MIDLegal

Privacy Policy

Last reviewed: 17 June 2026 · Version 1.0

MID Legal Limited (“we”, “us”, “our”) is committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, store and disclose your personal data, and your rights in relation to that data, in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

Who We Are

MID Legal Limited is a company registered in England and Wales (Company No. 16969538) with its registered office at 41 Bernard Grove, Bolton, Lancashire, BL1 3LE. We are authorised and regulated by the Solicitors Regulation Authority (SRA No. 8015144). For the purposes of data protection law, we are the data controller for the personal data we hold about you.

The Personal Data We Collect

We may collect and process the following categories of personal data:

  • Identity and contact details, such as your name, address, email address and telephone number.
  • Information relevant to your legal matter, which may include sensitive (special category) data where necessary to provide our services.
  • Financial information required to carry out anti-money laundering checks and to process payments.
  • Records of our correspondence and communications with you.
  • Technical data collected when you use our website, such as your IP address and browser type.

How We Use Your Personal Data

We use your personal data to provide legal services to you, to comply with our legal and regulatory obligations, to manage our relationship with you, and to administer and improve our website and services. We rely on the following lawful bases under UK GDPR: performance of a contract; compliance with a legal obligation; our legitimate interests; and, where required, your consent.

Sharing Your Data

We may share your personal data with third parties where necessary, including counsel, experts, courts, regulators, our professional indemnity insurers, and providers of IT and administrative services who act on our behalf. We require all third parties to respect the security of your data and to treat it in accordance with the law. We will never sell your personal data.

How Long We Keep Your Data

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected, including to satisfy any legal, accounting, regulatory or reporting requirements. Files relating to legal matters are generally retained for a minimum of six years after a matter has concluded, in line with professional and insurance requirements.

Data Security

We have put in place appropriate technical and organisational measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. We limit access to your personal data to those who have a genuine business need to access it.

Your Rights

Under UK GDPR, you have a number of rights, including the right to be informed, the right of access, the right to rectification, the right to erasure, the right to restrict processing, the right to data portability, and the right to object. You also have rights in relation to automated decision-making. To exercise any of these rights, please contact us at info@midlegal.uk or 07448 478847.

Contact and Complaints

If you have any questions about this Privacy Policy or wish to raise a concern, please contact us at info@midlegal.uk. You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues, at ico.org.uk. We would, however, appreciate the opportunity to address your concerns before you approach the ICO.

Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with a revised review date.