LawMateLawMate
PRIVACY POLICY

Privacy Policy

Last updated: October 2025

This Privacy Policy describes how LawMate (“we”, “us”) collects, uses, and protects personal information in connection with our web, desktop, and mobile applications.

1. Scope

This Policy applies to processing of personal information when you use our Services, visit our websites, or communicate with us.

2. Data we collect

  • Account & contact. Name, email, firm, role.
  • Usage. App interactions, device info, approximate location, crash logs.
  • Content. Documents, time entries, invoices, messages you upload or create.
  • Payments. Billing details processed by providers; we do not store full card numbers.
  • Support. Messages and attachments you send to support.

3. How we use data

  • Provide, maintain, and improve the Services.
  • Secure the Services, prevent abuse, and enforce policies.
  • Communicate about updates, security alerts, and support.
  • Comply with legal and contractual obligations.

4. Legal bases

  • Performance of a contract.
  • Legitimate interests (e.g., security, product improvement).
  • Compliance with legal obligations.
  • Consent, where applicable (e.g., certain marketing/cookies).

5. Sharing & subprocessors

We use service providers to operate the Services (e.g., hosting, email, analytics, payments). We require appropriate safeguards and limit their use to our instructions. We may disclose information to comply with law, protect rights, or as part of a merger or acquisition.

6. Cookies & tracking

We use cookies and similar technologies for essential functions, analytics, and to remember preferences. You can control cookies via your browser settings; certain features may be limited.

7. Retention

We retain personal information as long as necessary to provide the Services and for legitimate business needs (e.g., security, legal, accounting), then delete or anonymize it.

8. Security

We implement technical and organizational measures to protect personal information. See our Security page for more detail on architecture, encryption, and incident response.

9. Your rights

Depending on your location, you may have rights to access, correct, delete, or restrict processing of your information, and to object or withdraw consent. You can exercise rights by contacting us.

10. International transfers

We may transfer data to countries with different data-protection laws. Where required, we use appropriate safeguards (e.g., standard contractual clauses).

11. Children

Our Services are not directed to children under 13 (or the age required by law in your jurisdiction). We do not knowingly collect personal information from children.

12. Data Processing Addendum (DPA)

For customers acting as controllers that require a DPA, we offer a LawMate DPA incorporating controller-processor terms, confidentiality, subprocessor controls, assistance for data-subject requests, and deletion/return at end of term.

Request DPA

13. International transfers & SCCs

Where applicable, we make available European Commission Standard Contractual Clauses (SCCs) and implement supplemental measures. We will update transfer mechanisms in line with regulatory guidance.

14. Changes

We may update this Policy. Material changes will be notified via the Services or email and become effective as stated in the notice.

15. Contact

Questions or requests? Reach us via the Contact page or support@lawmate.site.

Version history

  • Oct 2025: Initial policy with DPA/SCC addenda and international transfers detail.