Privacy Policy

Atheria Law PC

Website Privacy Policy

Updated and effective as of February 7, 2024

TOPICS

This Privacy Policy is divided into the following sections:

About Us

Contacting Us

Personal information we collect

What we do with your personal information

Disclosure of your personal information to third parties

International transfers

Security of your personal information

How long we keep your personal information

Your rights

Exercising your rights

Cookies and other tracking technologies

Links

Complaints

Changes to our Privacy Policy

ABOUT US

At Atheria Law PC (“Atheria Law”, “we” or “us”), we are committed to respecting your privacy. This Privacy Policy explains how we collect, use and disclose personal information that we receive when you visit and use this website (the “Site”), communicate with us, or otherwise interact with us, whether online or offline.  By using our Site and providing your personal information to us, you give us permission to process your personal information as described in this Privacy Policy.

California residents may obtain additional information about our privacy practice and their rights in our California Privacy Notice.

It is important that you read this Privacy Policy so that you are fully aware of how and why we are using your data.

The Site is owned and operated by Atheria Law PC, a professional corporation existing under the laws of the state of California, USA, with registration number C4301711 and having its registered address at One Post Street, 37th Floor, San Francisco, CA 94104.

CONTACTING US

If you have any questions about our Privacy Policy or your information, or wish to exercise any of your rights as described in this Privacy Policy or under data protection laws, you can contact us using the details set out below:

By post:

F.A.O.: Data Protection Officer

One Post Street, 37th Floor

San Francisco, CA 94104 USA


By phone: +1 (415) 278-7100

By email: privacy_inquiry@atherialaw.com

PERSONAL INFORMATION WE COLLECT

Personal information means any information relating to an individual which can be used to identify that individual, whether directly or indirectly. It does not include data where identifiers have been removed such that it is no longer possible to relate that information to an individual (which is referred to as anonymous data).

Information you give us

You may choose to provide us with personal information when:

  • you use our Site;
  • you are introduced to us;
  • we meet you in person; or
  • we are in contact by phone, email or otherwise.

The categories of personal information you provide include:

  • Contact Data, such as your name, email address and phone number;
  • Employment Information, such as the name of your employer and job title;
  • Correspondence Information, including any other personal information you provide us when you contact us with a query.

We will indicate to you where the provision of certain personal information is required in order for us to provide certain services. If you choose not to provide such personal information, we may not be able to provide the services you have requested.

Information we process automatically

We also collect, store and use information about your use of the Site, and about your computer, tablet, mobile or other device through which you access the Site. This includes the following information:

  • Technical Data: including Internet protocol (IP) address, browser type, internet service provider, device identifier, your login information, time zone setting, browser plug-in types and versions, preferred language, activities, operating system and platform, and geographical location; and
  • Usage Data:
  • including the full Uniform Resource Locators (URL), clickstream to, through and from the Site, pages you viewed and searched for, page response times, length of visits to certain pages, referral source/exit pages, page interaction information (such as scrolling, clicks and mouse-overs), date and time pages are accessed, Site navigation and search terms used,

(referred to together in this Privacy Policy as “Technical and Usage Data”).

Information we collect from third parties

We may obtain personal information about you from the following third parties:

  • publicly accessible sources, to the extent permitted by law (such as regulators’ registers, websites associated with your company, LinkedIn etc.); and
  • other third parties, such as other professionals you have engaged.

Aggregated Data

We may also collect, use and share “Aggregated Data” such as statistical or demographic data for any purpose. Aggregated Data could be derived from your personal information but is anonymized and is not considered personal information as it will not directly or indirectly reveal your identity.

Children

The Site is not intended for or directed at children under the age of 18 years and we do not knowingly collect information relating to children under this age. If we learn that we have received personal information from someone under the age of 13, we will delete such information in accordance with applicable law.

Types of data
Purposes for which we willprocess the information
UK/EEA legal Basis for the processing
Contact Data, Correspondence Information, Employment Information
To respond to your questions and provide you with information and materials that you request from us.
It is in our legitimate interests to respond to your queries and provide any information and materials requested in order to maintain good customer relations.

It is necessary for our legitimate interests to grow our business and to inform our marketing strategy.
Contact Date
To deliver relevant marketing materials to you, invite you to events and other functions we believe may be of interest to you and measure or understand the effectiveness of the information we provide to you.
It is in our legitimate interests to keep records about changes to our terms and policies and to ensure that any changes are communicated to you.
Photographs (and/or videos)
To photograph (and/or video) our events and publish materials as appropriate on our website, social media and in other promotional materials.
It is in our legitimate interests to market our services so that we can continue to develop our business and to inform our marketing strategy.

DISCLOSURE OF YOUR PERSONAL INFORMATION TO THIRD PARTIES

We may share your personal information with the following (as required in accordance with the uses set out above):

We will not sell, rent, lease or otherwise share your personal information except as outlined in this Privacy Policy or without obtaining your consent beforehand.

INTERNATIONAL TRANSFERS

We are a US company. As a result, any personal data you provide us or that we collect from you through the Site will be transferred to us in the USA. We take appropriate steps to protect your personal data and process it in accordance with applicable data protection laws.

SECURITY OF YOUR PERSONAL INFORMATION

We use appropriate technical and organizational security measures (including encryption) to protect personal information both online and offline from unauthorized use, loss, alteration or destruction. Where data processing is carried out on our behalf by a third party, we take steps to ensure that appropriate security measures are in place to prevent unauthorized disclosure of personal information.

Despite these precautions, however, we cannot guarantee the security of information transmitted over the internet or that unauthorized persons will not obtain access to personal information.

HOW LONG WE KEEP YOUR PERSONAL INFORMATION

We will only retain your personal information for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. We may retain your personal information for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.

