- Introduction
This Privacy Policy explains how MyMcKenzieCS, operated by Lenjordan Ltd, collects, uses, stores, and protects personal data when you use the platform in the UK.
MyMcKenzieCS is a case-support workspace for legal support professionals and self-represented users. It includes professional dashboards, client portals, inbox messaging, document sharing, meeting links, notes, reminders, and AI-assisted tools.
Where we say "we", "us", or "our", we mean Lenjordan Ltd unless the context clearly refers to a connected professional or client using the platform.
- Our Roles
For account administration, billing, platform security, support, and our own website analytics, Lenjordan Ltd acts as a data controller.
For workspace content created or shared by a professional with a client or another authorised user, the connected professional will often be the controller for that matter data, while Lenjordan Ltd acts as the service provider operating and hosting the platform. The exact role can vary by feature and by context.
If you are a professional, you are responsible for having a lawful basis and any required notices or permissions before uploading or sharing client data.
- Data We Collect
We collect only what is needed to run the service and keep the workspace usable and secure.
- Account and profile data
- Name, email address, login details, and account preferences
- Subscription, plan, billing, and renewal metadata
- Professional profile details, business information, and directory details where provided
- Workspace and client-portal data
- Messages, inbox content, replies, and attachments
- Client portal invitations and invite-open tracking
- Documents, evidence, forms, letters, notes, and case summaries
- Meeting details, room links, reminders, and availability information
- AI interaction data
- Prompts and chat messages
- Generated drafts, summaries, and response history
- Attachment metadata and context needed to answer your request
- Technical and security data
- IP address, device information, browser information, and session data
- Audit logs, error logs, and security events
- Cookie, storage, and consent preferences
- Account and profile data
- Special Category Data
Case material may contain special category data or other sensitive information, for example health, race, religion, union membership, or information connected to legal claims. We do not ask you to provide this data unless it is needed for the matter, but it may appear in documents or messages you choose to upload.
Where special category data is processed, we do so only as needed to provide the service and under an appropriate UK GDPR and Data Protection Act 2018 condition, depending on the context.
- How We Use Data
- To provide and operate the platform, including the inbox, portal, documents, meetings, notes, reminders, and AI tools
- To create and deliver notifications, invites, reminders, and operational emails
- To authenticate users, protect accounts, and prevent misuse or fraud
- To provide support, troubleshoot issues, and maintain records of activity
- To improve the reliability, quality, and safety of the service
- To comply with legal, regulatory, and accounting obligations
We do not sell your data. We do not use your workspace content for marketing.
- Lawful Bases
Depending on the activity, we rely on one or more of the following lawful bases:
- Contract - to provide the platform and the features you signed up for
- Legitimate interests - to secure the platform, prevent abuse, improve the service, and operate the business
- Consent - where we rely on optional analytics or other optional features that require it
- Legal obligation - where we must keep records or comply with law
- Sharing Your Data
We only share data where needed to run the platform or where you direct us to do so.
- Cloud hosting, authentication, storage, database, and email providers
- Payment providers such as Stripe
- AI model providers used to generate responses and drafts
- Connected professionals, clients, and authorised users in the same workspace or portal
- Authorities or advisers where required by law or where you have authorised disclosure
When a professional invites a client or shares a document, message, or meeting link, that content is visible to the authorised people in that connection. The professional remains responsible for the lawfulness of the sharing decision.
- International Transfers
Our providers may process data inside or outside the UK and EEA. Where data leaves the UK or EEA, we use appropriate safeguards such as standard contractual clauses or equivalent transfer tools and technical protections.
- Automated Decisions
We use automated systems for limited operational decisions such as authentication, access control, spam prevention, and billing lifecycle checks. We do not make legal or similarly significant decisions about you solely by automated means without a route for review where required.
If you think an automated account state is wrong, contact support and we will review it.
- Retention
We keep data only for as long as it is needed for the relevant purpose, subject to legal obligations and backup cycles.
- Account and billing data are kept while the account is active and for a reasonable period afterward
- Messages, documents, notes, and portal activity are retained while needed for the workspace or a connected professional matter
- Security, audit, and operational logs are kept for the period needed to protect the service and investigate issues
- Backups may persist for a limited period after deletion or account closure
- Where a professional controls a workspace, that professional may have separate retention obligations for client matter records
- Your Rights
Subject to applicable law, you may have the right to:
- Access your personal data
- Correct inaccurate data
- Request deletion
- Restrict or object to certain processing
- Move your data where portability applies
- Withdraw consent where consent is the basis
- Ask us to review an automated account decision
- Complain to the Information Commissioner’s Office (ICO)
- Cookies and Storage
We use essential cookies, optional analytics cookies where enabled, and local/session storage to keep the service secure and useful. For more detail, see the Cookie Policy.
- Children
The platform is not intended for users under 18, and we do not knowingly collect data from children.
- Changes to This Policy
We may update this policy from time to time. The revised version will appear on this page with a new date.
- Contact
Lenjordan Ltd
Email: jordan@lenjordan.tech
Registered Office: 66 Chamberlain Way, Pinner HA5 2AT
Data protection contact: jordan@lenjordan.tech