Privacy Policy

1. Introduction

This Privacy Policy explains how Yellow Law Group, PC ("Yellow Law," "the Firm," "we," "us," or "our") collects, uses, discloses, and protects personal information in connection with this website (yellow.law) and the legal services we provide. This Policy applies to information we collect through the website, intake forms, email, telephone, messaging applications (such as WhatsApp), client-portal platforms, and any other channels through which you communicate with us.

For purposes of applicable data-protection laws, Yellow Law Group, PC is the data controller of personal information collected through this website. Our principal office is located at 730 E Park Blvd, Suite 100, Plano, Texas 75074.

This Policy does not modify, supersede, or limit the terms of any written engagement agreement you may have signed with the Firm. In the event of a conflict between this Policy and your engagement agreement, the engagement agreement controls with respect to personal information processed in the course of representation.

2. Information We Collect

We collect personal information in three principal ways: (a) information you provide directly to us, (b) information collected automatically when you use this website, and (c) information we obtain from third parties.

Information you provide directly. When you contact us, complete an intake or contact form, schedule a consultation, communicate with us by email, telephone, or messaging application, or engage the Firm, you may provide us with information including: your full legal name, date and place of birth, contact information (email, telephone, mailing address), nationality and country of residence, immigration status, A-Number, USCIS receipt and case numbers, passport and other identification details, family-relationship information, education and employment history, financial and tax information, and any other information you choose to share with us.

Sensitive personal information. Because of the nature of immigration practice, you may provide us with information that is treated as sensitive or special-category personal data under applicable laws — including, without limitation: information revealing racial or ethnic origin, religious or philosophical beliefs, political opinions, sexual orientation, gender identity, health and medical information, biometric and identification data, criminal history and arrest records, and information concerning past persecution, torture, or trauma. We collect such information only where it is necessary to evaluate or pursue your matter, and we process it under the legal bases described in Section 4.

Information collected automatically. When you visit this website, we and our service providers may automatically collect certain information, including: IP address, browser type and language, operating system, device identifiers, referring and exit pages, pages viewed, dates and times of visits, and similar usage information. We collect this information through cookies, pixels, server logs, and similar technologies, as further described in Section 8.

Information from third parties. We may receive information about you from third parties, including: persons who refer you to the Firm; affiliated consulting and service brands; government agencies and adjudicators in connection with your matter; opposing parties or counsel; courts and administrative tribunals; payment processors; background-check providers; and publicly available sources.

3. How We Use Your Information

We use personal information for the following purposes:

- to evaluate prospective representations, conduct conflicts-of-interest checks, and respond to inquiries;
- to provide legal services and represent you in your matter, including preparing and filing applications, petitions, motions, and other submissions;
- to communicate with you about your matter, scheduled appointments, deadlines, and Firm updates;
- to bill, collect fees, and maintain financial and accounting records;
- to comply with legal, regulatory, ethical, and professional-conduct obligations, including record-retention and reporting obligations imposed by state bars, courts, and regulators;
- to detect, prevent, and respond to fraud, security incidents, unauthorized access, and other unlawful activity;
- to operate, maintain, secure, and improve this website and our internal systems;
- to send you informational content, newsletters, or marketing communications, where permitted and only with appropriate consent or in accordance with applicable law; and
- with your consent, for any other purpose disclosed to you at the time of collection.

4. Legal Bases for Processing (EEA, UK, and Switzerland)

If you are located in the European Economic Area, the United Kingdom, or Switzerland, we process your personal information on one or more of the following legal bases under the General Data Protection Regulation (GDPR) and equivalent legislation:

- Performance of a contract — to provide legal services pursuant to an engagement agreement, or to take steps at your request prior to entering into such an agreement;
- Compliance with a legal obligation — to comply with bar-association, court, regulatory, anti-money-laundering, and tax-reporting requirements;
- Legitimate interests — to operate, secure, and improve our practice and our website, and to defend the Firm against legal claims, provided that those interests are not overridden by your rights;
- Consent — where you have provided consent (which you may withdraw at any time without affecting the lawfulness of prior processing); and
- For sensitive (special-category) personal data, additional bases including the establishment, exercise, or defense of legal claims, your explicit consent, or substantial public interest as recognized by applicable law.