To determine the appropriate retention period for personal information, we consider the amount, nature and sensitivity of the personal information, the potential risk of harm from unauthorized use or disclosure of your personal information, the purposes for which we process your personal information, whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements.

Information For Visitors From California and Nevada

California residents may obtain additional information about our privacy practice and their rights in our California Privacy Notice.

Although we do not “sell” “covered information” of Nevada “consumers” as those terms are defined by Chapter 603A of the Nevada Revised Statutes, you may contact us and register an email address, so that we can provide you notice and the opportunity to opt out in the event we should do so in the future. It is your responsibility to keep your email contact information current.

YOUR RIGHTS – UK AND EEA ONLY

If you have any questions about our use of your personal information, you should first contact us via the details provided in Contacting Us section above. Under certain circumstances and in accordance with UK, EU or other applicable data protection laws, you may have the right to require us to:

Please note that not all of the above rights are absolute and we may be entitled to refuse requests, wholly or partly, where exceptions under applicable law apply. You can exercise any of your rights as described in this Privacy Policy and under data protection laws by contacting us as provided in the Contacting Us section above.

Save as described in this Privacy Policy or provided under data protection laws, there is no charge for the exercise of your legal rights. However, if your requests are manifestly unfounded or excessive, in particular because of their repetitive character, we may either: (a) charge a reasonable fee taking into account the administrative costs of providing the information or taking the action requested; or (b) refuse to act on the request.

Where we have reasonable doubts concerning the identity of the person making the request, we may request additional information necessary to confirm your identity.

COMPLAINTS

If you have any questions or concerns regarding our Privacy Policy or practices, please contact us using the details provided in the Contacting Us section above.

If you are located in the UK or EEA, you also have the right to complain to your local data protection supervisory authority. In the UK, this is the Information Commissioner’s Office (https://ico.org.uk/). If you are resident in the EEA, you can find details regarding your local data protection regulator here.

CHANGES TO OUR PRIVACY POLICY

We reserve the right to change this Privacy Policy from time to time. Any changes will be posted on the Site with an updated revision date. If we make any material changes to this Privacy Policy, we may notify you by email or by means of a prominent notice on the Site prior to the change becoming effective. Your continued use of this Site after any update to this Privacy Policy will constitute your acceptance of our changes.

This policy was last updated on: 1 January 2022

//////////////////////////////////////////////

California Privacy Notice

Effective Date: January 1, 2022

This notice reflects our good-faith understanding of the California Consumer Privacy Act (the “CCPA”) and our data practices as of the date posted (set forth above). We may, from time-to-time, update information in this and other notices regarding our data practices and your rights, modify our methods for responding to your requests, and/or supplement our response to your requests, as we continue to develop our compliance program to reflect the evolution of the law and our understanding of how it relates to our data practices.

This California Privacy Notice (“Notice”) applies to “Consumers” as defined by the California Consumer Privacy Act (“CCPA”) as a supplement to Atheria Law PC’s (“Atheria Law,” “us,” “we,” or “our”) other privacy policies or notices. In the event of a conflict between any other Atheria Law policy, statement, or notice and this Notice, this Notice will prevail as to California Consumers and their rights under the California law. Please see also any general privacy policy or notice posted or referenced on our websites, apps, products, or services including, without limitation, our Privacy Policy.

This Notice covers our collection, use, disclosure, and sale of California Consumers’ “Personal Information” or “PI” as defined by the CCPA, except to the extent such PI is exempt from the notice obligations of the CCPA for the twelve months preceding the Effective Date. The description of our data practices in Section 1 of this Notice, as required by the CCPA, covers only calendar year 2022 and will be updated annually. Our practices in calendar year 2023 may differ. However, if materially different from this Notice we will provide pre-collection notice of the current practices, which may include reference to our general privacy policy or other applicable privacy notices, which will reflect current practices. Section II of this Notice explains the rights available to California Consumers.

As a law firm, much of the data we collect and process is not subject to CCPA Consumer rights. Without limiting the foregoing:

I. COLLECTION AND USE OF PERSONAL INFORMATION

We collect PI about California Consumers, which in the calendar year 2022 included the following:

Category Examples of PI Collected Sources of PI Purposes for PI Collection Categories of Recipients
Identifiers

(as defined in CCPA §1798.140(o)(1)(A))

Name, postal address, email address, identification numbers From the Consumer, Clients, Service Providers, Government Entities, and Third Parties
  • Processing Interactions and Transactions;
  • Managing Interactions and Transactions;
  • Performing Services;
  • Research and Development;
  • Quality Assurance; and
  • Security

For example, these purposes include to contact you, to verify your identity, to provide services, and to comply with our legal obligations.

Business Purpose Disclosure:

Clients; Government Entities; Tribunals; and Investigative and Paraprofessional Services and Firms, Data Processors and Storage Providers, and other Service Providers

Sale: Not Sold.

Personal Records

(as defined in CCPA §1798.140(o)(1)(B))

Name, postal address, telephone number, email address From the Consumer, Clients, Government Entities, Service Providers, and Third Parties
  • Processing Interactions and Transactions;
  • Managing Interactions and Transactions;
  • Performing Services;
  • Research and Development;
  • Quality Assurance; and
  • Security

For example, these purposes include business management and planning, to provide services, and to comply with our legal obligations.

Business Purpose Disclosure:

Clients; Data Subjects; Government Entities; Tribunals; and Investigative and Paraprofessional Services and Firms, Data Processors and Storage Providers, and other Service Providers

Sale: Not Sold.

Personal Characteristics or Traits

(as defined in CCPA §1798.140(o)(1)(C))

Marital / familial status, race, religion, disabilities From the Consumer, Clients, Government Entities, Service Providers, and Third Parties
  • Processing Interactions and Transactions;
  • Managing Interactions and Transactions;
  • Performing Services;
  • Research and Development;
  • Quality Assurance; and
  • Security

For example, these purposes include to provide benefits to our partners, and services to our clients.

