LOG INREGISTER

Privacy Policy

  1. Data Protection Statement
    1. Introduction
      At Conveyancing Alliance Limited, we are committed to protecting and respecting your privacy. This Privacy Policy outlines how we collect, use, store, and protect your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
    2. Data Controller
      The data controller is Conveyancing Alliance Limited, a company incorporated in the United Kingdom with its registered office at 2 Stockport Exchange, 2nd & 3rd Floors, Stockport, Cheshire, SK1 3GG. We are registered with the Information Commissioner’s Office (ICO) under registration number Z9004099.
      For any data protection queries, please contact:
      Email: professionalstandards@movera.co.uk
      Post: Data Protection Enquiry
      Conveyancing Alliance Limited
      2 Stockport Exchange,
      2nd & 3rd Floors, information
      Stockport
      SK1 3GG
      Telephone: 0161 694 3000
    3. Types of data we collect
      We may collect and process the following types of personal information:

      1. Full name, postal address, telephone number, and email address
      2. Proof of identity and address (e.g. passport, driving licence, utility bills)
      3. Date of birth and gender
      4. National Insurance number (if applicable)
      5. Billing and financial details (e.g. bank account, payment card details)
      6. Employment details (e.g. job title, company name, references)
      7. IP address, device identifiers, browser type, and operating system
      8. Usage data and preferences from your interactions with our website or services
      9. Any personal information voluntarily provided during service engagement
    4. How We Collect Your Data
      We collect personal data in the following ways:

      1. Directly from you: when you fill in forms, contact us, or engage our services
      2. From third parties: brokers, partners, public bodies, and referees (with your consent)
      3. From public sources: Companies House, Land Registry, social media profiles
      4. Automatically: via cookies and tracking technologies on our website
    5. Why We Collect Your Data
      We collect personal information for the following purposes:

      1. To provide legal, professional, or administrative services
      2. To communicate with you regarding your enquiry or instructions
      3. To verify your identity and meet anti-money laundering obligations
      4. To process payments, manage billing, and keep financial records
      5. To ensure compliance with our legal and regulatory obligations
      6. To send updates, newsletters, or marketing (with your consent)
      7. To improve our services, website functionality, and client experience
      8. To detect, prevent, and address fraud, abuse, or security issues
    6. We rely on the following lawful bases under Article 6 of the UK GDPR:
      1. Consent: You have given us explicit permission to use your data for one or more specific purposes
      2. Contractual Obligation: Processing is necessary for the performance of a contract to which you are a party
      3. Legal Obligation: Processing is necessary to comply with our legal obligations
      4. Legitimate Interests: We process your data for our legitimate interests, such as improving services, provided these interests are not overridden by your rights

      You can withdraw your consent at any time by contacting us using the details provided above.

    7. From time to time, we may share your personal information with:
      1. Government agencies, regulators, courts, or law enforcement when required by law
      2. Accreditation bodies for auditing and compliance purposes
      3. Third-party service providers (e.g. IT hosting, CRM systems, email platforms, payment processors)
      4. External consultants or subcontractors (bound by confidentiality and security terms)
      5. Professional advisors (e.g. legal, financial, or audit firms)

      To help provide our services, we may share data with the following processors amongst others: Name Data Shared Reason for

      Name Data Shared Reason for Sharing
      Grant Thornton Log data, performance data Providing security services, threat hunting/intelligence, security monitoring
      HMLR (Land Registry) Names, Property Addresses, Contact Information Property registration and information services
      LavaTech Names, Contact Information, DoB, Property Addresses Providing digital app services to clients
      Mimecast E-mail content E-mail security services, scanning and attachment protection
      Synextra Raw data storage access Providing hosting services, management of Microsoft Azure tenancy. All third-party processors must adhere to strict data protection and security standards consistent with this Privacy Policy and relevant legislation to ensure the continued confidentiality, integrity, and availability of your data.
      Panel Firms Names and Contact information, Property information, and Financial information To fulfil referrals to conveyancing services

      All third-party processors must adhere to strict data protection and security standards consistent with this Privacy Policy and relevant legislation to ensure the continued confidentiality, integrity, and availability of your data.

    8. Data Security & Storage
      Your personal data is stored in secure environments using appropriate technical and organisational measures, including:

      1. Encryption of data at rest and in transit
      2. Firewalls, access controls, and intrusion detection systems
      3. Secure physical facilities and logical access restrictions
      4. Regular data protection training for staff

      Access to personal data is limited to personnel who require it for their job role and who are subject to confidentiality agreements.

