Effective Date: August 26, 2020
For personal data transferred from the United Kingdom, the European Union, and Switzerland, we will provide appropriate safeguards, such as through use of standard contractual clauses.
What Information Do We Collect?
Information on Behalf of our Clients
Information You Provide through the Service
We collect information you provide directly via the Service, such as when you request a free case evaluation or speak with us through a live chat. We may use Service Providers (defined below) to collect this information. The information we collect includes information that identifies you personally (whether alone or in combination). Some examples of information we collect include the following:
- Contact Information: your name, email address, phone number, physical address, and similar contact information.
- Description of your Legal Issues: information about your legal issues, all of which is clearly labeled at the time of collection.
- Other Content: We collect the content of messages you send to us, such as questions and information you provide. We also collect the content of your communications as necessary to provide you with the Service.
You may choose to voluntarily submit other information to us through the Service that we do not request, and, in such instances, you are solely responsible for such information.
Information Collected Automatically through the Service
In addition, we automatically collect information when you use the Service. We may use Service Providers to collect this information. Some examples of information we automatically collect include Service use data, including data about the pages you visit, the emails you view, the time of day you browse, and your referring and exiting pages; device connectivity and configuration data, including data about the type of device or browser you use, your device’s operating software, your internet service provider, your device’s regional and language settings, and device identifiers such as IP address; and location data, including imprecise location data (such as location derived from an IP address or data that indicates a city or postal code level).
We use various current – and later – developed technologies to collect this information (“Tracking Technologies”), including the following:
- Log Files, which are files that record events that occur in connection with your use of the Service.
- Cookies, which are small files transferred to your device through your Web browser that enable websites to recognize your browser and capture and remember certain information. Cookies make it easier for you to navigate the Service and help us to personalize your experience, support security features, and understand your use of the Service. Cookies generally may be controlled through your browser settings.
For further information on Tracking Technologies and your rights and choices regarding them, see the “Other Parties” and “Your Rights and Choices” sections below.
Information from Other Sources
- Lead generators, which provide us with your information so that we may contact you to verify your information and evaluate your potential claims.
- Publicly-available sources, including data in the public domain.
- Social Networks with which you interact.
What Do We Use Your Information For?
- To manage our Service;
- To perform services requested by you, such as to respond to your comments, questions, and requests;
- To send you transactional emails (the email address you provide may be used to provide you with notices, updates, security alerts, information regarding changes to our policies, and support and administrative messages);
- To prevent and address fraud, breach of policies or terms, and threats or harm;
- To improve our Service or other JLG websites, apps, marketing efforts, products and services (we continually strive to improve our offerings based on the information and feedback we receive from you);
- To personalize your experience (your information helps us to better respond to your individual needs);
- To develop and send you direct marketing, including advertisements and communications about our services; and
- To fulfill any other purpose disclosed to you and with your consent.
Notwithstanding the above, we may use information from the Service that does not identify you (including information that has been aggregated or de-identified) for any purpose except as prohibited by applicable law. For information on your rights and choices regarding how we use information about you, please see the “Your Rights and Choices” section below.
Sharing of Information
- Service Providers. We share information with our agents, vendors, and other service providers (collectively “Service Providers”) in connection with their work on our behalf. Service Providers assist us with services such as operating our Service, conducting our business, data analytics, marketing and advertising, and technical support. Service Providers are prohibited from using your information for any reason other than to provide this assistance, although we may permit them to use information that does not identify you (including information that has been aggregated or de-identified) for any purpose except as prohibited by applicable law.
- Affiliates. We may share your information with our related entities including our parent and sister companies. For example, we may share your information with our affiliates for marketing and technical operations.
- Partners. We share your information with our partners in connection with us conducting our business or providing services to you. For example, we partner with other laws firms to help work on claims subject to laws in various jurisdictions, and the information we provide is confidential and subject to attorney-client privilege.
- Facilitating Requests. We share information with other parties for purposes of facilitating your requests or enabling enhancements, such as when you choose to share information with a social network about your activities on the Service.
- Merger or Acquisition. We share information in connection with, or during negotiations of, any proposed or actual merger, purchase, sale or any other type of acquisition or business combination of all or any portion of our assets, or transfer of all or a portion of our business to another business.
- Security and Compelled Disclosure. We share information when we believe release is appropriate to comply with the law or legal process, and where required, in response to lawful requests by public authorities, including to meet national security or law enforcement requirements. We also share information to enforce our Service policies, or protect ours or others rights, property, or safety.
- Consent. We may share information to fulfill any other purpose disclosed to you and with your consent.
Notwithstanding the above, we may share information from the Service that does not identify you (including information that has been aggregated or de-identified) except as prohibited by applicable law. For information on your rights and choices regarding how we share information about you, please see the “Your Rights and Choices” section below.
Our Service contains Tracking Technologies owned and operated by other parties. For example, we use Tracking Technologies from analytics providers, such as Google Analytics, to help us analyze your use of the Service, compile statistic reports on the Service’s activity, and provide us with other services relating to Service activity and internet usage.