Business Purpose Disclosure:

Clients; Data Subjects; Government Entities; Tribunals; and Investigative and Paraprofessional Services and Firms, Data Processors and Storage Providers, and other Service Providers

Sale: Not Sold.

Commercial Information / Account Details

(as defined in CCPA §1798.140(o)(1)(D))

Purchase history or tendencies From the Consumer, Clients, Government Entities, Service Providers, and Third Parties.
  • Processing Interactions and Transactions;
  • Managing Interactions and Transactions;
  • Performing Services;
  • Research and Development;
  • Quality Assurance; and
  • Security

For example, these purposes include to provide benefits to our partners and services to our clients.

Business Purpose Disclosure:

Clients; Data Subjects; Government Entities; Tribunals; and Investigative and Paraprofessional Services and Firms, Data Processors and Storage Providers, and other Service Providers

Sale: Not Sold.

Internet Usage Information

(as defined in CCPA §1798.140(o)(1)(F))

Information regarding interactions with our Site, computer systems, and/or devices From the Consumer, Service Providers and Third Parties.
  • Processing Interactions and Transactions;
  • Managing Interactions and Transactions;
  • Performing Services;
  • Research and Development;
  • Quality Assurance; and
  • Security; and
  • Debugging

For example, these purposes include to improve our services, including providing users more relevant content, and to secure our network and protect our personnel.

Business Purpose Disclosure:

Marketing and Analytics Vendors and other Service Providers

Sale: Not Sold.

Professional or Employment Information

(as defined in CCPA §1798.140(o)(1)(I))

Job title, employer, practice area or industry focus From the Consumer, Clients, Government Entities, and Third Parties
  • Processing Interactions and Transactions;
  • Managing Interactions and Transactions;
  • Performing Services;
  • Research and Development;
  • Quality Assurance; and

For example, these purposes include to provide benefits to our partners and to market them to clients and prospective clients.

Business Purpose Disclosure:

Clients; Data Subjects; Government Entities; Tribunals; and Investigative and Paraprofessional Services and Firms, and other Service Providers

Sale: Not Sold.

Inferences from PI Collected

(as defined in CCPA §1798.140(o)(1)(K))

Customer profiles reflecting preferences From the Consumer, Service Providers, and Third Parties
  • Processing Interactions and Transactions;
  • Managing Interactions and Transactions;
  • Performing Services;
  • Research and Development;
  • Quality Assurance; and

For example, for business management and planning and to provide services.

Business Purpose Disclosure:

Marketing Vendors and other Service Providers.

Sale: Not Sold.

The chart above reflects the categories of PI required by the CCPA. There may be additional information that we collect that meets the CCPA’s definition of PI but is not reflected by a category, in which case we will treat it as PI as required by the CCPA, but will not include it when we are required to describe our practices by category of PI.

In addition, we may collect, use, and disclose your PI as required or permitted by applicable law. We do not treat de-identified data or aggregate consumer information (each as defined by the CCPA) as PI, and we reserve the right to convert, or permit others to convert, your PI into de-identified data or aggregate consumer information.

We may share your PI with our Service Providers, including those that facilitate advertising and marketing, and other categories of recipients as described in the table above, for the same purposes as the collection purposes set forth in that chart. Subject to the CCPA’s restrictions and obligations, our Service Providers also may use your PI for certain permitted business purposes (e.g. security and fraud prevention). Our Service Providers may themselves engage service providers or subcontractors to enable them to perform services for us; such sub-processing is an additional business purpose for which we are providing you notice.

Atheria Law does not believe it has sold (as the term “sale” is defined by the CCPA) Consumer PI in 2021. As the law evolves, we may revisit this conclusion and, if applicable, revise this Notice. See Section II below regarding our current conclusion that data collection by third-party cookies associated with our web sites is not a sale by us under the CCPA.

II. CALIFORNIA PRIVACY RIGHTS

Under the CCPA, California Consumers have certain rights which they may exercise independently or through an authorized agent. As permitted by the CCPA, any request you submit to us is subject to an identification and verification process, which will depend on the nature of the request and the PI requested and will be further explained in response to a request. We will not fulfill your CCPA request unless you have provided sufficient information for us to be satisfied that you are the Consumer about whom we collect the applicable PI. Please promptly respond to any follow-up inquiries so that we may verify your identity. If you request that we provide you with specific pieces of information about you, or that we delete sensitive PI, we may apply heightened verification standards than what we would apply to other types of requests. For a categories request, or a request to delete non-sensitive PI, we require verification to a reasonable degree of certainty. Authorized agents who meet the agency requirements of the CCPA may submit requests on behalf of Consumers, which will also be subject to a verification process.

Some PI we maintain about Consumers (e.g., clickstream data) is not sufficiently associated with enough PI about Consumers for us to be able to verify that it is a particular Consumer’s PI. Accordingly, we will not include such information in response to Consumer requests. If we cannot comply with a request, we will explain the reasons in our response. We will use PI provided in your request only to verify your identity or authority to make the request and as necessary to track and document requests and responses, unless you also provided the PI to us for another purpose.

We will make commercially reasonable efforts to identify Consumer PI that we collect, use, store, disclose, or otherwise process and to respond to your California Consumer privacy rights requests. In some cases, particularly with voluminous and/or typically irrelevant data, we may provide you with a summary of your PI and give you the opportunity to elect whether you want us to provide the entire data set. Alternatively, we may direct you on how to access and copy responsive PI yourself. We may charge a reasonable fee or refuse to act upon a request if the request is excessive, repetitive, unfounded, or overly burdensome. If we determine that the request warrants a fee, or that we may decline to comply with the request, we will give you notice explaining why we made that decision. In the case of a fee, we will provide a cost estimate and the opportunity to accept such fees before charging you for responding to your request.

