Privacy Notice

Effective 25thMay 2018


Abrahams LawLimited

Unit 1C, TheOld Foundry, Bath Street, Walsall, West Midlands WS1 3BZ

01922 896794


UKData Privacy/Data Protection Law will change significantly on 25th May2018.

The General Data Protection Regulation (or GDPR for short) is a positive steptowards you having more control over how your data is used and how you are contactedby us.

If you are an individual, the rights you haveunder the GDPR include the following:

·         The right to be informed

·         The right of access

·         The right to rectification

·         The right to erasure

·         The right torestrict processing

·         The right to dataportability

·         The right to object

·         Rights in relation toautomated decision making and profiling.

Thechanges will also help to better protect your Personal Data. We have therefore updatedour privacy notice to reflect these changes.

Weuse your personal data to help us provide an excellent client service, whichincludes tailoring the information we share with you to help ensure that it’srelevant, useful and timely.

We willrespect your privacy and work hard to ensure we meet strict regulatoryrequirements.

We will not sell your personal data to thirdparties.

We will provide you with easy ways to manageand review your marketing choices if you receive direct marketingcommunications from us.

We are a firm that is regulated by theSolicitors Regulation Authority (SRA). As you might expect, we are alreadysubjectto strict rules of confidentiality. It is therefore already part of the fabricand culture of our firm to keep your information private and secure.

We would ask you to help us keep your datasecure by carefully following any guidance and instructions we give e.g. communicatingbank account details and transferring funds to us.

Weare sometimes obliged to share your Personal Data with external authorities withoutnotifying you e.g. as required by the Anti-Money Laundering & CounterTerrorist Financing Act 2017.  In allother cases, we will be transparent, and we will explain to you why we arerequesting your data and how we are using it.

Lawful Bases for Processing your Data

Thenew law states that we are allowed to use personal information only if we havea proper and lawful reason to doso.This includes sharing it with others outside the firm e.g. an auditor of arelevant quality standard.

The GDPR says we must have one or more ofthese reasons:

  • Contract: the processing is necessary for a contract we have with an individual, or because they have asked us to take specific steps before entering into a contract.
  • Legal obligation: the processing is necessary for you to comply with the law (not including contractual obligations).
  • Legitimate interests: the processing is necessary for our legitimate interests or the legitimate interests of a third party unless there is a good reason to protect the individual’s personal data which overrides those legitimate interests.
  • Consent: the individual has given clear consent for us to process their personal data for a specific purpose.

Alegitimate interest is when we have a business or commercial reason to use yourinformation.

Hereis a list of all the ways that we may use your personal data, and which of thereasons we rely on to do so.


Use of your

Personal Data


Our reason/justification for processing



Legitimate Business Interest

Opening, progressing, closing, archiving and storing a matter/case file

·         Contract

·         Legitimate Interest

·         Legal Obligation

Fulfilling your instructions (the retainer)

Complying with regulations and the law


Direct marketing to you

·         Legitimate Interest

Keeping our records up-to-date, working out which of our products and services may interest you and telling you about them

Providing information on changes in the law and inviting you to contact us for advice

• To make and manage client payments.
• To manage fees, charges and interest due to clients
• To collect and recover money that is owed to us.

·         Contract

·         Legitimate Interest

·         Legal Obligation

Keeping accounts systems up-to-date

Complying with SRA Accounts Rules and other regulations

Effective and efficient management of a sustainable business

To detect, investigate, report, and seek to prevent financial crime.
• To manage risk for us and our customers.
• To comply with laws and regulations that apply to us.
• To respond to complaints and seek to resolve them.

·         Contract

·         Legitimate Interest

·         Legal Obligation

Developing and improving how we deal with financial crime including suspected money laundering as well as complying with our legalobligations in this respect

Complying with regulations that apply to us.

Being efficient about how we fulfil our legal and contractual duties.

To run our business in an efficient and proper way. This includes managing our financial stability, business capability, planning, communications, corporate governance, and audit.

