Effective Date: October 18, 2024
1. Introduction
Law Office of Delia C. Thrasher, LLC dba Thrasher Law ( “Thrasher,” “we,” “us,” or “our”) operates the website thrasherlegal.com (the "Site"). This Privacy Policy outlines how we collect, use, share, and protect your personal information. Thrasher provides legal services to clients across a wide array of business and transactional law. Contact with us, use of our site, or following any internal or external links on our site do not create an attorney- client relationship. The information provided on the site and herein the Privacy Policy is not, nor is it intended to be, legal advice.
2. Information We Collect
We collect the following types of personal information from visitors:
- Names
- Email addresses
- Business information as provided by the user
We do not collect sensitive information (e.g., Social Security numbers or financial information) through this Site. However, such information may be collected from clients on a case-by-case basis during engagement.
3. How We Collect Information
We collect personal information through:
- Online Forms: Users provide information directly through forms, such as contact forms, consultation requests, or newsletter sign-ups.
- Cookies: Small data files stored on users' devices that track browsing behavior and preferences.
- Analytics Tools: Services like Google Analytics collect data on website traffic and user behavior, including pages visited, time spent on the site, and referral sources.
- Email Subscriptions: Information is collected when users subscribe to newsletters or updates via email.
- Social Media Integrations: Data may be collected through social media plugins or features, such as “like” or “share” buttons.
- User Accounts: If users can create accounts on the site, personal information is collected during the registration process.
- Surveys and Polls: Information is gathered through optional surveys or polls that users can complete.
- Cookies and Tracking Technologies: Cookies track user behavior for analytics, advertising, and personalization purposes.
- Third-Party Services: Information may be collected through third-party tools or integrations, such as payment processors or booking systems.
4. Use of Information
The information collected is used for:
- Service Provision: Using personal information to provide the services requested by the user, such as legal consultations, responses to inquiries, or client representation.
- Communication: Utilizing contact information to communicate with users, including sending updates, newsletters, or important information related to their inquiries or services.
- Marketing Purposes: Employing the information to send promotional materials, advertisements, or marketing communications, subject to user consent where required by law.
- Improvement of Services: Analyzing user data to enhance website functionality, user experience, and service offerings.
- Legal Compliance: Using personal information to comply with applicable laws, regulations, or legal requests.
- User Support: Contacting users for customer support or to address any issues or questions they may have.
- Account Management: Managing user accounts and providing personalized services, including preferences and settings.
- Research and Analytics: Conducting research and analysis to understand user behavior and preferences, which helps in optimizing the website and services.
- Automated Decision-Making: If applicable, indicating how personal information may be used in automated processes, such as generating reports or decision-making algorithms.
- Fraud Prevention: Utilizing information to detect and prevent fraudulent activities or security breaches.
5. Information Sharing
We may share your personal information with:
- Third-Party Service Providers: Third parties that may have access to personal information, such as cloud storage providers, payment processors, or email marketing services. This includes but is not limited to Google Inc., LinkedIn, GoDaddy.com,
- Business Affiliates: Information about any affiliates or partners with whom personal data may be shared for business purposes.
- Legal Obligations: A statement about sharing information in response to legal requirements, such as subpoenas, court orders, or other legal processes.
- Protection of Rights: Circumstances under which personal information may be disclosed to protect the rights, property, or safety of the law firm, users, or others.
- Business Transfers: Information about sharing personal data in connection with mergers, acquisitions, or asset transfers.
- Aggregated Data: Clarification that aggregated or anonymized data (which does not identify individuals) may be shared for analytical or marketing purposes.
- Links to Third-Party Sites: A note that the privacy practices of linked third-party websites are not governed by the firm’s policy, and users should review those sites' privacy policies. This includes LinkedIn. (Calendly, Google Forms, etc could be added in future)
- User Consent: A statement indicating that personal information may be shared with third parties if the user has provided explicit consent.
6. Data Security
We implement measures to protect your personal information as outlined below:
- Encryption: Encrypting data both in transit (e.g., using HTTPS) and at rest to prevent unauthorized access.
- Access Controls: Implementing strict access controls to ensure that only authorized personnel can access personal data. This can include role-based access and two-factor authentication.
