Client Privacy and Data Use Agreement

Welcome to Eleos Law LLP

Before accessing and using our website or application, please carefully review the following Client Privacy and Data Use Agreement. By clicking "Accept" or by continuing to use our services, you acknowledge that you have read, understood, and agree to the terms outlined below.

Purpose and Scope

This agreement outlines how Eleos Law LLP (“Eleos”, “we”, “our”) collects, uses, maintains, protects, and discloses your information when you interact with our services through our website, application, or other online platforms (collectively, the “Platforms”). This agreement is applicable to all users of our Platforms, including clients and authorized representatives.

Acceptance of Privacy and Data Use Terms

By accessing our Platforms and submitting your personal information (including Protected Health Information, or PHI), you consent to the collection, use, and disclosure of your information as described in this agreement and our full Privacy Notice. If you do not agree with these terms, you should discontinue using our Platforms immediately.

Collection of Personal and Health Information

We may collect various types of information from or about you, including:

Personal Information (PII): Such as your name, postal address, email address, phone number, and payment details.
Protected Health Information (PHI): Health-related data, medical records, insurance information, and any other PHI submitted through our Platforms.
Technical Information: IP address, geolocation data, and device identifiers collected automatically through cookies and similar technologies.
Employment and Sensitive Information: Including social security numbers, employee IDs, and other identifiers as applicable.

How We Use Your Information

Your information is used for:

Providing Legal Services: Managing mass tort and class action cases on behalf of partner law firms.
Client Communication: Notifying you of case updates, legal requirements, or service changes.
Legal Compliance: Fulfilling legal and regulatory obligations, including those related to HIPAA.
Operational and Security Purposes: Maintaining platform security and improving service quality.
Data Analysis and Reporting: Assessing service effectiveness and user interactions.
Data Sharing and Disclosure
We may share your information with:
Service Providers and Co-Counsel: Assisting in legal case management and client services.
Government Entities: As required by law or legal processes.
Third-Party Platforms: When integrated for functionality or case processing.

We do not sell your information or use it for targeted advertising.

Data Security and Protection

We implement robust security measures to protect your information from unauthorized access or disclosure. Despite our efforts, no security system is infallible. Please take measures to protect your login credentials and report any suspected security breaches immediately.

Your Rights

Depending on your jurisdiction, you may have the right to:

Access: Request copies of your personal or health information.
Correction: Request updates to inaccurate or outdated information.
Deletion: Request the removal of your information from our systems, subject to legal obligations.
Opt-Out: Limit the use of your data in certain circumstances.

To exercise your rights or for any questions, contact us at:

Email: support@eleoslaw.com

Agreement to Terms

By clicking "Accept" or using our Platforms, you acknowledge that you have read, understood, and agreed to this Client Privacy and Data Use Agreement, including all provisions related to the collection, use, and protection of your information.

This agreement is effective as of 1st July 2025.

Purpose and Scope

Acceptance of Privacy and Data Use Terms

1. Introduction

1.1 This Privacy Policy ("Policy") outlines how Eleos Law LLP ("Eleos," "we," "us," or "our") collects, uses, shares, and protects your personal information in connection with the legal services, communications, websites, and digital platforms we provide (collectively, the "Services"). This Policy also describes your choices and rights regarding your personal information, including specific rights available to California residents under applicable privacy laws.

1.2 As used in this Policy, “Services” includes our legal services, our application, our website(s) and online platforms, client intake forms, secure client portals ("Client Portals"), email communications, and any other interactions you may have with Eleos in the course of seeking or receiving legal services, whether online or offline.

1.3 For purposes of this Policy, “Personal Information” refers to information that identifies, relates to, describes, or can reasonably be associated with an individual. This Policy does not apply to information protected by the attorney-client privilege, attorney work product doctrine, or other applicable legal confidentiality obligations. Such information is governed by our professional and ethical duties and the terms of our engagement agreements with clients.

1.4 This Privacy Policy is incorporated by reference into any applicable Terms of Use or other agreements that govern your access to our Sites or use of our Services. By using our Services or affirming acceptance of an agreement that references this Policy, you acknowledge and agree to the practices described herein. If you do not agree with any part of this Policy, you should not use our Services.

