Cyber security & protecting personal data

Client confidentiality and the protection of client data is a fundamental feature of the solicitor client relationship.

As a firm regulated by the Solicitors Regulation Authority and the Financial Conduct Authority, we have statutory, common law and regulatory obligations to ensure your information remains confidential.

Our duty to protect your information continues even after we have completed your instructions.

In order to ensure your data is appropriately protected:

  • all electronic information is held on our own servers and replicated on third party managed servers in the UK, in order to ensure continuity of service;
  • all portable electronic devices and USB drives are encrypted;
  • all emails sent externally are encrypted during transmission; 
  • closed circuit messaging is available where required;
  • our network perimeter is protected by firewalls and the firm has obtained Cyber Essentials Plus accreditation. This accreditation is a government-backed scheme supported by the National Cyber Security Centre.  Additionally, the firm has achieved an ISO 27001 accreditation; and
  • the firm undertakes audits and testing of the robustness of our protections.

Exchange of bank details

Please beware of e-mails or other correspondence suggesting that our bank details have changed. Fraudsters often pose as lawyers and ask clients to forward monies to their own bank accounts.

It is very unlikely that our bank details will change during the course of your matter and in any event we will never notify you of changes to important business information such as bank details by email. If you receive any communication suggesting that our bank details have changed then please contact us immediately by telephone. If at any time you send any monies to a bank account other than an account controlled by this firm, please note that we cannot accept any responsibility for any loss.

Receiving emails from us

Please note that ALL Bates Wells email addresses end ‘‘ and should not be confused with any other format. Fraudsters may pose as someone from Bates Wells in order to involve members of the public in a scam or a fraud.

Always check the sender’s e-mail address and do not open attachments unless you are sure the email is genuine. If in doubt, call your contact at Bates Wells on a trusted number to check.

Any unexpected emails claiming to have been sent on behalf of Bates Wells should be treated as highly suspicious and reported to [email protected].

You can find further information on scams (including ones we have reported) on the Solicitors Regulation Authority (SRA) website. You can also contact the SRA to find out if individuals or firms are regulated and authorised by the SRA and verify an individual’s or firm’s practising details and disciplinary record.