Privacy & Compliance

Last updated: 31-7-2025

1. Introduction

Mitey & Associates, Advocates (“we,” “us,” “our”) is committed to protecting your privacy and ensuring your personal data is processed lawfully, transparently, and securely. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website (https://www.miteyassociates.co.ke) or engage our services.

2. Data We Collect

a. Personal Data you provide directly

• Name, email address, phone number (via contact forms, newsletter sign-ups, consultation requests)
• Professional details (e.g., organization, role) when requesting services

b. Automatically collected data

• IP address, browser type, device information
• Pages visited, time and date of access, referrer URL (via cookies and analytics)

c. Third-party sources

• LinkedIn or other professional networks when you link or authenticate
• Public registers (e.g., Law Society membership)

3. How We Use Your Data

• To provide legal services: process enquiries, schedule consultations, manage client relationships
• To communicate: send newsletters or updates where you’ve consented
• To improve our website: analyze usage trends and customize your experience
• To comply with legal obligations: anti-money laundering checks, professional conduct rules

4. Legal Basis for Processing

Under the Data Protection Act, 2019, we rely on:

• Consent: e.g., newsletter sign-up
• Contract performance: to deliver requested services
• Legal obligation: record-keeping for regulatory compliance
• Legitimate interests: improving our services and protecting our website

5. Cookies & Tracking

We use essential, performance, and analytics cookies (e.g., Google Analytics). You can manage cookie preferences via your browser settings or our cookie banner.

6. Data Sharing & Disclosure

We do not sell or rent your personal data. We may share information with:

• Service providers (e.g., IT hosting, email platforms) under strict confidentiality
• Regulatory authorities when required by law or professional rules
• Law enforcement if compelled by a court order

7. Data Retention

We retain personal data only as long as necessary for our services, legal compliance, or legitimate business purposes—typically no longer than seven years after our last interaction, unless a longer retention period is mandated by law.

8. Your Rights

Under Kenya’s Data Protection Act you have the right to:

• Access or request a copy of your personal data
• Request correction or deletion of inaccurate or incomplete data
• Object to or restrict processing in certain circumstances
• Withdraw consent at any time (where processing is consent-based)
• Lodge a complaint with the Data Protection Commissioner: info@odpc.go.ke

9. Security Measures

We implement appropriate technical and organizational measures—including SSL encryption, access controls, and staff training—to protect your data against unauthorized access and breaches.

10. Contact Us

For any questions, requests, or to exercise your rights, please contact:
Data Protection Officer
Mitey & Associates, Advocates
Email: info@miteylaw.africa
Phone: +254726700127