Join Waitlist
Back to Home

Privacy Policy

Last updated:

1. Introduction

Gotolawya ("we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our services, or interact with our platform.

This Privacy Policy applies to all users of our legal technology platform, including law firms, legal professionals, clients, and visitors to our website. By using our services, you consent to the data practices described in this policy.

2. Information We Collect

2.1 Personal Information

We may collect the following types of personal information:

  • Contact Information: Name, email address, phone number, mailing address, and professional affiliation
  • Professional Information: Bar admission details, law firm information, practice areas, and professional credentials
  • Account Information: Username, password, and account preferences
  • Client Information: Information about your clients that you input into our platform for legal services
  • Communication Records: Correspondence, support tickets, and feedback you provide to us

2.2 Technical Information

We automatically collect certain technical information when you use our services:

  • Device Information: IP address, browser type, operating system, device identifiers, and hardware specifications
  • Usage Data: Pages visited, time spent on pages, features used, and interaction patterns
  • Log Data: Server logs, error reports, and performance metrics
  • Cookies and Tracking Technologies: Information collected through cookies, web beacons, and similar technologies

2.3 Legal Case Information

As a legal technology platform, we may process sensitive legal information including:

  • Case files, documents, and legal briefs
  • Client communications and case notes
  • Legal research and analysis
  • Court filings and legal proceedings information
  • Attorney-client privileged communications (subject to applicable privilege protections)

3. How We Use Your Information

3.1 Service Provision

We use your information to:

  • Provide, maintain, and improve our legal technology services
  • Process and manage your account and subscriptions
  • Enable legal document drafting, case management, and collaboration features
  • Provide customer support and technical assistance
  • Process payments and billing

3.2 Legal Compliance and Security

We use your information to:

  • Comply with applicable laws, regulations, and legal obligations
  • Maintain attorney-client privilege and confidentiality requirements
  • Protect against fraud, security threats, and unauthorized access
  • Conduct security monitoring and incident response
  • Maintain audit trails and compliance records

3.3 Business Operations

We may use your information to:

  • Analyze usage patterns and improve our services
  • Develop new features and functionality
  • Conduct research and analytics (in anonymized form)
  • Send important service updates and notifications
  • Provide marketing communications (with your consent)

4. Information Sharing and Disclosure

4.1 We Do Not Sell Your Information

We do not sell, rent, or trade your personal information to third parties for monetary consideration.

4.2 Limited Sharing

We may share your information only in the following limited circumstances:

  • Service Providers: With trusted third-party vendors who assist in providing our services (subject to strict confidentiality agreements)
  • Legal Requirements: When required by law, court order, or legal process
  • Business Transfers: In connection with a merger, acquisition, or sale of assets (with notice to users)
  • Consent: When you have given explicit consent for specific sharing
  • Protection of Rights: To protect our rights, property, or safety, or that of our users

4.3 Attorney-Client Privilege

We maintain strict protocols to preserve attorney-client privilege and confidentiality. We will not disclose privileged communications except as required by law or with explicit client consent.

5. Data Security

5.1 Security Measures

We implement comprehensive security measures to protect your information:

  • Encryption: End-to-end encryption for data in transit and at rest
  • Access Controls: Multi-factor authentication and role-based access controls
  • Infrastructure Security: Secure cloud infrastructure with regular security audits
  • Compliance: Industry-standard security practices and regular security audits
  • Monitoring: 24/7 security monitoring and threat detection

5.2 Data Breach Response

In the event of a data breach, we will:

  • Immediately investigate and contain the breach
  • Notify affected users within 72 hours (where required by law)
  • Report to relevant authorities as required
  • Provide detailed information about the breach and remediation steps

6. Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations:

  • Account Information: Retained while your account is active and for 7 years after closure
  • Legal Case Data: Retained according to applicable legal requirements and professional standards
  • Communication Records: Retained for 3 years after the last interaction
  • Technical Logs: Retained for 1 year for security and performance monitoring

7. Your Rights and Choices

7.1 Access and Control

You have the right to:

  • Access and review your personal information
  • Correct inaccurate or incomplete information
  • Delete your personal information (subject to legal retention requirements)
  • Export your data in a portable format
  • Restrict or object to certain processing activities

7.2 Communication Preferences

You can:

  • Opt out of marketing communications at any time
  • Choose your preferred communication methods
  • Update your notification preferences

7.3 Data Portability

You can request a copy of your data in a structured, machine-readable format for transfer to another service provider.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place for international transfers, including:

  • Standard Contractual Clauses approved by relevant authorities
  • Adequacy decisions by competent data protection authorities
  • Certification schemes and codes of conduct

9. Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children under 18. If we become aware that we have collected personal information from a child under 18, we will take steps to delete such information.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by:

  • Posting the updated policy on our website
  • Sending email notifications to registered users
  • Providing notice through our platform

Your continued use of our services after any changes constitutes acceptance of the updated policy.

11. Legal Basis for Processing (GDPR)

For users in the European Union, we process your personal data based on:

  • Contract Performance: To provide our legal technology services
  • Legitimate Interest: To improve our services and ensure security
  • Legal Obligation: To comply with applicable laws and regulations
  • Consent: For marketing communications and optional features

12. Nigerian Data Protection Rights

Under the Nigeria Data Protection Act 2023, you have the following rights:

  • Right to be informed about the collection and use of your personal data
  • Right of access to your personal data
  • Right to rectification of inaccurate personal data
  • Right to erasure of your personal data (subject to legal obligations)
  • Right to restrict processing of your personal data
  • Right to data portability
  • Right to object to processing of your personal data
  • Right to withdraw consent at any time

13. California Privacy Rights (CCPA)

California residents have additional rights under the California Consumer Privacy Act:

  • Right to know what personal information is collected and how it's used
  • Right to delete personal information (subject to exceptions)
  • Right to opt-out of the sale of personal information (we do not sell personal information)
  • Right to non-discrimination for exercising privacy rights

Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

14. Effective Date

This Privacy Policy is effective as of the date listed at the top of this document and will remain in effect except with respect to any changes in its provisions in the future, which will be in effect immediately after being posted on this page.

By using Gotolawya's services, you acknowledge that you have read and understood this Privacy Policy and agree to be bound by its terms.