Privacy Policy

Last updated on May 31, 2022.

Lex Mundi Ltd. is the owner and operator of the website and other Lex Mundi owned and operated websites (collectively, the “Website”).

At Lex Mundi we are committed to the privacy and confidentiality of information provided by you. This Privacy Policy explains our current policies and practices regarding our collection and processing of your personal data including personal information or data collected by us from you directly, your organization, and/or through this Website or other Lex Mundi owned and operated websites. This Privacy Policy describes in detail how we collect  and process your personal data, who is responsible for the personal data that we collect about you, what personal data we collect, how we will use such personal data, who we may disclose it to and your rights and choices in relation to your personal data. When used in this Privacy Policy, the terms “Lex Mundi”, “we”, “us”, “our” and “ours” means Lex Mundi Ltd., Lex Mundi UK Limited and Lex Mundi Pro Bono Foundation.

The terms “you,” “your” and “yours” when used in this Privacy Policy means any user of the Website.

In this Privacy Policy we use the words “personal data” to describe information that allows us to directly or indirectly  identify you.

Who is Responsible for the Personal Data that we Collect?
For the purpose of data protection law, Lex Mundi is the data controller in respect of the personal data that we collect and use as part of our business activities. This is because we determine the purpose for which your personal data is used and how we use your personal information.

Collection of Personal Data
We collect personal data including your name, job title, organization, email address and phone number. The information you give us enables us to provide a service that is personalized to you. The information you or your organization gives us is electronically stored in our database.

We collect information when you provide it to us, such as when you use the “contact us” feature on the website or otherwise communicate with us (such as by email or via our social media pages).

We also collect personal information from prospect lists provided by other organizations or through our marketing activities such as through business cards exchanged at conferences and events. We process such personal data for marketing purposes if individuals have opted in to receive email messages.

If you are providing personal data to us relating to a third party, you confirm that (i) you have the consent of the third party or another legal basis to share such personal data with us; (ii) you have the consent of the third party or another legal basis for us to use their personal data in accordance with this Privacy Policy; and (iii) that you have made the information in this Privacy Policy available to the third party.

Lex Mundi collects certain information automatically when you use the Website, such as the IP addresses and domain names of visitors, browser type, history of pages viewed and other usage information about your use of the Website. We collect this information for site administration purposes, such as to analyze this data for trends and statistics. We may share statistical or aggregated information about our users with advertisers, business partners, sponsors and other third parties. This data is used to customize our website content and advertising to deliver a better experience to our users. 

Personal Data Provided by Lex Mundi Member Firms
Our member firms provide us with basic contact information of their lawyers and staff. We keep member contact information in our database and may, from time to time, email you information to make you aware of opportunities which may be of interest to you and of developments in sectors we believe may be of interest. If you do not wish to receive further communications from us for these purposes, please let us know by using the “unsubscribe” link found on all of the Lex Mundi emails or by using the “unsubscribe” procedure set out below.

Use of Personal Data
Lex Mundi collects personal data for the following purposes, and we will only use your personal data when the law allows us to. We have also set out below the legal basis that we rely on to justify each use of your personal data:

  • To internally administer and provide the Website to you: For our legitimate business purposes (i.e., the provision of the Lex Mundi website as well as to improve and ensure the security of those products and services).
  • Analyze the usage of our Website and to understand basic demographics of users: For our legitimate business purposes (i.e., in order to improve the content, security and functionality of our Website).
  • To provide member firm lawyers or staff access to our Member Portal: For our legitimate business purposes (i.e., the provision of member firm services) or where we need to perform the contract we are about to enter into or have entered into with you.
  • To provide you with member firm benefits, products or services that you have requested and related information about those products and services: For our legitimate business purposes (i.e., the provision of member firm services) or where we need to perform the contract we are about to enter into or have entered into with you.
  • Provide you with news, offers, events, webinars and general information about the services we provide and the opportunities available to you when you have opted in to receive these: For our legitimate business purposes (i.e., direct marketing).
  • To communicate with you and to respond to questions that you have raised with us: For our legitimate business purposes (i.e., the provision of the Lex Mundi website and services) or where we need to perform the contract we are about to enter into or have entered into with you
  • To prevent and detect fraud: For our legitimate business purposes and for compliance with legal obligations to which we are subject.
  • To protect and enforce our legal rights: For our legitimate business purposes and for the enforcement of legal rights and compliance with legal obligations.

We will only use your personal data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If you wish to get an explanation as to how the processing for the new purpose is compatible with the original purpose, please contact us.  If we need to use your personal data for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so.