1.5 Privacy obligations may vary based on your location. We comply with applicable data protection laws in jurisdictions where we operate. If you are a resident of California, please review Section 18 for additional disclosures and rights under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA). We may update this Policy from time to time to reflect changes in our practices or the law. If changes are made, we will revise the “Last Updated” date at the top of this Policy. For material changes, we may provide additional notice through our Sites or by contacting you directly. We encourage you to review this Policy regularly.

1.6 For employees, contractors, and job applicants, Eleos maintains a separate privacy notice that applies specifically to information collected in the context of employment or recruitment. In the event of a conflict between that notice and this Policy, the terms of the employment-specific notice will govern.

2. The Personal Information We Collect

2.1 When you access or use the Services provided by Eleos Law LLP, we may collect various types of information. The nature and extent of the information collected depend on the context of your interaction with us—for example, whether you are visiting our website, submitting an inquiry, or engaging with us as a client.

2.2 “Personal Information” refers to information that identifies an individual or relates to an identifiable individual or household. The types of Personal Information collected, and the uses thereof depend on the purposes for which we collect the Personal Information (e.g., whether you are a visitor to our Sites, a user of our Portals, or a client of our Services). As used in this Privacy Policy, Personal Information does not include Protected Health Information.

The specific Personal Information we collect will vary depending on whether you are a website visitor, prospective client, active client, event attendee, or third-party professional.

Note: This Policy does not apply to privileged legal communications or information governed by attorney-client confidentiality or other legal protections.

2.3 Protected Health Information (PHI) is defined under the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and refers to individually identifiable health information. While Eleos is not a healthcare provider or covered entity, we may come into contact with PHI in the context of representing clients in matters that involve medical information (e.g., personal injury, insurance, or healthcare litigation). In such cases, PHI is handled in accordance with applicable legal requirements, not this Policy.

2.4 Usage Data refers to technical information collected automatically when you interact with our Sites. This may include:

IP address and device type
Browser type and version
Operating system and platform
Dates and times of site visits
Pages visited and links clicked
Referring URLs and time spent on specific pages
Email interaction data (e.g., whether you opened an email we sent)

We use Usage Data to ensure the security and functionality of our website, to analyze performance, and to improve user experience. While this data does not typically identify you personally, it may be associated with Personal Information in some cases.

Eleos does not deploy non-essential third-party tracking cookies on client-facing portals or systems that involve sensitive communications. Essential cookies and analytics tools may be used to monitor and improve the performance and security of our digital platforms.

3. How We Collect Your Personal Information

3.1 Eleos Law LLP collects Personal Information to provide and improve our legal Services, maintain secure communications, enhance your experience, and comply with our legal and professional obligations. The information we collect depends on how you interact with us and the nature of the legal services you seek or receive.

We may collect Personal Information in the following ways:

3.2 Information You Provide to Us We collect Personal Information directly from you when you:

Communicate with us via email, phone, physical mail, contact forms, or in person to inquire about or engage our legal services;

Complete and submit forms through our website, Client Portals, or in-office processes (e.g., intake forms, subscription requests, event registrations, or newsletter sign-ups);

Visit our offices, including when you check in for meetings or deposit documents;

Engage with us online, including through our website, webinars, or social media platforms where you may voluntarily share information.

3.3 Information We Collect Automatically: When you use our Sites, we may automatically collect certain Usage Data through standard technologies, such as server logs and cookies. This data may include:

Your IP address
Device and operating system
Pages visited and time spent on our Sites
Email engagement data (e.g., whether you opened or clicked links in communications)

This information helps us secure our systems, monitor performance, and improve the functionality of our Sites. We do not use non-essential third-party tracking cookies on client portals or pages used to communicate sensitive information.

3.4 Information from Other Sources: We may also receive Personal Information from third parties, including:

Publicly available sources and legal databases
Government agencies or regulatory bodies
Referral partners, opposing counsel, or courts
Marketing and communications platforms (only as authorized by you)
Third-party platforms or service providers acting on your behalf

In certain circumstances, you may authorize us to obtain information from a third party (for example, by submitting documents from a court portal or requesting that we obtain case files from another firm). If you later wish to withdraw that authorization, you may need to contact the original source directly.

Please note: Any information provided to us by third parties is used in accordance with this Privacy Policy and applicable legal and ethical obligations.

4. Protected Health Information (PHI)

4.1 In the course of representing clients—particularly in matters involving healthcare, insurance, personal injury, disability law, or regulatory compliance—Eleos Law LLP may receive, review, or process Protected Health Information ("PHI"). PHI refers to individually identifiable health information governed by the Health Insurance Portability and Accountability Act of 1996 ("HIPAA") and related regulations.

