Introduction
Mark Lorrell (“we”, “us”, or “our”) is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and share personal information when you use the website marklorrell.co.uk or engage our legal services, in compliance with the Data Protection Act 2018 and the UK General Data Protection Regulation (UK GDPR) . As an English barrister providing legal services, Mark Lorrell acts as the Data Controller for personal data collected via this site or in the course of his practice. If you have any questions about this policy or your data, please contact us using the details provided at the end of this policy.
Personal Data We Collect
We may collect and process the following categories of personal data (this may include both standard personal data and special category data as defined under UK GDPR):
Contact Information: Name, email address, telephone number, postal address, and similar contact details that you provide via website contact forms or email . Inquiry Details: Information you include in messages or enquiry forms, such as the nature of your legal matter, background details of a case, documents you upload, or any other personal information you choose to provide when seeking legal services. This could include sensitive details relevant to your case (for example, financial information, health or criminal allegations if pertinent to the inquiry). Client Data: If you become a client, additional data related to your case or representation may be collected. This can include identity details (date of birth, occupation), case files and evidence, court documents, and information about other parties involved. In some cases, we might handle special category data (e.g. health records, information revealing racial or ethnic origin or other sensitive data) or data about criminal convictions, strictly for the purpose of legal advice or proceedings. Payment Information: If you use online payment features (e.g. via Stripe for paying fees), we will process payment-related information. Payment card details are handled by our third-party payment provider (Stripe) and not stored on our servers, though we may keep records of transaction references or invoices. Technical and Usage Data: When you visit our site, certain technical information is collected automatically: e.g. your IP address, browser type, device information, and browsing actions. We use Google Analytics to gather anonymous statistical data about usage of our site (page views, referral sources, etc.), which may involve cookies (see our Cookie Policy below for details). This data is generally aggregated and does not directly identify you. Third-Party Integrations Data: If you interact with integrated third-party tools on our site, those services may collect personal data on our behalf: for example, when scheduling an appointment via Calendly, you may provide your name and email to book a meeting; or if making a payment via Stripe, you will provide billing details to process the transaction. These third-party services will transmit the necessary data to us (e.g. your scheduled appointment details or payment confirmation). We only receive information that is needed to fulfill your request (such as confirmation of a booking or payment) and not your full payment card details.
We collect most personal data directly from you (for instance, when you fill out a form or contact us). In some instances, we may obtain information from other sources: for example, if you are referred by a solicitor or another third party, or if we gather further details from publicly available sources (such as Companies House or public records) as part of providing legal services.
Legal Bases and Uses of Personal Data
We will only use your personal information where we have a lawful basis to do so under UK GDPR. Depending on the context, one or more of the following legal bases may apply:
Enquiries and Service Requests: When you contact us with an enquiry or potential case via the website (e.g. submitting information for legal advice), we process your data to respond to your request and take steps at your request prior to possibly entering into a contract. This is typically done on the basis of legitimate interests (our legitimate interest in responding to prospective clients and providing information about our services) or contractual necessity (to take steps to enter into a contract with you, if you decide to engage our services). Provision of Legal Services (Contract): If you become a client, we will use your personal data to perform our contract with you – i.e. to provide legal advice and representation. This includes using your information to communicate with you, to carry out legal work on your matter, to file documents in court, to contact opposing counsel or other parties as necessary, and to fulfill any