Regulatory Policy & Privacy

Regulatory Policy & Privacy


Camilla Baldwin is regulated by the Solicitors Regulation Authority.

Camilla Baldwin is the trading name of Camilla Baldwin Limited. Camilla Baldwin Limited is registered in England and Wales with number 07139625 and registered office at 3 Charles Street, London W1J 5DD.  A list of directors is available for inspection at the above address.

References to “partner” refer to senior members of the Camilla Baldwin team of partner standing.

Camilla Baldwin maintains professional indemnity insurance as required by the SRA Indemnity Insurance Rules 2011. That insurance covers the professional services provided by the firm. The name of the insurer and the policy number will be supplied to a client on request.

The Firm is registered for VAT purposes with VAT registration number 867286573.

Client Complaints Procedure

We are committed to providing a high-quality service to all of our clients. If you have any comments, good or bad, it is important you tell us so we can continue to refine our service.

If you have any problem with our service (including a complaint about a bill), our approach will be constructive; we will take every complaint seriously, we will investigate it promptly and thoroughly and will take remedial action as appropriate. If you have a complaint you can read our full complaints procedure here. You should raise your complaint in the first instance with Camilla Baldwin on 020 7409 1133 or at . We would expect to resolve any problem to your satisfaction. If, however, you are not satisfied you can contact the Legal Ombudsman. Any complaint to the Legal Ombudsman must usually be made within six months of our final response to your complaint or within six years of the act or omission about which you are complaining occurring (or if outside this period, within three years of when you should reasonably have become aware of the act or omission). You can contact the Legal Ombudsman on 0300 555 0333, at or at PO Box 6806, Wolverhampton WV1 9WJ. If your complaint relates to your bill, you may also be able to apply to court for an assessment of the bill under Part III of the Solicitors Act 1974.

Please note that the Ombudsman are there to deal with concerns about the level of service received.  Where there are more serious concerns that a solicitor or solicitor’s firm have been involved in professional misconduct then reports can also be made to The Solicitors Regulation Authority, the regulator of solicitors and solicitor firms. This could be for things like dishonesty, taking or losing your money or treating you unfairly because of your age, a disability or other characteristic. Obviously we do not anticipate any such problems arising and would ask that you notify the matter supervisor straight away if you have any such concerns.  You can find out more about the Solicitors Regulation Authority including their contact details on their website:

Privacy Policy

Camilla Baldwin Limited is a firm of solicitors committed to protecting and respecting privacy.

This notice sets out the basis on which any personal data we collect from you, or that is provided to us, will be processed by us. It is aimed primarily at clients of this firm but includes how we may make use of personal data held about others also. Please read the following carefully to understand how we will treat your information, protect it and to understand more about your rights. Where applicable, by providing your personal information to us you are agreeing to us using your information as described in this policy.


We or Us:Camilla Baldwin Limited, 3 Charles Street, London, W1J 5DD.
Personal data:Any data or information, in electronic or organised hard copy, that identifies you personally or which relates to you when you are identifiable.
Special categories of personal data:Sensitive information relating to you, namely: health records; information regarding your sex life, sexual orientation, political opinions, religious or philosophical beliefs, racial or ethnic origin, trade union membership; and genetic and biometric data.

Personal data we process:-

Names and contact details

ID and other information we require to conduct due diligence

Personal and financial information relating to our clients’ legal matters

Special categories of personal data (i.e. ‘sensitive personal data’), where relevant to our clients’ legal matters

Our lawful basis for processing your personal data and special categories of personal data:-

If you have given consent to the processing of your personal data (including special categories of personal data), then we may process that data for the purposes for which you have given consent.

If you are a client, processing of personal data is necessary for the performance of our contract to provide legal services and/or in order to take steps at your request prior to entering into such a contract. The solicitor-client relationship is a contractual one, and to perform our contract, it is unavoidable that this requires us to process personal data.

We are permitted by law to process personal data where this is necessary to comply with legal duties. We have legal and regulatory duties to process certain personal data, including ID and other information we require to conduct due diligence.

We are permitted by law to process personal data where this is necessary for the purposes of pursuing legitimate interests, whether our own or those of third parties such as our clients. We and our clients have a legitimate interest in giving and receiving legal advice and assistance and in processing personal data in connection with the provision of those services and for the purposes described below.

We have a legitimate interest in processing the personal data of our clients for the purposes of marketing our services.