This information may be provided to us by:
Clients (e.g., individuals, healthcare professionals, or medical institutions);
Third parties such as insurers, providers, or government entities;
Opposing parties in litigation or administrative proceedings.

We handle such information solely for legal purposes and in accordance with our ethical obligations, client instructions, and applicable law.

4.2 While Eleos is not a "covered entity" or "business associate" under HIPAA in most contexts, we understand and respect the sensitivity of PHI and treat it in a confidential manner consistent with:

The scope of the attorney-client relationship
Applicable privacy and security laws
Court rules and protective orders
Any contractual terms agreed to with clients or third parties

4.3 If you are an individual whose PHI is involved in a legal matter handled by Eleos (for example, as part of a claim or case), please be aware that Eleos does not control how the original provider or data source collected or used your PHI. Questions or requests related to your health records—such as access, correction, or deletion—should be directed to the healthcare provider, insurance carrier, or other originating party.

4.4 Our public-facing websites are not designed to collect or store PHI, and we request that individuals do not submit medical records or sensitive health information through general inquiry forms, email, or other unsecured communication channels. Clients who need to provide such information will be directed to do so through secure means provided by Eleos.

5. Use of Information Collected by Eleos Law LLP

5.1 Eleos uses the Personal Information collected to provide Services to our clients and their authorized users to improve user experience with the Services, and to communicate with you about requested information. Eleos may use Personal Information to help target specific offers to clients and others and to develop and improve its Services. Additionally, Eleos may disclose your Personal Information as discussed below in Section 7, and use your Personal Information to:

Respond to user service requests, user questions and concerns, and administer user accounts. We may use your information to verify your identity, register you, administer your account, or provide you the information, products, and services that you request.
Provide service to our clients, which include Providers. If you are a patient of a Provider, we use your information when providing the Services to the Provider.
Communicate with users about our products, services, and related issues. We may use your information to try to identify if you may be interested in any of the Services or our business partners' products and services. If we think something may interest you, we may send you information and promotional materials. You may unsubscribe from receiving marketing e-mails from us by using the unsubscribe link included in marketing e-mails.
Administer fees and provide users with invoices or resolve billing issues. We may use your information to verify your identity in order to process your payments.
Ensure the security and integrity of our Services.
Verify and maintain the quality of our Services, improve the Services, or develop new Services.

In the event of a business transaction. If we are exploring or go through a business transition or financial transaction, such as a merger, acquisition, divestiture, restructuring, reorganization, dissolution, bankruptcy, securities offering, or sale of all or a portion of our assets, we may use your information in connection with exploring or concluding such transaction.

To comply with law. We may disclose your information to comply with any applicable laws and/or regulations, such as to comply with valid legal processes such as a search warrant, subpoena, or order from a court or tribunal of competent jurisdiction.

6. Data Collection Technologies

6.1 To enhance your experience and ensure the functionality and security of our website and digital platforms (the “Sites”), Eleos Law LLP and our authorized service providers may use certain standard technologies such as cookies, web beacons, log files, and analytics tools (collectively, “Data Collection Technologies”).

We use these technologies to:

Operate and maintain our Sites
Understand user behavior and traffic patterns
Improve the design, content, and performance of our digital content
Provide secure access to certain features and content

We do not deploy non-essential third-party tracking cookies on any secure client portals or pages designed for confidential communication.

6.2 Web Beacons: Web beacons (also known as pixel tags or clear GIFs) are small graphic elements embedded in our web pages or emails that may be used to track certain interactions—such as whether an email has been opened. These may utilize cookie technology to help us measure engagement and improve communication effectiveness.

6.3 Cookies: Cookies are small text files placed on your device by your browser when you visit our Sites. They allow us to store preferences and track certain types of usage data. You can set your browser to notify you of cookies or block them altogether; however, doing so may affect the functionality of parts of the Site.

We may use the following types of cookies:

Essential Cookies: These cookies are required for basic functionality—such as logging in, submitting forms, and setting your privacy preferences. Without these, certain services and features will not work.

Analytics/Performance Cookies: These cookies help us measure how visitors use our Sites, including which pages are visited and how users navigate between them. This information allows us to improve the structure, content, and usability of our website.
Analytics Services: We may use tools such as Google Analytics to analyze how visitors interact with our Sites. These tools collect aggregated data on page visits, navigation paths, and engagement trends. To opt out of Google Analytics, you may install the Google Analytics Opt-out Browser Add-on.

