Privacy Policy

Last Updated: July 2025

Rahman Law PLLC (“we,” “us,” or “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information in connection with our law firm’s services and website. It also describes your rights and choices regarding your information. By using our website or services, you consent to the practices described in this Policy.

1. Information We Collect

Information You Provide to Us: We may collect personal information that you voluntarily provide when you contact us or use our services. This includes details such as your name, contact information (address, email, phone number), date of birth, and any other information you choose to give us. For example, when you fill out a contact or case evaluation form on our website, we ask for your name, phone, and email so we can respond to you. If you schedule a case evaluation or become a client, we will collect information relevant to your legal matter (such as immigration history, family information, etc.). This can also include copies of documents you provide (passports, visas, court documents, etc.). Any payment information (credit card or bank details) provided for fee payment is processed through secure third-party payment processors, and we do not store full financial account numbers on our servers.

Information Collected Automatically: Like many websites, our site may automatically collect certain technical information when you visit. This may include your IP address, browser type, device information, operating system, referring URLs, pages viewed, and the dates/times of access. We utilize cookies and similar tracking technologies to enhance user experience – for example, to remember your language preference or to understand how users navigate our site. Cookies are small text files placed on your device that help us recognize you on future visits. You can set your browser to refuse cookies, but note that some site features might not function properly as a result.

Sensitive Personal Data: As an immigration law firm, some of the information you share with us may be sensitive (e.g., information about your race/ethnicity, health, biometrics, criminal history, or immigration status). We only collect such data as needed for your case or as required by law. For instance, if you become a client, we might collect your Alien Registration Number or passport number for forms, or details of any criminal charges to prepare necessary waivers. We treat all sensitive data with additional care and confidentiality. We will not collect sensitive personal data for purposes unrelated to providing you legal services or complying with the law.
Children’s Information: Our services are not directed to children under 13, and we do not knowingly collect personal information from children under 13 through our website. If you are under 13, please do not submit any personal information. If we learn we have collected personal data from a child under 13 without parental consent, we will delete it. (Note: In certain immigration cases, we do work with information of minors provided by their parents/guardians as part of the case – such information is used only in the context of legal services and protected accordingly.)

2. How We Use Your Information

We use personal information for the following purposes:

  • To Provide Legal Services: If you become our client, we use your information to represent you. This includes case evaluation, legal research, preparing and filing applications/petitions on your behalf, communicating with government agencies, and advocating for you in proceedings. For example, we will use the details you give us about your immigration history to complete forms and legal filings.
  • To Communicate: We use contact information (email, phone, mailing address) to communicate with you. We respond to inquiries you send through the website, confirm case evaluation appointments, send updates about your case, and answer your questions. We may also send appointment reminders or follow-ups via email, phone, or text. Text Messages: If you provide a cellphone number, you consent that we may send you text messages regarding your case or inquiry (for example, reminders or status updates). You can opt out of texts at any time by texting “STOP” in response. Message and data rates may apply.
  • For Payment and Administrative Purposes: We use payment information to process case evaluation fees or legal fee payments you make. We may also use your information to send invoices, receipts, and account statements, or to manage our internal accounting and client records. Payment transactions on our website (if any) are handled through secure, PCI-compliant third-party platforms (such as LawPay), and we do not store your credit card numbers on our systems.
  • To Improve Our Services and Website: We might use data about how users interact with our website (collected via cookies and analytics) to troubleshoot technical issues, understand what information visitors find useful, and improve site design and functionality. This helps us enhance user experience. For example, we may see that many users visit a certain FAQ page, indicating high interest, so we ensure that page is updated and easy to find.
  • Marketing and Information (With Consent): We may use your contact info to send you newsletters, legal updates, or information about our services that might interest you – but only if you have given consent or if it’s otherwise permissible under law. For instance, if you subscribe to our email newsletter, we will send immigration law news or firm updates occasionally. You can opt out of marketing emails any time by clicking “unsubscribe” in the email or contacting us. We do not spam, and we do not sell your information to third-party marketers.
  • Legal Compliance and Protection: We may process and retain personal information as needed to comply with legal obligations (e.g., record-keeping requirements, bar association rules) or to protect our rights. For example, we keep client files for a certain number of years as required by law and ethical rules. We may also use or disclose information if necessary to establish or exercise our legal rights, to defend against legal claims, or if we believe it’s necessary to investigate or prevent actual or suspected fraud, security issues, or threats to safety.

3. How We Disclose or Share Information

We treat your personal information with care and do not sell or rent it to third parties. We only share information in the following contexts:

  • With Your Consent or At Your Direction: If you specifically authorize us to share information with a third party (for example, a family member, another attorney, or an accountant), we will do so. Likewise, if part of our representation involves working with co-counsel or experts, we will inform you and obtain consent to share relevant info with them.
  • Service Providers: We may share information with trusted third-party service providers who perform functions on our behalf under our direction. This includes, for instance, our secure client portal provider (which stores your case documents and communications), IT and cloud storage providers (for data backup and email service), payment processing companies for handling transactions, or translation services if we need documents translated. These providers are given only the information necessary to perform their services and are contractually obligated to protect your data and use it only for our specified purposes.
  • Government Agencies or Courts: As part of your legal case, we will disclose necessary information to government entities (like USCIS, DOS, or immigration courts) by submitting applications, forms, and evidence. This is done with your authorization as your legal representatives. Additionally, if law enforcement or regulatory authorities lawfully request information (such as via subpoena or court order), we may be required to comply. However, we will assert all applicable legal privileges (e.g., attorney-client privilege) and only disclose what is necessary by law.
  • Business Transfers: In the unlikely event that our law firm undergoes a merger, acquisition, reorganization, or sale of all or some assets, your personal information may be transferred as part of that transaction. If such a transfer occurs, the acquiring party will be bound to respect your personal data in a manner consistent with this Privacy Policy. We would notify you of any change in ownership or use of your personal information as required by law.
  • Protecting Rights and Safety: We may disclose information if we believe in good faith that it’s necessary to prevent physical or financial harm, to report suspected illegal activity, or to enforce our engagement terms or other agreements. For example, if someone poses as a client to perpetrate fraud, we may share information with law enforcement to address that. We may also share data to defend against cybersecurity threats or attempts to breach our systems.
     

