Call Us Free On 020 3824 2808

Privacy Policy

Trustpilot

Last updated: September 2025

1. Introduction

Welcome to Personal Injury Solicitors Direct (the “Site”). This Site is owned and operated by JF Law (“we”, “us”, “our”). We are committed to respecting and protecting your privacy and handling your personal data in accordance with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and other applicable data protection laws.

This privacy policy (the “Policy”) describes how we collect, use, disclose, retain, and protect your personal data when you visit or interact with our Site, contact us, or otherwise engage with us.

By visiting or using this Site or submitting your data to us, you accept and agree to the practices described in this Policy.

2. Who We Are / Data Controller

Data Controller:
JF Law, Europa House, 1 Conway Street, Birkenhead CH41 6RY
Registered in England & Wales
Contact email: info@jflaw.co.uk

If you have any questions about this Policy or how we process your data, you may contact us at the details above.

3. What Personal Data We Collect

We may collect or receive the following categories of personal data:

  • Identity & contact information — e.g. your name, title, postal address, email address, telephone number
  • Enquiry / case information — details about your accident, injuries, legal issue, correspondence or documentation you provide
  • Technical data — IP address, browser type and version, device identifiers, operating system, pages visited, time stamps, referrer URL
  • Usage data — information about how you use our Site (pages viewed, links clicked, time spent)
  • Communications data — your correspondence or communications with us (by email, phone, contact form)
  • Other data — any additional information you provide to us voluntarily (for instance, via forms or messages)

We do not normally collect “special category” data (e.g. health, racial or ethnic origin, biometric data) via this Site unless you specifically provide it in the context of your legal matter; if you do, we will make clear the legal base and safeguards for doing so.

4. How We Collect Your Data

We may collect your data in these ways:

  • When you voluntarily submit information via contact forms, enquiry forms, or email
  • When you call or otherwise communicate with us
  • Automatically via cookies, server logs, and analytics tools when you visit our Site
  • From third-party sources (e.g. publicly available resources, other service providers) where permitted by law

5. Use of Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience, understand how the Site is used, and deliver relevant content.

  • Some cookies are strictly necessary (e.g. for website functionality)
  • Others help us analyse usage patterns (analytics cookies)
  • You may withdraw or manage consent for non-essential cookies via your browser settings or a cookie banner mechanism

We have a separate Cookie Policy or section explaining which cookies we use, their durations, and how to opt out.

6. Legal Bases for Processing

Under UK GDPR, we must have a legal basis to process your personal data. We rely on one or more of the following bases, depending on the context:

  • Contract / potential contract – processing necessary for us to assess, handle, and progress your claim or engagement
  • Legitimate interests – for internal business operations (e.g. improving the website, analytics, preventing fraud), so long as your rights are not overridden
  • Consent – when required (e.g. non-essential cookies, marketing communications), you will be asked to give clear consent, which you may withdraw
  • Legal obligations – to comply with laws or regulatory obligations

If we ask for data beyond what is necessary for the purposes above, we will clearly inform you and ask for your explicit consent.

7. How We Use Your Personal Data

We use your personal data for purposes including:

  • Responding to your enquiries, providing legal advice or services
  • Evaluating and processing your claim or case
  • Contacting you regarding updates, requests, or schedules
  • Conducting research, analytics, and improving our Site and services
  • Compliance with legal, regulatory, or professional obligations
  • Preventing fraud, abuse, or other harmful or unlawful activities
  • Sending marketing or promotional communications (only if you have consented or where we are permitted by law)

We will only use your data for the purpose(s) for which it was collected, or reasonably related purposes, unless we inform you and, where required, you consent to the new purpose.

8. Disclosure / Sharing with Third Parties

We may share your personal data with:

  • Service providers and subcontractors who support us (e.g. hosting providers, IT support, analytics providers)
  • Medical experts, experts, other legal professionals (where needed for your case)
  • Regulators, courts, law enforcement, oversight bodies when required by law or to enforce our rights
  • Other parties you authorise (e.g. insurers)

When we share with third parties, we impose contractual obligations requiring them to protect your data and use it only for permitted purposes.

We will not sell your data to unaffiliated third parties.

9. Data Transfers Outside the UK / EEA

If any of the processing or storage happens outside the UK/EEA, we ensure that adequate safeguards are in place (e.g. standard contractual clauses, UK adequacy decisions) so that your rights continue to be protected.

10. Data Retention

We retain personal data only as long as necessary for the purpose(s) for which it was collected and in accordance with legal, professional or regulatory obligations.

Factors we consider include:

  • The nature and sensitivity of data
  • The purpose(s) of processing
  • Legal, regulatory, or professional statute of limitation periods
  • Whether a claim or dispute is ongoing

When no longer needed, we will securely anonymise or delete the data.

11. Security Measures

We take appropriate technical and organisational measures to protect your personal data, including (but not limited to):

  • Encryption, access controls, strong password policies
  • Regular security testing and vulnerability assessments
  • Secure backups and disaster recovery plans
  • Limiting internal access on a “need-to-know” basis

Despite our efforts, no security is wholly failsafe. If a data breach occurs, we will comply with legal obligations (such as notifying the Information Commissioner’s Office (ICO) and affected individuals if required).

12. Your Rights

Under UK GDPR and the Data Protection Act 2018, you have certain rights in relation to your personal data:

  • Right of access – you may request a copy of the personal data we hold about you
  • Right of correction – you may request rectification of inaccurate or incomplete data
  • Right to erasure (right to be forgotten) – in certain circumstances, request deletion
  • Right to restrict processing – in certain cases, request limitation
  • Right to data portability – in some cases, request your data in a structured, commonly used format
  • Right to object – to processing based on legitimate interests or direct marketing
  • Right to withdraw consent – if processing is based on consent
  • Right to complain – to a supervisory authority

To exercise your rights, contact us via the contact details in section 2. We may ask you to verify your identity. We will respond within statutory time limits.

If you believe your data has been misused, you may lodge a complaint with the UK Information Commissioner’s Office (ICO). (ico.org.uk)

13. Automated Decision-Making / Profiling

We do not engage in automated decision-making or profiling that would have legal or similarly significant effects on individuals, unless we explicitly notify you and obtain any necessary consent.

14. Children & Minors

Our Site is intended for adults and generally not directed at children under 18. We do not knowingly collect personal data from minors without parental consent. If we become aware that we have inadvertently collected data from individuals under 18, we will take steps to delete that data.

We also strive to comply with the UK’s Age Appropriate Design Code (Children’s Code) in designing privacy forms where applicable.

15. Links to Other Websites

Our Site may contain links to external websites (e.g. third-party resources, partner companies). This Policy only applies to our Site. We have no control over, and undertake no responsibility for, the privacy practices of external sites. You should review their policies before providing personal data to them.

16. Changes to This Policy

We may update or amend this Policy from time to time to reflect changes in the law, business practices, or for operational reasons. The “Last updated” date at the top will reflect the latest revision.

We encourage you to revisit this page periodically. For material changes affecting your rights, we may provide advance notice (e.g. email, site banner).

17. Contact Us

If you have any questions, requests, or complaints regarding this Policy or how we handle your personal data, please contact us here.

Contact us




    1000 characters remaining

    Contact

    Follow Us On Socials

    Facebook Pinterest Instagram

    Services

    About Us

    Regulated By

    logo

    © 2025 personalinjurysolicitorsdirect.co.uk

    Personal Injury Solicitors Direct is a brand of JF Law Limited, a law firm authorised and regulated by the Solicitors Regulation Authority under SRA No: 619586.