GDPR Compliance
Last updated: December 7, 2025
1. Our Commitment to GDPR
Adam Legal is committed to protecting the privacy and security of personal data in accordance with the General Data Protection Regulation (GDPR). This page outlines how we comply with GDPR requirements and your rights as a data subject.
2. Data Controller Information
Adam Legal acts as a data controller for the personal data we collect from our users. For data that our customers upload to the platform (such as client information), our customers are the data controllers and Adam Legal acts as a data processor.
Data Protection Contact:
Email: dpo@adamlegal.click
3. Legal Basis for Processing
We process personal data under the following legal bases:
- Contract Performance: Processing necessary to provide our services to you
- Legitimate Interests: Processing for our legitimate business interests, such as improving our services and security
- Legal Obligation: Processing required to comply with legal requirements
- Consent: Where you have given explicit consent for specific processing activities
4. Your Rights Under GDPR
As a data subject, you have the following rights:
Right of Access (Article 15)
You have the right to obtain confirmation of whether we process your personal data and access to that data.
Right to Rectification (Article 16)
You have the right to request correction of inaccurate personal data.
Right to Erasure (Article 17)
You have the right to request deletion of your personal data in certain circumstances.
Right to Restrict Processing (Article 18)
You have the right to request restriction of processing in certain circumstances.
Right to Data Portability (Article 20)
You have the right to receive your personal data in a structured, commonly used format.
Right to Object (Article 21)
You have the right to object to processing based on legitimate interests or for direct marketing.
5. Data Processing Agreement
For customers who use Adam Legal to process personal data of their clients (data subjects), we offer a Data Processing Agreement (DPA) that complies with GDPR Article 28 requirements. Please contact us to request a DPA.
6. International Data Transfers
When we transfer personal data outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, including:
- Standard Contractual Clauses approved by the European Commission
- Transfers to countries with adequate data protection levels
- Binding Corporate Rules where applicable
7. Data Breach Notification
In the event of a personal data breach, we will notify the relevant supervisory authority within 72 hours where feasible. If the breach is likely to result in high risk to your rights and freedoms, we will also notify you directly.
8. Data Protection Impact Assessments
We conduct Data Protection Impact Assessments (DPIAs) for processing activities that are likely to result in high risk to individuals' rights and freedoms, in accordance with Article 35 of the GDPR.
9. Exercising Your Rights
To exercise any of your rights under GDPR, please contact our Data Protection Officer:
- Email: dpo@adamlegal.click
- Through your account settings (for access and data export)
We will respond to your request within 30 days. If we need more time, we will inform you of the reason and extension period.
10. Right to Lodge a Complaint
If you believe that your data protection rights have been violated, you have the right to lodge a complaint with a supervisory authority in the EU member state of your residence, place of work, or where the alleged infringement occurred.
11. Updates to This Policy
We may update this GDPR compliance page to reflect changes in our practices or legal requirements. We encourage you to review this page periodically.