Legal

Privacy Policy

Last updated: May 2026

Hastings Legal is committed to protecting the privacy of individuals who interact with us. This policy explains how we collect, use, store and disclose personal information in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).

1. Who We Are

Hastings Legal Pty Ltd (ABN to be confirmed) is a specialist financial services law firm operating in Australia. References to "Hastings Legal", "we", "us" or "our" in this policy are references to Hastings Legal Pty Ltd.

Our primary contact for privacy matters is Jim Bulling, Founding Principal. You can reach us at jim@hastingslegal.com.au.

2. What Personal Information We Collect

We may collect the following categories of personal information:

  • Contact and identity information, name, email address, phone number, organisation, job title
  • Matter-related information, details you provide when seeking or receiving legal advice, including commercially sensitive and confidential information
  • Communications, records of correspondence, meeting notes, and instructions
  • Website usage data, browser type, pages visited, time on site, IP address (collected through standard web analytics where applicable)
  • Billing information, details necessary for invoicing and payment processing

We only collect personal information that is reasonably necessary for one or more of our functions or activities.

3. How We Collect Personal Information

We collect personal information in the following ways:

  • Directly from you: when you contact us, complete our website enquiry form, engage us for legal services, or correspond with us
  • From third parties: where you authorise this, or where permitted by law (for example, from counterparties, regulators or public registers in the course of providing legal services)
  • Automatically: through standard website server logs and, where applicable, analytics tools

4. Why We Collect and Use Personal Information

We collect and use personal information for the following purposes:

  • Providing legal services and advice to clients
  • Communicating with clients, prospective clients and professional contacts
  • Managing our client relationships and business operations
  • Complying with our legal and regulatory obligations, including obligations under the Legal Profession Uniform Law and applicable rules of professional conduct
  • Maintaining conflict-of-interest checks
  • Sending relevant legal updates, thought leadership and practice news (you may opt out at any time)
  • Improving our website and communications

5. Legal Professional Privilege and Confidentiality

Information you provide to us in the context of a legal matter may be protected by legal professional privilege. We treat all client information with strict confidentiality in accordance with our professional obligations under the Legal Profession Uniform Law and applicable rules of professional conduct. We will not disclose confidential client information except as authorised by you, required by law, or permitted under our professional rules.

6. Disclosure of Personal Information

We do not sell, rent or trade personal information. We may disclose personal information:

  • To third-party service providers engaged to assist us (such as IT systems, document management or accounting services) who are required to handle information in accordance with this policy
  • To counterparties, courts, tribunals or regulators as required in the course of providing legal services or complying with legal obligations
  • Where you have consented to disclosure
  • Where disclosure is required or authorised by law

We do not disclose personal information to overseas recipients unless we have taken reasonable steps to ensure the recipient complies with the APPs, or the disclosure is otherwise permitted under the Privacy Act.

7. Data Security

We take reasonable steps to protect personal information from misuse, interference, loss, unauthorised access, modification or disclosure. Our security measures include secure email and document systems, access controls, and regular review of our data handling practices.

If we no longer need personal information for any purpose, we will take reasonable steps to destroy or de-identify it, subject to any legal obligations to retain records.

8. Access and Correction

You have the right to request access to personal information we hold about you, and to request correction of information that is inaccurate, incomplete or out of date. To make a request, contact us at jim@hastingslegal.com.au. We will respond within a reasonable time and in accordance with the APPs.

We may decline an access request in limited circumstances permitted by the Privacy Act, including where access would unreasonably impact the privacy of other individuals, or where the information is subject to legal professional privilege.

9. Complaints

If you have a complaint about how we have handled your personal information, please contact us in the first instance at jim@hastingslegal.com.au. We will acknowledge your complaint promptly and respond within 30 days.

If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at www.oaic.gov.au or by calling 1300 363 992.

10. Changes to This Policy

We may update this policy from time to time. The current version will always be available on our website. Material changes will be communicated to active clients directly.


For any privacy enquiries, contact Hastings Legal at jim@hastingslegal.com.au.