CONSULTING
CONSULTING

Privacy Policy of Lawrence Legal Advisory

1. Introduction

Lawrence Legal Advisory (“the Firm,” “we,” “us,” “our”) is a civil litigation law firm headquartered in Dallas, Texas, United States. This Privacy Policy sets forth, in extensive detail, how we collect, use, disclose, protect, and retain personal information of clients, prospective clients, website visitors, counterparties, and other individuals with whom we interact.

We are committed to maintaining the highest standards of privacy and data protection in compliance with multiple legal frameworks, including but not limited to:

  • United States Federal Law: Federal Trade Commission Act (FTC Act), Children’s Online Privacy Protection Act (COPPA), Health Insurance Portability and Accountability Act (HIPAA) if applicable, Gramm-Leach-Bliley Act (GLBA) for financial data.

  • Texas State Law: Texas Identity Theft Enforcement and Protection Act (Tex. Bus. & Com. Code § 521.001 et seq.), Texas Deceptive Trade Practices Act (DTPA), Texas Data Privacy and Security Act (effective 2024).

  • European Union Law: General Data Protection Regulation (GDPR), Directive on Privacy and Electronic Communications (ePrivacy Directive).

  • California Law: California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA).

  • International Standards: OECD Guidelines on the Protection of Privacy and Transborder Flows of Personal Data, ABA Model Rules of Professional Conduct regarding client confidentiality.

This Privacy Policy is drafted to be expansive and educational, exceeding the minimum statutory requirements to ensure transparency.

2. Controller and Contact Details

Controller: Lawrence Legal Advisory
Office Address: 201 North St. Paul Street, Dallas, TX 75201
Phone Number: (737) 301-4957
Email: contact@lawrencelegaladvisory.com

3. Scope of This Privacy Policy

This Privacy Policy applies to all personal information we process, whether collected:

  1. Through our website (https://lawrencelegaladvisory.com), including contact forms, cookies, and analytics tools.

  2. Through direct communications with clients, whether via email, telephone, or in person.

  3. Through case-related documents and legal proceedings.

  4. From third parties, including opposing counsel, courts, regulatory bodies, and expert witnesses.

  5. Through recruitment and employment processes.

It does not apply to anonymized data, publicly available government records, or business-to-business contact data where excluded under certain U.S. laws.

4. Legal Basis for Processing Personal Data

Because we may process data relating to individuals in multiple jurisdictions, we rely on different legal bases depending on the applicable framework:

Under GDPR (EU/EEA):

  • Article 6(1)(a) Consent — for newsletters, marketing communications, or optional data.

  • Article 6(1)(b) Contractual necessity — for delivering legal services.

  • Article 6(1)(c) Legal obligation — complying with court orders, bar association duties, tax filings.

  • Article 6(1)(d) Vital interests — in rare cases, protecting life or safety.

  • Article 6(1)(f) Legitimate interests — securing IT systems, preventing fraud, ensuring firm administration.

For sensitive data (special categories under Article 9 GDPR), we rely on explicit consent, legal necessity, or establishment/exercise/defense of legal claims.

Under CCPA/CPRA (California):

We ensure California consumers’ rights to:

  • Know what data is collected, sold, or shared.

  • Opt-out of sale/sharing of personal information.

  • Request deletion, correction, and portability.

  • Limit use of sensitive personal information.

Under Texas Data Privacy and Security Act (2024):

We will comply with requirements for transparency, data minimization, consumer rights, and security safeguards.

5. Categories of Data Collected

We may collect and process, in exhaustive detail:

  1. Identity Information: Name, date of birth, driver’s license, passport.

  2. Contact Information: Postal address, email, telephone numbers.

  3. Professional Information: Employment details, bar license numbers (for counterparties).

  4. Financial Information: Billing records, bank account numbers, payment history.

  5. Case-Related Data: Court filings, evidence, witness statements, sensitive litigation information.

  6. Technical Information: IP address, device type, operating system, session data, cookies.

  7. Special Categories (Sensitive Data): Racial or ethnic origin, health records, political opinions, religious beliefs, union membership, biometric data — only when directly relevant to litigation or legal obligations.

6. Data Collection Methods

  • Direct: Forms, phone calls, meetings, contracts.

  • Automated: Cookies, log files, analytics services.

  • Third-Party Sources: Courts, opposing counsel, investigative agencies.

Cookies may be categorized as strictly necessary, performance, functional, or advertising (though we currently do not engage in targeted advertising).

7. Purposes of Data Processing (Detailed)

  • To provide legal services including advice, representation, drafting, negotiation, and litigation.

