Privacy Policy
Last Updated: February 2025
Our Commitment to Privacy
Meriidiian Advon is committed to protecting the privacy and confidentiality of personal information entrusted to us. This privacy policy explains how we collect, use, and protect your personal data when you visit our website or engage our legal services.
As a law firm operating in Singapore, we are bound by strict professional confidentiality obligations and comply with the Personal Data Protection Act 2012 (PDPA) and other applicable data protection regulations.
This policy applies to our website and all legal services provided by Meriidiian Advon. By using our website or engaging our services, you consent to the collection and use of your information as described in this policy.
Information We Collect
Personal Information You Provide
- Contact details: name, email address, phone number, mailing address
- Professional information: company name, job title, business address
- Communication data: messages sent through contact forms or email
- Legal matter details: information about your legal requirements and case specifics
- Financial information: billing details and payment information (when engaging services)
Information Automatically Collected
- Website usage data: pages visited, time spent, navigation patterns
- Technical information: IP address, browser type, device information
- Cookies and tracking data: as described in our Cookie Policy
- Referral information: how you found our website
- Session data: login times and duration (for client portal access)
Information from Third Parties
- Professional referrals: information provided by referring lawyers or professionals
- Background checks: publicly available information for conflict checking
- Legal databases: information from legal research and due diligence activities
- Court records: publicly available legal proceedings information
How We Use Your Information
Legal Service Delivery
- Providing legal advice and representation
- Drafting and reviewing legal documents
- Conducting legal research and due diligence
- Client communication and case updates
- Billing and payment processing
Business Operations
- Conflict of interest checking
- Website analytics and improvement
- Marketing communications (with consent)
- System administration and security
- Regulatory compliance and reporting
Legal Basis for Processing
Consent
Marketing communications and non-essential cookies
Contract
Providing legal services and client communication
Legitimate Interest
Business operations, security, and website analytics
Data Protection and Security
Attorney-Client Privilege
All communications between clients and Meriidiian Advon are protected by attorney-client privilege under Singapore law. This privilege extends to all information shared in confidence for the purpose of obtaining legal advice.
Technical Security Measures
- 256-bit SSL encryption for data transmission
- Secure cloud storage with Singapore data residency
- Multi-factor authentication for system access
- Access controls and audit logging
- Regular security audits and penetration testing
Organizational Security
- Staff confidentiality agreements and training
- Role-based access to client information
- Secure file management protocols
- Data breach response procedures
- Secure data disposal methods
Data Retention Periods
| Data Type | Retention Period | Legal Basis |
|---|---|---|
| Client legal files and communications | 7 years after matter completion | Singapore Bar requirements |
| Financial records and billing | 7 years from transaction date | Tax and accounting laws |
| Contact form submissions | 3 years from submission | Business records retention |
| Website analytics data | 26 months from collection | Google Analytics retention |
| Marketing communications data | Until consent withdrawn | Consent-based processing |
Your Privacy Rights
Right to Access
Request a copy of the personal data we hold about you and information about how it is processed.
Right to Rectification
Request correction of inaccurate or incomplete personal data we hold about you.
Right to Erasure
Request deletion of your personal data where there is no compelling reason for continued processing.
Right to Data Portability
Receive your personal data in a structured, machine-readable format for transfer to another service provider.
Right to Object
Object to processing of your personal data for marketing purposes or where processing is based on legitimate interests.
Right to Withdraw Consent
Withdraw consent for processing activities that require consent, such as marketing communications.
How to Exercise Your Rights
To exercise any of these rights, please contact us at [email protected] with your request. We will respond within 30 days of receiving a complete request.
Note: Some rights may be limited where we have compelling legitimate grounds for processing or are required to retain data for legal compliance purposes.
Data Sharing and International Transfers
When We Share Your Data
We may share your personal data in the following circumstances:
- With your explicit consent or as directed by you
- With courts, regulatory authorities, or government agencies as required by law
- With external counsel or experts when necessary for your legal matter
- With service providers who assist us in delivering legal services (under strict confidentiality agreements)
- In connection with a merger, acquisition, or sale of assets (with advance notice)
Service Providers and Third Parties
IT and Cloud Services
Secure hosting, email services, and document management systems with data processing agreements.
Legal Research Platforms
Legal databases and research tools necessary for providing comprehensive legal services.
Payment Processors
Secure payment gateways for billing and financial transactions with encryption protocols.
Professional Consultants
Expert witnesses, forensic accountants, and other professionals as required for legal matters.
International Data Transfers
Your personal data is primarily stored and processed in Singapore. When international transfers are necessary for legal services, we ensure appropriate safeguards including:
- Adequacy decisions by Singapore authorities
- Standard contractual clauses approved by data protection authorities
- Certification schemes and codes of conduct
- Client consent for specific transfers
Contact Us and Complaints
Privacy Contact Information
+65 6592 8374
Data Protection Officer
Meriidiian Advon
98 Telok Ayer Street
Singapore 068567
Filing Complaints
If you believe we have not handled your personal data in accordance with this policy or applicable law, you have the right to lodge a complaint with:
Personal Data Protection Commission
Singapore's data protection authority
Website: www.pdpc.gov.sg
Email: [email protected]
Policy Updates
We may update this privacy policy from time to time to reflect changes in our practices, legal requirements, or business operations. Material changes will be communicated through website notices or direct communication with clients. The "Last Updated" date indicates when the policy was most recently revised.