- Click here for Safe Harbor Listing
The European Commission and the Government of Switzerland have agreed separately with the United States Department of Commerce on sets of data protection principles and frequently asked questions (the “U.S.-EU Safe Harbor Framework” and the “U.S.-Swiss Safe Harbor Framework”) to enable U.S. companies to satisfy European Union and Swiss law requirements for adequate protection of personal information transferred from the EU and Switzerland to the United States. The EEA also has recognized the U.S.-EU Safe Harbor Framework as providing adequate data protection. Consistent with its commitment to protect personal privacy, Orange Legal Technologies adheres to the U.S.-EU and the U.S.-Swiss Safe Harbor Principles.
“Orange Legal Technologies” means Orange Legal Technologies, LLC., its predecessors, and successors. “Personal information” means any information or set of information that identifies or could be used by Orange Legal Technologies its customers or agents of its customers, it to identify an individual. Personal information does not include information that is encoded or anonymized, or publicly available information that has not been combined with non-public personal information. It does not include information that pertains to a specific individual, but from which that individual could not reasonably be identified. “Sensitive personal information” means personal information that reveals race, ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, or that concerns health or sex life. In addition, Orange Legal Technologies will treat as sensitive personal information any information received from a third party where that third party treats and identifies the information as sensitive.
The following privacy principles are based on the Safe Harbor Principles.
Notice and Choice
To the extent permitted by the Safe Harbor Frameworks, Orange Legal Technologies reserves the right to process personal information in the course of providing professional services to our clients without the knowledge of individuals involved. Where we collect personal information directly from individuals in the EU and/or Switzerland, we inform them about the types of personal information we collect from them, the purposes for which we collect and use it, and the types of non-agent third parties to which we disclose that information. We also inform those individuals about the choices and means, if any, we offer individuals for limiting the use or disclosure of their information.
Disclosures and Transfers
Orange Legal Technologies will not disclose an individual’s personal information to third parties, except when one or more of the following conditions is true:
- We have the individual’s permission to make the disclosure;
- The disclosure is required by law or professional standards;
- The disclosure is reasonably related to the sale or disposition of all or part of our business;
- The information in question is publicly available;
- The disclosure is reasonably necessary for the establishment or defense of legal claims; or
- The disclosure is to another Orange Legal Technologies entity or to persons or entities providing services on our or the individual’s behalf (each a “transferee”), consistent with the purpose for which the information was obtained, if the transferee, with respect to the information in question:
- is subject to law providing an adequate level of privacy protection;
- has agreed in writing to provide an adequate level of privacy protection; or
- subscribes to the Principles.
Permitted transfers of information, either to third parties or within Orange Legal Technologies, include the transfer of data from one jurisdiction to another, including transfers to and from the United States of America. Because privacy laws vary from one jurisdiction to another, personal information may be transferred to a jurisdiction where the laws provide less or different protection than the jurisdiction in which the information originated.
To prevent unauthorized access or disclosure, maintain data accuracy, and ensure the appropriate use and confidentiality of information, either for its own purposes or on behalf of our clients, Orange Legal Technologies has put in place appropriate physical, electronic, and managerial procedures to safeguard and secure the information we process. However, we cannot guarantee the security of information on or transmitted via the Internet or Review tool.
Orange Legal Technologies processes personal information only in ways compatible with the purpose for which it was collected or subsequently authorized by the individual. To the extent necessary for such purposes, we take reasonable steps to make sure that personal information is accurate, complete, current, and otherwise reliable with regard to its intended use.
Access and Correction
If an individual becomes aware that information we maintain about that individual is inaccurate, or if an individual would like to update or review his or her information, the individual may contact us using the contact information below. We will take reasonable steps to permit individuals to correct, amend, or delete information that is demonstrated to be inaccurate. The individual will need to provide sufficient identifying information, such as name, address, birth date, and social security number. We may request additional identifying information as a security precaution. In addition, we may limit or deny access to personal information where providing such access would be unreasonably burdensome or expensive in the circumstances, or as otherwise permitted by the Safe Harbor Agreement. In some circumstances, we may charge a reasonable fee, where warranted, for access to personal information.
Enforcement and Dispute Resolution
Orange Legal Technologies utilizes the self-assessment approach to assure its compliance with our privacy statement. Orange Legal Technologies periodically verifies that the policy is accurate, comprehensive for the information intended to be covered, prominently displayed, completely implemented, and in conformity with the Principles. We encourage interested persons to raise any concerns with us using the contact information below. We will investigate and attempt to resolve complaints and disputes regarding use and disclosure of personal information in accordance with the principles contained in this policy.
With respect to any complaints relating to this policy that cannot be resolved through our internal processes, we have agreed to participate in the dispute resolution procedures of the panel established by the EU data protection authorities to resolve disputes pursuant to the Safe Harbor Principles, and to cooperate and comply with the Federal Data Protection and Information Commissioner of Switzerland. In the event that we or such authorities determine that we did not comply with this policy, we will take appropriate steps to address any adverse effects and to promote future compliance.
Any person who we determine is in violation of our privacy policies will be subject to disciplinary process.
Questions or comments regarding our Safe Harbor certification should be submitted to Orange Legal Technologies by mail or e-mail as follows:
Orange Legal Technologies
30 East Broadway, Suite 300
Salt Lake City, UT 84111
To learn more about how Orange Legal Technologies’ differentiation can make a difference in your electronic discovery, contact us today for an introductory briefing and demonstration.