  • To comply with professional obligations under ABA Model Rules of Professional Conduct, especially Rule 1.6 (confidentiality).

  • To prevent conflicts of interest by maintaining internal records.

  • To maintain billing records for IRS, Texas Comptroller, and ethical requirements.

  • To communicate with clients, potential clients, and courts.

  • To maintain website functionality, track usage trends, and improve cybersecurity.

  • To defend against malpractice or ethics claims, if necessary.

  • To comply with subpoenas, court orders, or government requests.

8. Rights of Individuals (Expanded by Jurisdiction)

Under GDPR:

  • Access (Art. 15)

  • Rectification (Art. 16)

  • Erasure (Art. 17)

  • Restriction (Art. 18)

  • Portability (Art. 20)

  • Objection (Art. 21)

  • Automated decisions (Art. 22)

Under CCPA/CPRA:

  • Right to Know (last 12 months)

  • Right to Delete

  • Right to Opt-Out of Sale/Sharing

  • Right to Correct

  • Right to Limit Sensitive Data Use

  • Right of Non-Discrimination

Under Texas Law:

  • Right to Access

  • Right to Correct

  • Right to Delete

  • Right to Opt-Out of Processing for targeted advertising, sale, or profiling

We will not retaliate against you for exercising these rights.

9. Sharing of Data

We disclose personal data only when necessary, including to:

  • Courts, regulatory bodies, opposing counsel, arbitrators, mediators.

  • Service providers (IT support, cloud hosting, billing providers).

  • Expert witnesses, investigators, translators, or consultants.

  • Law enforcement when legally required.

  • Successors in the event of a merger, acquisition, or reorganization.

All service providers are bound by confidentiality and data protection agreements.

10. International Data Transfers

If data is transferred outside the United States:

  • For EU/EEA: we use Standard Contractual Clauses (SCCs) approved by the European Commission.

  • For UK: we use the International Data Transfer Agreement (IDTA).

  • For other jurisdictions: we apply contractual and organizational safeguards consistent with OECD guidelines.

11. Data Retention

We retain data:

  • For the duration of the attorney-client relationship.

  • For at least 7 years post-representation (as required by Texas Disciplinary Rules and IRS retention rules).

  • For longer where litigation, malpractice defense, or legal obligations require.

12. Security Safeguards

We employ a layered security model:

  • Technical measures: firewalls, intrusion detection, encryption (AES-256), secure backup.

  • Organizational measures: restricted access, staff confidentiality agreements, training.

  • Physical measures: locked filing systems, access control to premises.

We regularly test systems and implement incident response plans.

13. Data Breach Notification

In case of breach:

  • We will notify affected individuals without undue delay.

  • If GDPR applies, we notify the relevant supervisory authority within 72 hours.

  • If Texas law applies, we notify the Texas Attorney General within 60 days if 250+ residents are affected.

14. Minors

We do not knowingly collect data from children under 13 (COPPA). For minors under 16 in jurisdictions like California or EU, parental consent is required.

15. Policy on Sensitive Data

Special categories of data will only be processed:

  • With explicit consent.

  • When necessary for legal claims or proceedings.

  • Where required by law.

16. Professional Confidentiality Obligations

As attorneys, we are bound by:

  • ABA Model Rule 1.6 — duty of confidentiality.

  • Texas Disciplinary Rules of Professional Conduct — obligations to safeguard client secrets.

  • Attorney-client privilege — recognized under U.S. law.

These duties are independent of, and stricter than, statutory privacy laws.

17. Updates to This Policy

We reserve the right to amend this Privacy Policy at any time to reflect:

  • Changes in law (e.g., Texas Data Privacy and Security Act, future U.S. federal privacy laws).

  • Updates in technology.

  • Modifications in firm operations.

18. Contact Information

If you have questions, requests, or complaints regarding this Privacy Policy or the processing of your data, you may contact us at:

Lawrence Legal Advisory
201 North St. Paul Street
Dallas, TX 75201
Phone: (737) 301-4957
Email: contact@lawrencelegaladvisory.com

If applicable under GDPR, you also have the right to lodge a complaint with your supervisory authority (e.g., Dutch DPA, UK ICO).

19. Final Legal Disclaimer

This Privacy Policy is for informational purposes and is not intended to create an attorney-client relationship, nor does it constitute legal advice. Clients should consult with our attorneys directly for case-specific confidentiality and data protection assurances.

LAWRENCE LEGAL ADVISORY

© 2011. All rigths reserved.

Address

201 North St. Paul Street, Dallas, TX 75201

Phone Number

(737) 301 - 4957

Email

contact@lawrencelegaladvisory.com

Privacy Policy.