Privacy Policy

  • Home /
  • Privacy Policy

At MCB - Legal (licensed under MCB Solutions), we prioritize your privacy. This policy outlines how we gather and utilize your personal data and details your rights and controls over it.

Last Updated: 12 March 2024 Who We Are

MCB - Legal (licensed under MCB Solutions) is a legal consultancy registered in the United Arab Emirates (UAE) and a full-service law firm in India. Personal data is collected by offices both in the UAE and India. If you have any questions about our use of your personal data, please use the following contact:

By Email: info@mcb-legal.com
By post: Arpith Bhoot, MCB - Legal 106 Al Garhoud Centre, Dubai, UAE
Data Collection and Usage

We will collect the following personal data:

  • Contact information: your name, position, role, company or organization, telephone (including mobile phone number where provided) as well as email and postal address.
  • Business information: data identifying you in relation to matters on which you instruct us or in which you are involved.
  • Information from public sources: e.g., LinkedIn and similar professional networks, directories, or internet publications.
  • Information in connection with investigations or proceedings: where necessary to conduct the investigation or proceedings.
  • Subscriptions/preferences: when you subscribe to receive updates or newsletters and consent preferences to help us identify which materials you are interested in receiving.
  • Events data: attendance at and provision of feedback forms in relation to our events.
  • Supplier data: contact details and other information about you or your company or organization where you provide services to us.
  • Social media: posts, Likes, tweets, and other interactions with our social media presence.
  • Technical information: when you access this website and our technology services being IP address, browser type and version (e.g., Internet Explorer, Firefox, Safari, etc.), time zone setting, browser plug-in types and versions, operating system you are using (e.g., Vista, Windows XP, MacOS, etc.), device type, hardware model, MAC address, unique identifiers, and mobile network information.
  • Online data: when you access this website and our technology services, information about your visit including URL clickstream to, through, and from our website (including date and time), information about your network such as information about devices, nodes, configurations, connection speeds, and network application performance pages viewed or searched for, page response times, download errors, length of visits, and interaction information (such as scrolling, clicks, mouse-overs) and whether you click on particular links or open our emails. We do not collect personal data about your online activities across third-party websites or online services.
  • Criminal record data: where permitted by national law and appropriate to do so, such as the existence of prior criminal offenses (or confirmation of a clean criminal record).

The above data will be provided to us by you, your employer, the company or organization that is our client, or screening providers who assist us with our legal obligations to conduct under anti-money laundering, sanctions screening, and regulatory checks.

Your Communications with Us

We may also collect information that you choose to provide in communications with us. Please do not send us confidential information until we have confirmed in writing that we represent or act for you or your company or organization. Unsolicited emails from non-clients do not establish a lawyer-client relationship. They may not be privileged and, therefore, may be disclosed to others.

How We Use Your Personal Data

We use your personal data for the following purposes:

  • Service provision: providing legal advice and services.
  • Business relationship: managing and administering our relationship with you, your company, or organization including keeping records about business contacts, services, and payments so we can customize our offering for you, develop our relationship, and target our marketing and promotional campaigns.
  • Communication: sending emails, newsletters, and other messages to keep you informed of legal developments, market insights, and our services.
  • Events: running legal conferences, briefings, webinars, roundtables, and other events.
  • Client surveys and feedback: including events feedback and client listening exercises as well as answering issues and concerns which may arise.
  • Client legal compliance: client due diligence (under anti-money laundering, sanctions screening, and other crime prevention and detection laws and regulatory requirements) which may involve automated screening checks to ensure that clients and contacts are genuine and to prevent fraud or crime. We may not be able to take instructions if you do not provide the information we need to do these checks.
  • Website monitoring: to check the website and our other technology services are being used appropriately and to optimize their functionality.
  • Site security: to provide security to our offices and other premises (normally collecting your name and contact details on entry to our buildings).
  • Online security: protecting our information assets and technology platforms from unauthorized access or usage and to monitor for malware and other security threats.
  • Regulatory: compliance with our legal and regulatory obligations as a law firm including auditing and reporting requirements.
  • Managing suppliers: who deliver services to us.
  • Legitimate interest: to pursue the legitimate business interests listed in the “Legitimate Interests” section of this policy below.
Our Reasons for Using Your Personal Data

