1. Introduction
Proxpert Legal Solutions (“Proxpert”, “we”, “us”) is committed to protecting the confidentiality, integrity, and security of all client information handled through its Legal Process Outsourcing (LPO) services. This Policy outlines how we collect, use, store, and protect personal and legal data in the course of delivering our services.
2. Scope of This Policy
This Policy applies to:
i) Law firms engaging Proxpert for LPO services
ii) Corporate and individual clients
iii) All data processed in connection with outsourced legal work including;
- Personal data
- Commercial data
- Case-related information
- Confidential legal documents
3. Legal & Regulatory Framework
Proxpert processes personal data in accordance with The Data Protection and Privacy Act of Uganda and all applicable international data protection standards where relevant (e.g., GDPR principles for cross-border clients)
4. Types of Data We Handle
We may process;
i) Identification data (names, contacts, IDs)
ii) Legal documents and case files
iii) Contracts and commercial records
iv) Financial and transaction-related information
v) Sensitive personal data where required for legal work
We only process data necessary for the specific task assigned.
5. Purpose of Data Processing
Client data is processed strictly for;
- Delivering LPO services
- Legal research, drafting, and review
- Compliance and due diligence support
- Communication with clients
We do NOT use client data for unrelated purposes.
6. Confidentiality Obligations
All Proxpert personnel are bound by strict confidentiality obligations, including:
- Non-Disclosure Agreements (NDAs)
- Professional ethical standards
- Internal confidentiality protocols
Client information is treated as privileged and is never disclosed without authorization.
7. Data Security Measures
We implement appropriate technical and organizational safeguards, including:
- Controlled access to client data
- Secure document storage systems
- Password-protected and encrypted platforms
- Role-based access restrictions
- Secure communication channels
Only authorized personnel can access client information.
8. Data Retention
We retain client data only for as long as necessary to Complete assigned work and meet legal or regulatory obligations. Upon completion, data may be returned to the client, securely archived or permanently deleted upon request.
9. Data Sharing & Third Parties
We do not sell, rent, or share client data with third parties except where required by law, where expressly authorized by the client or where necessary for service delivery (with safeguards in place).
10. Cross-Border Data Transfers
Where data is transferred outside Uganda, appropriate safeguards are implemented, transfers comply with applicable legal standards and clients are informed where necessary.
11. Client Rights
Clients may;
- Request access to their data
- Request correction of inaccurate data,
- Request deletion (subject to legal obligations)
- Object to certain processing activities
Requests can be made through official Proxpert communication channels.
12. Data Breach Response
In the unlikely event of a data breach, Proxpert will investigate and contain the breach immediately, Notify affected clients where required and take corrective measures to prevent recurrence.
13. Use of Technology & AI Tools
Where technology tools (including AI systems) are used, data is processed in a controlled and secure environment. No client data is used for training external systems without consent. Outputs are reviewed by qualified personnel.
14. Updates to This Policy
This Policy may be updated from time to time to reflect legal, regulatory, or operational changes.
15. Contact
For any data protection or confidentiality inquiries, contact Proxpert Legal Solutions at:
admin@proxpertlegal.com
+256754693103