.png)
.png)
.png)
Effective Date: 17 December 2025
Seven Stars Legal is committed to protecting and respecting your privacy. We wish to be transparent on how we process your information.
In this Privacy Policy, your information is sometimes referred to as “personal data”. We may also collectively refer to the handling, collection, protection, and storage of your personal data as “processing” such personal data.
In this Privacy Notice, the term “Data Protection Legislation” means the Data Protection Act 2018, the UK General Data Protection Regulation (UK GDPR) and the European Union General Data Protection Regulation (EU GDPR) as it forms part of the applicable law; together with all other relevant legislation relating to privacy or data protection.
For individuals based in the United Kingdom (UK), all personal data will be processed in accordance with the Data Protection Act 2018 and the UK GDPR. When we process personal data of individuals in the European Union, we will also comply with the EU GDPR.
In June 2021, the EU Commission adopted adequacy decisions for the UK GDPR and the Law Enforcement Directive (LED). This means it deems the UK to have ‘essentially equivalent’ data protection to the EU. This decision is expected to last until June 2025 and means that personal data from the EU can flow freely to the UK without additional safeguards, with data relating to immigration control being the only specific exclusion.
This Privacy Policy sets out the bases on which we gather, use, process and disclose any personal data we collect about you, or that you provide to us.
We are Seven Stars Legal Limited, registered in England and Wales, company number 14229552. Unless otherwise stated, Seven Stars Legal Limited (“Seven Stars”) is the data controller for the purposes of Data Protection Legislation.
Seven Stars Legal Limited is part of a group structure that also includes the following entities, each registered in England and Wales:
All of the above entities have their registered office at 1 Charterhouse Mews, London, England, EC1M 6BB.
Collectively referred to as “our Group”, “we” or “us” in this policy), Our Group also includes our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 1159 of the UK Companies Act 2006.
Under the Data Protection Legislation, Seven Stars sometimes acts as a data controller, responsible for ensuring compliance, and sometimes as a data processor under the authority of another organisation that is the Data Controller. This privacy notice applies to personal information processed where we act as the Data Controller.
The website (https://7stars.legal) is owned and operated by Seven Stars.
The Data Protection Legislation sets out several reasons a company may collect and process your personal data.
We will process your personal data only in accordance with applicable laws and regulations. As a data controller, Data Protection Legislation permits us to use the following grounds for processing personal data:
Our primary grounds for processing data are to pursue our legitimate interests in a way that is reasonably expected in the course of running our business. Data Protection Legislation permits the use of personal data when our legitimate interests are not outweighed by your interests, fundamental rights, or freedoms as a data subject.
Additionally, we may use personal data to comply with our contractual obligations to you or others, or to enforce our agreements.
Whenever you have given us your consent to use your personal data, you have the right to change your mind at any time and withdraw that consent. However, this will not affect the lawfulness of any processing carried out before you withdraw your consent.
Our principal business is litigation funding, where we invest in a range of claims and disputes.
Whenever Seven Stars acts as a third-party funding provider and processes personal data, we do so as a data processor under the explicit authority of the data controller, typically the claims management company or law firm seeking funding on behalf of its clients. In these cases, their privacy notice will provide details of the data processing activities.
To run and administer our business, we need to process your personal data.
Personal information or personal data means any information about an individual that can be used to identify that person. It does not include data where identities have been removed (anonymous data).
Types of personal data that we process may include:
Some personal data we hold (such as details relating to physical or mental health or condition, ethnicity, criminal or alleged criminal offences) may be classified as special categories of personal data under Data Protection Legislation. We may seek your consent to process special categories of personal data; however, certain special categories of personal data (such as those relating to alleged offences) may be necessary for us to process to comply with our legal obligations.
When we process special category personal data, we take additional measures to protect it.
We may collect your personal data from various sources, including
To conduct our business and comply with our legal obligations, we may share your information with third parties, including companies, agents, contractors, service providers, and related companies.
We may also share your personal data with any member of our Group. We will share your personal data within our Group only to the extent required and with appropriate agreements in place, to provide you with the relevant services.
We may also use third parties to perform tasks on our behalf, for example, IT service providers.
When personal data is shared with an IT service provider, another service provider, or third-party suppliers, we work closely with them to ensure it is secure and protected at all times. Our contracts with third parties make it clear that they must hold personal data securely, comply with the principles and provisions of Data Protection Legislation, and use information only as we instruct. In all instances where we disclose your information to third parties, we will ensure it is appropriately protected. If we stop using their services, any personal data they hold about you will be deleted or rendered anonymous.
Where we use third-party service providers (such as cloud hosting or email providers) located outside the UK/EEA, we ensure appropriate safeguards are in place, such as the UK International Data Transfer Agreement (IDTA).
If required by law or to perform our legal obligations, we may share your data with courts, law enforcement agencies, or other government agencies.
We may collect information from you through our website, including but not limited to:
We require this information to understand your needs and provide you with a better service.
A cookie is a small file which asks permission to be placed on your computer’s hard drive. Once you agree, the file is added, and the cookie helps analyse web traffic or lets you know when you visit a particular site. Cookies allow web applications to respond to you as an individual. The web application can tailor its operations to your needs and preferences by collecting and remembering information about your preferences.
We use traffic log cookies to identify which pages are being used. This helps us analyse web traffic data and improve our website to tailor it to users’ needs better. We only use this information for statistical analysis purposes.
Overall, cookies help us improve your website experience by allowing us to track which pages you find useful and which you do not. A cookie in no way gives us access to your computer or any information about you, other than the data you choose to share with us.