5. How We Share Your Information

We do not sell your personal information. We disclose personal information only as follows:

- Government agencies and adjudicators. Personal information is disclosed to USCIS, the U.S. Department of State, U.S. consulates and embassies, ICE, EOIR (immigration courts), CBP, the U.S. Department of Labor, federal courts, and other governmental authorities to the extent necessary to pursue your matter.
- Service providers. We engage third-party vendors to support our practice — including case-management and document-management platforms, cloud-storage providers, secure-messaging platforms, e-signature services, billing and payment processors, translation and interpretation providers, IT and cybersecurity vendors, and analytics providers. These vendors process personal information on our behalf and under contractual confidentiality and data-protection obligations.
- Affiliated consulting and service brands. Where you engage, or request a referral to, a consulting or service brand affiliated with the Firm, we may share information necessary to facilitate the referral or service, subject to the limitations described in our Disclaimer.
- Co-counsel and outside counsel. Where appropriate to advance your matter, we may share information with co-counsel, outside counsel, expert witnesses, and similar professionals, subject to applicable confidentiality protections.
- Legal compliance and protection. We may disclose personal information when required by law, subpoena, court order, or other legal process; to enforce our agreements; to protect the rights, property, or safety of the Firm, our clients, or others; or in connection with the investigation or prevention of fraud or unlawful activity.
- Business transfers. In the event of a merger, acquisition, reorganization, or sale of assets, personal information may be transferred to the successor entity, subject to confidentiality safeguards consistent with this Policy.

6. International Data Transfers

Yellow Law Group is established in the United States, and personal information you provide may be transferred to, processed in, and stored in the United States and other countries where we or our service providers operate. Data-protection laws in these countries may differ from those in your country of residence.

Where we transfer personal data from the European Economic Area, the United Kingdom, or Switzerland to a country that has not received an adequacy decision, we rely on appropriate safeguards, including the European Commission's Standard Contractual Clauses or other lawful transfer mechanisms. You may request a copy of the safeguards we apply by contacting us using the details in Section 16.

7. Data Retention

We retain personal information for as long as necessary to fulfill the purposes for which it was collected, to comply with our legal, regulatory, and professional-conduct obligations, to enforce our agreements, and to defend against legal claims. Client-file retention periods are determined in accordance with applicable state-bar and court rules and may extend for several years after the conclusion of a matter. After the applicable retention period expires, we will securely delete, destroy, or anonymize the personal information unless further retention is required by law.

8. Cookies and Tracking Technologies

This website uses cookies and similar technologies to operate the site, remember your preferences, analyze traffic, and (where you have consented) deliver marketing content. Categories include strictly necessary cookies, functional cookies, analytics cookies, and marketing cookies. Some cookies are set by third parties — for example, analytics providers, social-media platforms, scheduling tools, and advertising networks — and those parties' privacy practices are governed by their own policies.

You can control cookies through your browser settings and, where applicable, through the cookie-consent interface presented on this website. Disabling certain cookies may affect website functionality. For details about how cookies are used on this website, please see our Cookie Policy.

9. Use of Artificial Intelligence

Consistent with the Firm's commitment to operational excellence, we use technology — including AI-assisted tools — to streamline workflows, organize documents, draft and review communications, and improve service quality. Where AI tools are used in connection with personal information, we apply appropriate safeguards, including vendor due diligence, contractual confidentiality and data-protection terms, and attorney review and approval of all substantive legal output. AI tools support, but do not replace, the professional judgment of our licensed attorneys.