We may collect, use, and disclose your PI as required or permitted by applicable law, and this may override your CCPA rights. Please also note we are not obligated to comply with Consumer requests to the extent that doing so would infringe on our, or any other person’s or party’s rights, or conflict with applicable law.

Your California Consumer privacy rights are described below. To make a request, Contact Us and provide us with your name, email address, phone number, the nature of your inquiry, and, if you are disabled, any accessibility accommodations you require.

Disclosure Rights (“Right to Know”)

i. Information Rights (“Categories”)

California Consumers have the right to send us a request, no more than twice in a twelve-month period, for any of the following for the twelve-month period prior to the request date:

  1. The categories of PI we have collected about you.
  2. The categories of sources from which we collected your PI.
  3. The business or commercial purposes for our collecting or selling your PI.
  4. The categories of third parties with whom we have shared your PI.
  5. A list of the categories of PI disclosed for a business purpose, in the prior twelve months, along with the categories of recipient for each category of PI, or that no disclosure occurred.
  6. A list of the categories of PI sold about you in the prior twelve months, along with the categories of recipient for each category of PI, or that no sale occurred.

If we cannot verify your identity to a reasonable degree of certainty, we will not deliver the category information either but will refer you to the disclosures in Section I above.

Please note that PI is retained by us for various time periods, so we may not be able to fully respond to what might be relevant for the twelve-month period prior to your request.

ii. Obtaining Copies of PI (“Specific Pieces”)

California Consumers have the right to make or obtain a transportable copy, no more than twice in a twelve-month period, of their PI that we have collected (in the twelve-month period prior to the request date) and maintain. In order to protect the privacy and data security of Consumers, we will require a high degree of certainty that we have verified that a requester is the requesting Consumer or the Consumer’s authorized agent. If you are unable to meet that standard, we will automatically treat the request as a “categories” request and apply the lower verification standard notice above.

In addition, consistent with the CCPA and our interest in the security of your PI, we will not deliver to you your social security number, driver’s license number, or other government-issued identification number, financial account number, any health or medical identification number, an account password, or security questions or answers in response to a CCPA request.

Please note that PI is retained by us for various time periods, so we may not be able to fully respond to what might be relevant for the twelve-month period prior to the request.

“Do Not Sell” Rights

We may disclose your PI for the following purposes, which are not a sale: (i) if you direct us to share PI; (ii) to comply with your requests under the CCPA; (iii) as part of a merger or asset sale; and (iv) as otherwise required or permitted by applicable law.

We do not believe that we sell California Consumer PI as defined under the CCPA and do not offer a “do not sell my personal information” request option. Accordingly, we will not sell PI of California Consumers collected when we did not offer a “do not sell” opt out without prior, express consent.

Although there is not yet an industry consensus, we do not believe that the collection of data by third-party cookies and other technologies on our website and online services is a sale of your personal information by us. However, we offer users the ability to opt-out of all cookies associated with our website that are unnecessary for website operations, which includes interest-based advertising cookies and other cookies that might collect your PI and use it or share it with others for purposes that are not necessary to provide us with services. You can exercise that opt out by clicking on “cookie preferences” on the banner that appears when you first visit our site. See also our Privacy Policy for certain choices you have regarding cookies, including the use of your browser settings.

Whether you use our cookie management tool, browser settings, or other third-party tools to exercise certain cookie preferences, you will have to exercise cookie preferences using each device you use to access our online services in order for those preferences to be applied to each device, and, if you block or delete cookies, your preferences may not be or remain effective. Blocking cookies may render some features of our site, and third-party sites, inoperable or such sites may not function as intended. As the law and an industry consensus may develop regarding cookies and the CCPA, we will reevaluate our approach to cookies and may change the way we treat cookies and other online tracking technologies.

Some browsers have signals that may be characterized as “do not track” signals, but we do not understand them to operate in that manner or to signify a “do not sell” request. We understand that various parties are developing “do not sell” signals, and we may recognize such signals in the future if we conclude such a program is appropriate.

We do not knowingly sell the PI of Consumers under 16.

Deletion Rights

You may request that we delete your PI that we have collected directly from you. Under the CCPA, we may decline to delete your PI under certain circumstances: for example, if we need the PI to complete transactions or provide services you have requested or that are reasonably anticipated, for security purposes, for internal business purposes (including maintaining business records), to comply with law, or to exercise or defend legal claims. Note also that we are not required to delete your PI that we did not collect directly from you. We require a reasonable or high degree of certainty that the requester is the Consumer for which a deletion request is applicable, depending on the sensitivity of the PI.

Non-Discrimination

California Consumers have the right not to receive discriminatory treatment for the exercise of any of the privacy rights conferred by the CCPA. As of the Effective Date of this California Notice, we did not offer any programs requiring you to limit any of your CCPA rights, or otherwise require you to limit your CCPA rights in connection with charging a different price or rate, or offering a different level or quality of good or service in connection with the collection, use, or retention of PI. If we do so, participation will be optional and we will provide notice of program terms describing the material aspects of any such program and the rights of California participants.

Other California Privacy Rights

We do not share personal information as defined by California Civil Code Section 1798.83 (the “Shine the Light” law) with third parties for their direct marketing purposes absent your consent. If you are a California resident, you may request information about our compliance with the Shine the Light law by Contacting Us. Any such request must include “California Privacy Rights Request” in the first line of the description and include your name, street address, city, state, and ZIP code. Please note that we are only required to respond to one request per customer each year, and we are not required to respond to requests made by means other than through this email address or mail address.

Please note that “Shine the Light” rights and CCPA rights are established under different legal regimes and must be exercised separately.