Do Not Track (DNT): “Do Not Track” is a browser setting that requests websites not to track user activity. While Eleos supports privacy-enhancing technologies, our Sites do not currently respond to DNT signals. However, we honor Global Privacy Control signals via our compliance partner and offer opt-out mechanisms as described in this Policy.

7. Disclosing Your Information

Eleos Law LLP may disclose your Personal Information in the following circumstances, always in accordance with applicable law and our professional and ethical obligations:

7.1 At Your Direction: We may share your Personal Information with third parties when you instruct us to do so, or when you authorize us as part of our representation of you. This may include sharing information with other legal counsel, consultants, experts, courts, regulatory bodies, or service providers relevant to your legal matter.

7.2 Internal Sharing: We may share your Personal Information within the firm among attorneys, staff, or consultants as necessary to deliver legal services, manage your matter, or ensure continuity of service across different practice areas.

7.3 With Our Service Providers: We may disclose Personal Information to trusted third-party service providers who support our business operations, including:

IT and cloud storage providers
Document processing services
Billing and payment processors
Marketing or communication service providers (for newsletters, event invitations, etc.)

These providers are contractually obligated to protect your information and use it solely for the services they perform on our behalf.

7.4 Sensitive Personal Information: If we process Sensitive Personal Information (such as government identification numbers, financial account information, or demographic data), we do so only when necessary for legal representation, regulatory compliance, or other legitimate business purposes, and we handle such data with heightened safeguards.

7.5 Legal Compliance: We may disclose your Personal Information to government agencies, courts, law enforcement, or other third parties when required to do so by applicable law, regulation, subpoena, court order, or other legal process. We may also use or disclose your information to:

Prevent or address fraud, misuse, or security threats
Protect the rights, safety, or property of Eleos, our clients, or others
Enforce our terms, agreements, or policies

7.6 Business Transfers: In the event of a merger, acquisition, dissolution, restructuring, or sale of assets, your Personal Information may be transferred as part of the transaction, provided that any successor entity agrees to honor the commitments made in this Privacy Policy or notifies you of updated terms.

8. Advertising and Third-Party Data Collection

Eleos Law LLP may use third-party tools and service providers to support limited marketing efforts, such as promoting our legal services, events, publications, or professional content (e.g., articles or webinars). These third parties may collect data through cookies and similar technologies (as described in Section 6) to analyze website traffic, measure campaign effectiveness, and improve the relevance of any communications.

Note: We do not use third-party ad networks or serve targeted advertising through any secure client-facing portals or tools.

If third-party marketing platforms are used (e.g., LinkedIn Ads, Google Ads), they may collect or receive information about your interactions with our public-facing website in order to serve Eleos-branded content or improve audience targeting. For general information on how to opt out of behavioral advertising, you may visit resources provided by organizations such as the Network Advertising Initiative (NAI) or Digital Advertising Alliance (DAA).

8.1 Accessing or Updating Your Information: If you wish to review or request updates to the Personal Information we have collected about you, please contact us using the methods listed in Section 17. We will respond to such requests as required under applicable law and in accordance with our professional obligations.

9. SMS Terms and Conditions

9.1 Consent to Receive SMS Communication

We will not share your phone number with any third parties for marketing purposes.

9.2 Types of SMS Communications

If you opt in to receive messages from Eleos Law LLP, you may receive texts about your legal inquiry, including updates, reminders, and answers to your questions from Wisner Baum at the number provided. Standard message rates may apply.

9.3 Message Frequency

You may receive approximately 3-5 SMS messages per week.

9.4 Carrier Charges

Message and data rates may apply based on your mobile carrier and location.

9.5 Opt-In Methods

You may opt in via our website or app.

9.6 Opt-Out Instructions

You may opt out at any time by replying STOP to any message. To resume receiving texts, reply START.

9.7 Help

If you need assistance, reply HELP or contact us at support@eleoslaw.com.

9.8 Disclosures

Message frequency may vary.

Message and data rates may apply.

Reply STOP to cancel.

Reply HELP for assistance.

10. Biometric Data

Eleos Law LLP does not generally collect biometric data in the ordinary course of providing legal services. However, in limited circumstances—such as when using secure identity verification tools, conducting remote notarizations, or utilizing advanced access control or authentication technologies—we may collect or process biometric identifiers or information, such as facial recognition data or voiceprints, where legally required or with your explicit consent.

