• Monday - Friday 09:00 - 17:00
  • Saturday 10:00 - 16:00
Appointment

Privacy Policy

1. Introduction

ENEBELI & PARTNERS Legal (“the Firm”, “we”, “our”, or “us”) is committed to protecting the privacy and confidentiality of personal data entrusted to us. As a licensed law firm in Nigeria, we process personal data in compliance with the Nigeria Data Protection Act 2023, the General Application And Implementation Directive (GAID) 2025, and all other applicable laws.

This Privacy Policy explains the categories of personal data we collect, the purposes for which we process such data, the legal basis of processing, the rights of data subjects, and the measures we adopt to ensure data protection.

2. Categories of Personal Data Collected

We may collect and process the following categories of personal data:

  1. Identity data: names, titles, date of birth, identification documents (passport, driver’s licence, national ID).
  2. Contact data: address, email, phone number, emergency contacts.
  3. Professional/Employment data: occupation, employer details, regulatory records.
  4. Financial data: bank details, payment records, transaction history (where relevant to services).
  5. Case-related data: information provided in connection with legal instructions, court filings, or advisory mandates.
  6. Sensitive personal data: such as health records, criminal records, or other special categories of data, processed strictly when necessary for legal representation and in line with NDPA safeguards.

3. Purpose of Processing

Personal data is processed solely for legitimate and lawful purposes, including:

  1. Provision of legal advisory, representation, and transactional services.
  2. Compliance with professional obligations, statutory reporting, and regulatory requirements.
  3. Management of client relationships, billing, and internal administration.
  4. Conflict checks, due diligence, and know-your-client (KYC) procedures.
  5. Marketing of legal insights, publications, and firm updates (subject to consent).

 

4. Lawful Basis of Processing

Our processing activities are grounded on one or more of the following lawful bases:

  1. Performance of a contract with the client.
  2. Compliance with legal and regulatory obligations.
  3. Legitimate interest in conducting and managing our practice responsibly.
  4. Consent of the data subject, where expressly required.

5. Data Sharing and Transfers

We do not disclose personal data to third parties except where:

  1. Disclosure is required by law, regulation, or court order.
  2. It is necessary to protect the rights, property, or safety of the Firm, our clients, or others.
  3. It is required for engagement of third-party service providers (such as IT or cloud service providers) subject to strict confidentiality undertakings.
  4. Data is transferred across borders, in which case we ensure compliance with the NDPA and applicable transfer mechanisms recognised by the Nigeria Data Protection Commission.

6. Data Retention

We retain personal data only for as long as is necessary to fulfil the purposes for which it was collected or as required under the Legal Practitioners Act, NDPA, and other applicable regulations. Upon expiry of the retention period, data will be securely deleted, anonymised, or archived in compliance with professional rules on record-keeping.

7. Data Subject Rights

In accordance with the NDPA 2023, data subjects have the following rights:

  1. Right to be informed about the collection and use of their personal data.
  2. Right of access to their personal data.
  3. Right to rectification of inaccurate or incomplete data.
  4. Right to erasure (subject to legal and professional obligations).
  5. Right to restrict or object to processing.
  6. Right to data portability.
  7. Right to withdraw consent, where processing is based on consent.
  8. Right to lodge complaints with the Nigeria Data Protection Commission.

 

Requests to exercise these rights should be directed to our Data Protection Officer (DPO) at the contact provided below.

8. Security of Personal Data

We adopt appropriate technical and organisational measures to safeguard personal data against unauthorised access, alteration, disclosure, or destruction. These measures include restricted access protocols, encryption, secure storage systems, and staff training on confidentiality and data protection.

9. Children’s Data

We do not knowingly collect or process personal data of individuals under the age of 18 except where necessary for legal representation or compliance with statutory duties, and only with the appropriate consent of a parent or legal guardian.

10. Updates to this Policy

This Privacy Policy may be updated from time to time to reflect changes in law, regulatory guidance, or our internal practices. The most current version will always be available on our website or upon request.

11. Contact Information

For inquiries or to exercise your rights under this Privacy Policy, please contact:

Data Protection Officer (DPO)

ENEBELI & PARTNERS Legal

28B Alh Kareem Street Olowora Lagos State

Email: info@goenebeli.com

Phone: +234 802 255 7029

Download Our Firm Profile

Download
info@goenebeli.com
+234 802 255 7029
28B Alh Kareem Street Olowora Lagos State
Services
Support
Company
Copyright © 2026 Enebeli & Partners Legal. All rights reserved
Instagram X-twitter Linkedin