    9. Data Retention
      We retain your personal information for as long as necessary to fulfil the purpose it was collected for, including for legal, regulatory, tax, accounting, or reporting requirements. Examples include:

      1. Legal case files: 6 to 15 years depending on matter type
      2. Financial and transaction data: 6 years from the date of transaction
      3. Quote requests or marketing preferences: 6 months from date of last contact
      4. Employment records: As required by employment law and HR best practices
        Once data is no longer required, it is securely deleted or anonymised following our data destruction policy.

      Once data is no longer required, it is securely deleted or anonymised following our data destruction policy.

    10. Your Data Protection Rights
      Under UK data protection law, you have the following rights:

      1. Right of Access – to request a copy of the personal information we hold
      2. Right to Rectification – to request correction of inaccurate or incomplete data
      3. Right to Erasure – to request deletion of data where there is no legal basis to retain it
      4. Right to Restrict Processing – to limit how your information is used in certain circumstances
      5. Right to Object – to object to data processing, especially for marketing or profiling
      6. Right to Data Portability – to obtain and reuse your data across different services

      You are not required to pay a fee for exercising your rights. If you make a request, we will respond within one month unless an extension is justified.
      To make a request, please contact our Data Protection Officer via email or post using the details above.

    11. Cookies and Website Analytics
      Our website uses cookies to enhance user experience and track usage analytics. You can set your browser to refuse all or some cookies or to alert you when websites set or access cookies. For more information, please see our separate Cookie Policy.
    12. International Data Transfers
      We do not transfer your personal data outside the UK or the European Economic Area (EEA) unless:

      1. The country has been deemed to provide an adequate level of data protection
      2. Appropriate safeguards are in place (e.g. Standard Contractual Clauses)
      3. You have provided explicit consent for the transfer

      All data processing activities are performed in the UK.

    13. How to Complain
      If you are dissatisfied with our use of your data, we encourage you to contact our Data Protection Officer first so we can address your concerns.
      You also have the right to lodge a complaint with the Information Commissioner’s Office:
      Address:
      Information Commissioner’s Office
      Wycliffe House
      Water Lane
      Wilmslow
      Cheshire
      SK9 5AF
      Helpline: 0303 123 1113
      Website: www.ico.org.uk
    14. Policy Updates
      We reserve the right to update this Privacy Policy at any time. Changes will be posted on our website and, where appropriate, notified directly to you. Last updated: September 2025
  2. Data Protection Statement
    1. Introduction
      At Conveyancing Alliance Limited, we are committed to protecting and respecting your privacy. This Privacy Policy outlines how we collect, use, store, and protect your personal data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.
    2. Data Controller
      The data controller is Conveyancing Alliance Limited, a company incorporated in the United Kingdom with its registered office at 2 Stockport Exchange, 2nd & 3rd Floors, Stockport, Cheshire, SK1 3GG. We are registered with the Information Commissioner’s Office (ICO) under registration number Z9004099.
      For any data protection queries, please contact:
      Email: enquiries@onpsolicitors.co.uk
      Post: Data Protection Enquiry
      Conveyancing Alliance Limited
      2 Stockport Exchange,
      2nd & 3rd Floors, information
      Stockport
      SK1 3GG
      Telephone: 0161 694 3000
    3. Types of data we collect
      We may collect and process the following types of personal information:

      1. Full name, postal address, telephone number, and email address
      2. Proof of identity and address (e.g. passport, driving licence, utility bills)
      3. Date of birth and gender
      4. National Insurance number (if applicable)
      5. Billing and financial details (e.g. bank account, payment card details)
      6. Employment details (e.g. job title, company name, references)
      7. IP address, device identifiers, browser type, and operating system
      8. Usage data and preferences from your interactions with our website or services
      9. Any personal information voluntarily provided during service engagement
    4. How We Collect Your Data
      We collect personal data in the following ways:

      1. Directly from you: when you fill in forms, contact us, or engage our services
      2. From third parties: brokers, partners, public bodies, and referees (with your consent)
      3. From public sources: Companies House, Land Registry, social media profiles
      4. Automatically: via cookies and tracking technologies on our website
    5. Why We Collect Your Data
      We collect personal information for the following purposes:

      1. To provide legal, professional, or administrative services
      2. To communicate with you regarding your enquiry or instructions
      3. To verify your identity and meet anti-money laundering obligations
      4. To process payments, manage billing, and keep financial records
      5. To ensure compliance with our legal and regulatory obligations
      6. To send updates, newsletters, or marketing (with your consent)
      7. To improve our services, website functionality, and client experience
      8. To detect, prevent, and address fraud, abuse, or security issues
    6. We rely on the following lawful bases under Article 6 of the UK GDPR:
      1. Consent: You have given us explicit permission to use your data for one or more specific purposes
      2. Contractual Obligation: Processing is necessary for the performance of a contract to which you are a party
      3. Legal Obligation: Processing is necessary to comply with our legal obligations
      4. Legitimate Interests: We process your data for our legitimate interests, such as improving services, provided these interests are not overridden by your rights

      You can withdraw your consent at any time by contacting us using the details provided above.