- Firewalls: Utilizing firewalls to protect the network and prevent unauthorized access.
- Regular Security Audits: Conducting regular security assessments and audits to identify vulnerabilities and ensure compliance with security policies.
- Data Minimization: Collecting only the information necessary for specific purposes to reduce risk.
- Secure Data Storage: Using secure servers and data storage solutions to protect personal information.
- Employee Training: Providing training for employees on data privacy and security practices to mitigate human error.
- Incident Response Plan: Having a response plan in place for data breaches or security incidents to address and mitigate risks quickly.
- Regular Software Updates: Keeping software and systems up-to-date to protect against known vulnerabilities.
- Privacy Policies: Ensuring clear privacy policies are in place to inform users how their data will be handled.
7. User Rights
Users have the right to:
- Right to Access: Users have the right to request access to their personal information held by the law firm, including the purpose of processing and the categories of data collected.
- Right to Rectification: Users can request corrections to any inaccurate or incomplete personal information. This ensures that their data remains up-to-date and accurate.
- Right to Deletion (Right to be Forgotten): Users may request the deletion of their personal information under certain circumstances, such as when the data is no longer necessary for the purposes for which it was collected.
- Right to Restrict Processing: Users can request that their personal data be restricted from processing under specific conditions, such as disputing the accuracy of the data.
- Right to Data Portability: Users have the right to receive their personal data in a structured, commonly used, and machine-readable format and can request to transfer that data to another service provider.
- Right to Object: Users may object to the processing of their personal data for direct marketing purposes or other processing that is not essential for service provision.
- Right to Withdraw Consent: If personal data is processed based on user consent, users have the right to withdraw that consent at any time, which should be easy to do.
- Right to Complain: Users should be informed of their right to lodge a complaint with a supervisory authority if they believe their data protection rights have been violated.
- How to Exercise These Rights: Clear instructions on how users can exercise these rights, including contact information (e.g., an email address or a dedicated form).
To exercise these rights, please contact us at info@thrasherlegal.com.
8. Cookies and Tracking Technologies
Definition of Cookies: A brief explanation of what cookies are, such as small text files stored on a user's device that help track user behavior and preferences.
Types of Cookies Used:
- Essential Cookies: Cookies necessary for the website to function properly (e.g., session cookies).
- Performance Cookies: Cookies that collect information about how users interact with the site, helping to improve performance (e.g., Google Analytics).
- Functional Cookies: Cookies that remember user preferences and settings (e.g., language or login details).
- Advertising Cookies: Cookies used for targeted advertising and tracking user behavior across websites.
Purpose of Cookies: An explanation of why cookies are used, such as:
- To enhance user experience by remembering preferences.
- To analyze website traffic and user engagement.
- To deliver personalized content and advertisements.
Tracking Technologies: Information about other tracking technologies that may be used, such as:
- Web Beacons: Small graphic files that track user behavior.
- Pixels: Similar to web beacons, used for tracking and analytics.
- Mobile Device Identifiers: Used for tracking user behavior on mobile devices.
User Consent: Information on how user consent is obtained for the use of cookies, including whether consent is implied by continued use of the site or if explicit consent is required.
Managing Cookies: Instructions on how users can manage cookie preferences, such as:
- Adjusting browser settings to accept or decline cookies.
- Clearing cookies from the browser.
- Opting out of specific tracking technologies or advertising cookies.
Third-Party Cookies: A note that third-party services (e.g., social media platforms, analytics services) may also place cookies on users' devices and that users should review those parties’ privacy policies.
Changes to Cookie Policy: Information on how users will be notified of any changes to the cookie policy or practices.
9. Changes to This Policy
Any changes to this Privacy Policy will be posted on our Site. The latest version will always be available here. The Privacy Policy can be requested on demand at anytime by contacting info@thrasherlegal.com
10. Contact Us
For questions regarding this Privacy Policy, please contact us at info@thrasherlegal.com. Delia C. Thrasher is the designated Privacy and Compliance Officer.
11. Compliance
This Privacy Policy is governed by Georgia law, and applicable U.S. privacy laws.
By using our Site, you consent to the terms outlined in this Privacy Policy.