Privacy Policy

Jurisdiction: United Kingdom / International

At akber.org, we treat data with the same precision an engineer treats a protocol. We don't just "collect" data; we manage state, verify identities, and facilitate legal workflows.

📜 The Privacy Axiom
Transparency is the Root of Trust: If the user doesn't know why we have the data, we shouldn't have the data.

1. The Data We Collect (The "State")

We categorize data based on the service layer it interacts with:

Layer	Data Types	Purpose
Law Blog	Email addresses, cookies, IP addresses.	Newsletter distribution and site analytics.
Tax Collection App	PII (Names, SSN/NI numbers), financial statements, jurisdictional residency.	Collecting documents on behalf of authorized accountants.
Judiciary Tracking App	Case numbers, court dates, names of legal representatives, public record metadata.	Tracking legal proceedings and judicial analytics.

2. Legal Basis for Processing

Under UK GDPR, we process your data based on the following "Laws of Operation":

Contractual Necessity: We need this data to provide the tax collection and tracking services you signed up for.
Legal Obligation: Especially within the Tax App, we may be required to retain records for anti-money laundering (AML) compliance.
Legitimate Interests: Improving our legal analytics and securing our platform.
Consent: For our law blog newsletters.

3. Data Transmission & The "Global Hub"

Because the Tax App works across multiple jurisdictions, your data may cross borders.

International Transfers: When data is moved outside the UK/EEA, we utilize Standard Contractual Clauses (SCCs) or ensure the destination has an "Adequacy Decision" by the UK government.
The "Accountant-Client" Pipeline: In the Tax App, we act as a Data Processor. The accountant is the Data Controller. We emit your documents directly to their secure environment.

4. Data Retention (The Lifecycle)

We do not store data longer than the "Physics" of the task requires:

Tax Documents: Retained until successfully delivered to the accountant and verified, or for the duration required by local tax statutes.
Case Tracking: Stored as long as the case is active or relevant for judicial research.
Blog Data: Until you "Unsubscribe" (The LIFO law of mailing lists).

5. Security Protocols

We implement "Defense in Depth":

Encryption at Rest: AES-256 for all stored tax documents.
Encryption in Transit: TLS 1.3 (HTTPS) for all "State-to-Server" communication.
Sanitization: All user-uploaded filenames and metadata are sanitized to prevent injection attacks.

6. Your Rights (The Control Layer)

As a user of akber.org, you have the right to:

Access (The GET Request): Request a copy of your data.
Rectification (The PATCH Request): Fix incorrect data.
Erasure (The DELETE Request): Also known as the "Right to be Forgotten."
Data Portability: Move your data from our hub to another provider.

To exercise these rights, contact our Data Protection Officer at: admin@akber.org.

7. Governance

This policy is governed by the laws of England and Wales. Any disputes will be subject to the exclusive jurisdiction of the courts of the United Kingdom.