A little bit about LegalZoom
We’re committed to keeping your information secure. And we’ll always follow data protection laws when we do this.
We’re registered with the UK Information Commissioner’s Office as a ‘data controller’ (our registration number is ZA454984). This means we can process personal data under the Data Protection Act 2018.
All our products and services are provided by LegalZoom Limited (referred to as ‘LegalZoom’, ‘we’, ‘us’ or ‘our’ from now on). We’re a company registered in England and Wales. Our company number is 08224514, and our registered office is at 130 Old Street, London EC1V 9BD, UK.
What does ‘processing’ mean when it comes to personal data?
The term ‘processing’ refers to any manual or automated action performed on personal data. So that includes (but isn’t limited to) collecting it, recording it, organising it, structuring it, storing it, altering it, retrieving it, consulting it, transmitting it, making it available somewhere, combining it, restricting it, or erasing or destroying it.
What information do we collect about you?
We may collect, use, store and transfer different kinds of personal data about you which we have grouped together as follows:
- Identity Data includes first name, maiden name, last name, username or similar identifier, title, date of birth and gender.
- Contact Data includes billing address, delivery address, email address and telephone numbers.
- Financial Data includes bank account and payment card details.
- Transaction Data includes details about payments and other details of products and services you or your business have purchased from us.
- Technical Data includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website.
- Profile Data includes your username and password, purchases or orders made by you or your business, your interests, preferences, feedback and survey responses.
- Usage Data includes information about how you use our website, products and services.
- Marketing and Communications Data includes your preferences in receiving marketing from us and our third parties and your communication preferences.
Please note any data about a company or about a person in capacity for a company would not necessarily fall under a data subject or personal information. Should any the of the records held be about a specific company director of a company customer and information/ processing decision does not relate to them as an individual then it will not be deemed personal data and will not fall within the scope for any requests/processing.
‘Special categories of personal data’
We don’t generally process information referred to as ‘special categories of personal data’. So that’s data about your health, racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union memberships, and so on. We’ll only do this if you give it to us voluntarily, or we need it for a service you’ve asked us for. And wherever we can we’ll keep the collection and use of this type of data to a minimum.
If you fail to provide personal data
Where we need to collect personal data by law, or under the terms of a contract we have with you or your business, and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you (for example, to provide you with goods or services). In this case, we may have to cancel a product or service you have with us but we will notify you if this is the case at the time.
Why we collect your information
We process the info we collect from you:
- to give you or your company products and services, including legal and non-legal services, and to administer your account (including billing you)
- for legal services for law firms on our panel, who we quote on behalf of. They’ll only use your data to give you the relevant legal services shown on our website
- when we’re dealing with your account through our website, in writing or over the phone
- so we can give you any information or help you ask us for
- to comply with our legal obligations to prevent financial crime and money laundering, including checking your identity, and for any audits we need to do
- to carry out any duties we’ve agreed to do in any contracts we have with you
- Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests
- to tell you about products and services you or your business might be interested in (we’ll only do this if you say we can)
- so you can use the interactive features of our services when you choose to (like the online chat service on our website)
- to help us train our people and improve our service to you.
Why we process your information
We processes your personal info for the following reasons:
- As it is necessary to perform our contract with you for the relevant services;
- To take steps at your request prior to entering into it;
- To allow you to decide whether to enter into it;
- To manage and perform that contract;
- To update your records; and
- As it is necessary for our own legitimate interests or those of other persons and organisations, for example:
- For good governance, accounting and managing and auditing of our business operations;
- To monitor emails, calls, other communications, and activities on the website.
- For market research, analysis and developing statistics;
- To send you marketing communications;
- To monitor the progress of the services provided to you; and
- To enable satisfaction surveys to be conducted.
- As it is necessary to comply with a legal obligation, for example:
- When you exercise your rights under data protection law and make requests;
- For compliance with legal and regulatory requirements and related disclosures;
- For establishment and defence of legal claims;
- For activities in relation to the prevention, detection, and investigation of crime;
- To monitor emails, calls, other communications, and activities.