instructions you have given us. In this context, the primary legal basis is the performance of a contract (the contract for legal services between you and Mark Lorrell). We may also process certain data to comply with legal obligations (for example, anti-money laundering checks or record-keeping required by law) and to pursue legitimate interests (such as managing our practice, preventing conflicts of interest, or defending against complaints or legal claims). Special Category Data: If you provide or if we need to process special category personal data (such as health information, or data revealing racial/ethnic origin, political opinions, etc.) or criminal offence data for the purposes of your case, we will ensure an additional lawful condition under Article 9 UK GDPR or Part 3 of the DPA 2018 is satisfied. This will typically be because processing is necessary for the establishment, exercise or defence of legal claims or for the purpose of legal advice, which is an allowed condition under the law. In some situations, we may ask for your explicit consent to process certain sensitive information, but if the processing is fundamentally for legal proceedings/advice, consent may not be required. Rest assured that such data will only be used for your case and handled with strict confidentiality. Payments: If you pay fees through the website via Stripe or a similar payment processor, we process your data to execute and record the transaction. The legal basis for processing payment information is performance of a contract (to provide the service you have requested and process the payment) and compliance with legal obligations (accounting and tax laws require us to retain records of payments). Website Analytics: For visitors to our website, we use analytics cookies (e.g. Google Analytics) to understand how our site is used and to improve its functionality. We only deploy analytics cookies with your consent (see Cookie Policy). The legal basis for processing analytics data (e.g. via cookies that collect usage info) is your consent. You have the choice to accept or reject such cookies via our cookie banner. We anonymize or aggregate analytics data where possible; Google Analytics may collect data including your IP address and device information, but we do not attempt to identify individual visitors from these analytics. Scheduling and Calendly: If we offer the ability to schedule consultations or meetings through an embedded Calendly widget, the information you enter (like your name, email, and chosen time slot) is used to arrange that appointment. This processing is based on your consent (you voluntarily provide those details and consent to using Calendly to book) and/or contractual necessity (to schedule a meeting which is a step towards providing our service to you). Calendly may set functional cookies to remember your input and preferences (only if you consent to cookies – see Cookie Policy). Communications: We may use your contact details to communicate with you about your enquiry or case. For instance, responding to messages, sending you information you requested, or contacting you about administrative matters. This is done as part of our legitimate interests in providing good client service or as necessary for contract performance. We will not use your contact information to send you marketing emails or newsletters unless you have explicitly opted in to such communications. (At present, we do not run a marketing mailing list – any contact will be related to your enquiry or case.) Legal or Regulatory Requirements: Sometimes we may need to process or disclose personal data to fulfill our legal obligations or regulatory requirements as a barrister. For example, under Bar Standards Board (BSB) regulations we must keep certain records, or we may be required to provide information to regulatory bodies or law enforcement upon proper request. The legal basis in such cases is compliance with a legal obligation. Website Functionality and Security: We use certain necessary cookies and collect minimal technical data to ensure the website functions securely (e.g. load balancing, preventing spam or malicious activity). This is in our legitimate interests (to maintain a secure and functional site) and some of these measures may also be necessary to comply with security best practices. For example, we might use Cloudflare services which set cookies to distinguish bots from humans for security – these are essential for protecting the site.
We will only use your personal data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another related reason that is compatible with the original purpose. If we need to process your data for an unrelated purpose, we will notify you and explain the legal basis that allows us to do so, or seek your consent if required.