Biometric data may be collected for purposes including, but not limited to:

Verifying your identity for remote or secure access to legal documents or systems
Complying with notarial or e-filing verification processes
Enabling secure authentication through supported third-party technology platforms

10.1 Use and Retention of Biometric Data: If biometric data is collected:

It will be used solely for the purposes for which it was collected.
We will not sell, lease, or trade your biometric data.
Biometric data will be retained only as long as necessary to fulfill the identified purpose, comply with legal obligations, or as required under applicable law.

In general, biometric data will be scheduled for deletion upon the earlier of:

The conclusion of the purpose for which it was collected;
The time period required by applicable state or federal law; or
Three (3) years after your last interaction with our Services.

10.2 Legal and Contractual Compliance: Where biometric data is considered Protected Health Information (PHI) under HIPAA or is subject to contractual limitations (e.g., through court orders, client agreements, or vendor policies), its collection, use, and retention will be governed by those applicable legal standards rather than this section.

11. Security of Personal Information

Eleos Law LLP implements reasonable administrative, technical, and physical safeguards designed to protect the Personal Information we collect and maintain from loss, misuse, unauthorized access, disclosure, alteration, or destruction. These safeguards are consistent with legal industry best practices and our ethical obligations to maintain client confidentiality.

Our security measures may include, but are not limited to:

Secure document management systems
Access controls and user authentication
Encrypted communications and data storage
Regular system monitoring and security assessments
Staff training on data privacy and cybersecurity

While we are committed to protecting your information, no system—whether electronic or physical—can be guaranteed to be completely secure. Accordingly, we cannot guarantee absolute security of your Personal Information under all circumstances. In the event of a data incident, we will notify affected individuals and regulators as required by applicable law.

12. Retention of Personal Information

Eleos Law LLP retains Personal Information only for as long as necessary to fulfill the purposes for which it was collected, including to:

Provide legal services and maintain records of our professional engagements
Comply with legal, regulatory, or ethical obligations
Resolve disputes or claims
Enforce our rights arising from any agreements or representation

Retention periods may vary depending on the type of information, the nature of the legal matter, and applicable legal or professional requirements. For example, client files may be retained in accordance with rules of professional conduct or statutory recordkeeping requirements, which can differ by jurisdiction.

Where applicable, we securely dispose of or anonymize Personal Information once it is no longer required for business, legal, or compliance purposes.

Additional details for California residents, including your rights and choices related to data retention, are outlined in our Privacy Notice for California Residents.

13. Aggregated and De-Identified Information

Eleos Law LLP may compile and use aggregated or de-identified data derived from Personal Information for internal business purposes, such as improving our services, analyzing trends, or evaluating the effectiveness of our digital platforms.

This information is processed in such a way that it cannot reasonably be used to identify any individual, and it does not include any personally identifiable or confidential client information.

In situations where Eleos handles sensitive data—such as medical records, financial information, or case-specific content—any aggregation or de-identification is performed in accordance with professional, contractual, and legal obligations.

We do not use or disclose any client data in aggregated form for commercial resale or unrelated third-party use.

14. Links to Third-Party Websites

Our Sites may include links to external websites operated by third parties. These links are provided for your convenience and informational purposes only. Eleos Law LLP does not control and is not responsible for the content, security, or privacy practices of any third-party websites.

We encourage you to review the privacy policies and terms of use of any third-party site you visit, as their data practices may differ from ours. Any use of, or submission of information to, third-party websites is done at your own risk.

The inclusion of a link does not imply endorsement of the linked site, its operator, or its content.

15. Children’s Privacy

Our Sites and Services are not directed to individuals under the age of 18, and we do not knowingly collect Personal Information from anyone under 18 years of age.

Eleos Law LLP does not market legal services to minors, and we request that individuals under 18 do not use our Sites or submit any personal information through our contact forms, email, or other means of communication.

Any access to secure client portals or legal tools is subject to the applicable Terms of Use, which may include age or capacity restrictions in accordance with legal requirements.

If we become aware that we have inadvertently collected Personal Information from a child under 18, we will take appropriate steps to delete such information.

16. United States Only

The Services provided by Eleos Law LLP are intended for use by individuals and entities located within the United States of America. We do not actively market or provide legal services to individuals outside the U.S., and our website is not designed to comply with international privacy laws such as the General Data Protection Regulation (GDPR) or similar frameworks.

