Privacy Policy

Last updated: 30 March 2026

1. INTRODUCTION

Snarra Limited (“we”, “us”, or “our”) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, store, and protect your personal information when you use our website at http://www.snarra.com (the “Site”) and our services (together, the “Services”).

Who we are:

• Company name: Snarra Limited

• Registered address: 71-75 Shelton Street, Covent Garden, London WC2H 9JQ, United Kingdom

• Contact e-mail: contact@snarra.com

• ICO registration number: ZC106064

We are the data controller for the personal data we process, meaning we determine how and why your data is processed.

Important for lawyers: We understand that confidentiality is paramount for legal professionals. This privacy policy (the “Privacy Policy”) explains the measures we take to protect your privacy, including employer blocking features and visibility controls. We implement safeguards designed to prevent your current employer from accessing your profile unless you explicitly grant visibility.

2. WHAT DATA WE COLLECT

The data we collect depends on whether you are in our waitlist phase or using the full platform, and whether you are a lawyer or employer user.

During waitlist phase (Current)

For lawyer users:

• Full name

• E-mail address

• LinkedIn profile URL

• Practice area (e.g., Corporate, M&A, Private Equity, Banking)

• Post-qualification experience (PQE) level

• Jurisdiction(s) of qualification

• Current location

• Current firm or company name

• Job title or your current role

• Job search status (actively looking, casually browsing, just exploring)

• Preferred role type (private practice, in-house, or both)

For employer users:

• Your name

• Business e-mail address

• Firm or company name

• Job title or your current role

• Current location

For all users:

• Information you provide when contacting us (feedback, questions, complaints)

After full platform launch (Future)

When the platform launches, we may additionally collect:

• Detailed work history and experience

• Educational background

• Professional certifications and qualifications

• CV/resume documents

• Skills and specializations

• Salary expectations and requirements

• References and recommendations

• Messages and communications sent through the platform

• Search and matching preferences

• Work authorisation status

• Application and interview information

• Account login credentials (encrypted)

We will update this Privacy Policy and notify you before collecting any additional data beyond what is listed in the waitlist phase section.

3. HOW WE COLLECT YOUR DATA

We collect data in the following ways:

Direct collection:

• When you complete our waitlist registration form

• When you contact us via email

• When you provide feedback or participate in surveys

Automated collection:

• We do not currently use cookies or tracking technologies

• We do not use analytics tools

• Basic server logs may record your IP address for security purposes only

4. LEGAL BASIS FOR PROCESSING

We process your personal data under the following legal bases:

Legitimate Interests (UK GDPR Article 6(1)(f)):

When you submit information through the waitlist form, we process your data to manage early access and communicate with you about the platform. The legal basis for this processing is our legitimate interest in operating and developing the Snarra platform, including:

• Managing waitlist registration and early access

• Sending updates about platform development and launch

• Understanding user needs and preferences

• Improving and developing our Services

• Preventing fraud and ensuring platform security

We have assessed that these interests are not overridden by your rights and freedoms.

Consent (UK GDPR Article 6(1)(a)):

• For optional marketing communications beyond service updates

• For any processing not covered by legitimate interests

• You can withdraw consent at any time by emailing contact@snarra.com or using the unsubscribe link in e-mails

Contractual necessity (UK GDPR Article 6(1)(b)):

• To provide the Services you request

• To manage your account and access to the platform

Legal obligation (UK GDPR Article 6(1)(c)):

• To comply with legal and regulatory requirements

• To respond to lawful requests from authorities

5. HOW WE USE YOUR DATA

We use your personal data for the following purposes:

Waitlist Management:

• To register you for early access to Snarra

• To contact you when the platform launches

• To send updates about our progress and launch timeline

• To invite you to beta testing or early access programs

Service Delivery (Post-Launch):

• To create and manage your account

• To match lawyers with relevant opportunities

• To match employers with suitable candidates

• To facilitate connections between lawyers and employers

• To provide confidentiality and visibility controls

Matching and Platform Functionality:

• Information provided by lawyers and employers may be analysed to support matching functionality within the platform. This may include comparing professional attributes such as practice area, experience level, jurisdiction, and role preferences in order to identify relevant opportunities.