Please note that we may process your personal data without your knowledge or consent, in compliance with the above rules, where this is required or permitted by law.

Disclosure of your Personal Data
Lex Mundi reserves the right to disclose and/or transfer personal data to a third party if Lex Mundi has reason to believe that disclosing the personal data is necessary to identify, contact or bring legal action against someone who may be causing injury to or interference with (either intentionally or unintentionally) our rights or property, other website users or anyone else who could be harmed by such activities.  Additionally, Lex Mundi may disclose personal data in response to a subpoena, warrant or other court order, or when we believe in good faith that a law, regulation, subpoena, warrant or other court order requires it – or authorizes us to do so – or to respond to an emergency situation.

Lex Mundi reserves the right to disclose and/or transfer personal data to a third party in the event of a proposed or actual purchase, sale (including a liquidation, realization, foreclosure or repossession), lease, merger, amalgamation or any other type of acquisition, disposal, transfer, conveyance or financing of all or any portion of Lex Mundi, or of any of the business of Lex Mundi or a chapter/division thereof, in order for you to continue to receive the same products and services from the third party.

In order to provide you with the information or services you have requested, we may share your personal data with or transfer it to Lex Mundi member firms. Where you have registered for access to the Member Portal on the Website, registered to participate in a Lex Mundi event or joined a Lex Mundi member group, we may share your personal information/data with Lex Mundi member firms. When designated by your firm as a practice or industry expert or a contact person for your firm, we will include your contact information in Lex Search, our online lawyer search that enables users to easily identify firm contacts.

We may share your information with professional advisors, such as accountants and lawyers, who assist us in carrying out our business activities. Lex Mundi may share personal data with third parties engaged to assist Lex Mundi in providing services to you or to carry out one or more of the purposes described above. These service providers are prohibited from using your personal data for any purpose other than to provide this assistance and are contractually required to protect personal data disclosed by Lex Mundi and to comply with law and the general privacy principles described in this Privacy Policy. We share your information with service providers, contractors and sub-contractors to help us provide the website, products, events and services. For example, we may use a service provider to process payment information, manage our events, provide a platform for our events, provide analytics or use third party software to manage our customer relationship management (CRM) system. 

We share your personal data with our event sponsors so they may contact you with information about the sponsor’s activities, services and products. You will have the option to opt out of sharing this information by contacting at any time. In some instances, if you opt out of allowing us to share your personal data, you will be unable to participate in a program or event. The information provided will contain your name, title, company and mailing address.

Data Integrity and Security
The information you or your organization gives us is electronically stored in our database. The security of your data is important to us. We strive to maintain the reliability, accuracy, completeness and currency of all personal data in our databases and to protect the privacy and security of our databases. The security measures in place on the Website and computer systems aim to protect the loss, misuse or alteration of the information you provide to us.

We therefore have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorized way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

Please know that no method of transmission over the internet or method of electronic storage is 100% secure. You hereby acknowledge that Lex Mundi is not responsible for any intercepted information sent via the Internet, and you hereby release us from any and all claims arising out of or related to the use of intercepted information in any unauthorized manner.

Your Rights, including Removing, Correcting or Updating Personal Information

  • You have the right to access the personal data that we hold about you, subject to certain exceptions. We may require further information in order to respond to your request (for instance, evidence of your identity and information to enable us to locate the specific personal data you require).
  • You have the right to ask us to correct the personal data that we hold where it is incorrect or incomplete.
  • You have the right to ask that your personal data be deleted in certain circumstances. For example (i) where your personal data is no longer necessary in relation to the purposes for which they were collected or otherwise used; (ii) if our processing was based on your consent and there is no other legal ground for our continued use of your personal data; (iii) if you object to the use of your personal data; (iv) if we have used your personal data unlawfully; or (v) if your personal data needs to be erased to comply with a legal obligation.
  • You have the right to suspend our use of your personal data in certain circumstances. For example (i) where you think your personal data is inaccurate and only for such period to enable us to verify the accuracy of your personal information; (ii) where you believe the use of your personal data is unlawful; (iii) when we no longer need your personal data, but you require it you for the establishment, exercise or defense of legal claims; or (iv) if you have objected to the use of your personal data and we are verifying whether our grounds for the use of your personal data override your objection.
  • In certain circumstances, you have the right to obtain your personal data in a structured, commonly used and machine-readable format and for it to be transferred to another organization, where it is technically feasible.
  • You have the right to object to the use of your personal data in certain circumstances. For example (i) where you have grounds relating to your particular situation and we use your personal data for our legitimate interests (or those of a third party); and (ii) if you object to the use of your personal data for direct marketing purposes.
  • You have the right to withdraw your consent at any time where we rely on consent to use your personal data.

With regards to any of the requests above, please contact us by sending an email to

You also have the right to complain to the relevant data protection authority where you think we have not used your personal data in accordance with data protection law. We would, however, appreciate the chance to deal with your concerns before you approach your relevant data protection authority so please contact us in the first instance.

You will not have to pay a fee to access your personal data (or to exercise any of the other rights). However, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive. Alternatively, we could refuse to comply with your request in these circumstances.

We may need to request specific information from you to help us confirm your identity and ensure your right to access your personal data (or to exercise any of your other rights). This is a security measure to ensure that personal data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.

We try to respond to all legitimate requests within one month. Occasionally it could take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.

Retention of Personal Data
We keep your personal data only for as long as reasonably necessary for the purposes for which it was collected or to comply with any applicable legal, regulatory, tax, accounting or ethical reporting or document retention requirements. When determining the appropriate retention periods, we  consider the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means. We also consider our need to answer your queries or resolve possible problems, to comply with legal, regulatory, tax, accounting or requirements under applicable laws, to attend to any legal claims/complaints, and for safeguarding purposes. This means that we may retain your personal data for a reasonable period of time after your last interaction with us. When the personal data that we have collected is no longer required, we will delete it in a secure manner. We may process data for statistical purposes, but in such cases, data will be anonymized.

We may provide paid products and/or services to our users. In that case, we may use third-party services for payment process (e.g., payment processors). We will not store or collect your payment card details. That information is provided directly to our third-party payment processors whose use of your personal information is governed by their Privacy Policy. These payment processors adhere to the standards set by PCI-DSS as managed by the PCI Security Standards Council, which is a joint effort of brands like Visa, Mastercard, American Express and Discover. PCI-DSS requirements help ensure the secure handling of payment information. The payment processors we work with include PayPal, VeriSign, Square and Capital One.

Links to Other Websites
Lex Mundi is not responsible for the content or privacy practices of non-Lex Mundi websites, plug-ins or applications to which this Website or any other Lex Mundi owned website may link. These links are provided for informational purposes and to provide access to member firms within Lex Mundi. When you leave our website, we encourage you to read the privacy policy of every website you visit.

Transfer of Data Abroad
We are based in the United States and some of our external third parties are also based outside the European Economic Area (“EEA”), and therefore our or their processing of your personal data may involve a transfer of data outside the EEA. Whenever we transfer your personal data out of the EEA, we ensure a similar degree of protection is afforded to it by implementing at least one of the following safeguards:

  • We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission; or
  • Where we transfer your personal data intra-group or use certain service providers, we may use specific contracts approved by the European Commission which give personal data the same protection it has in the EEA.

Please contact us if you want further information on the specific mechanism used by us when transferring your personal data out of the EEA.

If you do not wish to receive emails from us and want to be removed from our electronic mailing list, please email us at

Changes to this Privacy Policy and Your Duty to Inform Us of Your Changes
Lex Mundi reserves the right to amend this Privacy Policy at any time. The applicable version will always be found on our websites. We encourage you to check this Privacy Policy occasionally to ensure that you are happy with any changes. If we make changes that significantly alter our privacy practices, we will notify you by email or post a notice on our websites prior to the change taking effect.

It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your relationship with us.

Contacting Lex Mundi with Questions, Concerns or Complaints
If you have any questions or feedback about this Privacy Policy, or would like to exercise any of your rights relating to your personal data, please contact us:

  • By email:
  • By telephone number: 1.713.626.9393
  • By mail: Lex Mundi, 2100 West Loop South, Suite 1000, Houston, Texas 77027



Last updated on July 5, 2022

Lex Mundi Access App specific

This privacy notice for Lex Mundi LTD ("Company," "we," "us," or "our"), describes how and why we might collect, store, use, and/or share ("process") your information when you use our services ("Services"), such as when you:

  • Download and use our mobile application (Lex Mundi Access), or any other application of ours that links to this privacy notice
  • Engage with us in other related ways, including any sales, marketing, or events

Questions or concerns?

Reading this privacy notice will help you understand your privacy rights and choices. If you do not agree with our policies and practices, please do not use our Services. If you still have any questions or concerns, please contact us at


Personal information you disclose to us.

We collect personal information that you voluntarily provide to us when you express an interest in obtaining information about us or our products and Services, when you participate in activities on the Services, or otherwise when you contact us.

Personal Information Provided by You.

The personal information that we collect depends on the context of your interactions with us and the Services, the choices you make, and the products and features you use. The personal information we collect may include the following:

  • names
  • phone numbers
  • email addresses
  • mailing addresses

Sensitive Information.

We do not process sensitive information.

Payment Data.

We may collect data necessary to process your payment if you make purchases. such as your payment instrument number (such as a credit card number), and the security code associated with your payment instrument. All payment data is stored by Paypal. You may find their privacy notice link(s) here:

Application Data.

If you use our application(s) we also may collect the following information if you choose to provide us with access or permission:

  • Geolocation Information. We may request access or permission to track location-based information from your mobile device, while you are using our mobile application(s), to provide certain location-based services. If you wish to change our access or permissions, you may do so in your device's settings.
  • Mobile Device Access. We may request access or permission to certain features from your mobile device, including your mobile device's calendar, camera, contacts, storage. and other features. If you wish to change our access or permissions, you may do so in your devices settings.
  • Push Notifications. We may request to send you push notifications regarding your account or certain features of the application(s). If you wish to opt out from receiving these types of communications, you may tum them off in your devices settings.

This information is primarily needed to maintain the security and operation of our application(s), for troubleshooting, and for our internal analytics and reporting purposes.

All personal information that you provide to us must be true, complete, and accurate, and you must notify us of any changes to such personal information.

Information automatically collected.

We automatically collect certain information when you visit, use, or navigate the Services. This information does not reveal your specific identity (like your name or contact information) but may include device and usage information. such as your device characteristics, operating system, device name, device model and other technical information. This information is primarily needed for our internal analytics and reporting purposes.

Like many businesses. we also collect information through cookies and similar technologies.

The information we collect includes:

  • Device Data. We collect device data such as information about your phone. tablet you use to access the Services. Depending on the device used, this device data may include information such as your application identification numbers and system configuration information.
  • Location Data. We collect location data such as information about your device's location, which can be either precise or imprecise. How much information we collect depends on the type and settings of the device you use to access the Services. You can opt out of allowing us to collect this information either by refusing access to the information or by disabling your Location setting on your device. However, if you choose to opt out, you may not be able to use certain aspects of the Services.

We process your information to provide, improve, and administer our Services, communicate with you, for security and fraud prevention; and to comply with law. We may also process your information for other purposes with your consent.

We process your personal information for a variety of reasons, depending on how you interact with our Services, including:

  • To send administrative information to you. We may process your information to send you details about our products and services, changes to our terms and policies. and other similar information.
  • To save or protect an individual's vital interest. We may process your information when necessary to save or protect an individual's vital interest, such as to prevent harm.

We may share information in specific situations described in this section and/or with the following third parties.

Vendors, Consultants, and Other Third-Party Service Providers.

We may share your data with third-party vendors, service providers, contractors, or agents ("third parties") who perform services for us or on our behalf and require access to such information to do that work. They also commit to protect the data they hold on to our behalf and to retain it for the period we instruct.

The third parties we may share personal information with are as follows:

  • Web and Mobile Analytics - Google Analytics for Firebase

We may use cookies and similar tracking technologies to access or store information. Specific information about how we use such technologies and how you can refuse certain cookies is set out in our Cookie Notice.


We will only keep your personal information for as long as it is necessary for the purposes set out in this privacy notice unless a longer retention period is required.

When we have no ongoing legitimate business need to process your personal information, we will either delete or anonymize such information, or, if this is not possible (for example. because your personal information has been stored in backup archives) then we will securely store your personal information and isolate it from any further processing until deletion is possible.


We aim to protect your personal information through a system of organizational and technical security measures. We have implemented appropriate and reasonable technical and organizational security measures designed to protect the security of any personal information we process. However, despite our safeguards and efforts to secure your information, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure, so we cannot promise or guarantee that hackers, cybercriminals, or other unauthorized third parties will not be able to defeat our security and improperly collect, access, steal, or modify your information. Although we will do our best to protect your personal information, transmission of personal information to and from our Services is at your own risk. You should only access the Services within a secure environment.


We do not knowingly solicit data from or market to children under 18 years of age. By using the Services, you represent that you are at least 18 or that you are the parent or guardian of such a minor and consent to such minor dependent's use of the Services. If we deem that personal information from users less than 18 years of age has been collected, we will deactivate the account and take reasonable measures to promptly delete such data from our records. If you become aware of any data we may have collected from children under age 18, please contact us at 


In certain situations, you may request to review, update, delete your personal information. To do so please submit a request to