When you visit our online services, we and third parties may use tracking technologies to collect usage information based on your device for a variety of purposes, including serving you advertising, based on your having visited our services or your activities across time and third-party locations. Some browsers may enable you to turn on or off a so-called “Do Not Track” signal. Because there is no industry consensus on what these signals should mean and how they should operate, we do not look for or respond to “Do Not Track” signals. For more information on tracking and targeting and your choices regarding these practices, see our online Privacy Policy. We also offer a cookie management tool that enables you to exercise certain cookie preferences, available by clicking on the “cookie preferences” link on the banner that appears when first accessing any of our online services. Whether you use our cookie management tool, browser settings, or other third-party tools to exercise certain cookie preferences you will have to exercise cookie preferences using each device you use to access our online services in order for those preferences to be applied to each device, and, if you block or delete cookies, your preferences may not be or may not remain effective. Blocking cookies may cause some features of our site, and third-party sites, to fail to be available or to function as intended.

CONTACT US

For more information regarding your California privacy rights, please Contact Us.

DISCLOSURE OF YOUR PERSONAL INFORMATION TO THIRD PARTIES

We may share your personal information with the following (as required in accordance with the uses set out above):

  • Service providers and advisors: we may share your personal information with third party vendors and other service providers that perform services for us or on our behalf, which may include providing email, advertising, web hosting or analytics services.
  • Business partners: we may share your personal information (such as contact details) with our business partners, such as other professional advisors, where this is necessary in the normal course of our business. 
  • Purchasers and third parties in connection with a business transaction: your personal information may be disclosed to third parties in connection with a transaction, such as a merger, sale of assets or shares, reorganization, financing, change of control or acquisition of all or a portion of our business.
  • Law enforcement, regulators and other parties for legal reasons: we may share your personal information with third parties as required by law or if we reasonably believe that such action is necessary to (i) comply with the law and the reasonable requests of law enforcement; (ii) detect and investigate illegal activities and breaches of agreements; and/or (iii) exercise or protect the rights, property, or personal safety of Atheria Law, its users or others.
  • Our affiliate firm: we may share your personal information with Atheria Law Ltd, our affiliate law firm in the United Kingdom.

We will not sell, rent, lease or otherwise share your personal information except as outlined in this Privacy Policy or without obtaining your consent beforehand.

INTERNATIONAL TRANSFERS

We are a US company. As a result, any personal data you provide us or that we collect from you through the Site will be transferred to us in the USA. We take appropriate steps to protect your personal data and process it in accordance with applicable data protection laws.

SECURITY OF YOUR PERSONAL INFORMATION

We use appropriate technical and organizational security measures (including encryption) to protect personal information both online and offline from unauthorized use, loss, alteration or destruction. Where data processing is carried out on our behalf by a third party, we take steps to ensure that appropriate security measures are in place to prevent unauthorized disclosure of personal information.

Despite these precautions, however, we cannot guarantee the security of information transmitted over the internet or that unauthorized persons will not obtain access to personal information. 

HOW LONG WE KEEP YOUR PERSONAL INFORMATION

We will only retain your personal information for as long as reasonably necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, regulatory, tax, accounting or reporting requirements. We may retain your personal information for a longer period in the event of a complaint or if we reasonably believe there is a prospect of litigation in respect to our relationship with you.

To determine the appropriate retention period for personal information, we consider the amount, nature and sensitivity of the personal information, the potential risk of harm from unauthorized use or disclosure of your personal information, the purposes for which we process your personal information, whether we can achieve those purposes through other means, and the applicable legal, regulatory, tax, accounting or other requirements.

Information For Visitors From California and Nevada

California residents may obtain additional information about our privacy practice and their rights in our California Privacy Notice.

Although we do not “sell” “covered information” of Nevada “consumers” as those terms are defined by Chapter 603A of the Nevada Revised Statutes, you may contact us and register an email address, so that we can provide you notice and the opportunity to opt out in the event we should do so in the future. It is your responsibility to keep your email contact information current.

YOUR RIGHTS – UK AND EEA ONLY

If you have any questions about our use of your personal information, you should first contact us via the details provided in Contacting Us section above. Under certain circumstances and in accordance with UK, EU or other applicable data protection laws, you may have the right to require us to:

  • Right of access. You have the right to obtain access to your personal information.
  • Right of portability. You have the right, in certain circumstances, to receive a copy of the personal information you have provided to us in a structured, commonly used, machine-readable format that supports re-use, or to request the transfer of your personal information to another person.
  • Right to rectification. You have the right to obtain rectification of any inaccurate or incomplete personal information we hold about you without undue delay.
  • Right to erasure. You have the right, in some circumstances, to require us to erase your personal information without undue delay if the continued processing of that personal information is not justified.
  • Right to restriction. You have the right, in some circumstances, to require us to limit the purposes for which we process your personal information if the continued processing of the personal information in that way is not justified, such as where the accuracy of the personal information is contested by you.
  • Right to object. You have the right to object to any processing based on our legitimate interests in certain circumstances. You can also object to our direct marketing activities for any reason by clicking the “unsubscribe” link set out in any marketing communication you receive or by contacting your usual contact at Atheria Law.
  • Right to withdraw consent. If you have provided consent to any processing of your personal information, you have a right to withdraw that consent but without affecting the lawfulness of processing based on consent before its withdrawal.


Please note that not all of the above rights are absolute and we may be entitled to refuse requests, wholly or partly, where exceptions under applicable law apply. You can exercise any of your rights as described in this Privacy Policy and under data protection laws by contacting us as provided in the Contacting Us section above.

Save as described in this Privacy Policy or provided under data protection laws, there is no charge for the exercise of your legal rights. However, if your requests are manifestly unfounded or excessive, in particular because of their repetitive character, we may either: (a) charge a reasonable fee taking into account the administrative costs of providing the information or taking the action requested; or (b) refuse to act on the request.

Where we have reasonable doubts concerning the identity of the person making the request, we may request additional information necessary to confirm your identity.