If you access our Sites or communicate with us from outside the United States, please note that:

Any Personal Information you provide or that is collected automatically will be transferred to, stored, and processed in the United States; and
By using our Services or submitting your information, you consent to the transfer and processing of your data in the United States in accordance with this Privacy Policy and applicable U.S. laws.
If you are a non-U.S. resident and choose to engage with Eleos, you do so at your own discretion and risk, and any personal data you provide will be handled under U.S. jurisdiction.

17. Changes to the Privacy Policy

Eleos Law LLP may change this Privacy Policy at any time. Unless we say otherwise, changes will be effective upon the last updated date at the top of this Privacy Policy. Please check this Privacy Policy regularly to ensure that you are aware of any changes. We may try to notify you of material changes to this Privacy Policy, which if we do so may be by means such as by posting a notice directly on the Services, by sending an e-mail notification (if you have provided your e-mail address to us), or by other reasonable methods. In any event, if you use the Services after changes to this Privacy Policy, you have accepted the changes. If you do not agree with the changes, please stop using the Services.

18. Contact Information

If you have any questions or concerns regarding this Privacy Policy, our data practices, or if you wish to report a privacy-related issue, please contact us at:

Eleos Law LLP Attn: Privacy Officer 2 N. Central Ave, Suite 1800, Phoenix, AZ 85004 Email: support@eleoslaw.com

For concerns related to data security or to report a security incident, you may also contact: support@eleoslaw.com

Eleos Law LLP Attn: Information Security Contact Email: support@eleoslaw.com.

These contact methods are monitored for privacy- and security-related matters only. For general inquiries, please use the contact information provided on our main website or get in touch with your Eleos representative.

Security Breach Notifications: In the event of a known or suspected data breach involving your Personal Information, and where required by applicable law, Eleos Law LLP will notify you using the most recent contact information we have on file, or through other legally required means. This may include email, phone, or postal mail, depending on the circumstances and applicable regulatory requirements.

19. Privacy Notice for California Residents

Effective Date: April 3, 2025 Last Updated: April 3, 2025

This Privacy Notice for California Residents (the "Notice") supplements the information contained in the general Privacy Policy of Eleos Law LLP and applies solely to individuals who reside in the State of California ("you" or "your") and interact with our Services in a personal or household capacity.

We adopt this Notice to comply with the California Consumer Privacy Act of 2018 (CCPA) as amended by the California Privacy Rights Act of 2020 (CPRA). Terms defined in the CCPA/CPRA have the same meanings when used in this Notice.

19.1 Collection of Personal Information Under CCPA/CPRA

During your interaction with Eleos Law LLP, we may collect information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked (directly or indirectly) with you or your household ("CCPA/CPRA Personal Information").

CCPA/CPRA Personal Information does not include:

Publicly available information from government records
De-identified or aggregated consumer information
Information excluded from CCPA/CPRA scope, such as:
Protected Health Information (PHI) covered under HIPAA
Medical information governed by the California Confidentiality of Medical Information Act (CMIA)
Information collected in a legal or regulatory context, such as for litigation or court representation
Certain employment-related or business-to-business communications, where exempt under law

19.2 Categories of CCPA/CPRA Personal Information Collected

In the course of providing legal services and operating our business, Eleos Law LLP may collect the following categories of Personal Information as defined by the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

We may collect Personal Information from the following sources:

Directly from you, including through contact forms, emails, phone calls, or document uploads
Automatically, through your interactions with our website or emails (e.g., cookies, analytics tools)
Third parties, such as co-counsel, expert consultants, opposing counsel, courts, government agencies, or professional service platforms
Vendors or technology providers, including cloud hosting or communication tools
Public records, such as court filings or agency databases
CRM systems, if you've registered for Eleos-hosted webinars, newsletters, or events
Business or Commercial Purpose for Collection
Eleos collects and uses Personal Information for the following business or legal purposes:
Responding to inquiries and service requests
Providing legal services and client support
Processing payments, issuing invoices, and managing client accounts
Communicating with you about legal matters, events, or firm news (if opted-in)
Conducting due diligence on vendors, partners, and matters
Managing internal business operations, including document management and communications
Detecting and preventing fraud, misuse, or unauthorized access
Complying with applicable laws, court orders, subpoenas, or regulatory requirements
Supporting litigation, arbitration, mediation, or other formal proceedings
Maintaining website and system security
Fulfilling other purposes that are reasonably necessary and compatible with the context in which the information was provided

Your Personal Information will not be used for purposes materially different from these without providing you with prior notice or obtaining your consent, as required by law.