- Based on your consent, for example;
- When you request us to disclose your personal data to other people or organisations, such as a company handling a claim on your behalf, or otherwise agree to disclosures;
- To send you marketing communications where we have asked for your consent to do so.
How long we keep your personal info
We follow the laws that apply when it comes to how long we hold on to your personal information. So we’ll destroy it or make it anonymous when we don’t need it anymore.
Here’s some info on how long we keep different types of data.
|What’s the information?||How long do we keep it?|
|General personal data like identity and financial data||Six years after the end of our business relationship with you|
|Material we need for legal reasons i.e. documents that show we’ve done our ‘due diligence’ to prevent fraud, financial crime and money laundering. That includes things like copies of your passport, driver’s licence, bank statements and any other documents you give us||Five years after the end of our business relationship with you|
|Special categories of personal data (i.e. data about your health, racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union memberships, and so on)||Six years after the end of our business relationship with you|
|Recordings of phone calls||One year from the date of the call|
|CCTV – digital images of you if you come to our offices||90 days after they were recorded|
Who we share your information with
There are a few third party companies and organisations we might give your information to. They are:
- Any company within the LegalZoom Group, for the purposes set out in this notice (information and customer relationship, software and service improvements, to provide you with any information, applications, products or services that you have requested);
- our service providers and agents (including their sub-contractors) or third parties which process information on our behalf (e.g. internet service and platform providers, payment processing providers and those organisations we engage to help us send communications to you) so that they may help us to provide you with the applications, products, services and information you have requested or which we believe is of interest to you ;
- regulatory authorities, government bodies and any other third party necessary – we might need to do this to make sure we’re following our legal obligations and/ or regulations;
- third parties used to facilitate payment transactions;
- credit reference and fraud prevention agencies;
- insurers – so we can give you the right level of financial cover, or if you make a claim against us;
- Our own and our LegalZoom Group professional advisors and auditors for the purpose of seeking professional advice or to meet our audit responsibilities;
- government departments like HMRC, Companies House, Local London Authorities and Trading Standards – for legal reasons;
- our auditors and external assessment bodies – this is so we can meet any regulatory or quality assurance standards and accreditations we need to, and so we can give you quality services;
- third parties for marketing purposes (e.g. our partners and other third parties with whom we work and whose products or services we think will interest you in the operation of your business activities. For example, financial services organisations (such as banks, insurers, finance providers), payment solutions providers, software and services providers that provide business solutions).
How we keep your data secure
We do everything we can to keep your personal information safe. So we have systems in place to protect it from loss, misuse, unauthorised access, modification or disclosure.
Where we store your personal data
We usually hold your data inside the UK and we will only ever send your data outside of the UK to:
- Comply with a legal duty
- Provide our products and services
If we do transfer information outside of the UK, we will make sure that it is protected in the same way as if it was being used in the UK. To do this, we will use one or more of these safeguards:
- We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data.
- Where we use certain service providers, we may use specific contracts approved for use in the UK which give personal data the same protection it has in the UK.
If any of our external third parties are based outside the UK so their processing of your personal data will involve a transfer of data outside the UK.
You can find out more about these safeguards on the European Commission Justice and Information Commissioner’s Office (ICO) websites.
If you want to see or change the data we have about you
You have the right to ask us for a copy of the personal info we hold about you. And if any of it’s wrong, you can ask us to put it right, or delete it. Under certain circumstances you might also have the right to ask us to stop processing your personal information – but this doesn’t apply where there’s a legal or legitimate business reason for us to keep doing it.
If you’d like to do this, please email us or write to Data Protection Supervisor, 130 Old Street, London EC1V 9BD.
We try to respond to all legitimate requests within one month. Occasionally it could take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
Updating this policy
We review this policy regularly and we’ll update it on this page when we need to. If we make a major change which affects the way we use any personal info we hold about you, we’ll get in touch with you to let you know.
If you want to complain about the way we’ve handled my personal data
You can email us at email@example.com or write to Data Protection Supervisor, 130 Old Street, London EC1V 9BD.
You can also complain to the Information Commissioner’s Office at any time – go to their website www.ico.org.uk to find out how. We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.