Skip to main content

LexconX Privacy Policy

Last Updated: 10-November-2025

  1. OVERVIEW

    1.1. We, CMI Legal Solutions Ltd, trading as LexconX ("LexconX", "we", "us" or "our"), incorporated under the laws of England and Wales (Company No. 15121986), with its registered office at HQ, 141–142 Lower Marsh, Waterloo, London, SE1 7AE, respect your privacy and are committed to protecting your personal data and your rights under applicable data protection laws, including the UK General Data Protection Regulation ("UK GDPR") and the Data Protection Act 2018.

    1.2. This Privacy Policy explains how we collect, use, store, disclose and safeguard your personal data when you visit our website or application (the "Platform") and use our services (the "Services"). These Services include, without limitation, creating a LexconX account, signing up to receive information about our courses and programmes, browsing courses and programmes offered by LexconX, registering and/or subscribing for courses or events, participating in online learning activities (including attending virtual sessions, accessing course content, completing assessments, viewing results and certificates), and providing feedback following course completion.

    1.3. Courses accessible through the Platform may be delivered in collaboration with educational institutions, corporate organisations or other professional partners ("Partners"). In some cases, these courses may be hosted on third-party learning platforms. Where enrolment or participation in a course or programme takes place on a third-party platform, the privacy policy of that platform will govern the collection, use and disclosure of your personal data. You will be provided with or directed to the relevant privacy policy at the time of enrolment or when you first access such third-party services. LexconX is not responsible for the privacy practices of such third-party platforms and encourages you to review their privacy policies before providing any personal information.

    1.4. This Privacy Policy describes how LexconX collects, uses and shares your personal data when you interact directly with the LexconX Platform or when someone interacts with the Platform on your behalf.

    1.5. If you do not agree to the terms of this Privacy Policy, please do not access, browse, register or create an account on the LexconX Platform, enrol in any courses, or submit any information through our online forms.

    1.6. By using our website or Platform, you confirm that you have read, understood and agreed to this Privacy Policy.

  2. INFORMATION WE COLLECT FROM AND ABOUT YOU

    2.1. We collect personal data from and about you when you interact with the LexconX Platform and use our Services, when you create an account, register or subscribe for a course or event, contact us via email or online forms, or engage with our website through cookies and analytics tools. We may also receive information from trusted third-party partners or institutions.

    2.2. The categories of personal data we collect include, but are not limited to:

    • a. Identity Data: Full name, title, date of birth, gender, nationality, and professional details.
    • b. Contact Data: Email address, telephone number, postal address, and other contact details.
    • c. Account and Profile Data: Username, password, profile photo, learning preferences, and account history.
    • d. Payment and Transaction Data: Billing address, payment card details (processed securely by third-party payment providers), and purchase history.
    • e. Course and Learning Data: Courses viewed or completed, assessment results, certifications earned, and engagement statistics.
    • f. Technical and Usage Data: IP address, browser type, cookies, device identifiers, time zone settings, operating system, platform, and browsing behaviour on our Platform.
    • g. Marketing and Communication Data: Your preferences regarding marketing materials and communications from us or our Partners.
    • h. Special Category Data (if applicable): In limited cases, we may process information such as disability data (for accessibility purposes) only where necessary and with your explicit consent in accordance with UK GDPR.
    • i. Information from Other Sources: Where permitted by law, we may receive personal data about you from third parties ("Other Sources"), such as our Partners, your current or prospective employer, educational institutions, or affiliated organisations offering professional or continuing education opportunities. We use this information to verify and update our records, improve the relevance of our communications, and support internal business and analytical purposes. Such collection occurs with your consent where required by law or, where applicable, in pursuit of our legitimate interests.
    • j. Children’s Information: We do not direct the Platform to, nor do we knowingly collect personal data from, children under the age of [13]. If you become aware that a child has provided us with personal data in violation of this Privacy Policy, please contact us at [data protection email].

  3. HOW WE USE YOUR PERSONAL DATA

    3.1. LexconX uses your personal data to carry out the following purposes, as permitted under the UK GDPR:

    • a. Operate and Improve the Platform: To develop, enhance, and optimise the functionality and performance of the LexconX Platform, ensuring it performs effectively at scale. This includes personalising your experience so that the content, courses, and recommendations are relevant to your interests and learning needs.
    • b. Create, Administer, and Deliver Courses: To provide, manage, and improve the delivery of courses and programmes on the Platform, including personalising learning experiences, assessing performance, and issuing certificates.
    • c. Offer and Improve Products and Services: To enable you to enrol and participate in courses and related services, and to invite feedback or participation in surveys or market research.
    • d. Maintain Platform Security and Performance: To monitor and improve the security, integrity, and performance of the Platform, detect and prevent violations of the Terms of Service, and ensure continuous availability.
    • e. Communicate with You: To respond to queries, provide updates, and notify you of service changes or maintenance.
    • f. Promote Courses and Programmes: To send marketing or promotional materials related to LexconX courses or Partner offerings. You may withdraw consent or opt out of such communications at any time by using the “unsubscribe” link in emails or updating your preferences in your account.
    • g. Support Research and Innovation: To use anonymised or aggregated learning data to support educational research and improve course design and learner outcomes.
    • h. Monitor and Analyse Platform Usage: To conduct analytics and generate aggregated reports for business and operational improvement.
    • i. Exercise, Enforce, and Comply with Legal Rights and Obligations: To comply with legal requirements, respond to lawful requests, and protect LexconX, its users, and the public from harm.
    • j. Consent-Based Uses: Where consent is required, data will be processed only for the purpose described at the time of collection.

