1. Who we are
Pelonode Law Agency (“Pelonode”, “we”, “us”, “our”) is a legal services firm operating in Latvia and the EU.
Registered address: LV-5663, Kurzemes reģions, Liepaja, Atgriežu skvērs, 61. Registration No.: 91157554. Telephone: +2549241729408. Email: [email protected].
For GDPR purposes, Pelonode is the data controller for the processing described in this Policy.
2. Scope
This Policy covers personal data processed through our website at pelonode.com and related pages (the “Site”), our communications (email, phone), and when delivering legal services to clients. Where we process personal data as a data processor on behalf of clients, their instructions and separate agreements (e.g., Data Processing Agreements) govern.
3. What data we collect
- Contact data: name, email, phone number, employer and role, postal address (if provided).
- Matter data: information you share about a legal matter, documents you provide, counterparties’ details.
- Usage and device data: IP address, browser and device type, pages visited, referrers, time on page, consent choices (via our cookie banner).
- Transactional data: engagement letters, invoices, payment confirmations, and related records.
- Recruitment data: CVs, references, interview notes (if you apply for a role).
4. Sources of data
- Directly from you (web forms, calls, meetings, emails).
- From your organization if you are part of a client engagement.
- From counterparties, counsel, courts, and public sources (e.g., Land Register) when relevant to a matter.
- Automatically from your device through cookies and similar technologies when you use the Site.
5. Purposes and legal bases
- Provide legal services, respond to enquiries, and manage client relationships (contract or steps prior to contract; Art. 6(1)(b) GDPR).
- Operate and improve the Site, maintain security, and measure performance (legitimate interests; Art. 6(1)(f)).
- Run consent-based analytics on the Site (consent; Art. 6(1)(a)). Analytics only load if you accept in the cookie banner.
- Comply with legal and regulatory obligations, including conflict checks, KYC/AML where applicable (legal obligation; Art. 6(1)(c)).
- Recruitment and hiring (legitimate interests and, where required, consent).
- Protect or enforce legal rights (legitimate interests).
6. Cookies and similar technologies
Our cookie banner allows you to accept all cookies, reject, or customize your choices. We always set essential cookies needed for the Site to function (e.g., remembering your consent settings). Analytics cookies (Google Analytics via gtag) are loaded only if you select “Accept All” or enable analytics in “Customize”.
You can change your choice anytime by clearing your browser’s local storage for this Site or revisiting the cookie banner if shown again. For details, see the banner at the bottom of our pages and the “Consent Modes” described in the code.
7. Analytics and pixels
If you consent, we use Google Analytics (G-PILONODE123) to measure usage. We also load the Facebook Pixel (PELONODEPIXEL001) with PageView tracking. Both are deferred until consent is granted as implemented in our on-page script. For information on how these providers handle data, refer to their privacy terms.
8. Sharing of personal data
- Service providers: IT hosting, email, analytics (when enabled), and administrative support, bound by confidentiality and data protection terms.
- Professional advisors and co-counsel: where needed to deliver services you request.
- Authorities, courts, counterparties: when required by law or necessary to represent you.
- Corporate events: if we reorganize or transfer parts of our business, subject to appropriate protections.
9. International transfers
Where data is transferred outside the EEA, we use appropriate safeguards such as EU Standard Contractual Clauses, and we assess local laws where relevant. Copies of applicable transfer safeguards can be requested where not restricted by confidentiality.
10. Retention
We keep personal data only as long as needed for the purposes above:
- Client and matter files: retained in line with professional obligations and limitation periods.
- Enquiries: typically up to 12 months after last contact if no engagement ensues.
- Recruitment: typically up to 12 months unless you authorize a longer talent pool retention.
- Analytics data: per provider defaults and your consent—stop when consent is withdrawn.
11. Your rights (GDPR)
You may have the right to request access, rectification, erasure, restriction, portability, and to object to processing based on legitimate interests, as well as the right to withdraw consent at any time (without affecting prior lawful processing). You also have the right to lodge a complaint with your local supervisory authority.
12. Security
We apply technical and organizational measures appropriate to the risk, including access controls, encryption in transit, and vendor due diligence. No system is perfectly secure, but we work to reduce risk and respond quickly to incidents.
13. Children
Our Site and services are not directed to children. We do not knowingly collect personal data from children.
14. Do Not Track and similar signals
Industry standards for DNT signals are evolving. Our consent banner provides a clear way to control analytics loading regardless of DNT settings.
15. Changes to this Policy
We may update this Policy from time to time. The “Effective date” above reflects the most recent version. Significant changes will be highlighted on the Site.
16. Contact
Data controller: Pelonode Law Agency
Address: LV-5663, Kurzemes reģions, Liepaja, Atgriežu skvērs, 61
Phone: +2549241729408 • Email: [email protected]