Data Sharing and Disclosure
We treat your personal information with confidentiality. We do not sell your data to third parties. However, in certain circumstances we may share your data with trusted third parties or other recipients, as necessary to carry out the purposes described above. Such recipients may include:
Chambers and Staff: Mark Lorrell is a self-employed barrister practising from Millennium Chambers. This means your information may be shared with Chambers’ clerks or administrative staff who assist in managing Mark’s practice (for example, handling bookings, diary management, or fee administration). All such staff are bound by confidentiality and data protection obligations. Your Solicitor or Other Legal Professionals: If you were referred to Mark by a solicitor, or if a solicitor or other intermediary is involved in your case, we will share information with them as needed to progress your case (consistent with your instructions). Likewise, if Mark Lorrell is working as co-counsel with another barrister or needs to consult an expert (such as an expert witness or accountant) for your case, relevant information will be shared with those parties with your consent and as necessary for the case. Opponents and Courts: In the course of legal proceedings, it may be necessary to share certain information with the court or tribunal, or with the opposing party and their legal representatives, as part of the proper conduct of the case (e.g. serving legal documents, disclosing evidence as required by law). Such sharing is done strictly in line with legal procedure and your barrister’s professional duties. Service Providers: We use reputable third-party service providers to facilitate our website and business operations. These third parties process data on our behalf and are contractually bound to protect it. The key providers include: Website Host/Platform: Our website is hosted on WordPress.com (Automattic). They may process technical data (like server logs of visits) on our behalf to ensure the site’s stability and security. Email Service: Our email is provided through Millennium Chambers (or a secure email provider), meaning that any emails you send to us will be processed and stored by that email hosting service. Google Analytics: Google LLC provides the analytics service we use. Google’s software places cookies on your device to collect site usage information (e.g. pages visited, time spent, browser details). This data is sent to Google Analytics and aggregated for us to review website performance. We have set Analytics to anonymize IP addresses where possible. Google may process the data on servers outside the UK; however, we have configured it in compliance with GDPR (including Data Processing terms with Google). See our Cookie Policy for more on how Google Analytics works and how you can opt out. Google Analytics collects information anonymously and reports website trends without identifying individual visitors . Calendly: If scheduling is enabled on our site via Calendly, that service (Calendly, Inc.) will receive the information you input to arrange a meeting. Calendly may also drop cookies (_calendly_session, etc.) to remember your session details . Calendly stores data on its own servers (which may be outside the UK/EU but under GDPR-compliant safeguards) and shares the meeting info with us. We have a Data Processing Addendum with Calendly to ensure your data is protected. Stripe: For online payments, we use Stripe Payments Europe, Ltd. (or Stripe, Inc.). When you enter payment details, you are interacting directly with Stripe’s secure system. Stripe will process your payment information (card number, billing info) to complete the transaction. We receive confirmation of payment and basic payer info but not your full card details. Stripe may set cookies on your device to enable the payment process and for fraud prevention (such as __stripe_mid and __stripe_sid cookies) . Stripe is a PCI-DSS compliant payment processor. Your payment data is transmitted securely and handled according to Stripe’s privacy policy. Cloudflare (Security): Our site (and some embedded services like Calendly) may use Cloudflare for DNS and security. Cloudflare may set certain necessary cookies (like __cf_bm or __cfruid) to distinguish legitimate users from bots and to speed up page load times . These cookies are essential for network security and do not collect personal data beyond technical identifiers. Other IT Vendors: We may use other software or services for managing practice records (e.g. secure cloud storage for case files, accounting software for billing). Any such providers are vetted for GDPR compliance and will only process data under our instructions. Regulatory and Legal Obligations: We might disclose personal data to third parties if required to do so by law or regulatory rules. For example, we may need to provide information to the Bar Standards Board (BSB) (which regulates barristers) if they request details for regulatory oversight, or to the Information Commissioner’s Office (ICO) if you lodge a data protection complaint. Similarly, if a court issues a warrant or order for disclosure, we may be compelled to provide information to law enforcement or other authorities. We will only share the minimum data necessary in such cases and only when properly authorized. Legal Ombudsman: If you make a complaint about our services that cannot be resolved internally and you escalate it to the Legal Ombudsman, we may share information from your case file with the Ombudsman’s office in the context of resolving the complaint. The Legal Ombudsman may publish decision data (while typically anonymizing client identities) as part of their transparency measures . Consent: In any situation where you have given us specific consent to share data with a third party, we will honor that consent. For example, if you ask us to refer you to another lawyer or to work in collaboration with another firm, we will share information as per your instructions.
We ensure that any third-party recipients (such as our service providers) are subject to appropriate data protection obligations. We do not allow any third-party service providers to use your personal data for their own marketing or other purposes not related to providing services to us and to you.
