Last updated: May 2026
Tiwala Abogado is operated by Motti Harary, based in Copenhagen, Denmark. Because the platform operator is based in the European Union, this Privacy Policy is written to comply with the General Data Protection Regulation (GDPR). It applies to all users of the platform — clients and lawyers alike.
1. Data Controller
The data controller for personal data collected through tiwalaabogado.com is:
Motti Harary
Copenhagen, Denmark
Email: mottiharary@gmail.com
2. What Data We Collect
From clients
- Name and email address when you post a public question
- Country of residence when you post a question
- Name, email address, and payment details when you book a consultation (payment data is processed by Stripe and not stored by Tiwala Abogado)
- The text of questions you post — these become publicly visible on the Q&A board once approved
- Contact form submissions — name, email, country, and message content
From lawyers
- Name, email address, IBP roll number, city, practice areas, and bio when you register
- Answers you post on the public Q&A board
- Login activity via Supabase's magic link authentication system
Automatically collected
- Analytics data via Google Analytics 4 — including pages visited, time on site, general location (country/city level), and device type. This data is anonymized and aggregated.
- Basic server logs via Netlify — IP addresses, page requests, and timestamps, retained per Netlify's standard policy.
3. Why We Collect It (Legal Basis)
We process personal data on the following legal grounds under GDPR:
- Contract performance — to process bookings, send confirmation emails, and facilitate consultations between clients and lawyers
- Legitimate interest — to operate the Q&A board, review and moderate content, and run the platform
- Legal obligation — to maintain transaction records as required by applicable law
- Consent — for analytics tracking (Google Analytics), which you can opt out of by using a browser ad blocker or Google's opt-out tools
4. How We Use Your Data
- To operate the platform and facilitate connections between clients and lawyers
- To send email notifications (lawyer registration confirmations, question submissions, booking confirmations)
- To allow lawyers to log in via magic link and access their dashboard
- To display approved questions and answers publicly on the Q&A board
- To review and moderate submitted content before it goes public
- To improve the platform based on aggregate usage analytics
We do not sell your personal data. We do not use your data for advertising purposes.
5. Who We Share Data With
We use the following third-party services, each of which processes data on our behalf:
- Supabase — database and authentication. Stores lawyer profiles, questions, answers, and booking records. Data is hosted in the EU (eu-central-1). Supabase Privacy Policy
- Netlify — website hosting. Processes server request logs. Netlify Privacy Policy
- Stripe — payment processing for consultation bookings. Stripe handles all card data directly and is PCI-DSS compliant. Stripe Privacy Policy
- formsubmit.co — form submission relay for contact and registration emails. Transmits form data to mottiharary@gmail.com. formsubmit.co Privacy Policy
- Google Analytics — website usage analytics. Data is anonymized and subject to Google's data processing terms. Google Privacy Policy
When you book a consultation, your name and email are shared with the lawyer you are booking with, so they can contact you to arrange the session.
We do not share your data with any other third parties.
6. Data Retention
- Q&A questions and answers — retained as long as the platform is active, as they constitute a public legal knowledge resource
- Lawyer profiles — retained while the lawyer is active on the platform; removed within 30 days of a removal request
- Booking records — retained for 5 years for legal and accounting compliance
- Contact form messages — retained in email inbox; we do not store them in a database
- Analytics data — retained per Google Analytics default settings (14 months)
7. Your Rights Under GDPR
If you are located in the European Union or European Economic Area, you have the following rights regarding your personal data:
Right of Access
Request a copy of the personal data we hold about you.
Right to Rectification
Ask us to correct inaccurate or incomplete data.
Right to Erasure
Ask us to delete your personal data ("right to be forgotten"), subject to legal retention requirements.
Right to Restriction
Ask us to temporarily stop processing your data in certain circumstances.
Right to Portability
Receive your data in a machine-readable format.
Right to Object
Object to processing based on legitimate interests.
To exercise any of these rights, contact us at mottiharary@gmail.com. We will respond within 30 days.
You also have the right to lodge a complaint with the Danish data protection authority (Datatilsynet): datatilsynet.dk.
8. Cookies
Tiwala Abogado uses cookies in the following limited ways:
- Google Analytics cookies — used to track aggregate site usage. These are analytics cookies. You can opt out via your browser settings or a browser extension like uBlock Origin.
- Supabase session cookies — used to keep lawyers logged in during a browser session. These are strictly necessary for the login feature to work.
We do not use advertising cookies or tracking pixels. We do not use third-party cookies beyond those listed above.
9. International Transfers
The platform operator is based in Denmark (EU). Our primary database (Supabase) is hosted in the EU. Stripe and Google have standard contractual clauses and EU data processing agreements in place for any data that passes through US-based infrastructure.
10. Children
Tiwala Abogado is not intended for use by anyone under the age of 18. We do not knowingly collect personal data from minors.
11. Changes to This Policy
We may update this Privacy Policy from time to time. The latest version will always be at this URL, with the "last updated" date at the top. For material changes, we will post a notice on the site.