CCPA/CPRA Notice at Collection for Online Sources

The California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), requires businesses to inform California residents of the categories of personal information they collect at or before the point of collection.

This Notice at Collection explains how Eleos Law LLP collects, uses, shares, and retains Personal Information through our online interactions—including when you:

Login to our application
Visit our website
Fill out contact or intake forms
Register for a webinar or legal event
Interact with our communications (e.g., email newsletters or updates)
Connect with us via social media

Eleos Law LLP does not sell Personal Information, nor do we share Personal Information for cross-context behavioral advertising purposes.

We retain Personal Information only for as long as necessary to fulfill the purposes for which it was collected, or as required by law, regulation, or rules of professional conduct.

19.3 CCPA/CPRA Consumer Rights

If you are a California resident, you may have the following rights under the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA):

Right to Know: You may request to know the categories and specific pieces of CCPA/CPRA Personal Information we have collected about you, as well as the sources of that information, the purposes for which it was collected, and the categories of third parties to whom it has been disclosed.

Right to Delete: You may request that we delete CCPA/CPRA Personal Information we have collected from you, subject to certain exceptions (e.g., information required to comply with legal obligations or to provide legal services).

Right to Correct: You may request that we correct inaccurate CCPA/CPRA Personal Information we maintain about you.

Right to Opt-Out of Sale or Sharing: You have the right to opt out of the sale or sharing of your CCPA/CPRA Personal Information. Eleos Law LLP does not sell Personal Information and does not share it for cross-context behavioral advertising.

Right to Limit Use of Sensitive Personal Information: If we collect sensitive Personal Information (such as government ID numbers), you may request that we limit our use of that data to what is necessary to perform our services or comply with the law.

Right to Non-Discrimination: We will not discriminate against you for exercising your CCPA/CPRA rights. However, where permitted by law, different pricing or service levels may be offered if reasonably related to the value of your information.

19.4 Right to Opt Out of Sale or Sharing

You may opt out of any future sale or sharing of your CCPA/CPRA Personal Information by visiting the "Your Privacy Choices" section of our website. We also honor Global Privacy Control (GPC) browser signals, which are processed in a frictionless manner.

19.5 Right to Limit Use of Sensitive Personal Information

If Eleos Law LLP collects sensitive Personal Information (e.g., government-issued IDs, login credentials), and you wish to limit its use beyond what is necessary to provide services, you may do so through the "Your Privacy Choices" page on our website. We may continue to use this information for essential legal, security, or compliance purposes, as permitted under California law.

19.6 How to Exercise Your Rights

To submit a request under your CCPA/CPRA rights, you may:

Email us at: support@eleoslaw.com

We may request additional information to verify your identity. This may include matching data we have on file or using a trusted identity verification service. We will only use this data for verification purposes and will delete it after processing your request.

If you use an authorized agent to submit a request, we may require proof of their authority and verify your identity directly before responding.

We will respond to verified requests within the timeframes required by law.

Please note: Some Personal Information may be retained in compliance with legal obligations or to complete a legal engagement, even after a deletion request is submitted.

19.7 Additional Rights Under "Shine the Light" Law

California's Shine the Light law allows residents to request information about how their personal information is shared with third parties for their own direct marketing purposes.

Eleos does not currently share your personal information for this purpose. However, if you wish to opt out of any future sharing of this nature, please contact our Privacy Officer at:

📧 [support@eleoslaw.com] Subject Line: “Do Not Share”

19.8 Eleos as a Service Provider

In some cases, Eleos Law LLP may process personal information on behalf of a third party (e.g., in litigation or corporate compliance). If we are acting as a service provider, we may refer your request to the party who controls your data.

If you believe we are processing your data on someone else's behalf, please identify the applicable organization when submitting your request.

19.9 Accessibility for Individuals with Disabilities

If you have a disability and would like to access this notice in an alternative format, please contact us at:

Email: support@eleoslaw.com Subject Line: “Alternative Format California Privacy Notice”

20. Governing Law

This Notice is governed exclusively by the laws of the State of California, USA. If you are accessing our Services from outside the United States, you do so at your own initiative and agree to the transfer and processing of your information in accordance with U.S. laws.