Privacy Policy
This Privacy Policy describes how inblf.com, the website (the “Site”) of INBLF, International Network of Boutique and Independent Law Firms (also referred to as “we”), collects, uses, shares and otherwise processes your personal data collected through the Site and in connection with other communication services (the “Services”). “Personal Data” refers to any information that identifies, relates to, describes, or can reasonably be linked to, an individual. This includes “personal data” as defined under U.S. state laws (such as the CCPA/CPRA) and “personal data” under the GDPR as well as “personally identifiable personal data” or “personally identifiable information.” Business information is deemed personal data if it identifies a specific natural person, such as via a business email or direct phone number identifying a person, or where a business name is a person’s name, in corporate biographies that contain identifiable details or any other business information that can be used to identify, contact or profile a person. You may choose to provide personal data directly to us through our Contact Us page, when you sign up for our newsletter or in connection with other Services, including contact details for events or marketing communications.
1. How and why we use your personal data
We will use your personal data for the following purposes:
· To inform you about our services, INBLF events and other items we think may be of interest.
· For analysis to improve the Site, our Services and for market research.
· For other reasons, with your consent.
Please note that we may use or disclose personal data if we are required by law to do so or if we reasonably believe that use or disclosure is necessary to protect our rights and/or to comply with judicial or regulatory proceedings, a court order or other legal process.
INBLF will not disclose personal data about you to unaffiliated third parties, except in accordance with this Privacy Policy.
2. Sharing your personal data
We may share your personal data in the following circumstances:
· We may share your personal data with entities that provide services to us. We require those entities to use the personal data solely for the purpose of providing such services for us.
· There may be instances when we disclose your personal data to legal advisors and public authorities, such as court and law enforcement agencies.
· If we make a sale or transfer of assets, or are otherwise involved in a merger or transfer, we may transfer your personal data to one or more third parties as part of that transaction.
· In addition to the sharing described in this Privacy Policy, we may share personal data about you with other third parties when you consent to such sharing.
3. Cookies
Strictly necessary cookies, which enable the Site to work correctly, are automatically placed on your computer or device when you access or take certain actions through the Site. To prevent these cookies from being placed on your computer, you may adjust your browser settings. Doing so may, however, result in reduced functionality of the Site.
Nonessential cookies are only placed on your computer or device if you have consented to our doing so. With your consent, we may place these cookies on your computer to recognize you on return visits and to enable us to enhance your user experience as well as to collect non-personally identifiable data about you.
4. Third-party content, functionality and services
Some of the content and functionality of the Services may be provided by third parties that are not affiliated with INBLF. For example, you may choose to share certain materials from the Site with others through services such as LinkedIn or other social media. These third parties may collect or receive certain personal data about your use of the Services, including with cookies, web beacons and similar technologies. These entities may collect this personal data over time and
combine it with personal data collected from different websites and online services. We are not responsible for the privacy practices of these entities.
5. Children’s personal data
We do not knowingly collect or store personal data about children under the age of 18.
6. Privacy rights of European Economic Area users
If you are located in the European Economic Area (EEA), the United Kingdom (UK) or Switzerland, the following additional provisions apply to the processing of your personal data in accordance with the General Data Protection Regulation (GDPR) and similar applicable laws.
By accessing the Site, registering for an event or subscribing to our communications, you acknowledge and agree that we may collect, use and store your personal data as described in this Privacy Policy and in accordance with applicable data protection laws, including GDPR and its UK and Swiss equivalents where applicable.
7. Legal Basis for Processing
We process your personal data only when we have a lawful basis to do so. These bases may include:
· Consent – where you have given us permission to process your personal data for a specific purpose, such as when you opt in to receive our email newsletters
· Contractual Necessity – where processing is necessary to fulfill a contract with you, such as event registration or fulfilling your newsletter subscription
· Legal Obligation – where processing is necessary for compliance with a legal obligation, such as compliance with tax or financial reporting requirements
· Legitimate Interests – where processing is necessary for our legitimate interests and those interests are not overridden by your data protection rights, such as improving our outreach or analyzing participation in events to enhance future programming
We do not collect sensitive personal data unless explicitly provided and necessary, such as, for example, accessibility accommodations for an event.
8. Data Retention
We retain personal data only as long as necessary for the purposes for which it was collected, including for legal, financial, regulatory, accounting or reporting requirements and operational needs.
To determine the appropriate retention period for your personal data, we will consider the amount, nature and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
Upon expiration of the applicable retention period, we will securely destroy your personal data in accordance with applicable laws and regulations.
9. Your Data Protection Rights
If you are located in the EEA, UK, or Switzerland, you have the following rights under GDPR:
· Right to Access – You can request access to the personal data we hold about you
· Right to Rectification – You can request corrections or updates to inaccurate or incomplete personal data
· Right to Erasure – You can ask us to delete your personal data in certain circumstances
· Right to Restrict Processing – You can request we limit how we use your personal data in certain situations
· Right to Object – You may object to our processing of your personal data in certain situations, including for direct marketing purposes
· Right to Data Portability – You can request a copy of your personal data in a structured, commonly used, machine-readable format and can also request that it be transmitted to another controller.
To exercise any of these rights, please contact us at privacy@inblf.com. We will respond to your request within 30 days, as required by applicable law.
10. International Data Transfers
Because INBLF is a U.S.-based organization, your personal data may be transferred and stored outside of the EEA/UK/Switzerland. We use appropriate safeguards such as Standard Contractual Clauses (SCCs) in agreements with third parties in accordance with GDPR requirements or other lawful transfer mechanisms recognized under the GDPR. You may request a copy of the relevant safeguards by contacting us at the email address above.
11. Sharing Personal Data with Third Parties
We may share your personal data with third parties to help us fulfill our mission and deliver services efficiently. These third parties may include program partners, funders, service providers, payment processors, email communication platforms, event partners, or data hosting providers. We share personal data only to the extent necessary with third parties and we require them to protect your personal data in accordance with applicable data protection laws, including GDPR. If you are located in the EEA, we will only transfer your personal data to third parties outside the EEA when adequate safeguards are in place, such as:
· The third party is located in a country recognized by the European Commission as providing an adequate level of protection
· We have entered into Standard Contractual Clauses approved by the European Commission with the third party
· Or other legally recognized transfer mechanisms are used
12. Contact and Complaints
If you have any concerns about how we handle your personal data, please contact us at privacy@inblf.com.
If you believe that we have infringed your data protection rights, you have the right to lodge a complaint with your local data protection authority in the EEA, UK, or Switzerland.
12. How we protect your personal data
We use physical, technical and administrative measures to protect your personal data against loss, theft and unauthorized use, disclosure or modification. While we
strive to protect the personal data we maintain, we cannot ensure or warrant the security of any personal data that you transmit to us since no method of data transmission or storage is 100% secure.
14. Changes to this Privacy Policy
We may update this Privacy Policy at any time, and we will make an updated copy of any such Privacy Policy available on the Site.
14. Further
Should you have any questions about this Privacy Policy or inquiries regarding your personal data rights you can contact us at privacy@inblf.com or at the address below.
Privacy Officer
Annabel Collinson INBLF 1850 M Street NW, Suite 1060 Washington, DC 20036 (202) 408-7606
Last Updated: December 22, 2025