Privacy

Privacy Policy

Last updated April 1, 2026

Global LMG is a neutral coordination and lawyer-matching platform. This Privacy Policy explains what personal data we collect, how we use it, and the choices you have. Global LMG is a Data Fiduciary within the meaning of the Digital Personal Data Protection Act, 2023 ("DPDP Act") and complies with applicable Indian data-protection laws including the Information Technology Act, 2000 and the rules made thereunder.

Scope of this Policy

This Policy applies to all interactions with Global LMG through our website, client portal, WhatsApp, email, phone, and any other interface we operate. It applies to personal data we collect from users, prospective clients, clients, NRIs accessing the platform from outside India, and visitors.

Our Privacy Policy forms an integral part of our Terms and Conditions. By accessing or using the platform you confirm that you have read and understood this Policy.

What personal data we collect

We collect only the personal data we need to operate the coordination platform and deliver the administrative facilitation services you request.

  • Identification details such as name, age, and government identifier where required for KYC, verification, or compliance.
  • Contact details such as email address, phone number, and postal address.
  • Matter information you choose to share — facts, narratives, documents, requirements, urgency, budget band, and preferences relevant to the legal matter.
  • Account and authentication data, including login credentials and security signals such as device, IP, and session events.
  • Payment-related data processed by regulated payment service providers we use; we do not store full card details ourselves.
  • Technical operational logs (request path, response status, user agent, approximate request time) for security, abuse prevention, and troubleshooting.

How we use personal data

We process personal data for legitimate purposes connected with the platform and the administrative facilitation services we provide.

  • Providing, facilitating, and administering the Services and coordinating with independent licensed advocates you choose to engage.
  • Communicating with you, sharing updates, reminders, scheduling, and document workflows.
  • Generating internal statistical or anonymised reports to improve the platform.
  • Complying with legal, regulatory, tax, accounting, or judicial requirements.
  • Enforcing our Terms and protecting the platform, our users, and our partners.

Sharing of personal data

We share personal data on a strict need-to-know basis and only for legitimate purposes connected with the Services. We do not sell, rent, or trade personal data for unrelated marketing.

  • With the independent licensed advocate you select, solely to facilitate the administrative coordination and the legal services that advocate will provide to you directly.
  • With our employees, agents, and sub-contractors who need to know to deliver the Services, each bound by equivalent confidentiality obligations.
  • With third-party service providers (such as payment processors, cloud storage, communications, and logistics partners) under written agreements imposing confidentiality and data-protection obligations.
  • Where required by applicable law, court order, or governmental authority — to the extent permitted, we notify you in advance of such disclosure.

Cookies, analytics and local storage

The authenticated portal uses essential session and CSRF cookies for login state, security, and abuse prevention.

On the public website we use Google Analytics 4 (acquisition and page-view analytics) and Microsoft Clarity (session replay and heatmaps) to understand how visitors use the site and to improve it. Both services load for every visitor in a cookieless, anonymised mode at first visit — no cookies are set and no personal identifiers are collected until you actively accept on the cookie banner. If you accept, the services switch to their full mode (cookies enabled, full session detail, heatmap replay). If you reject, they remain in the cookieless aggregate mode for the rest of your session. You can withdraw consent at any time by clearing your browser storage for this domain or by writing to us. Microsoft Clarity automatically masks form input values (passwords, emails, phone numbers, addresses) in recordings.

If you follow links to external services (forms, calendars, payment providers, embedded video, etc.), those services may set their own cookies governed by their own policies.

Security

We implement reasonable technical, organisational, and administrative safeguards to protect personal data from unauthorised access, disclosure, alteration, or destruction. You acknowledge that no method of transmission or storage is fully secure.

In the event of a personal data breach likely to result in risk to your rights, we will notify you and the relevant authorities in accordance with the DPDP Act.

Retention

We retain personal data only as long as necessary for service delivery, regulatory compliance, tax and accounting, dispute handling, and fraud prevention. Beyond that period, we delete or anonymise personal data in accordance with applicable law.

Cross-border transfers

If you initiate services with cross-border elements — for example engaging foreign counsel, filing in foreign jurisdictions, or accessing the platform from outside India — your data may be transferred outside India. Such transfers are made in compliance with applicable laws.

Your rights

Subject to applicable law and our legitimate business or legal retention requirements, you have the right to access, correct, update, or request erasure of your personal data. You may also withdraw consent where processing relies on consent.

To exercise these rights, write to our Data Protection contact at globallmg.org@gmail.com. We respond to verified requests within the timelines prescribed under the DPDP Act.

Contact

For any privacy, data-handling, or grievance questions write to globallmg.org@gmail.com.