Law Bridge Capital ("Law Bridge", "Company", "we", "us", or "our") acknowledges the intrinsically sensitive, commercially sensitive, and legally privileged nature of information pertaining to legal claims, disputes, recoveries, and financial arrangements. This Privacy Policy establishes a robust framework for the collection, storage, processing, use, disclosure, and protection of personal data in strict compliance with the Digital Personal Data Protection Act, 2023 ("DPDP Act"), other applicable Indian laws, contractual undertakings, and international data protection standards.​

It comprehensively governs all personal data obtained via the website www.lawbridgecapital.com, electronic correspondence, client engagements, or any other channels.​

​

(a) Key Compliance Principles

The Policy embeds core principles of data minimisation—collecting only necessary data—purpose limitation—restricting use to specified objectives—and lawful processing, including explicit consent where required under the DPDP Act. Law Bridge, as a Data Fiduciary, implements reasonable security measures to prevent breaches, ensures data accuracy, and notifies affected parties and the Data Protection Board of India in event of any breach.​

 

(b) Scope of Application

This Policy applies universally to interactions with Law Bridge, underscoring our commitment to confidentiality and ethical data governance tailored to legal process funding and consultancy services. It aligns with Bar Council of India ethical standards for non-legal entities facilitating professional services.​

(c) Scope of Information
Law Bridge Capital collects, processes, and retains specific categories of personal and non-personal data essential for its legal process funding and consultancy services, strictly in accordance with the Digital Personal Data Protection Act, 2023, and relevant Indian regulations.​

 

1.2 Categories of Data Collected

• Personal and Identification Data: Full name, residential and business addresses, contact details (telephone, email), government-issued identification documents (e.g., Aadhaar, PAN, passport), professional qualifications, and Know Your Customer (KYC) particulars required for due diligence and compliance.​

 

• Legal and Case-Related Information: Details of causes of action, pleadings, contracts, evidentiary materials, correspondence, legal opinions, court or arbitral filings, and strategic assessments voluntarily submitted for case evaluation, funding appraisal, or ongoing monitoring.​

 

• Financial and Transactional Data: Banking coordinates, payment records, funding disbursement details, recovery distributions, repayment schedules under waterfalls, and associated contractual entitlements.​

 

• Technical and Usage Data: Internet Protocol (IP) addresses, device identifiers, browser types, cookies, and logs of website interactions to enhance user experience and site security.

 

1.3 Lawful Purpose & Use

Law Bridge Capital collects and processes information exclusively for lawful, specified, and legitimate purposes, as mandated under the Digital Personal Data Protection Act, 2023, ensuring no further use incompatible with these objectives.

Specified Legitimate Purposes

• Conducting comprehensive legal and commercial due diligence on submitted claims to evaluate merits and potential.

• Performing risk underwriting, viability assessments, and probability analyses for funding decisions.

• Structuring, disbursing, monitoring, and enforcing funding arrangements, including repayment enforcement mechanisms.

• Fulfilling statutory regulatory, accounting, audit, taxation, and compliance obligations under applicable Indian laws.

• Detecting fraud, preventing misrepresentation, mitigating risks, and safeguarding against illicit activities.

Processing remains confined to these purposes, with data retention limited to necessity durations.

 

1.4 Confidentiality & Limited Disclosure

Law Bridge Capital treats all information as strictly confidential and proprietary, subject to robust safeguards against unauthorised access or use.

Conditions for Disclosure

Disclosure occurs solely under the following circumstances:

• Upon receipt of the user's express written consent.

• To empanelled advocates, law firms, subject matter experts, investigators, auditors, or consultants bound by equivalent confidentiality undertakings and non-disclosure agreements.

• As compelled by statutory mandates, judicial orders, regulatory directives, or lawful authority requirements.

No information is sold, traded, rented, or commercially exploited in any manner.

 

1.5 Data Security & Access Control

Law Bridge Capital implements robust administrative, technical, and physical safeguards aligned with industry best practices and reasonable security standards under the Digital Personal Data Protection Act, 2023.

(a) Security Measures and Access Controls

Access to data remains strictly role-based, granted only to authorised personnel with a legitimate need-to-know basis, enforced through multi-factor authentication, encryption protocols, and regular security audits.

(b) Data Retention and Destruction

Personal data undergoes retention solely for the duration necessary to fulfil specified purposes or as mandated by law, with secure destruction—via anonymisation, de-identification, or irreversible deletion—promptly upon expiry of such periods. Retention schedules comply with statutory obligations, and destruction processes prevent recovery.

 

1.6 Retention & Destruction

Law Bridge Capital retains information solely for the duration requisite to accomplish the specified contractual, legal, or regulatory purposes.

Upon termination of the engagement or fulfilment of retention justifications, data undergoes secure archiving where necessary or irreversible destruction at the Company's discretion, ensuring compliance with applicable data protection mandates.

 

1.7 User Rights

Users retain statutory rights under the Digital Personal Data Protection Act, 2023, subject to contractual terms and legal exemptions.

Exercise of User Rights

​

Users may submit written requests for access, rectification, erasure, or restriction of personal data processing, which Law Bridge Capital shall address promptly within statutory timelines. Such requests must be directed to the designated Data Protection support  via support@lawbridgecapital.com

.