10. Data Security

We implement reasonable administrative, technical, and physical safeguards designed to protect personal information against loss, misuse, unauthorized access, disclosure, alteration, and destruction. These safeguards include access controls, encryption in transit and at rest where appropriate, secure document handling, vendor risk management, and personnel training. No method of transmission or storage, however, is fully secure, and we cannot guarantee absolute security.

In the event of a personal-data breach affecting your information, we will notify you and applicable regulators where required by law and within applicable timeframes.

11. Your Privacy Rights

Residents of the European Economic Area, United Kingdom, and Switzerland. Subject to applicable conditions and exceptions, you have the right to: access the personal data we hold about you; request correction of inaccurate or incomplete data; request erasure ("right to be forgotten"); request restriction or object to certain processing; request data portability; and withdraw consent where processing is based on consent. You also have the right to lodge a complaint with the data-protection authority of your country of residence.

Residents of California (CCPA/CPRA). Subject to applicable conditions and exceptions, California residents have the right to: know what personal information we collect, use, and disclose; request deletion of personal information; request correction of inaccurate personal information; opt out of the "sale" or "sharing" of personal information (we do not sell personal information); limit the use and disclosure of sensitive personal information; and not be discriminated against for exercising these rights. You may exercise these rights by contacting us using the details in Section 16. We will verify your request through reasonable means before responding.

Residents of Texas (TDPSA) and other U.S. states with comprehensive privacy laws. Subject to applicable conditions and exceptions, residents of Texas, Colorado, Connecticut, Virginia, and other states with comparable laws have rights similar to those described above, including rights of access, correction, deletion, and opt-out from targeted advertising or sale of personal data. To exercise these rights, contact us using the details in Section 16.

Residents of the Republic of Türkiye (KVKK). To the extent the Turkish Personal Data Protection Law (Law No. 6698, "KVKK") applies, you have the rights enumerated in Article 11, including the right to: learn whether your personal data has been processed; obtain information regarding such processing; learn the purpose of processing and whether the data is used for that purpose; learn the third parties to whom data has been transferred; request correction of incomplete or inaccurate data; request deletion or destruction; object to results adverse to you arising solely from automated processing; and seek compensation for damages caused by unlawful processing. Requests may be submitted using the details in Section 16.

We do not discriminate or retaliate against any individual for exercising a privacy right under any applicable law.

12. Children's Privacy

This website is not directed to children, and we do not knowingly collect personal information from children under the age of 13 (or under the equivalent age of digital consent in your jurisdiction) for marketing or general-website purposes without verifiable parental or guardian consent.

We recognize, however, that immigration practice frequently involves minors — including, for example, family-based petitions, fiancé(e) and spouse derivative beneficiaries, and Special Immigrant Juvenile cases. Where personal information of a minor is collected in the course of legal representation, it is collected from, and processed with the involvement of, a parent, legal guardian, or properly authorized adult, and is handled with heightened confidentiality consistent with applicable law and our professional-conduct obligations.

13. Third-Party Links

This website may contain links to third-party websites and services, including those of consulting and service brands affiliated with the Firm. This Policy does not apply to information collected by those third parties, and we are not responsible for their privacy practices. We encourage you to review the privacy notices of any third-party site or service before providing personal information.

14. Marketing Communications

Where we send you informational, newsletter, or marketing communications, you may opt out at any time by following the unsubscribe instructions included in the communication or by contacting us using the details in Section 16. Opting out of marketing communications will not affect transactional or service-related communications, including those concerning your matter, billing, or your engagement with the Firm.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. The "Effective date" and "Last updated" dates above will indicate when this Policy was most recently revised. Material changes will be communicated through the website or, where appropriate, by direct notice. Your continued use of the website following any change constitutes your acceptance of the revised Policy.

16. Contact Us

For questions about this Privacy Policy, to exercise any privacy right described above, or to request information about our data-protection practices:

Yellow Law Group, PC
730 E Park Blvd, Suite 100 Plano, TX 75074
Email: contact@yellow.law
Web: yellow.law