Data Retention – How Long We Keep Your Data
We will retain personal data only for as long as necessary to fulfill the purposes we collected it for, including for satisfying any legal, accounting, or regulatory requirements. Retention periods will vary depending on the type of data and the context of collection:
General Enquiries (no ongoing instruction): If you contact us with an enquiry but do not ultimately engage our legal services, we will retain the correspondence and any information you provided for a limited period. Typically, we keep such enquiry data for up to 12 months from the date of last communication, in case you decide to proceed later or have follow-up questions. After that, we will delete or anonymize the data, unless we are required to retain it longer (for example, if needed for defending against potential legal claims or to check for conflicts in the future). Client Files (Case Data): If you become a client, your case file and personal data within it will be retained for a period necessary for our professional record-keeping. In line with common practice and BSB guidance, we normally retain client case files for 6 years after the matter is concluded (or from the end of our representation) – this is to ensure we have records in case of follow-up queries, appeals, complaints, or legal obligations (e.g. tax or accounting records, which must be kept for at least 6 years). In some instances, we may keep files longer than 6 years if the limitation period for potential legal actions is longer or if the client is a minor (in which case the period would extend until after they reach adulthood), or if there are specific reasons to retain (such as an ongoing investigation or express request by the client). After the retention period, files will be securely destroyed. Important original documents that belong to you will be returned to you at the end of a case if not already. Financial Records: Invoices, payment records, and related financial documents will be kept for at least 6 years in accordance with tax law and accounting requirements. These may contain personal data (names, addresses on invoices, etc.). Analytics Data: Data collected via Google Analytics and similar tools is retained according to the settings in those tools. We currently retain Google Analytics data for 14 months (the default period) before it is automatically deleted by Google, although we primarily look at aggregated data. Individual cookie identifiers may persist on your browser for up to 2 years (unless you clear them sooner), but we do not have access to personally identify you from them. See Cookie Policy for cookie lifespans. Calendly Scheduling Records: If you schedule a meeting via Calendly, the appointment data may be stored in our Calendly account and synced to our calendar. We typically keep those records for our reference until the meeting has occurred, and for some period after (for example, we may keep a history of scheduled consultations for a year or two). Calendly may also send reminders which we do not retain beyond the scheduling need. Email Communications: Emails and electronic correspondence are generally archived and stored for 6 years or more as part of our client files or business records, similar to physical files. We regularly review stored emails and delete those that are no longer needed. If you simply made an inquiry and did not engage us, your email may be deleted sooner (as noted above, around 12 months). Legal Requirements & Disputes: If any data is needed beyond the standard retention period for legal reasons – for example, if a dispute, complaint, or investigation is ongoing – we will retain the data as long as necessary to resolve the issue. Also, if we are under a duty to preserve data (due to a court order or legal hold), we will do so. Website Logs: Our webserver and security services (like Cloudflare) may keep logs of IP addresses and visits for a short period (often 7 to 30 days) for cybersecurity purposes. These logs are typically auto-purged on a rolling basis unless an issue is detected that requires investigation.
After the applicable retention period has expired, we will securely erase or anonymize your personal data. For example, paper records will be cross-shredded, and electronic files will be permanently deleted. Anonymizing data means we may keep some information that no longer identifies you (e.g. purely statistical data about how many cases of a certain type we handled in a year, stripped of personal identifiers). This allows us to maintain practice statistics without retaining personal details.
Your Rights Under UK GDPR
As an individual, you have several rights concerning your personal data held by us, under the UK GDPR and the Data Protection Act 2018. These include :
Right of Access: You have the right to request a copy of the personal data we hold about you, and to obtain information about how we process it (commonly known as a “Subject Access Request”). Right to Rectification: If any personal data we hold about you is inaccurate or outdated, you have the right to request that we correct it. This includes completing any incomplete data we have on file. Right to Erasure: You have the right to request that we erase your personal data in certain circumstances – for example, if the data is no longer necessary for the purposes it was collected, or if you withdraw consent and no other legal basis for processing applies, or if you believe we are processing your data unlawfully. This is sometimes called the “right to be forgotten”. Please note that this right is not absolute – we may need to retain certain information to comply with legal obligations or for the establishment or defense of legal claims. But we will assess and comply with such requests to the fullest extent required by law. Right to Restrict Processing: You have the right to ask us to restrict (pause) the processing of your personal data in certain situations. For example, if you contest the accuracy of the data, you can request restriction while we verify the information; or if you have objected to our processing (see below) and we are considering that objection. During a period of restriction, we will store your data securely and not use it (except to the extent allowed by you or required for legal reasons). Right to Object: You have the right to object to our processing of your personal data where we are relying on legitimate interests as the legal basis (or performing a task in the public interest/exercise of official authority). If you object, we must stop processing your data unless we can demonstrate compelling legitimate grounds that override your rights or if processing is needed for legal claims. You also have an absolute right to object to any direct marketing (though we do not engage in direct marketing with your data). Right to Withdraw Consent: Where we are processing your personal data based on your consent (for example, for optional cookies or if you gave consent for a particular use of your data), you have the right to withdraw that consent at any time. If you withdraw consent, we will cease the processing that was based on consent. (Note: withdrawal of consent will not affect the lawfulness of any processing done before you withdrew, and it may not affect processing under other bases such as contract or legal obligation.) For example, you can withdraw your consent to analytics cookies by adjusting your cookie settings on our site (see Cookie Policy). Right to Data Portability: For data that you provided to us and which we process by automated means under consent or contract (for instance, if you had filled out an online form that we store in a database), you have the right to request that we provide that data to you in a structured, commonly used and machine-readable format, or to transmit it directly to another controller where technically feasible. (This right likely has limited application in our context, but we mention it for completeness.) Right to Lodge a Complaint: If you have a concern about how we are handling your personal data, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO), which is the UK supervisory authority for data protection . We would, however, appreciate the chance to deal with your concerns before you approach the ICO, so please do contact us first if possible. You can contact the ICO at 0303 123 1113 or via their website (ico.org.uk) or by writing to: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF .
To exercise any of your rights, please reach out to us using the contact information below. We may need to verify your identity before fulfilling your request (to ensure we don’t disclose data to the wrong person). We will respond to your requests within one month as required by law, and free of charge unless the requests are manifestly unfounded or excessive (in which case we may charge a reasonable fee or refuse the request, but we will explain our reasoning).
Cookies and Tracking Technologies
Our website uses cookies and similar technologies to function effectively and to collect analytics data. For detailed information on the cookies we use and your choices, please see our Cookie Policy (below). In summary, non-essential cookies (like analytics or Calendly cookies) will only be set if you provide consent via the cookie banner. You can change your preferences at any time. Essential cookies (needed for security or basic functionality) are used based on legitimate interest/necessity and do not require consent.
Some of the data collected via cookies or embedded third-party tools (like Google Analytics and Calendly) may be considered personal data (e.g. IP addresses, unique IDs in cookies). We include details about these in the Cookie Policy and, where required, obtain your consent before using them.
Data Security
We take the security of your personal data seriously. Appropriate technical and organizational measures are in place to prevent unauthorized access, loss, or alteration of your information. These measures include encryption, secure servers, access controls, and staff training on confidentiality. For example, our website is encrypted via HTTPS, and any sensitive data we hold is stored on secure systems with restricted access. While we will do our best to protect your data, no method of transmission over the internet or electronic storage is 100% secure; thus, we cannot guarantee absolute security. However, we follow industry best practices and our professional obligations (including the Bar’s confidentiality rules) to keep your information safe.
If we become aware of a data breach that affects your personal data, we will notify you and the ICO as required by law.
International Data Transfers
Our primary operations are in the UK. However, some of our third-party service providers (Google, Calendly, Stripe, WordPress.com, etc.) may process data on servers located outside the UK (for example, in the EU or the United States). Whenever your personal data is transferred outside of the UK/EEA, we will ensure that adequate safeguards are in place, such as the recipient being in a country approved by the UK as providing an equivalent level of data protection, or using standard contractual clauses and additional security measures as appropriate. For instance, Google Analytics and Calendly are covered by standard data protection clauses to lawfully transfer data from the UK/EU to the US, and Stripe’s European affiliate handles UK transactions with data protections in place.
