Privacy & Data Protectio Policy
Personal Data
Personal data is information about who you are, where you live, what you do and more. It’s any and all information that identifies you as a data subject. It is any and all informaiton that identifies an individual as a data suject, which is someone who can be identified from personal data. The data could be their name, address, telephone number or something else.
How we use your information
The following privacy policy will outline how ACMA Legal Services Limited ((Hereinafter called the “Company”, “We”, “Our” or “Us”) will collect and use your data. The Company is a private company limited by shares registered by the Registrar of the Companies of England and Wales with the registration number 07800490 and with the registered office at 25 Wilton Road, London SW1V 1LW. The Company is also registered with the Information Commissioner’s Office ("ICO") with the registration number ZB910022.
This is done so that we can:
- To provide and maintain our Service
- To notify you about changes to our Service
- To allow you to participate in interactive features of our Service when you choose to do so
- To provide customer support
- To ensure the security of our operation and preventing or detecting fraud
- To administering our operation including handling complaints, data analysis, research, statistical and survey
- To gather analysis or valuable information so that we can improve our Service
- To monitor the usage of our Service
- To detect, prevent and address technical issues
- To provide you with news, special offers and general information about other goods, services and events which we offer that are similar to those that you have already purchased or enquired about unless you have opted not to receive such information
- To comply with applicable law, including Notary Practice Rules, guidelines and regulations or in response to a lawful request from a court or regulatory body
What information we collect from you
The type of information we collect may fall within the following categories of personal data about you, past or current:
· Names and contact details
· Addresses
· Gender
· Pronoun preferences
· Date of birth
· Marital status
· Third party information (such as family members or other relevant parties)
· Payment details (including card or bank information for transfers and direct debits)
· Financial data (including income and expenditure)
· Transaction data (including details about payments to and from you and details of products and services you have purchased)
· Usage data (including information about how you interact with and use our website, products and services)
· Health information (such as medical records or health conditions)
· Criminal records data (including driving or other convictions)
· Information relating to compliments or complaints
· Video recordings
· Audio recordings (eg calls)
· Records of meetings and decisions
· Account access information
· Website user information
Lawful bases and data protection rights
Under UK data protection law, we must have a "lawful basis" for collecting and using your personal information. There are a list of possible lawful bases in the UK GDPR as follows.
Consent – we have permission from you after we gave you all the relevant information. All of your data protection rights may apply, except the right to object. To be clear, you do have the right to withdraw your consent at any time.
Contract – we have to collect or use the information so we can enter into or carry out a contract with you. All of your data protection rights may apply except the right to object.
Legal Obligation – we have to collect or use your information so we can comply with the law. All of your data protection rights may apply, except the right to erasure, the right to object and the right to data portability.
Public Task – we have to collect or use your information to carry out a task laid down in law, which the law intends to be performed by an organisation such as ours. All of your data protection rights may apply, except the right to erasure and the right to portability.
How long we keep information?
For more information on how long we store your personal information or the criteria we use to determine this please contact us using the details provided above.
Your personal data will be stored for as long as is reasonably necessary for the purposes mentioned above or as required by law. For example, according to Rule 24 of the Notaries Practice Rules 2019, the public form of a notarial act should be stored permanently, and a private form of notarial act shall be stored for a minimum period of 12 years. We store and maintain personal data remotely for security reasons.
We may keep an anonymised form of your personal data, which will no longer refer to you, for statistical purposes without time limits, to the extent that we have a legitimate and lawful interest in doing so.
Will we share your personal data with anyone else?
We may need to pass your details onto third parties who are either contracted to, or part of the Our group of companies. Any third parties who we do pass your details onto are obliged to store your details securely and only process them if responding to processing the necessary business operational activities on our behalf. When the time comes that they no longer require your personal data, they will dispose of this accordingly and in line with our company policy. If we wish to pass your personal data to a third party, we will only do so with your explicit consent, unless we are legally obliged to do so otherwise.
How will we use the personal data we collect about you?
Processing data constitutes as collecting, storing and using. We will process this data in accordance with the GDPR. We will do our utmost to keep your information accurate and up to date and not keep it longer than is necessary. We may issue occasional reminders to all customers to keep their contact details up to date and will update them accordingly.
Please be advised that there is information that we are required to keep in accordance with the law, such as information needed for tax and audit purposes. Personal data may be held for longer than these periods, however this will depend on the individual needs of the Company.
Can you find out about the personal data that we hold about you?
If you want to see what personal data we hold on you and how it is processed, you may contact us to request this. This is known as a Data Subject Access Request (DSAR) and you must request this in writing (either by post or email), providing the necessary identification before any information is released. If We do store any of your personal data, you may request information on the following:
- Identity and the contact details of the person or organisation that has determined how and why to process your data. In some cases, this will be a representative in the EU.