For further information on Tracking Technologies and your rights and choices regarding them, please see the “Information Collected Automatically” and “Your Rights and Choices” sections.
Your Rights and Choices
Accessing Your Information
Residents of California and data subjects in Europe may have additional rights regarding the access, correction, or deletion of information we have collected about them through the Service. For more information please see the “Additional Disclosures for California Residents” and “Additional Disclosures for Data Subjects in Europe” sections below.
Tracking Technology Choices
Most browsers accept cookies by default. You can instruct your browser, by changing its settings, to decline or delete cookies. If you use multiple browsers on your device, you will need to instruct each browser separately. Your ability to limit cookies is subject to your browser settings and limitations.
Your browser settings may allow you to automatically transmit a “Do Not Track” signal to online services you visit. Note, however, there is no industry consensus as to what site and app operators should do with regard to these signals. Accordingly, unless and until the law is interpreted to require us to do so, we do not monitor or take action with respect to “Do Not Track” signals or other mechanisms. For more information on “Do Not Track,” visit http://www.allaboutdnt.com.
Please be aware that if you disable or remove Tracking Technologies some parts of the Service may not function correctly.
You can opt-out of your data being used by Google Analytics through cookies by visiting https://tools.google.com/dlpage/gaoptout and downloading the Google Analytics Opt-out Browser Add-on.
- Emails. Should you wish to stop receiving further promotional emails from us, please follow the instructions as provided in the promotional emails you receive to click on the unsubscribe link or email us at firstname.lastname@example.org with the word UNSUBSCRIBE in the subject field of the email. Please note that you cannot opt-out of non-promotional emails, such as those about your ongoing business relations with JLG.
- Text Messages and Calls. You can opt-out of receiving text messages or calls to your phone number at any time by (i) for text messages, texting “STOP” in response to any text message you receive from us or contacting us as set forth in the section entitled “Contact Us” below and specifying you want to opt-out of text messages; and (ii) for calls, requesting opt-out during any call you receive from us or contacting us as set forth in the section entitled “Contact Us” below and specifying you want to opt-out of calls.
Please note that your opt-out is limited to the email address and phone number used and will not affect subsequent subscriptions.
Our Service, products and services are all directed to people who are at least 13 years old or older, and we do not knowingly collect personal information as defined by the U.S. Children’s Privacy Protection Act (“COPPA”) from children under 13 years of age. If you are a parent or guardian and believe JLG has collected children’s personal information in violation of COPPA, please contact us as set out in the “Contact Us” section below. We do not knowingly “sell,” as that term is defined under the CCPA, the personal information of minors under 16 years old who are California residents.
How Do We Protect Your Information?
We implement a variety of reasonable administrative, physical, and technical security measures to help protect your information from loss, theft, misuse and unauthorized access, disclosure, alteration and destruction. Nevertheless, transmission via the internet is not completely secure and we cannot guarantee the security of information about you.
International Transfer and Privacy Shield
JLG participates in the EU-U.S. and Swiss-U.S. Privacy Shield Frameworks as set out by the U.S. Department of Commerce regarding the collection, use, and retention of personal data from the European Union, the United Kingdom, and Switzerland to the U.S., respectively. JLG certifies that it adheres to the Privacy Shield Principles of notice, choice, accountability for onward transfer, security, data integrity and purpose limitation, access, and recourse, enforcement and liability. JLG will use appropriate safeguards to comply with the judgment issued by the Court of Justice of the European Union on July 16, 2020 declaring the EU-U.S. Privacy Shield Framework as invalid.
In accordance with our obligations under Privacy Shield, and subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission, we hereby affirm our commitment to subject to the Privacy Shield Principles all personal data transferred from the European Union, the United Kingdom, and Switzerland in reliance on Privacy Shield. This means that, in addition to our other obligations under the Privacy Shield Principles, we shall be liable to you for any third party agent to which we transfer your personal data in reliance on Privacy Shield and that processes such personal data in a manner that violates the Privacy Shield Principles, unless we can demonstrate that we are not responsible for the resulting damages.
In the event that you have any inquiry, dispute, or claim arising out of or relating to our reliance on Privacy Shield, please contact us as set out in the “Contact Us” section below. If we are unable to resolve your complaint regarding personal data transferred in reliance on Privacy Shield directly, you may submit your complaint at no cost to you to JAMS at https://www.jamsadr.com/file-an-eu-us-privacy-shield-or-safe-harbor-claim. In the event there are residual complaints regarding personal data transferred in reliance on Privacy Shield that have not been resolved by JAMS, or any other means, you may seek a non-monetary remedy through binding arbitration to be provided to you in accordance with the Privacy Shield Principles.
To learn more about the Privacy Shield Framework, and to view JLG’s certification, please visit https://www.privacyshield.gov/.
