Privacy Policy

Privacy Policy

Before using this website, please read this policy provided hereinbelow. Use of this website constitutes acceptance of the terms of this policy. We reserve the right to update the terms of this policy and such changes will be posted on this page.

As a firm engaged in offering legal services to clients, Pramah Lawmen Chambers (“the firm”) is committed to protecting the privacy and Personal Data (any data about an individual who is identifiable by or in relation to such data) of its customers, employees, affiliates, etc. This Privacy Policy applies only to information collected through the website and not to information that may be collected offline. If you are accessing or using the platform from any location outside India, you do so at your own risk, and will be solely liable for compliance with any local laws, as may be applicable.

1. Definitions

  • Processing means a wholly or partly automated operation or set of operations performed on digital personal data, including collection, recording, organisation, structuring, storage, adaptation, retrieval, use, alignment or combination, indexing, sharing, disclosure, restriction, erasure or destruction (Section 2, Digital Personal Data Protection Act).
  • Data Principal means the individual to whom the personal data relates and where such individual is— (i) a child, includes the parents or lawful guardian of such a child; (ii) a person with disability, includes her lawful guardian, acting on her behalf (Section 2, DPDPA).
  • Data Processor means any person who processes personal data on behalf of a Data Fiduciary (Section 2, DPDPA).
  • Data Fiduciary means any person who alone or in conjunction with other persons determines the purpose and means of processing of personal data (Section 2, DPDPA).

2. Data Privacy Principles

The firm undertakes all reasonable measures to ensure that the processing of personal information is undertaken using the following principles:

  • Lawful purpose: Personal data is processed fairly and lawfully. All practicable steps are taken to ensure that the individual is informed whether the supply/collection of the personal information (including sensitive personal information) is obligatory or voluntary and, where obligatory, the consequences of failure to supply that personal information.
  • Purpose Limitation: Personal data is collected for specified, explicit, and legitimate purposes and not further processed in a manner that is incompatible with the purposes of collection. Personal information (including sensitive personal information) is collected for several business purposes, including but not limited to administration and management of firm activities, compliance, transfer and storage, personnel management, recruitment, performance evaluation, taxation, insurance, and any matters ancillary to these purposes.
  • Accuracy: The firm undertakes reasonable measures to ensure that personal data is accurate, complete, and consistent. Periodic audits are conducted to ensure data accuracy and discard outdated material. Annual reminders are sent to personnel to update personal information. Individuals are expected to notify the firm of any changes to key personal data (e.g., address, name, emergency contact).
  • Integrity and Confidentiality: Personal data is processed with appropriate security measures to protect against unlawful or unauthorized processing, accidental loss, damage, or destruction. Adequate security measures are in place to prevent accidental or deliberate compromise of personal data.
  • Accountability: The firm undertakes all reasonable measures to demonstrate compliance with these principles.

These principles apply to all personal information collected, held, or processed by the firm, including staff, management, contractors, job applicants, clients, and third parties.

3. What Information Do We Collect?

When you use our website, we may collect basic information such as your name, contact information, nature of business, or any other details you provide for general queries. Certain technical information may also be collected automatically from your device, such as browser configuration or program data.

4. Automatically Collected Information

We may collect certain information automatically when you use our website or services, including:

  • IP address
  • Device information (type, operating system, browser type)
  • Log data (access times, pages viewed, referring URL)
  • Cookies and similar tracking technologies

5. What Do We Do With Your Information?

The information we collect enables us to respond to your queries, improve user experience, send updates or feedback requests, and perform business development activities. You may unsubscribe from general emails via the instructions provided in each communication.

6. Do We Transfer Information to Third Parties?

We may share your personal information with third parties for the following purposes:

  • Service Providers: To assist us in operating our business and providing our services.
  • Legal Compliance: To comply with laws, regulations, or government requests.
  • Business Transfers: In connection with mergers, acquisitions, restructuring, or sale of assets.
  • Other Services: With IT suppliers, security providers, and consultants as required.

7. Retention of Personal Data

The firm retains personal data as long as necessary to provide access to the website, meet legal obligations, and carry out essential business activities. Even if deleted, data may persist on backups or archival media for audit or legal reasons.

8. Your Rights

The firm adheres to applicable data protection laws, which include the following rights:

  • Right to Access: Request copies, modification, or deletion of your data.
  • Right to Correct: Have inaccurate or incomplete data rectified.
  • Right to Erase: Request deletion of your data.
  • Right to Restrict: Limit how your data is used.
  • Right to Portability: Request transfer of your data.
  • Right to Object: Object to our use of your data for legitimate interests.

9. What Measures Do We Use to Protect Your Information?

We maintain physical, technical, and procedural safeguards to protect information against misuse, unauthorized access, or disclosure. Access to personal data is limited to employees, agents, and service providers under strict confidentiality obligations.

10. Data Security

We implement appropriate security measures to safeguard data, including access controls, audits, staff training, password protection, antivirus protection, and secure storage for both digital and paper records. Unauthorized processing or misuse of personal data may result in disciplinary action.

11. Cross-Border Flow

For Indian Data Principals, transfer of data outside India shall occur only to countries approved by the Central Government and with the Data Principal’s consent, when necessary for the purpose consented to.

12. What Are Your Rights?

You may request details of your personal data, rectify inaccuracies, or withdraw consent at any time by writing to us.

13. How Do We Obtain Your Consent?

By using the website, you consent to our online Privacy Policy.

14. Changes to Our Privacy Policy

We may update this Privacy Policy periodically. Any changes will be posted on this page.