We will process your personal data for a number of reasons:

  • You have given us consent: for example where you share details for particular purposes.
  • This is necessary to comply with legal or regulatory obligations: for example,anti-money laundering and mandatory client screening checks or disclosure to law enforcement or necessary for dealing with legal claims.
  • Processing is necessary for our legitimate business interests or those of a third party: provided this does not override any interests or rights that you have as an individual. Our legitimate interests are listed in the next section.
Legitimate Interests We have legitimate business interests in:
  • Providing legal services.
  • Managing our business and relationship with you or your company or organization.
  • Understanding and responding to inquiries and client feedback.
  • Understanding how our clients use our services and websites.
  • Identifying what our clients want and developing our relationship with you, your company, or organization.
  • Improving our services and offerings.
  • Enforcing our terms of engagement and website and other terms and conditions.
  • Ensuring our systems and premises are secure.
  • Managing our supply chain.
  • Developing relationships with business partners.
  • Ensuring debts are paid.
  • Operating suppressors to exclude you from direct marketing if you unsubscribe.
  • Sharing data in connection with acquisitions and transfers of our business.
Our Reasons for Using Special Category Data Special category data in the EU and certain other jurisdictions refers to sensitive data such as your racial or ethnic origin, religious beliefs, or health data. We may also collect data about criminal convictions. We will process this data where:
  • We have your explicit consent: for the particular processing.
  • This is necessary to protect your vital interests or those of another person: for example, in medical emergencies; you have manifestly made the data public: for example, where you have published it on social media.
  • This is necessary to deal with legal claims: for example, involving court proceedings.
  • This is necessary for substantial public interest: for example to prevent or detect unlawful acts.
  • As permitted by applicable law: outside the EU and other jurisdictions where these restrictions apply.
With Whom Do We Share Your Data? We share your information with others as follows:
  • Our offices in UAE and India: including their management, lawyers, staff, and contractors in order to provide legal services.
  • Suppliers: who support our business including IT and communication suppliers, outsourced business support, marketing and advertising agencies, backup and DR suppliers, and LPO operations. Our suppliers have to meet minimum standards as to information security, and they will only be provided data in line with their function.
  • Shared service centers: operated by us or third parties including for client onboarding, IT services, marketing, risk management, and office support services.
  • Other law firms and consultants: including other local law firms, lawyers, experts, witnesses, and arbitrators/mediators.
  • Law enforcement bodies and our regulators: or other competent authorities in accordance with legal requirements or good practice.
  • Appropriate parties in the event of emergencies: in particular to protect the health and safety of our clients, staff, and organizations.
  • Your company or organization: in relation to us providing legal services.
  • Screening service providers: so that we can comply with legal obligations in relation to the prevention or protection of crime, anti-money laundering, sanctions screening, and other required checks.
  • Advertising networks and analytics service providers: to support and display ads on our website, apps, and other social media tools.
  • Third parties: in the context of the acquisition or transfer of any part of our business or in connection with the business reorganization.
  • Other delegates: where your name will appear on the attendee list for events where you have told us you plan to attend.
Personal Data About Others

In some cases, you may provide personal data to us about other people (such as your customers, directors, officers, shareholders, or beneficial owners). You must ensure that you have given those individuals an appropriate notice that you are providing their information to us and have obtained their consent to that disclosure.

Security

We will hold your information securely in line with physical, technical, and administrative security measures. However, the transmission of information via the internet is not completely secure. Although we will take reasonable measures to protect your personal information, we cannot guarantee the security of your information transmitted, and any transmission is at your own risk.

Where Will Your Information Be Held?

We have a presence in more than one country. Therefore, your information may be transferred out of your local jurisdiction or region. Data protection laws vary by country. We will take steps to protect your information in line with locally applicable data protection requirements.