GDPR Policy – NextGenLegal

This policy applies to users in the European Economic Area (EEA) and complies with the General Data Protection Regulation (GDPR).

1. Data Controller

NextGenLegal is the controller of your personal data and responsible for compliance.

2. Lawful Basis

We process data based on your consent, contractual obligations, or legitimate interests.

3. Personal Data Collected

We process name, email, IP, location, and usage logs for service provision.

4. Transfers Outside EEA

Data may be transferred outside the EEA with adequate protection under SCCs.

5. Data Subject Rights

You have the right to access, rectify, erase, restrict, or object to data processing.

6. Data Retention

We retain personal data only for as long as necessary to fulfill stated purposes.

7. Security Measures

Our systems employ data encryption, access controls, and regular audits.

8. Complaint Process

You may file a complaint with your local data protection authority if your rights are violated.

9. Contact

GDPR-related inquiries: gdpr@nextgenlegalup.com