Skip to main content

Privacy Policy

Effective Date: 26 March 2026
Data Controller: Esol Corporation Limited, Company No. 16927988, registered in England and Wales.

This Privacy Policy explains how eSolicitors ("we", "us", "our") collects, uses, stores, and protects your personal data when you use the eSolicitors platform at esolicitors.com.

We are committed to protecting your privacy and complying with the UK General Data Protection Regulation (UK GDPR), the Data Protection Act 2018, and the Privacy and Electronic Communications Regulations (PECR).

1. Who We Are

eSolicitors is a legal services technology marketplace operated by Esol Corporation Limited. We connect clients with qualified legal professionals. We are the data controller for personal data you provide to us when using the platform.

For data protection enquiries, contact us at: privacy@esolicitors.com

2. What Data We Collect

2.1 Data You Provide

  • Account information: Name, email address, password, phone number
  • Profile information: Profile photo, biography, practice areas, location
  • Verification documents: Practising certificates, identity documents, PII insurance certificates, address proof (lawyers only)
  • Payment information: Billing address, card details (processed by Stripe - we do not store card numbers)
  • Communications: Messages sent via the platform's secure messaging system
  • Legal matter information: Details you share with a solicitor during consultations or in messages
  • Consultation recordings: Video and audio recordings of consultation calls (with your explicit consent)
  • Transcripts: Real-time transcriptions of consultation calls (with consent)

2.2 Data We Collect Automatically

  • Usage data: Pages visited, features used, time spent, clicks
  • Device data: Browser type, operating system, IP address, device identifiers
  • Cookies and tracking: See our Cookie Policy for full details

2.3 Data from Third Parties

  • Stripe: Payment processing and identity verification status
  • Daily.co: Video call session metadata
  • Deepgram: Transcription service (processes audio during calls)
  • SRA/BSB registries: Solicitor and barrister registration status lookups

3. How We Use Your Data

PurposeLegal Basis
Providing platform services (account, marketplace, payments)Contract performance
Verifying solicitor registration with SRA/BSBLegal obligation
Processing payments via StripeContract performance
Video consultations and transcription (with consent)Explicit consent
Sending service emails (booking confirmations, scope reports)Contract performance
Platform safety, fraud prevention, and securityLegitimate interests
Analytics and platform improvementLegitimate interests
Marketing emails (if opted in)Consent
Compliance with legal obligations (AML, GDPR)Legal obligation

4. Consultation Recordings and Transcripts

Consultation video recordings and real-time transcripts are created only with the explicit consent of both the client and the solicitor. This consent is recorded in our database with a timestamp before any recording begins.

  • Recordings are stored securely in encrypted cloud storage
  • Recordings are automatically deleted after 30 days in compliance with GDPR data minimisation requirements
  • Transcripts used to generate AI scope reports are retained as part of the matter record
  • You may request deletion of a recording at any time by contacting privacy@esolicitors.com

5. AI-Generated Scope Reports

The platform uses Claude (Anthropic's AI) to generate scope reports from consultation transcripts. These reports are:

  • Reviewed and approved by the solicitor before being shared with clients
  • Stored as part of the matter record
  • Accompanied by a disclaimer: "This scope was generated with AI assistance and has been reviewed and approved by your solicitor. It does not constitute legal advice."

6. Data Sharing

We share your data only in the following circumstances:

  • With your solicitor: Contact details and legal matter information shared after you both "Proceed with Scoping" and the cooling-off period expires
  • Payment processors: Stripe (for payment processing and Connect payouts)
  • Video services: Daily.co (for consultation room sessions)
  • Transcription: Deepgram (audio processed during active calls only)
  • AI services: Anthropic/Claude (transcript content for scope generation)
  • Email delivery: Resend (for transactional emails)
  • Regulatory bodies: If required by law (e.g., SRA, courts, law enforcement)
  • Legal obligations: Where required by UK law or court order

We do not sell your personal data to third parties.

7. Data Retention

Data TypeRetention Period
Account dataDuration of account + 7 years after closure
Consultation recordings30 days from recording date (auto-deleted)
Transaction records and audit logs7 years (legal/financial obligation)
Marketing preferencesUntil withdrawn
Disbursement receipts90 days from upload
Support tickets3 years

8. Contact Masking and Privacy

Before both parties formally "Proceed with Scoping," contact details are masked:

  • Clients see the solicitor's public profile only (no email or phone)
  • Solicitors see the client's first name only (no surname, email, or phone)

Full contact details are released only after both parties consent and a 5-minute cooling-off period expires.

9. Your Rights Under UK GDPR

You have the following rights regarding your personal data:

  • Right of access - Request a copy of your personal data
  • Right to rectification - Correct inaccurate or incomplete data
  • Right to erasure - Request deletion of your data (subject to legal obligations)
  • Right to restrict processing - Ask us to limit how we use your data
  • Right to data portability - Receive your data in a machine-readable format
  • Right to object - Object to processing based on legitimate interests or for marketing
  • Rights related to automated decision-making - Request human review of automated decisions

To exercise any of these rights, email privacy@esolicitors.com. We will respond within 30 days.

10. Cookies

We use cookies and similar tracking technologies on the platform. For full details of the categories of cookies we use and how to manage your preferences, see our Cookie Policy.

11. Security

We implement appropriate technical and organisational measures to protect your personal data, including:

  • Encryption in transit (TLS/HTTPS) and at rest
  • Row-Level Security (RLS) on all database tables via Supabase
  • Secure signed URLs for document access (1-hour expiry)
  • Access controls limiting data access to authorised personnel only
  • Regular security audits

12. International Transfers

Our infrastructure providers (Supabase, Vercel, Stripe, Daily.co) may process data outside the UK/EEA. Where this occurs, we ensure appropriate safeguards are in place (Standard Contractual Clauses or adequacy decisions).

13. Children

The platform is not available to persons under 18. We do not knowingly collect personal data from children.

14. Changes to This Policy

We may update this Privacy Policy from time to time. Registered users will be notified of material changes via the platform. The "Effective Date" at the top of this page reflects when the current version took effect.

15. How to Complain

If you believe we have not handled your data correctly, you have the right to complain to the Information Commissioner's Office (ICO):

You may also contact us directly at privacy@esolicitors.com and we will do our best to resolve your concern.

Last updated: 20 April 2026 | Esol Corporation Limited, Company No. 16927988