COMPLAINTS

If you have any questions or concerns regarding our Privacy Policy or practices, please contact us using the details provided in the Contacting Us section above. 

If you are located in the UK or EEA, you also have the right to complain to your local data protection supervisory authority. In the UK, this is the Information Commissioner’s Office (https://ico.org.uk/). If you are resident in the EEA, you can find details regarding your local data protection regulator here

CHANGES TO OUR PRIVACY POLICY

We reserve the right to change this Privacy Policy from time to time. Any changes will be posted on the Site with an updated revision date. If we make any material changes to this Privacy Policy, we may notify you by email or by means of a prominent notice on the Site prior to the change becoming effective. Your continued use of this Site after any update to this Privacy Policy will constitute your acceptance of our changes.

This policy was last updated on: 1 January 2022 



//////////////////////////////////////////////

California Privacy Notice

Effective Date: January 1, 2022

This notice reflects our good-faith understanding of the California Consumer Privacy Act (the “CCPA”) and our data practices as of the date posted (set forth above). We may, from time-to-time, update information in this and other notices regarding our data practices and your rights, modify our methods for responding to your requests, and/or supplement our response to your requests, as we continue to develop our compliance program to reflect the evolution of the law and our understanding of how it relates to our data practices.

This California Privacy Notice (“Notice”) applies to “Consumers” as defined by the California Consumer Privacy Act (“CCPA”) as a supplement to Atheria Law PC’s (“Atheria Law,” “us,” “we,” or “our”) other privacy policies or notices. In the event of a conflict between any other Atheria Law policy, statement, or notice and this Notice, this Notice will prevail as to California Consumers and their rights under the California law. Please see also any general privacy policy or notice posted or referenced on our websites, apps, products, or services including, without limitation, our Privacy Policy.

This Notice covers our collection, use, disclosure, and sale of California Consumers’ “Personal Information” or “PI” as defined by the CCPA, except to the extent such PI is exempt from the notice obligations of the CCPA for the twelve months preceding the Effective Date. The description of our data practices in Section 1 of this Notice, as required by the CCPA, covers only calendar year 2022 and will be updated annually. Our practices in calendar year 2023 may differ. However, if materially different from this Notice we will provide pre-collection notice of the current practices, which may include reference to our general privacy policy or other applicable privacy notices, which will reflect current practices. Section II of this Notice explains the rights available to California Consumers.

As a law firm, much of the data we collect and process is not subject to CCPA Consumer rights. Without limiting the foregoing:

  • Consistent with the CCPA, job applicants, current and former employees, and independent contractors, other than prospective, current, and former partners of Atheria Law (“Personnel”), and subjects of certain business-to-business communications acting solely in their capacity as representatives of another business are not considered “Consumers” for purposes of this California Privacy Notice or the rights described herein.
  • PI subject to an evidentiary privilege, such as the attorney-client privilege and/or attorney work product protection, is not subject to the rights available to California Consumers as described in Section II; however, we do include this PI in the general disclosures in Section I.
  • Publicly available information (as defined by the CCPA) is not PI under the CCPA and not included in the disclosures under Section I and is not data to which Consumers have rights as described in Section II.

I. COLLECTION AND USE OF PERSONAL INFORMATION

We collect PI about California Consumers, which in the calendar year 2022 included the following:

Category

Examples of PI Collected

Sources of PI

Purposes for PI Collection

Categories of Recipients

Identifiers

(as defined in CCPA §1798.140(o)(1)(A))

Name, postal address, email address, identification numbers

From the Consumer, Clients, Service Providers, Government Entities, and Third Parties

  • Processing Interactions and Transactions;
  • Managing Interactions and Transactions;
  • Performing Services;
  • Research and Development;
  • Quality Assurance; and
  • Security

For example, these purposes include to contact you, to verify your identity, to provide services, and to comply with our legal obligations.

Business Purpose Disclosure:

Clients; Government Entities; Tribunals; and Investigative and Paraprofessional Services and Firms, Data Processors and Storage Providers, and other Service Providers

Sale: Not Sold.

Personal Records

(as defined in CCPA §1798.140(o)(1)(B))

Name, postal address, telephone number, email address

From the Consumer, Clients, Government Entities, Service Providers, and Third Parties

  • Processing Interactions and Transactions;
  • Managing Interactions and Transactions;
  • Performing Services;
  • Research and Development;
  • Quality Assurance; and
  • Security

For example, these purposes include business management and planning, to provide services, and to comply with our legal obligations.

Business Purpose Disclosure:

Clients; Data Subjects; Government Entities; Tribunals; and Investigative and Paraprofessional Services and Firms, Data Processors and Storage Providers, and other Service Providers

Sale: Not Sold.

Personal Characteristics or Traits

(as defined in CCPA §1798.140(o)(1)(C))

Marital / familial status, race, religion, disabilities

From the Consumer, Clients, Government Entities, Service Providers, and Third Parties

  • Processing Interactions and Transactions;
  • Managing Interactions and Transactions;
  • Performing Services;
  • Research and Development;
  • Quality Assurance; and
  • Security

For example, these purposes include to provide benefits to our partners, and services to our clients.

Business Purpose Disclosure:

Clients; Data Subjects; Government Entities; Tribunals; and Investigative and Paraprofessional Services and Firms, Data Processors and Storage Providers, and other Service Providers

Sale: Not Sold.

Commercial Information / Account Details

(as defined in CCPA §1798.140(o)(1)(D))

Purchase history or tendencies

From the Consumer, Clients, Government Entities, Service Providers, and Third Parties.

  • Processing Interactions and Transactions;
  • Managing Interactions and Transactions;
  • Performing Services
  • Research and Development;
  • Quality Assurance; and
  • Security

For example, these purposes include to provide benefits to our partners and services to our clients.