·         Legitimate Interest

·         Legal Obligation


Complying with the SRA Accounts Rules and Code of Conduct and other regulations that apply to us


Being effective and efficient about how we run our business


To allow external consultants, advisers and auditors to inspect files


To exercise our rights and comply with obligations set out in agreements or contracts

·         Legitimate Interest

·         Legal Obligation


Complying with contractual requirements e.g. for the provision to clients of Public Funding by Public Bodies

Types of Personal Data we process



Type of Personal Information





Your Bank account details and your financial status and information

Contact Information

Where you live and how to contact you


This includes details about your work or profession,nationality etc.


Details about payments to and from your bank accounts


Details about the products or services we provide to you


Details about how you use ourservices


What we learn about you from letters,emails,and conversations between us

Social Relationships

Your family,friends and other relationships

Open Data and Public Records

Details about you that are in public records such as theLand Registry,and information about you that is openly available on the internet

Documentary Data

Details about you that are stored in documents in different formats,or copies of them. This could include things like your passport,drivers licence,or birth certificate

Special types of data

The Law and other regulations treat some types of personal information as a special category. We will only collect and use these types of data if the law allows or requires us to do so:


·        Racial or ethnic origin

·        Religious or philosophical beliefs

·        Trade union membership

·        Genetic and bio-metric data

·        Health data including gender

·        Criminal convictions and offences



Any permissions,consents or preferences that you give us. This includes things like how you want us to contact you.

National Identifier

A number or code given to you by a government to identify who you are,such as a National Insurance Number

Legal Aid Application and Bill

Information required to submit an application for public funding and to claim our fees under any legal aid certificate issued to you.

Sources of Data

We collect personal data from varioussources:








Data you give us when you instruct us to advise you or act for you


To enable us to decide whether to accept your instructions and to progress your matter

Data you give us by letter/phone/email and other documents


To enable us to decide whether to accept your instructions and to progress your matter

Data you give us when you visit our website, via a messaging service or social media


To enable us to deal with your query or request and to contact you if appropriate

Data you give us during interviews


To enable us to advise and represent you and to communicate with other solicitors and third parties on your behalf

Data you give us in client surveys


To enable us to improve our services and respond to any expressions of dissatisfaction

Data provided to us by referrers and introducers


To enable us to contact you and to enable us to decide whether to accept your instructions and to progress your matter

Fraud Prevention agencies


To enable us to comply with the law and regulations and carry out client due diligence checks

Estate Agents


To enable us to act on your behalf in relation to a land transaction

Other Solicitors

Solicitor Firms

As part of an exchange of information to enable us to progress the matter and advise you

Public Bodies

Public Body such as HMRC, HM Treasury, Local Authority, Land Registry, Land Charges Registry, Probate Registry, Legal Aid Agency, Police, CPS, Courts Service and other government departments

To enable us to advise you and progress your matter.


To prevent fraud and money laundering


Your GP or other medical professional


To obtain appropriate medical reports

The Legal Aid Agency


Under our contractual obligations we will receive “Shared Data” from the LAA if you matter is legally aided


Who we share your Data with

Subjectto the SRA Code of Conduct and the requirements with regard to clientconfidentiality, we may share your personal information with:


·        Lawyers or otherorganisations on the other side of a matter or case

·        Barristers or experts weinstruct

·        The courts and othertribunals

·        Your PersonalRepresentatives or Attorneys

·        Auditors

·        Lenders

·        Estate Agents, IFAs,Referrers, etc

·        Organisations that weintroduce you to.

·        HM Revenue and Customs

·        The government both Centraland Devolved

·        Fraud Prevention Agenciesincluding the National Crime Agency

·        The SRA and other regulators

·        ID checking organisations


Automated Decision-Making

We do not use automated decision-makingsystems. All decisions relating to you and your matter are made by a person.


Personal Data we use

We typically will use the following types ofpersonal data:

·        Your Name

·        Date of Birth

·        Home address

·        Contact details such asphone numbers and email addresses

·        Bank details and accountinformation

·        Medical information (where applicable)

·        Employment details

·        Data that identifies you bycookies when  you use our website


Sending Data outside the European Economic Area (EEA)

Unlessyou instruct us in a matter or case that involves an international element, wedo not normally send your personal data outside the EEA. If we do, then we willseek your consent to do so, explain the risks to you and talk to you aboutpotential safeguards depending on the country involved. 


Your refusal to provide Personal Data requested

Ifyou refuse to provide the information requested,then it may cause delay and wemay be unable to continue to act for you or complete your matter.


Marketing Information

Wemay from time to time send you letters or emails about changes in the law andsuggestions about actions that you might consider taking in the light of thatinformation e.g. reviewing your will. We will send you this marketinginformation either because you have consented to receive it or because we have a“legitimate interest”.

Youhave the right to object and to ask us to stop sending you marketinginformation by contacting us at any time. You can of course change your mindand ask us to send the information again.


Howlong we keep your personal information

Weare legally obliged to keep certain information for at least 5 years andtypically store your file for 6 years before destroying it.

Insome cases, e.g. Legal Aid Matters we are obliged to keep your files for alonger period of time, this period will be set out in our closing letter toyou.

Wewill store Wills and other documents indefinitely.

Wewill keep your name and personal contact details on our database until you tellus that you would like them removed e.g. where you have changed solicitor.


Howto get a copy of your Personal Information

If you wish to access your personal data thenwrite to:


Data Protection Officer/COLP- Mr Khuram Yaqub

Abrahams Law Limited
Unit 1C, The Old Foundry, Bath Street, Walsall, WS1 3BZ


Telling us if your Personal Information is incorrect (Theright to rectification)

If you think any information we have aboutyou is incomplete or wrong, then you have the right to ask us to correctit.  Please contact us as above.


Other Rights

As mentioned above you also have otherrights, namely

·        The right to erasure

·        The right torestrict processing

·        The right to dataportability

Youhave the right to ask us to delete (erase) or stop us using your data if thereis no longer any need for us to keep it (e.g. under a legal obligation).

Interms of data portability then subject to any lien we may enjoy for non-paymentof fees, we will comply promptly (where permitted) to your request to transferyour physical paper file to another solicitor upon receipt of your signedconsent.  If your file is in electronicformat we will take reasonable steps to export the file to a “portable format”where possible so that your new solicitor can upload it to their system. Asmany different IT systems are used by the legal profession we cannot guaranteethat we can provide data in a compatible format.



GDPR in some cases requires us to obtain yourexplicit consent i.e.

(a) the racial or ethnic origin of the datasubject,

(b) his political opinions,

(c ) his religious beliefs or other beliefsof a similar nature,

(d) whether he is a member of a trade union(within the meaning of the Trade Union and Labour Relations (Consolidation) Act1992),

(e) his physical or mental health or condition,

(f) his sexual life,

(g) the commission or alleged commission byhim of any offence, or

(h)any proceedings for any offence committed or alleged to have been committed byhim, the disposal of such proceedings or the sentence of any court in suchproceedings.

Whereacting for you involves us processing such data we will seek your explicitconsent e.g. when we plan to obtain your medical records.

Youhave the right to withdraw your consent by contacting us as stated above.

However,if you do so then we may not be able to progress you case or indeed continue toact for you.

How to Complain

If you are unhappy about how we are usingyour Personal Data then you can complain to us using the contact informationabove.

You also have the right to complain to theInformation Commissioner’s Office (ICO). Further details on how to raise aconcern with the ICO can be found on the ICO’s website:


We use/do not use cookies on our followingwebsite (s):




Please see our cookie notice on this link: 


Updating this Notice

Wewill, from time to time, update this Privacy Notice after 25th May2018 to reflect emerging ICO and Working Party 29 guidance, requirements of thenew Data Protection Act and any other relevant changes in the law orregulations. We will also seek to learn from any published cases of DataProtection breaches.

Call us Now!