Location: Pune, India
Support
Careers
FAQ
Get A Quotes
logo-img
enquiry@legalassure.in

Drop us a line

+91 9881908241

Make a call

Address

Head Office: Balewadi High Street, Pune

Branch Office: Pakharbaug, Bavdhan, Pune

Get Quick Info

logo-img

About Legal Assure

We strongly believe that “strategy in law matters the most“. We render specialised legal services in Pune, India as a multidisciplinary law firm.

Read more

Quick contact info

Call: +91 9881908241

Data Protection Policy

Legal Assure

Effective Date: Nov 12, 2025

Last Updated: Nov 12, 2025

1. Introduction and Commitment

Legal Assure (“we,” “us,” “our,” or “Company”) is a leading provider of high-value Legal, Corporate, and Real Estate advisory services. We are fundamentally committed to maintaining the confidentiality and integrity of the personal data entrusted to us by our clients (Data Principals), partners, and website visitors.

This Personal Data Protection Policy (“Policy”) articulates how we collect, use, store, and protect your personal data in strict adherence to the Digital Personal Data Protection Act, 2023 (“DPDP Act”) and all other applicable laws of India.

Our Promise: As a legal consultancy, maintaining professional secrecy and data integrity is not just a compliance requirement; it is a non-negotiable professional fiduciary duty.

2. Key Definitions

For the purposes of this Policy, the following definitions apply:

  • “Personal Data” : Any information that allows an individual to be identified.
  • “Data Principal” : The individual to whom the personal data relates (e.g., our client or website visitor).
  • “Data Fiduciary” : Legal Assure, which determines the purpose and means of processing personal data.
  • “Processing” : Any operation performed on Personal Data, including collection, storage, disclosure, or destruction.
  • “DPDP Act” : The Digital Personal Data Protection Act, 2023.
  • “Data Processor” : A third party who processes Personal Data on behalf of the Data Fiduciary.

3. Categories of Personal Data We Collect

In line with our advisory services (Property Transactions, Corporate Transactions, Will & POA, etc.), we may collect the following categories of Personal Data:

3.1 Contact & Identity Information

  • Name, title, date of birth, and identity proof information.
  • Email address, Phone number.
  • Residential and Business address.
  • Company name and designation (for corporate clients).

3.2 Transactional & Privileged Information

  • Case Facts, Legal Due Diligence (LDD) documentation, and Transaction Specifications.
  • Financial details relevant to property transactions (e.g., housing loan applications).
  • Details related to corporate contracts, Society Association records, or Will/POA drafting.
  • Professional qualifications and project history (where relevant to services).

3.3 Website Usage Data

  • IP address, browser type and version, device information.
  • Pages visited and time spent on our website.
  • Cookies and similar tracking technologies (subject to specific consent).

4. How We Collect Personal Data

We primarily obtain Personal Data through direct, transparent interaction:

  • Direct Engagement : When you engage us for services (e.g., Property Transactions, Will drafting).
  • Website Forms : When you fill out inquiry forms or request consultations on our website.
  • Business Communications : During the course of our legal advisory relationship (email, phone, in-person meetings).
  • Website Analytics : Through technologies used to improve user experience (with consent).

5. Legal Basis and Purpose of Processing

We process your Personal Data based on one of the following lawful bases:

Basis for Processing Purpose of Use Strategic Rationale
With Your Consent Responding to inquiries, sharing service updates, and marketing communications (only with explicit, specific consent). Empowerment: Ensuring your consent is free, informed, and unambiguous (Section 11.1).
Legitimate Uses / Professional Obligation Core Service Delivery: Executing Property Transactions, LDD, Corporate Advisory, and preparing Wills/POAs. Maintaining regulatory records (e.g., Bar Council compliance). Fiduciary Duty: Anchoring data processing to our professional and regulatory mandates.
Legal Compliance Complying with statutory reporting requirements, tax laws, and responding to judicial or regulatory requests. Risk Mitigation: Meeting legal obligations to safeguard the business against punitive action.
Fulfilling Contractual Obligations Processing data necessary to perform the terms of service engagement agreed upon with you. Operational Integrity: Necessary for project management and execution.

6. Data Sharing and Disclosure

We maintain a strict policy against selling, trading, or renting your Personal Data. Disclosure only occurs under defined and secured circumstances:

6.1 Data Processors and Service Providers

We may share data with trusted vendors (e.g., IT hosting, specialized legal consultants, accountants) who assist us in providing our services. These vendors act as Data Processors.

Accountability Chain : All Data Processors are contractually bound by a Data Processing Addendum (DPA) to mirror the data security and confidentiality obligations of Legal Assure.

6.2 Legal and Regulatory Requirements

Data may be disclosed:

  • When required by law, court order, or formal regulatory demand.
  • To protect the legal rights and interests of Legal Assure or our clients (e.g., during litigation).
  • In the event of a business reorganization or transfer (with prior notice).

7. Data Security Measures

We implement robust technical and organizational measures to ensure the integrity, confidentiality, and availability of the data we hold:

  • Technical Safeguards : Encryption protocols for data transmission and storage (in-transit and at-rest), secure server infrastructure, and robust access controls.
  • Organizational Measures : Regular security audits and staff training on data protection protocols, strict need-to-know access limitations, and a formal Incident Response Plan.

8. Data Retention

We retain your Personal Data only for the duration necessary to fulfil the purposes outlined in this Policy, or as required by law:

  • Client Records : Seven (7) years after the completion of the service/project, in line with legal and professional record-keeping standards for legal advisory firms.
  • Business Inquiries : Three (3) years from the last contact.
  • Business Communications : During the course of our legal advisory relationship (email, phone, in-person meetings).
  • Marketing Consent : Until consent is formally withdrawn.

Data is securely deleted or anonymized via a formal Data Destruction Protocol once the retention period expires.

9. Your Rights as a Data Principal (DPDP Act)

As a Data Principal, you have the right to exercise control over your personal data:

  1. Right to Access : Request information about the Personal Data we hold and details of its Processing.
  2. Right to Correction : Request correction or updates to inaccurate or incomplete Personal Data.
  3. Right to Erasure (Withdrawal of Consent) : Request deletion of your Personal Data when its purpose is no longer necessary, or formally withdraw your prior consent.
  4. Right to Grievance Redressal : File complaints regarding data processing practices through our established mechanism.
  5. Right to Nominate : Nominate a representative to exercise your rights in case of death or incapacity.

10. Grievance Redressal Mechanism

We are committed to providing a transparent and timely resolution process.

Data Protection Officer (DPO) and Grievance Officer:

For all data protection inquiries, complaints, or to exercise your rights, please contact our designated officer:

  • Designation : Data Protection Officer (DPO) / Grievance Officer
  • Email : enquiry@legalassure.in
  • Phone : +919881908241
  • Address : Ojas, Row House No. 2, Laxman Nagar, Balewadi High Street, Pune, Maharashtra - 411045
Process Timeline:
  1. Acknowledgement : We will acknowledge receipt of your complaint within 24 hours.
  2. Resolution : We will investigate and provide a full response within 30 days of receipt.

If you are not satisfied with our response, you have the right to approach the Data Protection Board of India directly.

11. Policy Updates

We may update this Policy periodically to reflect changes in legal requirements, business practices, or service offerings. We will notify you of any material changes by:

  1. Posting the updated Policy on our website.
  2. Sending email notifications to registered clients/users.
  3. Providing a prominent notice on our website homepage.

The “Last Updated” date at the top of this Policy indicates the latest revision.