Communication:

• To respond to your inquiries and support requests

• To send important service updates and announcements

• To notify you of changes to our Terms and Conditions or Privacy Policy

• To send occasional updates about Snarra (you can opt out)

Platform Improvement:

• To understand how users interact with our Services

• To identify and fix technical issues

• To develop new features and functionality

• To conduct research and analysis (in aggregated, anonymized form)

Legal and Security:

• To comply with legal obligations

• To prevent fraud, abuse, and unauthorized access

• To protect the rights and safety of our users

• To enforce our Terms and Conditions

We do not:

• Sell your personal data to third parties

• Share your data with recruiters or third-party agencies

• Use your data for purposes incompatible with those listed above without your explicit consent

6. DATA SHARING AND DISCLOSURE

We share your data only in the following limited circumstances:

Service Providers (Data Processors)

We use carefully selected third-party service providers who process data on our behalf:

Google LLC:

• Purpose: Data storage and form collection

• Data shared: All waitlist information you provide

• Location: Google's servers (may include international transfers with appropriate safeguards)

• Safeguards: Google's Data Processing Terms and UK GDPR-compliant measures

Future service providers may include:

• E-mail service providers (to send platform communications)

• Cloud hosting providers (to host the platform)

• Payment processors (to process employer subscription payments)

• Security and fraud prevention services

All service providers are required to:

• Process data only on our instructions

• Implement appropriate security measures

• Comply with UK GDPR and data protection laws

• Enter into Data Processing Agreements with us

Other Users (Post-Launch Only)

For Lawyers:

• Employers will only see your profile if you grant visibility

• You can block specific employers from seeing your profile

• We implement safeguards designed to prevent your current employer from accessing your profile unless you explicitly grant visibility

For Employers:

• Lawyers will see your company name and opportunity details when you post roles

• Your contact information is shared only with lawyers you express interest in

Legal Requirements

We may disclose your data if required by law:

• To comply with legal obligations or court orders

• To respond to lawful requests from government authorities

• To protect our legal rights or defend against legal claims

• To prevent fraud, security threats, or illegal activity

Business Transfers

If Snarra is acquired, merged, or undergoes restructuring, your data may be transferred to the new entity. We will notify you and ensure the new entity honours this Privacy Policy.

We do not:

• Share your data with traditional recruitment agencies

• Sell or rent your data to third parties for marketing purposes

• Share lawyer data with their current employers without explicit consent

7. CONFIDENTIALITY FOR LAWYERS

We recognize that confidentiality is critical for legal professionals exploring new opportunities. Here's how we protect you:

Employer Blocking:

• You can block specific employers from seeing your profile

• Blocked employers cannot view your information or contact you

• You can update your blocked employer list at any time

Visibility Controls:

• You choose who can see your profile (all employers, selected employers, or invitation-only)

• You can make your profile invisible while maintaining your account

• You control what information is visible to different employer types

Confidential Job Search:

• We do not notify anyone when you join or update your profile

• We do not share information about your job search activity

• Employers cannot see who has viewed their postings

Current Employer Protection:

• Your current employer is automatically flagged in our system

• Additional safeguards prevent accidental visibility to the current employer

• We recommend adding your current employer to your blocked list

Employer Search and Profile Visibility:

• Where lawyers choose to make their profiles visible, employer users may search and review profile information for the purpose of identifying potential candidates

• Profile visibility is controlled by the lawyer through platform settings, including employer blocking and visibility preferences

• Lawyers can modify or withdraw profile visibility at any time

Data Security:

• All data is encrypted in transit and at rest

• Access controls ensure only authorized personnel can view lawyer data

• Regular security audits and monitoring

Important: While we implement technical and organisational measures to protect confidentiality, no system is 100% secure. We recommend using platform controls actively and exercising caution when sharing sensitive information.

8. DATA RETENTION

We retain your data only as long as necessary for the purposes described in this Privacy Policy.

Waitlist Data:

• Waitlist data is retained only as long as necessary to manage early access and platform launch

• If you do not join the platform, your data may be retained for up to 12 months after registration

• You can request deletion at any time

Active Platform Accounts:

• Retained while your account is active and in use

• Retained for 12 months after your last login (for inactive accounts)

• You can delete your account at any time

Deleted Accounts:

• Kept in backup systems for 30 days (to allow recovery if deletion was accidental)

• Permanently deleted after 30 days

• Some data may be retained in anonymized form for statistical purposes

Legal Retention:

• Data required for legal, regulatory, or tax purposes is retained as required by law

• Security logs and fraud prevention data may be retained for up to 6 years

Employer-Side Data:

• Application and hiring data are retained for 6 months after a role is filled

• Longer retention available with candidate consent for future opportunities

9. YOUR RIGHTS

Under UK GDPR, you have the following rights regarding your personal data:

Right of Access (Article 15):

• You can request a copy of all personal data we hold about you

• We will provide this within 30 days, free of charge

Right to Rectification (Article 16):

• You can correct inaccurate or incomplete data

• You can update your information through your account settings

Right to Erasure / Right to be Forgotten (Article 17):

• You can request the deletion of your data

• We will delete your data unless we have a legal obligation to retain it

Right to Restrict Processing (Article 18):

• You can ask us to stop processing your data (but not delete it)

• Useful if you want to suspend your account temporarily

Right to Data Portability (Article 20):