    7. From time to time, we may share your personal information with:
      1. Government agencies, regulators, courts, or law enforcement when required by law
      2. Accreditation bodies for auditing and compliance purposes
      3. Third-party service providers (e.g. IT hosting, CRM systems, email platforms, payment processors)
      4. External consultants or subcontractors (bound by confidentiality and security terms)
      5. Professional advisors (e.g. legal, financial, or audit firms)

      To help provide our services, we may share data with the following processors amongst others: Name Data Shared Reason for

      Name Data Shared Reason for Sharing
      Grant Thornton Log data, performance data Providing security services, threat hunting/intelligence, security monitoring
      HMLR (Land Registry) Names, Property Addresses, Contact Information Property registration and information services
      LavaTech Names, Contact Information, DoB, Property Addresses Providing digital app services to clients
      Mimecast E-mail content E-mail security services, scanning and attachment protection
      Synextra Raw data storage access Providing hosting services, management of Microsoft Azure tenancyAll third-party processors must adhere to strict data protection and security standards consistent with this Privacy Policy and relevant legislation to ensure the continued confidentiality, integrity, and availability of your data.

      All third-party processors must adhere to strict data protection and security standards consistent with this Privacy Policy and relevant legislation to ensure the continued confidentiality, integrity, and availability of your data.

    8. Data Security & Storage
      Your personal data is stored in secure environments using appropriate technical and organisational measures, including:

      1. Encryption of data at rest and in transit
      2. Firewalls, access controls, and intrusion detection systems
      3. Secure physical facilities and logical access restrictions
      4. Regular data protection training for staff

      Access to personal data is limited to personnel who require it for their job role and who are subject to confidentiality agreements.

    9. Data Retention
      We retain your personal information for as long as necessary to fulfil the purpose it was collected for, including for legal, regulatory, tax, accounting, or reporting requirements. Examples include:

      1. Legal case files: 6 to 15 years depending on matter type
      2. Financial and transaction data: 6 years from the date of transaction
      3. Quote requests or marketing preferences: 6 months from date of last contact
      4. Employment records: As required by employment law and HR best practices
        Once data is no longer required, it is securely deleted or anonymised following our data destruction policy.

      Once data is no longer required, it is securely deleted or anonymised following our data destruction policy.

    10. Your Data Protection Rights
      Under UK data protection law, you have the following rights:

      1. Right of Access – to request a copy of the personal information we hold
      2. Right to Rectification – to request correction of inaccurate or incomplete data
      3. Right to Erasure – to request deletion of data where there is no legal basis to retain it
      4. Right to Restrict Processing – to limit how your information is used in certain circumstances
      5. Right to Object – to object to data processing, especially for marketing or profiling
      6. Right to Data Portability – to obtain and reuse your data across different services

      You are not required to pay a fee for exercising your rights. If you make a request, we will respond within one month unless an extension is justified.
      To make a request, please contact our Data Protection Officer via email or post using the details above.

    11. Cookies and Website Analytics
      Our website uses cookies to enhance user experience and track usage analytics. You can set your browser to refuse all or some cookies or to alert you when websites set or access cookies. For more information, please see our separate Cookie Policy.
    12. International Data Transfers
      We do not transfer your personal data outside the UK or the European Economic Area (EEA) unless:

      1. The country has been deemed to provide an adequate level of data protection
      2. Appropriate safeguards are in place (e.g. Standard Contractual Clauses)
      3. You have provided explicit consent for the transfer

      All data processing activities are performed in the UK.

    13. How to Complain
      If you are dissatisfied with our use of your data, we encourage you to contact our Data Protection Officer first so we can address your concerns.
      You also have the right to lodge a complaint with the Information Commissioner’s Office:
      Address:
      Information Commissioner’s Office
      Wycliffe House
      Water Lane
      Wilmslow
      Cheshire
      SK9 5AF
      Helpline: 0303 123 1113
      Website: www.ico.org.uk
    14. Policy Updates
      We reserve the right to update this Privacy Policy at any time. Changes will be posted on our website and, where appropriate, notified directly to you.Last updated: September 2025