You can choose to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser settings to decline cookies if you prefer. This may prevent you from using the full functionality of the website.
Our website may contain links to other websites of interest. However, if you use these links to leave our site, please note that we do not control the other website. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and review the applicable privacy statement on the website.
We will not sell, distribute, or lease your personal information relating to website usage to third parties unless we have your permission or are required by law to do so.
We may use Information Technology Processors to perform tasks on our behalf, for example, IT service providers.
For us to run our business, we develop business relationships with individuals at law firms and claims management companies who may be seeking litigation funding now or in the future or may previously have worked with us or one of our employees, as well as individuals at Family Offices, institutional investment organisations, and other such businesses.
Types of personal data that we process for Business Contacts may include name, address, contact details (e.g., email and telephone numbers), gender, employer, job title and employment history.
We may collect your personal data from various sources, including:
To conduct our business, we may share your information with third-party companies, agents, contractors, service providers or related companies.
We may use Information Technology Processors to perform tasks on our behalf, for example, IT service providers.
As a Business Contact, Seven Stars may send you information about our services or an invitation to an event we have arranged. If you have given your consent to receive marketing emails, you can withdraw it at any time. If we are relying on our legitimate interests to send you marketing emails, you can object. If you no longer wish to be contacted for marketing purposes, you may reply to the email correspondence directly, unsubscribe via the email correspondence, or contact us at our registered office, which is at 1 Charterhouse Mews, London, England, EC1M 6BB.
Seven Stars securely stores your data using a range of measures. We require our employees and any third parties who carry out work on our behalf to comply with appropriate compliance standards, including obligations to protect any personal information.
We will retain personal data and other information only for as long as necessary to perform our obligations or comply with any legal obligations to which we are subject. Personal data found to be irrelevant or excessive will be removed or destroyed at the earliest opportunity. When personal data is deleted, it is done securely so that the data is irrecoverable.
As a matter of legal and best-practice requirements, we must retain your information for 6 years after the date our relationship with you ends.
In some circumstances, we will anonymise your personal data (so that it can no longer be associated with you) for analytical or statistical purposes, in which case we may use this information indefinitely without further notice to you.
You have the right to access a copy of the personal data we hold. Any requests made to Seven Stars will be carefully considered, addressed promptly, and, unless exceptional circumstances apply, a response will be provided within one month of the request. If we are unable to provide the data you require within this timeframe (e.g., due to complexity), we may extend the timeframe for delivery and will explain the reason. There is no charge for requesting access to your data.
We aim to ensure the accuracy of all personal data that we hold. You have the right to have your personal data corrected or completed if you believe it is incorrect. If you would like to correct data, please contact us.
You have the right to object to our use of your personal information, or to ask us to delete, remove, or stop using your personal information if there is no need for us to keep it. This is known as the ‘right to object’ and the ‘right to erasure’, or the ‘right to be forgotten’. Section 3 of this notice explains our legal bases for processing your personal data and the activities for which we need to process it. This is why your right to object doesn’t automatically lead to the deletion of your information. We will carefully consider every request we receive, and if we can’t delete your information, we will inform you and explain why.
In some circumstances, you can ask us to restrict how we use your personal data. This is not an absolute right, and your personal data may still be processed where specific grounds exist. These grounds include:
Only one of these grounds is required to continue data processing. We will carefully consider and respond to requests we receive, including assessing the applicability of these exemptions. If we believe an exemption applies, we shall inform you and explain.
We do not currently use your personal information to make solely automated decisions.
You have the right not to be subject to solely automatic decisions (i.e. decisions that are made about you by a computer without any human input) in relation to processes that have a legal or similarly significant effect on you.
If we make a solely automated decision which produces a legal effect or significantly affects you, you will always be informed. You will be entitled to have a person review the decision before further action is taken.
When you request to exercise your rights:
You will not have to pay a fee to exercise any of the rights listed above. However, we may charge a reasonable fee if your request is clearly unfounded or excessive, including where requests are repetitive. Alternatively, we could refuse to comply with your request in these circumstances.
We may need to request specific information from you to confirm your identity and verify your right to access your personal data or exercise any other rights. This security measure helps ensure that personal data is not disclosed to anyone without the right to receive it. We may also contact you to request further information regarding your request to expedite our response.
We try to respond to all legitimate requests within one month. Occasionally, it may take longer than a month if your request is particularly complex or you have submitted multiple requests. In this case, we will notify you and keep you updated.
We are committed to ensuring that your information is secure. To prevent unauthorised access or disclosure, we have implemented appropriate physical, electronic, and managerial procedures to safeguard the personal data we process.
If our Privacy Policy changes in any way, we will place an updated version on this page. Regularly reviewing this page will ensure that you are always aware of how we process personal data. The current version supersedes all prior Privacy Policies.
If you have any questions about Seven Stars’ privacy policy, the data we hold on you, or you would like to exercise one of your data protection rights, please do not hesitate to contact us at our registered office: 1 Charterhouse Mews, London, England, EC1M 6BB or via email at hello@7stars.legal.
For further information on data protection, please visit the Information Commissioner's Office (ICO) website.
The Information Commissioner's Office regulates data protection. If you feel that your data has not been handled correctly, or you are unhappy with our response to any requests you have made to us regarding the use of your personal information, you have the right to complain to the Information Commissioner’s Office.
You can contact them by calling 0303 123 1113 or visiting https://ico.org.uk/.
.svg)
.svg)
.svg)
.svg)
.avif)
.avif)