This article may be out of date!
Visit the New Knowledge Center

What has Changed in Clio’s Privacy Policy and Terms of Service for GDPR?


  • Understand what has changed in light of the General Data Protection Regulations (GDPR)


  • Clio Web App

Additional Information:



Our updated Terms of Service and Privacy Policy reflect Clio’s commitment to GDPR. The changes we’ve made include:

  • A data protection addendum - This new section defines the parameters for how Clio processes data, our authorized subprocessors, our security obligations, and our processes for access requests and data subject rights.
  • Removal of reference to the Data Protection Act (EMEA Terms of Service) - GDPR supersedes the Data Protection Act 1998.
  • Updating Section 6 Data Protection (EMEA Terms of Service) to the provisions of the Data Processing Addendum, which are in line with GDPR guidelines.
  • Refinement of Section 5 Security and Access (North American and EMEA Terms of Service) to clarify the level of audit report (SOC2) and the timeline for reporting a security breach (72 hours).
  • An updated Privacy Policy - This was rewritten to be in line with GDPR guidelines and outlines in detail the personal data we collect from individuals (annex 1) and the data we collect automatically (annex 2). We’ve also appointed a Data Protection Officer (DPO), and included a section on an individual's rights regarding personal data, and how to go about exercising them (Section 8).
Was this article helpful?
This information is confusing or wrong
This isn't the information that I was looking for
I don't like this functionality