- Contact details of the GDPR owner, where applicable.
- The purpose of the processing as well as the legal basis for processing.
- If the processing is based on the legitimate interests of us or a third party, information about those interests.
- The categories of personal data collected, stored and processed.
- Recipient(s) or categories of recipients that the data is/will be disclosed to.
- If we intend to transfer the personal data to a third country or international organisation, information about how we ensure this is done securely. The EU has approved sending personal data to some countries because they meet a minimum standard of data protection. In other cases, we will ensure there are specific measures in place to secure your information.
- How long the data will be stored.
- Details of your rights to correct, erase, restrict or object to such processing.
- Information about your right to withdraw consent at any time.
- How to lodge a complaint with the supervisory authority.
- Whether the provision of personal data is a statutory or contractual requirement, or a requirement necessary to enter into a contract, as well as whether you are obliged to provide the personal data and the possible consequences of failing to provide such data.
- The source of personal data if it wasn’t collected directly from you.
- Any details and information of automated decision making, such as profiling, and any meaningful information about the logic involved, as well as the significance and expected consequences of such processing.
Your personal rights on the personal data
- Your right of access - You have the right to ask us for copies of your personal information. You can request other information such as details about where we get personal information from and who we share personal information with. There are some exemptions which means you may not receive all the information you ask for.
- Your right to rectification - You have the right to ask us to correct or delete personal information you think is inaccurate or incomplete.
- Your right to erasure - You have the right to ask us to delete your personal information.
- Your right to restriction of processing - You have the right to ask us to limit how we can use your personal information.
- Your right to object to processing - You have the right to object to the processing of your personal data.
- Your right to data portability - You have the right to ask that we transfer the personal information you gave us to another organisation, or to you.
- Your right to withdraw consent – When we use consent as our lawful basis you have the right to withdraw your consent at any time.
- Your right to withdraw consent – When we use consent as our lawful basis you have the right to withdraw your consent at any time.
Contact details of the GDPR Owner
If you wish to submit a DSAR, or have any questions regarding this privacy statement, you must do so in writing using the following information.
Address:
ACMA Legal Services Limited
25 Wilton Road
London
SW1V 1LW
Email:
office@acmalegal.co.uk
Telephone:
02083238006
Use of cookies on this site
To make this site simpler, small data files are placed on your computer. These are known as cookies. Most big websites do this too.
They improve things by:
- remembering settings, so you don’t have to keep re-entering them whenever you visit a new page;
- remembering information you’ve given (e.g. your postcode) so you don’t need to keep entering it;
- measuring how you use the website so we can make sure it meets your needs.
Our cookies aren’t used to identify you personally. They’re just here to make the site work better for you. Indeed, you can manage and/or delete these small files as you wish.
You can opt out of Google Analytics cookies for all sites.
To learn more about cookies and how to manage them, visit AboutCookies.org.
· First Party Cookies
These are cookies that are set by this website directly.
We use Google Analytics to collect information about how people use this site. We do this to make sure it’s meeting its users’ needs and to understand how we could do it better. Google Analytics stores information about what pages you visit, how long you are on the site, how you got here and what you click on. We do not use cookies to collect or store your personal information (e.g. your name or address) so this information cannot be used to identify who you are.
There are also cookies that store basic data on your interactions with our website, the CMS running this website.
· Third Party Cookies
These are cookies set on your machine by external websites whose services are used on this site. Cookies of this type are the sharing buttons across the site allow visitors to share content onto social networks. Cookies are currently set by Twitter, Facebook and Google+. If you want to prevent sites setting third party cookies, instructions to do so are here.
· Log Files
Log files allow us to record visitors’ use of the site. These logs are automatically generated from all our visitors, which we use to make improvements to the layout of the site and to the information in it, based on the way that visitors move around it. Log files do not contain any personal information about you.
Links to other websites
Our website contains links to our partners, as well as other external sites. You should note, that if you click through to any of these external sites, we do not have control over that site (unless it is a website which forms part of the Group of companies.) We cannot be responsible for the protection of any information that you provide to these other websites as they are not governed by this privacy statement. You should always exercise caution and look at the privacy statement of whichever website it is that you are visiting.
Policy Changes
We reserve the right to change this privacy policy and will post any revisions on this web site. Your continued use of this web site will be subject to the then-current privacy policy.
How to complain
If you have any concerns about our use of your personal data, you can make a complaint to us using the contact details at the top of this privacy notice.
If you remain unhappy with how we’ve used your data after raising a complaint with us, you can also complain to the ICO.
The ICO’s address:
Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF
Helpline number: 0303 123 1113
Website: https://www.ico.org.uk/make-a-complaint
Last updated on 10th June 2025