0191 718 9999

Privacy and Data Protection Policy

  1. Introduction

Wingrove Legal Ltd is committed to protecting your personal data and handling it in accordance with the UK General Data Protection Regulation and the Data Protection Act 2018.

This policy explains how we collect, use, store, and protect your personal data when you use our services or interact with us.

  1. Data Controller

Wingrove Legal Ltd is the data controller.

Contact details:
Wingrove Legal Ltd
500 Westgate Road
Newcastle upon Tyne
NE4 9NR

Telephone: 0191 718 9999
Email: imran@wingrovelegal.co.uk

ICO Registration Number: ZB543919

  1. Data Protection Principles

We process personal data in accordance with the following principles:

  • Processed lawfully, fairly and transparently
  • Collected for specified, explicit and legitimate purposes
  • Limited to what is necessary
  • Accurate and kept up to date
  • Retained only for as long as necessary
  • Processed securely
  1. Lawful Basis for Processing

We process personal data on the following lawful bases:

  • Contract – to provide legal services to you
  • Legal obligation – to comply with regulatory and legal requirements
  • Legitimate interests – to run our business effectively
  • Consent – where required (for example, limited communications where applicable)
  1. How We Collect Your Data

We collect personal data from:

  • You directly
  • Third parties involved in your matter
  • Publicly available sources
  • Our website or email communications
  1. How We Use Your Data

We use your personal data to:

  • Provide legal advice and representation
  • Communicate with you about your matter
  • Comply with legal and regulatory obligations
  • Verify identity and prevent fraud
  • Manage and administer our business
  1. Systems and Storage

We process and store personal data using:

  • LEAP case management system
  • Microsoft 365 (email and document storage)

These systems are maintained with appropriate security measures.

  1. Sharing Your Data

We may share your personal data where necessary with:

  • Barristers and counsel
  • Medical experts and other professional experts
  • Insurers, engineers, and third parties involved in claims
  • Courts, tribunals, and regulatory bodies
  • It providers and professional advisers

All third parties are required to keep your data secure and use it only for lawful purposes.

  1. Data Minimisation and Accuracy

We only collect personal data that is necessary for the purpose for which it is processed.

We take reasonable steps to ensure that personal data is accurate and kept up to date.

  1. Retention of Data

We retain personal data only for as long as necessary.

In most cases, this will be for 6 years following the conclusion of your matter, unless a longer retention period is required by law or regulation.

  1. Data Security

We implement appropriate technical and organisational measures to protect personal data, including:

  • Restricted access to authorised personnel
  • Secure it systems and password controls
  • Regular system updates and monitoring
  • Secure deletion of data
  • Backup and disaster recovery procedures
  1. Data Breaches

In the event of a data breach, we will:

  • Assess the risk to individuals
  • Take appropriate remedial action
  • Notify the information commissioner’s office where required
  • Inform affected individuals where necessary
  1. Your Rights

You have the right to:

  • Access your personal data
  • Request correction of inaccurate data
  • Request deletion of data where applicable
  • Restrict or object to processing
  • Request transfer of your data
  • Withdraw consent where applicable

Requests should be made using the contact details above.

  1. Complaints

If you are not satisfied with how we handle your personal data, please contact us in the first instance.

You also have the right to complain to the Information Commissioner’s Office:

Website: www.ico.org.uk

  1. Policy Review

This policy is reviewed periodically to ensure continued compliance with data protection laws and best practice.