For special categories of personal data, we are permitted to process personal data (e.g. health records) where it is necessary for the establishment, exercise or defence of legal claims.

How will we use your personal data

We use personal data processed by us for the following purposes:

to identify clients and provide clients with the legal services requested;

to provide clients with information requested about services we offer;

to carry out our obligations arising from any contracts entered into between our clients and us and to provide clients with the information and services that they request from us;

to carry out checks in relation to conflicts of interest;

to conduct due diligence on our clients (including money laundering and similar checks);

to notify clients about changes to our service;

to market our business;

to deal with, and to respond to, feedback, queries or complaints;

to comply with our regulatory obligations and the requirements of our insurers;

to administer, support, improve and develop our business and to enforce our legal rights.

Where we get your personal data from:-

Our clients and our clients’ representatives

Public records

Other parties whom we contact in the course of carrying out legal services for our clients (e.g. doctors, employers, estate agents, accountants, banks, surveyors, medical professionals, friends, family, witnesses, other parties with an interest in a particular legal matter (and their representatives), courts, regulatory bodies and other advisors and specialists involved in the matter).

Data rights

Subject to certain exceptions, you may have the right, free of charge, to:

Access your personal data (known as a subject access request)

Have mistakes rectified

Have your personal data erased by us or restrict the way we process your personal data (subject to certain conditions)

‘Port’ your personal data to another provider

Object to us using your personal data for direct marketing

Not be subject to ‘automated processing’ (often referred to as ‘profiling’).

Please note however that if you are not a client of this firm then our legal duties as solicitors to keep the affairs of our clients confidential may greatly limit how we can interact with you and what information we can provide to you. We may not be able to confirm whether we process your personal data or not because to do so may compromise client confidentiality or legal professional privilege.

To the extent that you have consented to our processing of your personal data, you have the right to withdraw this consent at any time, without affecting the lawfulness of any processing carried out prior to the withdrawal of your consent. However, where we also rely on other bases for processing your personal data, you may not be able to prevent processing of your data on those bases.

For more information on your legal rights see the Information Commissioner’s website (

Retention of personal data

We are required by our insurers and regulators to keep your file and personal data for minimum periods. We retain personal data because, in particular, it may be required in the event of a later complaint or claim. We are not however permitted to keep your personal data indefinitely or for longer than is necessary.

Our retention policy is that the minimum period we will keep files and other personal data relating to a legal matter is 10 years after the date of the last work carried out on it. We may keep a file for significantly longer than that if it is necessary and in our legitimate interests to do so (for example files relating to wills, property or children, or where you request this).

All our files and other documents containing personal data are destroyed securely.

Sharing your personal data

In providing legal services to our clients, we may need to share personal data with our staff, clients, other professionals who we instruct (e.g. barristers), third parties who are vital to a transaction (e.g. mortgage providers, the courts, witnesses), other parties with an interest in a particular legal matter (and their representatives) and providers of services that are necessary to progress a legal matter (e.g. to perform our client due diligence checks on you). In the case of personal data of clients, our clients may instruct us to share their personal data with third parties (such as estate agents, family members or other representatives).

We may also need to share your personal data with our regulators, insurers, and law enforcement agencies.

We use external auditors to review our files for training, compliance and quality.

Where we share your personal data with third parties, we will ensure that they have appropriate data protection arrangements in place.

Where we hold your personal data

Your data will be stored at our offices and on our IT equipment, or where your information is shared with a third party, at their premises or on their IT equipment.

Transferring your personal data outside of the EEA

Since we do not have offices outside England & Wales, we have no reason to transfer your personal data outside the European Economic Area unless you or a third party with whom we must share your personal data are based outside the EEA.

Where we use third party IT services (e.g. ‘cloud’ based software) we shall ensure that their data centres are either within the EEA or that there are lawful safeguards in place to protect your personal data to the same standard as if it were held within the EEA.

Data Protection Officer

We do not have a Data Protection Officer (DPO) but have appointed a Privacy Manager to implement our data protection policies and procedures. Our Privacy Manager is Camilla Baldwin.

For the purpose of Data Protection legislation, the data controller is Camilla Baldwin Limited.

Complaints and questions

If you have a complaint or question about our use of your personal data, please contact in the first instance our Privacy Manager.

You may also make complaints direct to the Information Commissioner’s Office (web: tel: 0303 123 1113).