This privacy notice sets out what information we process when you visit this website.
This page was last updated on 22nd February 2021
We generate log files from various servers: this will include an IP address assigned to you or, more likely, to someone who provides you with Internet access. All our client-facing platforms are accessible via Tor, and you can access this site within Tor. If you do not want us to see your actual IP address, feel free to visit us via Tor.
Our website does not use cookies or other similar technologies.
References to the basis of processing (e.g. "(Basis: Art. 6(f).)") are a reference to the article of the General Data Protection Regulation under which we undertake the processing in question.
We may use the logs from our servers to assist in our firm's security, as well as to determine visitor behaviour and help us plan our strategy (e.g. such as working out which pages on the site are most popular, or whether particular events have caused an increase in traffic).
(Basis: Art. 6(c): we have legal and regulatory obligations to protect our clients and their information. Art. 6(f): strategy planning is a legitimate, indeed sensible, thing for a business to do.)
We do not transfer or process data outside the UK unless we have your specific consent or where the nature of the processing requires it (for example, where we are emailing a party to your matter who is based outside the UK, or because you have chosen to use an email or other communications service which routes data outside the UK).
You have lots of rights in respect of our processing of your personal data but, since all we have is an IP address linked (at best) to your computer or phone, they are not particularly meaningful here. (If you want to browse the site and not give us "your" IP address, use Tor, or ask a friend to print out the pages for you!)
The relevant rights are:
If you want to exercise any of these rights, please just contact us.
You also have the right to lodge a complaint about our processing with a supervisory authority — you probably want the UK's Information Commissioner's Office.
All our computers are full-disk encrypted, as are our phones and tablets.
Our preference is to use PGP/GPG-encrypted email, but we appreciate that it may not be convenient for you to do so.
WWe have a secure document transfer portal, which lets you send documents to us, and us to send documents to you. It is less convenient than email, but is more secure than unencrypted email. Depending on the nature of the advice, we may choose to use this to transfer information to you. If you want to use it to send specific documents to us, just let us know. If you want to protect all documents you send to us, we encourage you to set up PGP/GPG.
"Normal" phone calls are not encrypted. We offer encrypted audio/video conferencing, if you'd prefer to use that — it works with most browsers without needing any additional software.
All our client-facing platforms are accessible via Tor, and you can access this site within Tor.
If you have particular security requirements, please contact us to discuss how we can support you.
Server logs: up to one year
We offer a range of communications options. Many of these are encrypted, and some offer end-to-end encryption. Please use the method which best suits your needs.
Please contact us via email:
Please encrypt it end-to-end, if you can. Here is our PGP/GPG key. You can also find our keys on keys.openpgp.org, and via Web Key Directory.
Drop us an email telling us a bit about you and what help you need. If we're likely to be a good fit for you, we're more than happy to take it from there by audio or video.
We offer both unencrypted and encrypted audio/video calls.
We record "normal" phone calls.
We'll never spam you or sell your information. Ever. More info here.
decoded.legal is: