Privacy Policy

This Privacy Policy explains how Sinkin Law ("Sinkin Law," "we," "us," or "our") collects, uses, discloses, and safeguards personal information when you visit our website (the "Site"), contact us, or otherwise interact with us online. This Policy does not change any confidentiality obligations that apply when you become a client of the firm; those obligations are governed by professional rules and, as applicable, our engagement agreement with you.

No attorney–client relationship via the Site. Submitting information through our contact forms, email, chat, or scheduling tools does not create an attorney–client relationship. Do not send confidential or privileged information until we have confirmed representation in writing.

1) Information we collect

We collect information in three ways: (a) directly from you, (b) automatically through the Site, and (c) from third parties.

a. Information you provide directly

Contact details (name, email address, phone number, mailing address)

Professional and case-related details you choose to share in a message or uploaded file

Scheduling details (preferred dates/times, meeting topics)

Billing details if you make a payment to us online (handled by our payment processor; we do not store full card numbers)

b. Information collected automatically (cookies and similar technologies)

Device and usage data (IP address, browser type/version, operating system, referring URLs, pages viewed, links clicked, date/time, approximate location)

Cookie identifiers and analytics data

You can control non-essential cookies via your browser settings and our [Cookie Settings] link (if enabled). Essential cookies that are necessary for the Site to function cannot be switched off in our systems.

c. Information from third parties

Scheduling, conferencing, and intake tools (e.g., calendar or video services you choose to use)

Analytics providers

Payment processors

Public sources (e.g., professional profiles, court or government records) when relevant to a matter

2) How we use information

We use personal information for the following purposes:

Responding to inquiries and providing requested information

Scheduling consultations and managing events or webinars

Performing website analytics and improving the Site’s performance, security, and user experience

Conducting ordinary business operations (accounting, recordkeeping, compliance, and risk management)

Marketing our services (e.g., newsletters or alerts) where permitted by law; you can unsubscribe at any time

Complying with legal obligations, exercising legal claims, and protecting rights, property, and safety

If you become a client, we will also process personal information as necessary to provide legal services under an engagement agreement and applicable professional obligations.

3) Legal bases for processing (EEA/UK visitors)

Where the GDPR/UK GDPR applies, our processing is based on one or more of the following: (i) performance of a contract or pre-contractual steps at your request, (ii) our legitimate interests in operating and improving the Site and services, (iii) compliance with legal obligations, and (iv) your consent where required (e.g., certain cookies or marketing communications).

4) How we share information

We do not sell personal information. We may share personal information as follows:

Service providers who perform services on our behalf (hosting, analytics, security, email delivery, scheduling, payments). These parties are contractually obligated to protect your information and use it only as instructed.

Professional advisors (auditors, insurers, accountants) under confidentiality obligations.

Legal disclosures to comply with law, respond to lawful requests, enforce our terms, or protect rights/safety.

Business changes in connection with a merger, reorganization, or similar transaction, subject to appropriate safeguards.

We do not share information with third parties for their own marketing purposes.

5) Cookies, analytics, and “Do Not Track”

We use cookies and similar technologies to remember preferences, enable basic functionality, and analyze Site traffic.

You can manage cookies through your browser and, where available, our [Cookie Settings] control. Disabling certain cookies may affect Site functionality.

Some browsers offer a Global Privacy Control (GPC) or “Do Not Track” signal. Where required by applicable law, we treat a qualifying GPC signal as a request to opt out of cross-context behavioral advertising or similar disclosures (which we do not engage in on this Site). If our practices change, we will update this Policy and provide required opt-out mechanisms.

6) Data retention

We retain personal information for as long as necessary to fulfill the purposes described above, including to meet legal, accounting, or reporting requirements, resolve disputes, and enforce our agreements. If you become a client, retention may follow professional rules and our internal recordkeeping schedules. When retention is no longer necessary, we will delete or de-identify information in accordance with our policies and applicable law.

7) Security

We employ administrative, technical, and physical safeguards designed to protect personal information. No website or email is 100% secure. Please do not include sensitive information in unencrypted emails or form submissions.

8) Your privacy choices and rights

Email marketing

You may opt out of non-transactional emails by using the unsubscribe link in any email or by contacting us.

Cookie controls

Use browser settings and our [Cookie Settings] control (where available) to manage non-essential cookies.

State-specific rights (U.S.)

Residents of certain U.S. states (for example, California) may have rights to access, correct, delete, obtain a portable copy of personal information, and/or opt out of targeted advertising or certain disclosures. To exercise these rights, use the methods in Contact us below. We will verify requests as required and will not discriminate against you for exercising your rights.

EEA/UK data subject rights

Where the GDPR/UK GDPR applies, you may have rights to access, rectify, erase, restrict, object to processing, and data portability. Where processing is based on consent, you may withdraw consent at any time without affecting the lawfulness of processing before withdrawal. You also have the right to lodge a complaint with your local supervisory authority.

9) Children’s privacy

The Site is not directed to children under 13, and we do not knowingly collect personal information from children under 13. If you believe a child has provided us personal information, please contact us so we can take appropriate action.

10) International transfers

If you access the Site from outside the United States, your information may be processed in countries (including the U.S.) that may have different data-protection laws than your country. Where required, we use appropriate safeguards for such transfers.

11) Third-party links

The Site may link to third-party websites or services. We are not responsible for the privacy practices of those third parties. We encourage you to review their privacy policies.

12) Changes to this Policy

We may update this Privacy Policy from time to time. The “Effective date” above indicates when this Policy was last revised. Material changes will be posted on this page, and, where required, we will provide additional notice.

13) Contact us

If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact us at:

Sinkin Law
Attn: Privacy
[Insert mailing address]
Email: privacy@sinkinlaw.com
Phone: [Insert phone number]

If you are in the EEA/UK and wish to contact our EU/UK representative (if/when appointed), please email privacy@sinkinlaw.com for details.

14) Supplemental California notice (CPRA) — if applicable

If California law applies to our processing, the following disclosures supplement the Policy:

Categories collected: Identifiers (e.g., name, email), internet/usage data, and any information you provide in a form or file upload. We do not use or disclose sensitive personal information for purposes other than those permitted by CPRA §1798.121.

Sources: You, your devices/browsers, and our service providers.

Purposes: As described above (respond to inquiries, provide services, security, debugging, analytics, compliance).

Disclosures: To service providers for business purposes. We do not sell or share personal information as defined by the CPRA, and we do not knowingly sell or share the personal information of consumers under 16.

Retention: As described in Data retention.

Your rights: Access, correction, deletion, portability, and to limit use/disclosure of sensitive personal information (where applicable). Submit a request via the contact methods above. If we deny a request, you may appeal by replying to our response or contacting us again with “Appeal” in the subject line.

Implementation notes (remove this section before publishing)

Replace bracketed placeholders (address, phone, Cookie Settings link, tools actually used).

If you deploy analytics (e.g., Google Analytics), add a link to the provider’s policy and IP-anonymization/retention settings.

If you engage in retargeting/behavioral ads or use third-party embedded widgets, add an opt-out mechanism and update the CPRA “share” language.

If operating in the EEA/UK, add your EU/UK representative (if required), DPO (if appointed), and include transfer mechanism details (e.g., SCCs) with a link to your cookie banner.