This Privacy Notice describes how we collect and may use personal data prior to, during and after your relationship with us in accordance with the Data Protection Act 2018 and the General Data Protection Regulations (collectively “Data Protection Legislation”).

We are required under the Data Protection Legislation to notify you of the information contained in this Privacy Notice. Please ensure that you read this notice, together with any other privacy notice we may issue on specific occasions, so that you are aware of how and why we are using your data or how and why we may use your data.

1. Controller and Data Privacy Manager

Little Rock Employment Law is the “Data Controller” and responsible for your personal data.

2. The data we collect about you

“Personal data” is any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data). Personal data also includes information that you provide to us about other individuals, for example individuals within your business or organisation.
Where relevant and appropriate we may collect, store and use the following categories of personal data about you:

  1. Client matter/case data – including the details of matters/cases upon which we are advising you and any other services we are providing to you:
First name, last name, billing/Postal addresses, telephone number ( including mobile, email address date of Birth, Gender.

Where we need to collect and process data under the terms of our contract with you, and where you fail to provide that data when requested, we may not be able to perform the contract we are trying to enter into with you (e.g. to provide services to you). In this case we may have to cease to act for you. We will notify you if this is the case.

3. Special categories of data

”Special categories” of personal data are more sensitive personal information.
We may collect special category data in the course of you instructing us about a particular matter involving special categories of your personal data. Outside of this, we do not anticipate collecting any special categories of information. If the position changes we will inform you at the time and we will not do so without your explicit consent.

4. How we use data about you

We will only use your personal data when we have a lawful purpose that allows us to do so. Most commonly, we will use your personal data in the following circumstances:

  1. Where we need to perform the contract, we have entered into with you i.e. the provision of legal services or in preparation for providing legal services to you;
  1. Where we need to comply with a legal or regulatory obligation or requirement;
  2. iWhere it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests;
  3. We may also use your personal data where we need to protect your interests (or someone else’s interests) or where it is needed in the public interest or for official purposes. These circumstances are likely to be rare.
  4. Where we have consent.

5. Purposes for which we will use your personal data

We will only use your personal data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. We have set out below a description of the ways in which we plan to use your personal data and which of the legal bases we rely upon. Where appropriate we have identified our legitimate interests.
If we need to use your personal data for an unrelated purpose to that set out below, we will notify you and we will explain the legal basis which allows us to do so or seek your consent.

Purpose/Activity Type of data Lawful basis for processing including basis of legitimate interest
To register you as a new client Identity data Contact data Performance of a contract with you. Necessary to comply with a legal or regulatory obligation
To manage our relationship with you, including: i) Providing legal services; ii) Collecting and recovering any money owed to us; iii) Notifying you of any changes to our privacy notice; iv) Asking for feedback on our service Client matter data, Identity data, Contact data, Financial data, Marketing data Performance of a contract with you. Necessary to comply with a legal or regulatory obligation Necessary for our legitimate interests (to keep our records updated)

6. Marketing

You may at any time opt-out of receiving marketing communications. Please do so by contacting our DPM through our contact us page.

7. Cookies

You can set your browser to refuse all or some browser cookies, or to alert you when websites set up or access cookies.

8. Data sharing

We may have to share your personal data with third parties. These third-parties may include:

  1. Professional advisers acting as joint processors or joint controllers including lawyers, bankers, experts, based in the European Economic Area who provide consultancy, legal, expert witness, and other services;
  2. HM Revenue and Customs, regulators, fraud prevention agencies and other authorities;
  3. Courts, Tribunals and other organisations involved in the administration of justice;
  4. Couriers.

Where we are able to do so, we will require third parties to:
  1. respect the security of your data and have appropriate security measures in place;
  2. treat your data in accordance with the law;
  3. use your data for specified purposes only; and
  4. use your personal data only in accordance with our permission or instructions.
  5. We do not anticipate transferring your data outside the UK. We will notify you if this position changes.

9. Data security

We have in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those who have a business need to know and they will only process your personal data on our instructions. They are subject to a duty of confidentiality.

10. Data retention

We will only retain your personal data for as long as necessary to fulfil the purposes for which we collected it, including for the purposes of satisfying any legal, accounting and regulatory requirements.

By law we have to keep basic information about our clients (including Client Matter, Contact, Identity and Financial data) for at least seven years after they cease to be a client.

11. Rights of access, correction, erasure, and restriction

Under certain circumstances you have the right to:

  1. Request access to your personal data
  2. Request correction of the personal data that we hold about you.
  3. iRequest erasure of your personal data.
  4. Object to processing of your personal data where we are relying on a legitimate interest purposes;
  5. Request the restriction of processing of your personal data.
  6. Request the transfer of your personal data to another party;
  7. Withdraw consent at any time where you have provided your consent to the collection, processing and transfer of your personal data for a specific purpose.
If you want to exercise any of these rights, please contact the Data Privacy Manager in writing.
You will not have to pay a fee to access your personal data (or to exercise any of the other rights detailed above). However, we may charge a reasonable fee if your request for access is clearly unfounded or excessive. Alternatively, we may refuse to comply with the request in such circumstances.
We may need to request specific information from you to help us confirm your identity and verify your right to access the data (or to exercise any of your other rights). This is another appropriate security measure to ensure that personal data is not disclosed to any person who has no right to receive it.
We try to respond to all legitimate requests within one month. Occasionally it may take us longer. In this case we will notify you and keep you updated.

12. Contact Us

We have appointed a Data Privacy Manager (the “DPM”) to oversee compliance with this Privacy Notice. If you have any questions about this Privacy Notice or how we handle your personal data, please contact the DPM using the following contact details:
Name of company: Little Rock Employment Law known as (“Little Rock”)
Name of DPM: Michelle Wicker and email
Address: Elizabeth House, 28 Baddow Road, Chelmsford, Essex, CM2 0DG
Telephone number: 01245 261883
The supervisory body for data protection issues is the Information Commissioner’s Office (the “ICO”). You have the right to complain to the ICO at any time ( However, we would appreciate the opportunity to deal with any concerns you may have prior to this and hope that we would be able to resolve any concerns to your satisfaction.

13, Changes to this privacy notice

We reserve the right to update this Privacy Notice at any time. The current version of this Privacy Notice will be available on our website.

Last Updated December 2022

Little Rock Employment Law

Elizabeth House
28 Baddow Road

© 2023 Little Rock Employment Law

This site uses cookies from Google to deliver its services and to analyse traffic