• You can receive your data in a structured, machine-readable format

• You can transfer your data to another service provider

Right to Object (Article 21):

• You can object to processing based on legitimate interests

• You can opt out of marketing communications at any time

Rights Related to Automated Decision-Making (Article 22):

• We do not currently use automated decision-making or profiling

• If we introduce AI matching in the future, you will have the right to human review

Right to Withdraw Consent:

• Where processing is based on consent, you can withdraw it at any time

• This does not affect the lawfulness of processing before withdrawal

To exercise any of these rights:

• E-mail us at contact@snarra.com

• We will respond within 30 days

• We may request identification to verify your identity

10. DATA SECURITY

We implement appropriate technical and organizational measures to protect your data:

Technical Measures:

• Encryption in transit (HTTPS/TLS)

• Encryption at rest for sensitive data

• Secure authentication and access controls

• Regular security updates and patches

• Automated backups with encryption

Organisational Measures:

• Access to data is limited to authorized personnel only

• Two-factor authentication is required for team access

• Regular security training for team members

• Data breach response procedures in place

• Regular review of security practices

Third-Party Security:

• All service providers must demonstrate adequate security measures

• Data Processing Agreements require compliance with security standards

• Regular vendor security assessments

Incident Response:

• We monitor for security incidents and data breaches

• In the event of a breach affecting your data, we will notify affected users where required by law

• We will notify the ICO as required by law

No System is 100% Secure: While we implement strong security measures, no internet-based service can guarantee absolute security. You are responsible for:

• Keeping your login credentials secure

• Using a strong, unique password

• Not sharing your account access

• Notifying us immediately if you suspect unauthorised access

11. COOKIES AND TRACKING

We do not currently use cookies or tracking technologies.

What this means:

• We do not track your browsing across websites

• We do not use analytics tools like Google Analytics

• We do not serve targeted advertising

• We do not create browsing profiles

Essential Technical Data:

• Our web server may log IP addresses for security purposes only

• This data is not used for tracking or analytics

• IP logs are deleted after 90 days

Future Use of Cookies: If we introduce cookies in the future, we will:

• Update this Privacy Policy

• Implement a cookie consent banner

• Provide a separate Cookie Policy

• Allow you to manage cookie preferences

12. INTERNATIONAL DATA TRANSFERS

Data Storage Location:

• Data is primarily stored on Google's servers

• Google operates data centres globally, including in the UK, the EU, and the US

Safeguards for International Transfers:

• We rely on appropriate safeguards provided by our service providers to ensure international transfers comply with applicable data protection law

Your Rights:

• You have the same data protection rights regardless of where the data is stored

• You can request information about where your data is stored

• You can object to specific transfer mechanisms

13. CHILDREN'S PRIVACY

Our Services are not directed at individuals under 18 years of age. We do not knowingly collect personal data from minors.

If we discover we have collected data from someone under 18:

• We will delete it immediately

• We will not use it for any purpose

If you believe we have collected data from a minor, please contact us at contact@snarra.com.

14. CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time to reflect:

• Changes in our data practices

• New features or services

• Legal or regulatory requirements

• Best practice developments

How we notify you:

• We will update the "Last updated" date at the top

• For material changes, we will email registered users

• Continued use of Services after changes constitutes acceptance

Your options:

• Review this Privacy Policy periodically

• If you disagree with changes, you can delete your account

• Contact us with questions about changes

15. LEGAL BASIS: UK GDPR AND DATA PROTECTION ACT 2018

This Privacy Policy complies with:

• UK General Data Protection Regulation (UK GDPR)

• Data Protection Act 2018

• Privacy and Electronic Communications Regulations (PECR)

We are registered with the Information Commissioner's Office (ICO):

• Registration number: ZC106064

16. COMPLAINTS AND SUPERVISORY AUTHORITY

Contact us first: If you have concerns about how we handle your data, please contact us at contact@snarra.com. We will investigate and respond within 30 days.

Complaint to the ICO: You have the right to lodge a complaint with the UK's supervisory authority:

Information Commissioner's Office (ICO)

• Website: https://ico.org.uk/make-a-complaint/

• Telephone: 0303 123 1113

• Post: Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF

EU Residents: If you reside in the EU, you can also complain to your local data protection authority.

17. CONTACT US

For any questions, concerns, or requests regarding this Privacy Policy or our data practices:

E-mail: contact@snarra.com

Post:
Snarra Limited
71-75 Shelton Street
Covent Garden
London WC2H 9JQ
United Kingdom

Response time: We aim to respond to all inquiries within 30 days.

Data protection inquiries: For specific data protection requests (access, deletion, etc.), please clearly mark your e-mail subject line with "Data Protection Request" for faster processing.

This Privacy Policy was last updated on 30 March 2026.