using the details in the “Contact Us” section below. Please note that in the UK, children aged 13 or over are able to provide their own consent.

Changes to our Privacy Policy
We reserve the right to revise, alter and reissue this Privacy Policy at any time. If we do this, we will post the update Privacy Policy on this page. If the changes are material, we may provide you additional notification of those changes via email. This version was last updated on 11 JANUARY 2024.

Contact Us
If you have any questions regarding this Privacy Policy or our data practices, or wish to exercise your rights, you may contact us using the information below.

Full name of legal entity: JLG Legal Limited (Company number: 12177815) (ICO registration number: ZA700324)

By email: privacyofficer@johnsonlawgroup.co.uk

By web form: www.johnsonlawgroup.co.uk/contact/

By post: JLG Legal Limited, Chancery Place, 50 Brown Street Manchester, England, M2 2JT

COPYRIGHT © 2024 JLG LEGAL LIMITED TRADING AS JOHNSON LAW GROUP
AUTHORISED AND REGULATED BY THE SOLICITORS REGULATION AUTHORITY - FIRM NUMBER 664813
ALL RIGHTS RESERVED | PRIVACY POLICY | COMPLAINTS POLICY | OUR TERMS OF BUSINESS

Renew or change your cookie consent

JLG Legal Limited does not accept service of documents by fax or other electronic means (including email) unless it has specifically confirmed as such in writing in respect of a given court action or dispute in which case any given consent is limited to service for the purposes of that case only.

‍