ACL Privacy Policy

ACL is committed to protecting the privacy of all personal information obtained from anyone visiting the website. Our aim is to safeguard the security and privacy of your personal information whilst providing all the information you need to successfully complete any application or request for information. By using the ACL website, you are indicating your consent to the collection and use of such information in accordance with the following Privacy Policy.


Cookies are small files which are stored on the user's hard drive for the purpose of identifying the user agent (web browser) and ensuring web pages are correctly served to older versions of web browsers.

For administration of its website ACL may use session cookies; a session cookie is a temporary file stored in a web browser that is deleted when either it expires or the browser is closed. No privacy or personal information is stored in a cookie from this web site.

If you would like further information, please read the complete ACL cookie policy

Collection of data

ACL is committed to respecting the personal data you supply to us. The information we collect will be relevant to the purposes for which it is to be used and we will do our utmost to ensure that such data will be accurate, complete and kept up to date. Whenever personal data is obtained from you, you will have access to information as to how that data will be used. ACL  does not sell, trade or rent your personal information to others.

Use of data

Data may be shared with ACLT Training and the CLSB.  No data collected on the ACL website will be disclosed to any third-party for marketing purposes. 

 ACL complies with the provisions of the Data Protection Act and links to other websites are not covered by this privacy policy.

Data Protection

The General Data Protection Regulation (GDPR), effective from 25 May 2018 regulates the use of personal informaiton within all organisations.

The principles of GDPR state that data should be:-                                                                                                                                                                                   

  1. Processed lawfully, fairly and in a transparant manner
  2. Collected for specified, explicit and legitimate purposes
  3. Adequate, relevant and limited to what is necessary
  4. Accurate and, where necessary, kept up to date
  5. Retained only for as long as necessary
  6. Processed in an appropriate manner to maintain security      

What personal data do we collect?

As a membership organisation we collect personal data from our members

  • Identification data may include name, data of birth, email, phone number, employment information, website and forum user name and marital status
  • Contact data may include billing address, home address, home and work telephone numbers and home and work email address
  • Transaction data may include details of payment for subscriptions, membership and seminars
  • Technical data may include log in details for the website and forums

Data held for non-members attending conferences and seminars and subscribers to the Costs Lawyer will be limited to that which is provided at the point of purchase by the individual

How is data collected?

Data is collected through a range of ways

  • Through details on application forms
  • Through subscription to our printed material and e-bulletins
  • Through membership renewals
  • Through completed evaluation forms collected from conferences and seminars 

How will your data be used?

Data will only be used where there is a legitimate purpose.  This includes where we have your consent, in order to fulfill a contract, where we have a legitimate interest or where it is our legal duty. 

Third party data processors

The ACL e-bulletin and The Costs Lawyer publication is sent out by Archant Dialogue who provide ACL with email marketing services.  For the purposes of Data Protection legislation, ACL is the Controller and Archant Community Media Limited is the Processor in respect of personal data.  A written agreement is in place with the Processor. 

We may also share your personal data with other third party processors who provide services to the Association.  These include business system provider, website content and hosting providers including the provider of the ACL member forum.

How long will your data be held?

Data will be held for as long as it is needed for legitimate reasons.  Data will only be retained for as long as is necessary to fulfil the purpose for which it was collected.  This includes the purpose of satisfying any legal, accounting, regulatory or reporting requirements.  By law, some information relating to financial and transactional data must be held for certian periods of time. 

Legal Rights

Data protection laws afford some rights with regard to personal data, under certain circumstances.  These include the right to:-

  • request access to personal data
  • withdraw consent
  • restrict processing
  • have your personal data erased
  • have your data corrected

Full details of these rights can be seen at

Subject Access Requests

Individuals have the right to access their personal data and subject access requests will be acted upon within one month of receipt.

To make a subject access request, please write to the Head of Operations, ACL, Herringbone House, Lion Road, Palgrave, Diss IP22 1AL or email  Please provide one form of identification and proof of address.

If you have any concerns or questions about our use of your personal information you can

  • Call us on 0203 174 0967
  • Email us at
  • Write to us at ACL, Herringbone House, Lion Road, Palgrave, Diss IP22 1AL

If you are not satisfied with our response or believe that our processing of your information does not comply with data protection law you can make a complaint to the Information Commisioner's Office (ICO).  We would havever, appreciate the opportunity of addressing your concerns before you approach the ICO.

This Data Policy was last updated on 24 May 2018.