Business Purpose Disclosure:

Clients; Data Subjects; Government Entities; Tribunals; and Investigative and Paraprofessional Services and Firms, Data Processors and Storage Providers, and other Service Providers

Sale: Not Sold.

Internet Usage Information

(as defined in CCPA §1798.140(o)(1)(F))

Information regarding interactions with our website, computer systems, and/or devices

From the Consumer, Service Providers and Third Parties.

  • Processing Interactions and Transactions;
  • Managing Interactions and Transactions;
  • Performing Services
  • Research and Development;
  • Quality Assurance;
  • Security; and
  • Debugging

For example, these purposes include to improve our services, including providing users more relevant content, and to secure our network and protect our personnel.

Business Purpose Disclosure:

Marketing and Analytics Vendors and other Service Providers

Sale: Not Sold.

Professional or Employment Information

(as defined in CCPA §1798.140(o)(1)(I))

Job title, employer, practice area or industry focus

From the Consumer, Clients, Government Entities, and Third Parties

  • Processing Interactions and Transactions;
  • Managing Interactions and Transactions;
  • Performing Services
  • Research and Development; and
  • Quality Assurance

For example, these purposes include to provide benefits to our partners and to market them to clients and prospective clients.

Business Purpose Disclosure:

Clients; Data Subjects; Government Entities; Tribunals; and Investigative and Paraprofessional Services and Firms, and other Service Providers

Sale: Not Sold.

Inferences from PI Collected

(as defined in CCPA §1798.140(o)(1)(K))

Customer profiles reflecting preferences

From the Consumer, Service Providers, and Third Parties

  • Processing Interactions and Transactions;
  • Managing Interactions and Transactions;
  • Performing Services
  • Research and Development; and
  • Quality Assurance

For example, for business management and planning and to provide services.

Business Purpose Disclosure:

Marketing Vendors and other Service Providers.

Sale: Not Sold.

The chart above reflects the categories of PI required by the CCPA. There may be additional information that we collect that meets the CCPA’s definition of PI but is not reflected by a category, in which case we will treat it as PI as required by the CCPA, but will not include it when we are required to describe our practices by category of PI.

In addition, we may collect, use, and disclose your PI as required or permitted by applicable law. We do not treat de-identified data or aggregate consumer information (each as defined by the CCPA) as PI, and we reserve the right to convert, or permit others to convert, your PI into de-identified data or aggregate consumer information.

We may share your PI with our Service Providers, including those that facilitate advertising and marketing, and other categories of recipients as described in the table above, for the same purposes as the collection purposes set forth in that chart. Subject to the CCPA’s restrictions and obligations, our Service Providers also may use your PI for certain permitted business purposes (e.g. security and fraud prevention). Our Service Providers may themselves engage service providers or subcontractors to enable them to perform services for us; such sub-processing is an additional business purpose for which we are providing you notice.

Atheria Law does not believe it has sold (as the term “sale” is defined by the CCPA) Consumer PI in 2021. As the law evolves, we may revisit this conclusion and, if applicable, revise this Notice. See Section II below regarding our current conclusion that data collection by third-party cookies associated with our web sites is not a sale by us under the CCPA.

II. CALIFORNIA PRIVACY RIGHTS

Under the CCPA, California Consumers have certain rights which they may exercise independently or through an authorized agent. As permitted by the CCPA, any request you submit to us is subject to an identification and verification process, which will depend on the nature of the request and the PI requested and will be further explained in response to a request. We will not fulfill your CCPA request unless you have provided sufficient information for us to be satisfied that you are the Consumer about whom we collect the applicable PI. Please promptly respond to any follow-up inquiries so that we may verify your identity. If you request that we provide you with specific pieces of information about you, or that we delete sensitive PI, we may apply heightened verification standards than what we would apply to other types of requests. For a categories request, or a request to delete non-sensitive PI, we require verification to a reasonable degree of certainty. Authorized agents who meet the agency requirements of the CCPA may submit requests on behalf of Consumers, which will also be subject to a verification process.

Some PI we maintain about Consumers (e.g., clickstream data) is not sufficiently associated with enough PI about Consumers for us to be able to verify that it is a particular Consumer’s PI. Accordingly, we will not include such information in response to Consumer requests. If we cannot comply with a request, we will explain the reasons in our response. We will use PI provided in your request only to verify your identity or authority to make the request and as necessary to track and document requests and responses, unless you also provided the PI to us for another purpose.

We will make commercially reasonable efforts to identify Consumer PI that we collect, use, store, disclose, or otherwise process and to respond to your California Consumer privacy rights requests. In some cases, particularly with voluminous and/or typically irrelevant data, we may provide you with a summary of your PI and give you the opportunity to elect whether you want us to provide the entire data set. Alternatively, we may direct you on how to access and copy responsive PI yourself. We may charge a reasonable fee or refuse to act upon a request if the request is excessive, repetitive, unfounded, or overly burdensome. If we determine that the request warrants a fee, or that we may decline to comply with the request, we will give you notice explaining why we made that decision. In the case of a fee, we will provide a cost estimate and the opportunity to accept such fees before charging you for responding to your request.

We may collect, use, and disclose your PI as required or permitted by applicable law, and this may override your CCPA rights. Please also note we are not obligated to comply with Consumer requests to the extent that doing so would infringe on our, or any other person’s or party’s rights, or conflict with applicable law.

Your California Consumer privacy rights are described below. To make a request, Contact Us and provide us with your name, email address, phone number, the nature of your inquiry, and, if you are disabled, any accessibility accommodations you require.

Disclosure Rights (“Right to Know”)

i. Information Rights (“Categories”)

California Consumers have the right to send us a request, no more than twice in a twelve-month period, for any of the following for the twelve-month period prior to the request date:

  1. The categories of PI we have collected about you.
  2. The categories of sources from which we collected your PI.
  3. The business or commercial purposes for our collecting or selling your PI.
  4. The categories of third parties with whom we have shared your PI.
  5. A list of the categories of PI disclosed for a business purpose, in the prior twelve months, along with the categories of recipient for each category of PI, or that no disclosure occurred.
  6. A list of the categories of PI sold about you in the prior twelve months, along with the categories of recipient for each category of PI, or that no sale occurred.

If we cannot verify your identity to a reasonable degree of certainty, we will not deliver the category information either but will refer you to the disclosures in Section I above.

Please note that PI is retained by us for various time periods, so we may not be able to fully respond to what might be relevant for the twelve-month period prior to your request.

ii. Obtaining Copies of PI (“Specific Pieces”)

California Consumers have the right to make or obtain a transportable copy, no more than twice in a twelve-month period, of their PI that we have collected (in the twelve-month period prior to the request date) and maintain. In order to protect the privacy and data security of Consumers, we will require a high degree of certainty that we have verified that a requester is the requesting Consumer or the Consumer’s authorized agent. If you are unable to meet that standard, we will automatically treat the request as a “categories” request and apply the lower verification standard notice above.

In addition, consistent with the CCPA and our interest in the security of your PI, we will not deliver to you your social security number, driver’s license number, or other government-issued identification number, financial account number, any health or medical identification number, an account password, or security questions or answers in response to a CCPA request.

Please note that PI is retained by us for various time periods, so we may not be able to fully respond to what might be relevant for the twelve-month period prior to the request.

“Do Not Sell” Rights

We may disclose your PI for the following purposes, which are not a sale: (i) if you direct us to share PI; (ii) to comply with your requests under the CCPA; (iii) as part of a merger or asset sale; and (iv) as otherwise required or permitted by applicable law.

We do not believe that we sell California Consumer PI as defined under the CCPA and do not offer a “do not sell my personal information” request option. Accordingly, we will not sell PI of California Consumers collected when we did not offer a “do not sell” opt out without prior, express consent.

Although there is not yet an industry consensus, we do not believe that the collection of data by third-party cookies and other technologies on our website and online services is a sale of your personal information by us. However, we offer users the ability to opt-out of all cookies associated with our website that are unnecessary for website operations, which includes interest-based advertising cookies and other cookies that might collect your PI and use it or share it with others for purposes that are not necessary to provide us with services. You can exercise that opt out by clicking on “cookie preferences” on the banner that appears when you first visit our site. See also our Privacy Policy for certain choices you have regarding cookies, including the use of your browser settings.

Whether you use our cookie management tool, browser settings, or other third-party tools to exercise certain cookie preferences, you will have to exercise cookie preferences using each device you use to access our online services in order for those preferences to be applied to each device, and, if you block or delete cookies, your preferences may not be or remain effective. Blocking cookies may render some features of our site, and third-party sites, inoperable or such sites may not function as intended. As the law and an industry consensus may develop regarding cookies and the CCPA, we will reevaluate our approach to cookies and may change the way we treat cookies and other online tracking technologies.

Some browsers have signals that may be characterized as “do not track” signals, but we do not understand them to operate in that manner or to signify a “do not sell” request. We understand that various parties are developing “do not sell” signals, and we may recognize such signals in the future if we conclude such a program is appropriate.

We do not knowingly sell the PI of Consumers under 16.

Deletion Rights

You may request that we delete your PI that we have collected directly from you. Under the CCPA, we may decline to delete your PI under certain circumstances: for example, if we need the PI to complete transactions or provide services you have requested or that are reasonably anticipated, for security purposes, for internal business purposes (including maintaining business records), to comply with law, or to exercise or defend legal claims. Note also that we are not required to delete your PI that we did not collect directly from you. We require a reasonable or high degree of certainty that the requester is the Consumer for which a deletion request is applicable, depending on the sensitivity of the PI.

Non-Discrimination

California Consumers have the right not to receive discriminatory treatment for the exercise of any of the privacy rights conferred by the CCPA. As of the Effective Date of this California Notice, we did not offer any programs requiring you to limit any of your CCPA rights, or otherwise require you to limit your CCPA rights in connection with charging a different price or rate, or offering a different level or quality of good or service in connection with the collection, use, or retention of PI. If we do so, participation will be optional and we will provide notice of program terms describing the material aspects of any such program and the rights of California participants.

Other California Privacy Rights

We do not share personal information as defined by California Civil Code Section 1798.83 (the “Shine the Light” law) with third parties for their direct marketing purposes absent your consent. If you are a California resident, you may request information about our compliance with the Shine the Light law by Contacting Us. Any such request must include “California Privacy Rights Request” in the first line of the description and include your name, street address, city, state, and ZIP code. Please note that we are only required to respond to one request per customer each year, and we are not required to respond to requests made by means other than through this email address or mail address.

Please note that “Shine the Light” rights and CCPA rights are established under different legal regimes and must be exercised separately.

When you visit our online services, we and third parties may use tracking technologies to collect usage information based on your device for a variety of purposes, including serving you advertising, based on your having visited our services or your activities across time and third-party locations. Some browsers may enable you to turn on or off a so-called “Do Not Track” signal. Because there is no industry consensus on what these signals should mean and how they should operate, we do not look for or respond to “Do Not Track” signals. For more information on tracking and targeting and your choices regarding these practices, see our online Privacy Policy. We also offer a cookie management tool that enables you to exercise certain cookie preferences, available by clicking on the “cookie preferences” link on the banner that appears when first accessing any of our online services. Whether you use our cookie management tool, browser settings, or other third-party tools to exercise certain cookie preferences you will have to exercise cookie preferences using each device you use to access our online services in order for those preferences to be applied to each device, and, if you block or delete cookies, your preferences may not be or may not remain effective. Blocking cookies may cause some features of our site, and third-party sites, to fail to be available or to function as intended.

CONTACT US

For more information regarding your California privacy rights, please Contact Us.