Introduction This Privacy Policy governs the data practices of LegalITExperts, a legal service provider specializing in compliance, IP protection, and contract support for IT companies, SaaS platforms, and software development firms. The policy applies to clients, partners, and visitors interacting with our digital tools and legal services. We are committed to upholding the requirements of Swiss data protection law (FADP), as well as applicable international standards such as the EU General Data Protection Regulation (GDPR).
Privacy Policy LegalITExperts collects, processes, and stores personal and professional information solely for purposes related to the delivery of legal services, technical due diligence, and software compliance. Data collected includes:
Identification Data: Company name, contact persons, registered address, email, and phone
Service Data: Scope of legal support, SaaS terms, compliance records, IP documentation
Usage Data: Interaction logs within client portals, documentation version control
Billing and Tax Data: Invoices, payment confirmations, VAT numbers
Correspondence: Legal inquiries, redline feedback, task discussions
We store this information in secure data centres located in Switzerland and the EU. Retention periods are aligned with regulatory obligations and client directives, generally not exceeding 10 years unless otherwise required by law or audit necessity.
GDPR For users and corporate clients subject to GDPR, we ensure lawful, fair, and transparent data processing. Your rights include:
Right to access, rectify, or erase personal data
Right to restrict or object to processing under specific conditions
Right to data portability
Right to withdraw consent where processing is based on it
Right to file a complaint with a supervisory authority
Legal bases for processing include:
Contractual necessity: Execution of legal agreements, consultations, or compliance monitoring
Legal obligations: Retention of legal documentation, response to regulatory inquiries
Legitimate interests: Platform improvement, client communication, risk mitigation
Consent: Required for participation in optional programs or communication outside service scope
To exercise your rights, email us at dataprotection@legalitexperts.ch. We respond within the legally mandated timeframe and maintain GDPR-compliant records of all requests.
Cookie Policy
4.1 Types of cookies used LegalITExperts uses a minimal set of cookies to ensure platform reliability and optional enhancement:
Strictly Necessary Cookies: Secure login sessions, anti-CSRF tokens, document access verification
Performance Cookies: Load balancing metrics, error tracking
Functional Cookies: Preferred language, dashboard filters, interface settings
Consent-Based Cookies: Enabled only when users opt-in to analytics or integrations
4.2 How to disable cookies You can disable cookies by modifying your browser settings or using the cookie preferences panel on our website. Please note that essential platform functionality (e.g., document viewer, e-signatures) may be disrupted if core cookies are disabled. All non-essential cookies are disabled by default unless consent is actively provided.
Third-Party Sharing We limit third-party access to client data, ensuring they are contractually bound to equivalent data protection standards. Sharing is restricted to:
Specialized IT Service Providers: Secure cloud storage, platform hosting, encryption services
Legal Collaborators: Only under client authorization or in multi-jurisdictional engagements
Auditors and Regulatory Authorities: Where legally obligated
Subcontracted Legal Analysts: Access limited to anonymized or case-relevant information under strict NDAs
We do not sell, license, or commercialize personal or corporate data for external marketing or profiling purposes.
Data Security Measures Data security is integral to our operations and embedded in all service layers. Measures include:
TLS 1.3 and AES-256 encryption protocols for all data transfers and storage
Server infrastructure within ISO 27001-certified Swiss facilities
Continuous vulnerability monitoring and regular penetration testing
Role-based access control with audit logging
Redundancy and disaster recovery systems
Endpoint hardening and 2FA for all staff and client accounts
All internal personnel are trained in cybersecurity and legal data protection obligations, with access granted solely on a need-to-know basis.
Effective Date
This Privacy Policy is effective as of 24 June 2025. LegalITExperts reserves the right to update this policy in response to regulatory changes or enhancements in data practices. All changes will be communicated via the client dashboard and official website. Continued use of our services after updates constitutes acceptance of the revised policy.