By using our site or engaging our services, you understand that your data may be processed in countries outside the UK. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy.
Contact Information
Data Controller: Mark Lorrell (Barrister at Millennium Chambers).
Business Address: Millennium Chambers, 3 Paper Buildings, Temple, London EC4Y 7EU, United Kingdom.
Email: marklorrell@millenniumchambers.com (for general inquiries and data protection matters).
Phone: (Please refer to the Contact page for current telephone numbers of the clerks at Millennium Chambers who manage Mark Lorrell’s practice).
If you have any questions about this Privacy Policy, or if you wish to exercise any of your data protection rights, please contact Mark Lorrell at the email or postal address above. We will be happy to assist you.
Complaints: As noted above, you have the right to lodge a complaint with the Information Commissioner’s Office (ICO) if you believe your data has been mishandled. The ICO’s website is http://www.ico.org.uk. We welcome the opportunity to address any concerns directly, so please feel free to reach out to us first.
Updates to this Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or for other operational reasons. When we make changes, we will revise the “last updated” date at the bottom of this policy. For significant changes, we may also provide a more prominent notice (such as a banner on the website or direct notification via email if appropriate). We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.
Last updated: December 15, 2025.
Cookie Policy
Introduction
This Cookie Policy explains what cookies are, which cookies we use on marklorrell.co.uk, and why we use them. It also provides information on how you can manage your cookie preferences. When you first visit our site, you will be shown a cookie consent banner giving you the choice to accept or reject non-essential cookies (analytics and third-party cookies). You can change your preferences at any time by using our cookie settings tool or by adjusting your browser settings.
By using our site with cookies enabled in your browser (and, where required, by consenting via our banner), you agree to the use of cookies as described in this policy. For further details on how we handle personal data (including data collected via cookies), please see our Privacy Policy above.
What Are Cookies?
Cookies are small text files that are placed on your device (computer, smartphone, etc.) when you load a website. They allow the website to recognize your device and store certain information about your preferences or past actions. Cookies can serve many purposes: some cookies are essential for site functionality (for example, to remember your login or items in a shopping cart), while others provide analytics about site usage or are used for advertising. Cookies set by the website owner (in this case, marklorrell.co.uk) are called “first-party cookies”. Cookies set by external domains or services are called “third-party cookies”.
We use both first-party and third-party cookies on this site for various functions. In general, the cookies used on our site can be categorized as follows:
Necessary Cookies: These are essential for the operation of our website. Without these cookies, certain services or features (such as security measures or form submissions) may not function properly. Necessary cookies do not require user consent under applicable law, but we still want you to know about them. Functional Cookies: These enable enhanced functionality and personalization, such as remembering your preferences (e.g. your cookie settings or other choices) and facilitating certain interactive features. They are not strictly necessary, but they improve your experience. We may set them to remember your inputs or settings. Analytics/Performance Cookies: These cookies help us understand how visitors interact with our site by collecting and reporting information anonymously. They allow us to count visits and traffic sources so we can measure and improve the performance of our site. Data collected might include which pages are most visited, how long users stay, and if users encounter errors. We use Google Analytics for this purpose. These cookies will only be set with your consent. Third-Party Cookies: Our site integrates some third-party services (such as Google Analytics, Calendly scheduling, and Stripe payments). These services may set their own cookies through our site. These could fall under the categories above (e.g. Stripe’s cookies are necessary for payment functionality, Calendly’s cookies might be functional or necessary for scheduling, etc.). Third-party cookies are controlled by the external services, and we’ll describe the ones we use below.
Below is a list of specific cookies that may be set when you use our site, along with their purpose and duration. Please note that the cookies used may change over time as we update our services, but we will endeavor to keep this list current.