By email: email@example.com
By web form: www.johnsonlawgroup.com/contact/
Johnson Law Group
Attention: Data Privacy
2925 Richmond Avenue
Houston, Texas 77098
Additional Disclosures for Nevada Residents
Nevada law (NRS 603A.340) requires each business to establish a designated request address where Nevada consumers may submit requests directing the business not to sell certain kinds of personal information that the business has collected or will collect about the consumer. A sale under Nevada law is the exchange of personal information for monetary consideration by the business to a third party for the third party to license or sell the personal information to other third parties. If you are a Nevada consumer and wish to submit a request relating to our compliance with Nevada law, please contact us as at firstname.lastname@example.org.
Additional Disclosures for California Residents
These additional disclosures apply only to California residents. The California Consumer Privacy Act of 2018 (“CCPA”) provides additional rights to know, delete and opt-out, and requires businesses collecting or disclosing personal information to provide notices and means to exercise rights.
Notice of Collection
In the past 12 months, we have collected the following categories of personal information enumerated in the CCPA:
- Identifiers, including name, postal address, email address, and online identifiers (such as IP address).
- Customer records, including phone number.
- Characteristics of protected classifications under California or federal law, including gender.
- Commercial or transactions information, including description of legal issues, records of products or services purchased, obtained, or considered.
- Internet activity, including browsing history, search history, and interactions with a website, email, application, or advertisement.
- Geolocation data.
- Inferences drawn from the above information about your predicted characteristics and preferences.
For further details on information we collect, including the sources from which we receive information, review the “What Information Do We Collect?” section above. We collect and use these categories of personal information for the business purposes described in the “What Do We Use Your Information For?” section above. Please review the “Sharing of Information” section above for further details about the categories of parties with whom we share information.
Right to Know and Delete
You have the right to know certain details about our data practices in the past 12 months. In particular, you may request the following from us:
- The categories of personal information we have collected about you;
- The categories of sources from which the personal information was collected;
- The categories of personal information about you we disclosed for a business purpose or sold;
- The categories of third parties to whom the personal information was disclosed for a business purpose or sold;
- The business or commercial purpose for collecting or selling the personal information; and
- The specific pieces of personal information we have collected about you.
In addition, you have the right to delete the personal information we have collected from you.
To exercise any of these rights, please submit a request through our online form available at https://www.johnsonlawgroup.com/contact/ and specify that you are making a “California Privacy Rights Request” or call our toll free number at 800-230-7700. In the request, please specify which right you are seeking to exercise and the scope of the request. We will confirm receipt of your request within 10 days. We may require specific information from you to help us verify your identity and process your request. If we are unable to verify your identity, we may deny your requests to know or delete.
JLG does not sell personal information as the term “sell” is defined under the CCPA.
You can designate an authorized agent to submit requests on your behalf. However, we will require written proof of the agent’s permission to do so and verify your identity directly.
Right to Non-Discrimination
You have the right not to receive discriminatory treatment by us for the exercise of any your rights.
Shine the Light
California’s “Shine the Light” law permits customers who reside in California to request, once per year, disclosure regarding how we share certain of their information with third parties and affiliates for those third parties’ and affiliates’ own direct marketing purposes. If this law applies to you and you wish to obtain further information about our sharing, please contact us as set out in the “Contact Us” section above. Requests must state “California Privacy Rights Request” in the subject line or first line of the description and include your name, street address, city, state, and ZIP code. We are not required to respond to requests made by means other than through the provided email or mail addresses.
Additional Disclosures for Data Subjects in Europe
Data protection laws in Europe make a distinction between organizations that process personal data for their own purposes (known as “controllers”) and organizations that process personal data on behalf of other organizations (known as “processors”). JLG acts as a controller with respect to personal data collected as you interact with our Service.
Lawful Basis for Processing
Data protection laws in Europe require a “lawful basis” for processing personal data. Our lawful bases include where: (a) you have given consent to the processing for one or more specific purposes, either to us, our Service Providers, our partners, or our clients; (b) processing is necessary for the performance of a contract with you; (c) processing is necessary for compliance with a legal obligation; or (d) processing is necessary for the purposes of the legitimate interests pursued by us or a third party, and your interests and fundamental rights and freedoms do not override those interests.
Your European Privacy Rights
If you are a data subject in Europe, you have the right to access, rectify, or erase any personal data we have collected about you. You also have the right to data portability and the right to restrict or object to our processing of personal data we have collected about you. In addition, you have the right to ask us not to process your personal data (or provide it to third parties to process) for marketing purposes or purposes materially different than for which it was originally collected or subsequently authorized by you. You may withdraw your consent at any time for any data processing we do based on consent you have provided to us.
You may exercise your rights by submitting a written request to us at the address set out in the “Contact Us” section above. We will respond to your request within 30 days. We may request specific information from you to help us confirm your identity and process your request. Applicable law may require or permit us to decline your request. If we decline your request, we will tell you why, subject to legal restrictions.
If you have a complaint about our use of your personal data or response to your requests regarding your personal data, you may submit a complaint to the data protection regulator in your jurisdiction. We would, however, appreciate the opportunity to address your concerns before you approach a data protection regulator, and would welcome you directing an inquiry first to us. In addition to the contact information above, please contact our:
Data Protection Officer: