Contact us

Welcome to the Immisol privacy notice. Immisol (“we”, “us”, “our”) respects your privacy and is committed to protecting your personal data. This privacy notice explains how we collect, use, store and share your personal information when you engage with us, use our website, or become a client.

1. Important information & who we are

Data controller

Immisol is the data controller in respect of personal data collected and processed in connection with our services.

Contact details

If you have any questions about this privacy notice or wish to exercise your data subject rights, you may contact us at:

You also have the right to lodge a complaint with the UK’s Information Commissioner’s Office (ICO) (www.ico.org.uk).

2. Purpose of this privacy notice

This privacy notice aims to explain:

  • What personal data we collect about you
  • How and why we use your personal data
  • Who we may share your data with
  • Your rights in relation to your data
  • How we protect and retain your data

We may also provide supplementary privacy notices or fair processing notices at specific points (for example, when collecting particularly sensitive information). Those notices constitute part of this policy.

3. The data we collect

We may collect, use, store and transfer the following categories of personal data:

  • Identity & verification data: name, date of birth, gender, photographic ID, proof of address, credit checks, electronic identity verification
  • Contact data: addresses (billing, correspondence), telephone numbers, email
  • Financial data: bank account / payment card details
  • Matter / case data: information relevant to the services or matter for which you instruct us (e.g. immigration history, supporting documents, correspondence)
  • Transaction data: records of services, fees, invoices, payments
  • Technical & usage data: IP address, browser type, platform, time zone, website usage, cookies, log data
  • Marketing / communication preferences: how you choose to receive marketing communications, opt-ins/outs
  • Other data: any other data you choose to provide (e.g. in communications, forms, attachments)

In limited circumstances and only where strictly required, we may collect special category data (e.g. health, biometric) — but only with your explicit consent or under a legal basis, and only to the extent necessary.

If you refuse to provide required personal data (e.g. identity verification) when asked, we may be unable to onboard you as a client or deliver services.

4. How we collect your data

We collect personal data by:

  • Direct interactions: when you fill in forms, send us documents or emails, instruct us in relation to services, subscribe to newsletters, request information
  • Automated technologies: via cookies, analytics, log files when you use our website or digital services
  • Third parties / public sources: identity verification agencies, credit reference agencies, government / public records, professional parties, etc.

5. How we use your personal data & lawful basis

We will only use your personal data when we have a lawful basis to do so (under UK GDPR). The most common legal bases we rely on include:

  • Performance of a contract: to provide you with our services and fulfil our contractual obligations
  • Legitimate interests: for business administration, fraud prevention, IT security, improving services — provided your rights do not override those interests
  • Legal or regulatory obligations: e.g. anti-money laundering (AML), legal record-keeping
  • Consent: primarily for marketing communications or where explicit consent is required

We use your personal data for purposes including (but not limited to):

  • Onboarding & identity / AML / “Know Your Client” checks
  • Communication, instruction taking, advice, delivery of services
  • Billing, payment processing, debt recovery
  • Managing client relationships, updating you of changes
  • Compliance, legal and regulatory obligations
  • Website analytics, improvements and security
  • Marketing communications (only where consent or permitted)

6. Disclosures & third-party sharing

We may share your personal data with:

  • Service providers and processors (IT hosting, software, document management, email platforms, compliance services)
  • Professional advisers (e.g. barristers, experts, accountants)
  • Government, regulatory, law enforcement or other public bodies (e.g. HM Revenue & Customs, regulators) as required by law
  • Third parties in connection with business reorganisations, mergers, acquisitions
  • Introducers or partners if you have given consent or if disclosure is permitted under law

Whenever we engage third parties, we require them to ensure your data is protected and processed only in accordance with our instructions.

7. International transfers

If we transfer your personal data outside the UK or the European Economic Area (EEA), we will ensure appropriate safeguards are in place (e.g. standard contractual clauses, ensuring an adequate level of protection, binding rules) so your data remains protected.

8. Data security

We maintain technical and organisational measures to protect your personal data against unauthorised access, accidental loss, destruction or damage. Access is limited to personnel on a need-to-know basis. In the event of a personal data breach, we will notify you and the ICO where legally required.

9. Retention of data

We retain personal data only as long as necessary for the purposes for which it was collected, including to meet legal, tax and regulatory obligations.

As an example: basic client and transaction records (identity, contact, financial, transaction) are typically retained for 6 years after the end of the client relationship (subject to legal or regulatory requirements).

We may anonymise data for research or statistical purposes after that.

10. Your rights

Under data protection law you have the following rights (subject to certain conditions):

  • Request access to your personal data (Subject Access Request)
  • Request correction of inaccurate or incomplete data
  • Request erasure (in certain circumstances)
  • Request restriction of processing
  • Request portability of your data (to you or a third party)
  • Object to processing (especially where based on legitimate interests or for marketing)
  • Withdraw consent (where processing is based on consent)

To exercise any of these rights, contact us using the contact details above. We will respond in accordance with applicable law (typically within one month, unless complex). We may ask you to verify your identity before processing the request.

You have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO) if you believe we have violated data protection law.

11. Cookies & website usage

Our website uses cookies and similar technologies to:

  • Enable essential site functionality
  • Recognise you when you return
  • Analyse usage, traffic and performance
  • Improve user experience

You can control or disable cookies via your browser settings. Please note disabling cookies may affect site functionality. Our full Cookie Policy (or cookie section) provides more detail.

12. Changes to this privacy notice

We may update this privacy notice from time to time (e.g. due to changes in law, regulation or business practices). We will publish the updated version on our website, with a revised “Last updated” date. We encourage you to check back periodically.

If we make material changes, we may notify clients or site users directly (e.g. via email).

Immisol Solicitors is a premier law firm specializing in business and property law, with deep roots in London and Manchester. We pride ourselves on our commitment to providing tailored legal services that not only respect the law but also understand the business implications for our clients. At Immisol, we believe that effective legal advice is a pivotal tool for business success.
+44 123456789
info@immisol.co.uk
Working Hours : Sun-monday, 09am-5pm
© 2024 Immisol. All Rights Reserved.