Privacy Policy

Express legal Solicitors S.L. is committed to respecting your privacy and your rights to control data held about you.

This policy sets out the basis on which any personal data we collect from you is dealt with by us.
Our website contains links to other websites which may be of interest to you. If you follow a link to another website, you should be aware that they have their own privacy policies, which you should check before sending any personal data, and we do not accept any responsibility or liability for such other websites.

We will only process personal data to meet our legal and contractual obligations and to provide you with our services. For example, on a property purchase we are legally obliged to give information to the tax authorities and the Land Registry. We may also process your personal data if it is in our legitimate interest to do so, for example, when we enter the data on our client management and invoicing system, or we need to tell you about any important changes in the law which may affect you.

We do not and will not sell your data to any third parties. The data we collect may include your name, address, contact details, NIE and passport numbers, and bank account details, amongst other items.

If you fail to provide certain information when requested, we may not be able to carry out the services you have engaged us for, or we may be prevented from complying with a legal obligation.

Information may be collected directly from you, from third parties or captured directly by us to meet our legal and contractual obligations.

Information collected through our website

We may collect the following information:

  • Contact information including name, email address, telephone number, and country of residence.
  • Information about your computer or device including IP address, location, type of browser, and operating system and device.
  • Tracking information about your visit and use of the website, pages visited, length of visit, referral source.
  • Information sent to us by email, through our website, including the message content.

What we do with the information we gather:

When you fill out the contact form on our website we require your personal details in order to respond to your enquiry. This information is mandatory and without it we cannot provide you with our service.

IP Address and browser information can be used to help keep our website secure and prevent fraud. It is possible that this information may be logged temporarily.

Your visit to the website may be tracked to provide us with usage statistics, but no information is retained that can be personally identifiable.

Third parties that may use your data:

We use Google analytics on this website to track visitor information. This includes your IP address, location, browser type, device type, length of visit. The IP address is masked (anonymized) and cannot be personally identifiable to you.

How long is this data kept:

Personal information that we collect in order to provide you with a service, e.g. to answer an enquiry, is kept for as long as is necessary to provide this service, or for as long as the contract between us is valid.

Any tracking data is stored anonymously and deleted after 26 months.


We are committed to ensuring that your information is secure. In order to prevent unauthorised access or disclosure, we have put in place suitable physical, electronic and managerial procedures to safeguard and secure the information we collect online. Our website has an SSL certificate installed and is served encrypted over https. Any data sent to us over this connection is secure.

The security plugins in use on this website prevent spam robots, and hackers from overloading the website or gaining unauthorised entry. It is possible that on occasion your IP address and browser information may be logged by this system.

The plugins used on this website for this purpose are:

Bulletproof Security: there is a 1% chance that your visit could be logged. These logs are not stored in the database but in a file stored securely on the server, which is deleted once it reaches 250k in size. There is no reason for this personal information to be processed or tracked back to you. More information about Bulletproof’s GDPR compliance can be found here:

Bad Behaviour: prevents spam and scrapers from overloading the website. There is a small chance that this plugin will log your IP address and browser information. This is stored in a log file and deleted after 7 days. There is no reason why this information should be processed and personally identifiable to you.

How we use cookies

A cookie is a small file which asks permission to be placed on your computer’s hard drive. Once you agree, the file is added and the cookie helps analyse web traffic or lets you know when you visit a particular site. Cookies allow web applications to respond to you as an individual. The web application can tailor its operations to your needs, likes and dislikes by gathering and remembering information about your preferences.

We use traffic log cookies to identify which pages are being used. This helps us analyse data about web page traffic and improve our website in order to tailor it to customer needs. We only use this information for statistical analysis purposes and then the data is removed from the system.

Overall, cookies help us provide you with a better website, by enabling us to monitor which pages you find useful and which you do not. A cookie in no way gives us access to your computer or any information about you, other than the data you choose to share with us.
You can choose to accept or decline cookies. You are able to decline non-functional third party cookies such as tracking and your visit to the website will be the same as if you had accepted them.

The cookies in use on this website are:

If you choose to accept cookies: Three cookies for google analytics tracking, the first is a persistant cookie (remains in your browser when you leave the website), the second two are session cookies (are deleted a short time after you leave the website):

  • _ga : Used to distinguish users. Stores the ClientID, a unique and randomly generated string, so that the user can be associated on future visits, the date of first visit and version of GA cookie. Expires in 2 years.
  • _gat : Throttles the number of requests a user does to Google Analytics’s servers. Expires in 1 minute.
  • _gt : Stores the ClientID. Expires in 24 hours.

Any personally identifiable information such as your IP address, is masked (anonymized) before it is sent to google.

There is also a functionally essential cookie to store your cookie preferences for one month once you accept or reject the tracking cookies:

  • cookie_notice_accepted : stores your cookie preference for tracking cookies, stays in your browser for one month before expiring, this means you won’t need to click the choice button on subsequent visits to the website for one month.

Your Rights

You have the right to request access to and rectification and erasure of data we hold about you, to data portability and to restrict processing, all in accordance with current data protection laws.

If you need to contact us about such matters, you can write to:
Data Protection Officer
Express Legal Solicitors
CC Monver, Avenida del Albir 155, Local 3ª
03581 El Albir – Alfaz del Pi

Or email:

On occasions, we will share your data with third parties in line with the purposes stated in this notice or to comply with a legal obligation. For example, we may share your personal data with other parties, banks and lawyers involved in a case or transaction, Courts and procurators, architects, accountants and estate agents engaged on your behalf.

We use information technology services that are hosted / stored in Spain and we have no intention of transferring data to a third country.

We will retain personal data only for as long as is necessary and we have retention policies in place. We follow regulatory guidelines and statutory retention periods. We will, generally speaking, retain data for 5 years from the date that you ceased to be client or from the date a transaction involving you ceased.

We trust that you will never need to complain regarding the processing of your data, but if you do wish to complain, please contact our Data Protection Office in the first instance (details as above). You also have the right to complain to the relevant supervisory authority, Agencia Española de Protección de Datos (

This privacy notice will be updated from time to time.