Importantly, as attorneys, we are bound by professional confidentiality duties. Information related to client matters is kept confidential, consistent with our ethical obligations. We will not reveal confidential client information to any outside party without authorization, except as permitted or required by law and ethical rules.

4. Data Security

We implement reasonable and appropriate security measures to protect your personal information from unauthorized access, disclosure, alteration, and destruction. These measures include technical, administrative, and physical safeguards. For instance:

  • Our website uses HTTPS encryption to secure data transmitted between your browser and our site.
  • We utilize secure, industry-standard practice management and client portal software (with encryption and access controls) to store client data.
  • Only authorized staff and attorneys have access to personal client information, and they are trained on confidentiality.
  • We maintain up-to-date firewalls, antivirus software, and monitor our systems for potential vulnerabilities.

However, please be aware that no method of transmission over the Internet or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security. You can also help keep your data safe: if we give you access to an online client portal, protect your login credentials and log out after use. If you suspect any unauthorized access or disclosure of your personal information in connection with our firm, notify us immediately so we can investigate.

5. Data Retention

We retain personal information for as long as necessary to fulfill the purposes for which it was collected, including ongoing legal representation, and for a period thereafter as required or permitted by law. For example, even after your case is concluded, we may retain your file for a certain number of years to comply with state bar regulations or in case you return with future needs. We also keep basic contact information in our records unless you request deletion, so we know our past engagements. When information is no longer needed, we will dispose of it securely, either by deletion or appropriate destruction of physical files. If you want more specifics on our data retention for your case, feel free to ask.

6. Your Rights and Choices

Updating Your Information: If you are a client or have an ongoing relationship with us, it’s important we have accurate, up-to-date information. Please inform us of any changes to your personal details. You may request to review or update certain information by contacting us directly. We will honor reasonable requests to access and correct your data, subject to verifying your identity and any legal or ethical limitations (for instance, we cannot share information that is protected by attorney-client privilege with someone who is not the client).

Marketing Communications: If you have opted in to receive our newsletter or marketing emails, you can opt out at any time. Simply click the “unsubscribe” link in the email or send us a message requesting to be removed. Note that even if you opt out of marketing messages, we may still send you transactional or service-related communications (for example, emails about your case status, appointment reminders, or billing notices) as those are necessary for our professional relationship.

Do Not Track Signals: Our website does not currently respond to “Do Not Track” (DNT) signals from browsers. Given there is no uniform standard for DNT, we treat user interactions and data collection as described in this Policy regardless of DNT. You may utilize other methods to control online tracking, such as adjusting cookie settings or using privacy-focused browser extensions.

California Privacy Rights: If you are a California resident, you have specific rights under the California Consumer Privacy Act (CCPA) as amended by the CPRA. These include the right to know what personal information we collect, use, and disclose; the right to request deletion of your personal information; the right to opt out of the “sale” of personal information (note: we do not sell personal data); and the right not to receive discriminatory treatment for exercising these rights. As a law firm, certain data we maintain may be exempt from CCPA (for example, information subject to attorney-client privilege or collected as part of providing a legal service). Even so, we strive to honor the spirit of privacy rights. If you are a California resident and wish to exercise any CCPA rights, please contact us using the information in Section 8. We will verify your identity and respond as required by law.

GDPR Rights (EU/EEA Residents): Our services are primarily aimed at U.S. immigration matters, so we mainly collect and process data of individuals in the U.S. However, if you are located in the European Union or European Economic Area, you may have rights under the General Data Protection Regulation (GDPR). These include the right to access your data, correct inaccuracies, object to or restrict processing, and request deletion, among others. You also have the right to lodge a complaint with a supervisory authority in your country. We only process your personal data with your consent or as necessary for the purposes described (e.g., fulfilling a contract to provide legal services or complying with legal obligations). If GDPR applies to your information, you can contact us to exercise your rights. Note that if you are a client, much of our data processing is protected by legal privilege and in the exercise of legal claims, which may be exempt from certain GDPR provisions.

7. Third-Party Websites

Our website may contain links to third-party websites or resources for your convenience (for example, links to government sites like USCIS for case status checks, or to our social media profiles on platforms such as Facebook, YouTube, or Instagram). Please be aware that we do not control these third-party sites and this Privacy Policy does not apply to them. Third-party sites may have their own privacy policies and data collection practices. We encourage you to review the privacy policies of any external sites you visit. We are not responsible for the content or privacy practices of sites that are not under our control.

8. Contact Us

If you have any questions about this Privacy Policy or our privacy practices, please contact us at:

The Law Firm of Moumita Rahman, PLLC
111 John Street, Suite 1260
New York, NY 10038, USA
 Phone: (212) 248-7907

We will do our best to address your concerns and ensure your privacy is protected.