Privacy Policy
Last Updated: January 2025
Briidgellegale is committed to protecting your privacy and personal data. This policy explains how we collect, use, and safeguard your information in compliance with Singapore's Personal Data Protection Act (PDPA) and international privacy standards.
Our Commitment to Privacy
As a law firm, we understand the critical importance of confidentiality and data protection. This Privacy Policy outlines:
- What personal data we collect and why
- How we use and protect your information
- Your rights regarding your personal data
- How to contact us about privacy matters
- Our compliance with Singapore and international privacy laws
This policy applies to our website and all legal services provided by Briidgellegale.
Information We Collect
1. Personal Information
We collect the following types of personal data:
Contact Information:
- Full name and title
- Email address
- Phone number
- Business address
- Company details
Legal Matter Information:
- Case details and documents
- Financial information (when relevant)
- Corporate structure details
- Transaction information
- Legal correspondence
2. Technical and Usage Data
We automatically collect certain information when you visit our website:
Website Usage:
- IP address and location data
- Browser type and version
- Pages visited and time spent
- Referring websites
- Device information
Communication Data:
- Form submissions
- Email communications
- Phone call records
- Meeting notes
- Document exchanges
How We Use Your Information
Legal Service Delivery
- Providing legal advice and representation
- Preparing legal documents and contracts
- Managing client matters and communications
- Coordinating with third parties (courts, opposing counsel, etc.)
- Billing and payment processing
Communication and Support
- Responding to inquiries and consultation requests
- Providing updates on legal matters
- Sending important legal and regulatory notifications
- Customer support and service improvement
Business Operations
- Website functionality and security
- Analytics and performance monitoring
- Compliance with legal and regulatory requirements
- Internal training and quality assurance
Legal Basis for Processing
We process your personal data based on the following legal grounds:
Consent
For marketing communications and optional services where you have given explicit consent.
Contract Performance
To provide legal services you have requested and fulfill our contractual obligations.
Legitimate Interest
For business operations, security, and improving our services while respecting your privacy.
Legal Obligation
To comply with Singapore law, court orders, and professional regulatory requirements.
How We Protect Your Data
Technical Safeguards
- End-to-end encryption for all data transmission
- Secure servers with regular security updates
- Multi-factor authentication for system access
- Regular security audits and vulnerability assessments
- Encrypted backup systems and disaster recovery procedures
Organizational Measures
- Limited access to personal data on a need-to-know basis
- Staff training on data protection and confidentiality
- Confidentiality agreements with all employees and contractors
- Regular privacy impact assessments
- Incident response procedures for data breaches
Data Breach Notification
In the unlikely event of a data breach that poses a risk to your rights and freedoms, we will notify the relevant authorities within 72 hours and inform affected individuals without undue delay, as required by law.
Data Retention Periods
We retain your personal data for the following periods:
Client Matter Files: 7 years
As required by Singapore Law Society regulations and legal professional standards.
Contact Form Submissions: 3 years
For potential client relationship development and legal inquiry records.
Website Analytics: 2 years
Anonymous usage data for website improvement and performance monitoring.
Financial Records: 7 years
As required by Singapore tax law and accounting standards.
Your Privacy Rights
Under Singapore's PDPA and international privacy laws, you have the following rights:
Right to Access
Request a copy of the personal data we hold about you.
Right to Rectification
Request correction of inaccurate or incomplete personal data.
Right to Erasure
Request deletion of your personal data (subject to legal obligations).
Right to Data Portability
Receive your personal data in a structured, machine-readable format.
Right to Object
Object to processing based on legitimate interests or for marketing purposes.
Right to Withdraw Consent
Withdraw consent for processing at any time (where consent is the legal basis).
Third-Party Services
We may share your data with the following categories of third parties:
Legal and Professional Services
- Foreign counsel and local legal partners (for cross-border matters)
- Court systems and regulatory authorities (as required by law)
- Expert witnesses and consultants (with your consent)
- Professional indemnity insurers (for coverage matters)
Technology and Support Services
- Cloud hosting providers (with data processing agreements)
- Email and communication platforms
- Website analytics services (Google Analytics)
- Payment processing services (for legal fees)
Data Protection Safeguards
All third-party service providers are bound by strict data processing agreements that ensure your personal data is protected according to Singapore privacy standards and international best practices.
International Data Transfers
For cross-border legal matters, we may transfer your personal data to other countries. When we do so, we ensure adequate protection through:
Transfer Mechanisms
- PDPA Schedule 3 assessments for adequacy
- Standard contractual clauses
- Client consent for specific transfers
- Legal privilege protections
Safeguards Applied
- Encryption during transmission
- Limited access controls
- Purpose limitation agreements
- Regular compliance monitoring
Privacy Contact Information
If you have any questions about this Privacy Policy or wish to exercise your privacy rights, please contact us:
We will respond to all privacy requests within 30 days. For urgent matters related to data breaches or security concerns, please call us immediately.
Privacy Complaints
If you have concerns about how we handle your personal data, you have the right to lodge a complaint with:
Personal Data Protection Commission (PDPC)
Singapore's data protection authority
Website: pdpc.gov.sg
Email: [email protected]
We encourage you to contact us first so we can address your concerns directly and work toward a resolution.