  4. HOW WE SHARE YOUR PERSONAL DATA

    4.1. LexconX shares personal data only where necessary, lawful, and proportionate to achieve the purposes described in this Policy. We do not sell or rent personal data.

    4.2. We may share your information in the following circumstances:

    • a. Service Providers: We work with trusted third-party service providers, including legal consultants, paralegal services, specialist law firms, compliance and risk advisory firms, technology vendors, and professional training institutions. These service providers may assist users by offering professional services, advisory support, or specialised guidance aligned with users’ legal and professional development needs. If you express interest in or make an enquiry about a Service Provider’s offerings through the Platform, we may share relevant personal data (such as your name, contact details, and enquiry information) to enable them to provide quotations, consultations, or related services at your request. All Service Providers are required to handle personal data in accordance with applicable data protection laws, maintain confidentiality, and use the data only for the purposes for which it was shared.
    • b. Learning Partners: When you enrol in a course or programme delivered by a Partner institution, we share necessary personal data (e.g., name, profile details, course data, results) to enable delivery and administration.
    • c. Vendors and Contractors: We engage trusted third-party providers (e.g., IT hosting, payment processors, analytics providers, communications tools). These providers act as processors under contract and are required to:
      • use personal data solely for the agreed purposes;
      • maintain confidentiality; and
      • implement appropriate technical and organisational security measures.
    • d. Third-Party Content Providers: Where course content involves integration with unaffiliated tools or platforms, your use is governed by those providers’ privacy policies.
    • e. Other Learners: To support interactive learning, certain information such as your username, posts, or coursework may be visible to other learners.
    • f. Employers or Sponsors: Where your participation is funded or sponsored by an employer or organisation, we may share enrolment or completion status.
    • g. Affiliates or Group Entities: For internal administrative purposes.
    • h. Legal or Safety Reasons: To comply with law, court orders, or to prevent or investigate fraud, abuse, or security issues.
    • i. Business Transfers: If LexconX undergoes a restructuring, merger, or acquisition, your data may be transferred to the successor organisation.
    • j. Your Consent or as Permitted by Law: We may share data for purposes you explicitly consent to or share anonymised information for research or statistical use. Where personal data is transferred outside the UK, LexconX ensures appropriate safeguards such as the UK International Data Transfer Addendum or Standard Contractual Clauses.

  5. YOUR RIGHTS UNDER DATA PROTECTION LAW

    5.1. You have several rights regarding your personal data under the applicable law, these include:

    • a. Access and Rectification: You may access or correct most of your information via your LexconX account or contact us to correct inaccuracies.
    • b. Marketing Preferences: You can update preferences or opt out of marketing via your account settings or “unsubscribe” links in our emails.
    • c. Data Portability: You may request a copy of your data in a structured, commonly used, machine-readable format.
    • d. Erasure: You may request deletion of your account and associated data, subject to legal or regulatory retention requirements.

    5.2. Upon verifying your identity, we will:

    • a. deactivate your account;
    • b. delete personal data from our active systems; and
    • c. take reasonable steps to instruct relevant Partners to do the same, subject to their obligations.

    5.3. Certain information may be retained as required for compliance, record keeping, or to resolve disputes.

  6. DATA RETENTION

    6.1. LexconX retains personal data only as long as necessary for the purposes for which it was collected, including compliance with legal, regulatory, and accounting requirements.

    6.2. Retention periods may vary depending on the nature of the information and applicable law.

    6.3. Where permitted, we may retain anonymised data for research and statistical purposes.

  7. SECURITY OF YOUR INFORMATION

    7.1. LexconX maintains an information security programme designed to protect the confidentiality, integrity, and availability of personal information. This includes administrative, technical, and physical safeguards appropriate to the sensitivity of the data we process.

    7.2. While we take reasonable precautions, no system is completely secure. In the event of a data breach affecting your information, we will notify you and the relevant supervisory authority in accordance with applicable law.

  8. UPDATES TO THIS POLICY

    8.1. We may update this Privacy Policy periodically to reflect operational, legal, or regulatory changes.

    8.2. When updates occur, we will revise the “Last Updated” date above, continued use of the Platform after such updates constitutes your acceptance of the revised Policy.

  9. CONTACT US

    If you have any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us at support@lexconx.com.

    Data Controller: LexconX