Privacy Policy
Last updated: [15.04.2025]
1. Introduction
Welcome to 99Legal.xyz (a KRITE entity). We protect your privacy in compliance with:
- EU: General Data Protection Regulation (GDPR)
- UAE: ADGM/DIFC Data Protection Regulations (via licensed third-party partners)
- Global: Minimum standards for all jurisdictions (CIS, U.S., etc.)
2. Data We Collect
For startup legal services, we collect:
- Identity Data: Founder/CXO names, company details, passports (for UAE structuring)
- Financial Data: Payment details via Stripe/PayPal (processed securely)
- Legal Data: Cap tables, investor agreements, smart contract audits
- Usage Data: IP, browser type, pages visited (via GDPR-compliant analytics)
3. How We Use Data
Strictly for:
- Drafting legally binding documents (SAFEs, incorporation papers)
- Conducting VC due diligence audits
- Ensuring token compliance (Web3 projects)
- Tax-optimized structuring (UAE/Europe/CIS)
- Marketing (only with explicit consent)
4. Legal Basis (GDPR/UAE)
- Contract: To execute legal services you purchase
- Legal Obligation: UAE corporate licensing requirements
- Consent: For newsletters or non-essential communications
5. Your Rights
Under GDPR/ADGM rules:
- Request access to your startup’s legal files
- Correct inaccurate cap table/founder data
- Delete non-essential data (excludes legally mandated records)
- Object to processing (e.g., opt-out of marketing)
6. Data Sharing
We share only when necessary:
- UAE Authorities: For free zone company registration
- Payment Processors: Stripe for subscription billing
- Legal Partners: For cross-jurisdictional services (under NDAs)
No sale of data: We never sell founder or startup data.
7. Security
Encryption for all legal documents, secure portals for client data, and regular audits for Web3/AI compliance projects.
8. Retention
EU/UAE: Retain startup legal records for 7 years (mandatory).
Non-active clients: Anonymized after 2 years.
9. Contact
To exercise rights or report concerns:
Email contact@99legal.xyz with “[Privacy]” in the subject.