Cookies We Use
1. Necessary Cookies (Essential for Website Functionality):
CookieConsent – Purpose: Remembers your choice regarding cookies (whether you have consented or not to each category of cookies). This prevents the cookie banner from popping up every time and ensures your preferences are honored . Duration: 1 year (persistent). __cf_bm – Purpose: A security cookie set by Cloudflare as part of their bot management service. It helps distinguish between human users and bots to protect the website from malicious attacks (e.g. it may apply to embedded Calendly widget as well) . It does not collect personal info beyond a random identifier. Duration: 30 minutes to 1 hour (session cookie, auto-expiring). __cfruid – Purpose: Another Cloudflare technical cookie, set when our site (or Calendly embed) is using Cloudflare’s services. It is used for routing and traffic distribution, and to identify trusted web traffic . Duration: Session (it disappears when you close your browser). __stripe_mid – Purpose: A Stripe cookie used when processing payments on the site. It is necessary for facilitating credit card transactions and fraud prevention . For example, if you make a payment via Stripe, this cookie helps Stripe remember your device between requests. Duration: 1 year (persistent). __stripe_sid – Purpose: Another Stripe cookie for payment processing and fraud prevention . It’s a session identifier for Stripe’s use. Duration: 30 minutes (persistent for half an hour). _calendly_session – Purpose: Set by Calendly’s scheduling widget to enable the scheduling process. If you consent to functional cookies and use our embedded Calendly scheduler, this cookie allows the site to remember your booking details as you navigate and can enable adding events to your calendar . It helps maintain your session when booking an appointment. Duration: 21 days (persistent). XSRF-TOKEN / csrftoken (or similar) – Purpose: We may use a token to prevent cross-site request forgery in forms. This cookie (if present) is used by our website platform to ensure that form submissions (like contact forms) are genuine and protect against CSRF attacks. Duration: Session or short-term (to cover the form interaction). wordpress_logged_in_* and wordpress_sec_* – Purpose: These are set by the WordPress platform if you log in (for example, if the site owner or an admin logs into the site). Regular visitors will not have these cookies. They maintain the login session for a user in the WordPress backend. Duration: Session (for logged in session) and a shorter expiry for security. (Not applicable to most users). elementor – Purpose: This cookie is used by our website’s WordPress theme or page builder to enable content editing in real-time . It does not affect end-users, only relevant in site administration context. Duration: Persistent.
Note: The necessary cookies are deployed to ensure basic operations like security, network management, and accessibility. They do not store personally identifiable information (except potentially IP addresses or unique IDs necessary for their function, which are not used to track you elsewhere).
2. Functional Cookies:
These cookies enable additional functionality or remember choices you make to improve your experience.
Calendly functional cookies: When you use the Calendly scheduling integration on our site, Calendly may set certain cookies (in addition to _calendly_session mentioned above) to remember your inputs and preferences during the scheduling process. For example, Calendly might use cookies to recall the data you entered if you refresh the page, or to maintain your logged-in status if you have a Calendly account. These cookies are only set if you interact with the scheduling feature. Names & Duration: Calendly’s main cookie is _calendly_session (21 days) as noted. Additionally, Calendly might utilize Cloudflare cookies (__cf_bm, __cfruid) as listed under necessary, and possibly cookies like _cfuvid to maintain session consistency . Any Calendly-related cookies will typically expire after the session or short periods (the main one lasting 21 days as noted). Preferred Settings: We currently do not have many other preference cookies (for example, language or theme selection) because our site is relatively simple. If in the future we add features like remembering your accessibility settings or other preferences, those cookies would be listed here. (At present, aside from Calendly, most user-specific settings are handled via the CookieConsent cookie and necessary security cookies as described.)
3. Analytics/Performance Cookies:
We use Google Analytics to collect information about how visitors use our website, which helps us improve it. Google Analytics sets the following cookies (only if you opt-in to analytics cookies via our banner):
_ga – Purpose: Google Analytics main cookie, used to distinguish unique users by assigning a random unique ID. This cookie keeps track of returning visitors and is used to calculate visitor, session, and campaign data for site analytics reports . Duration: 2 years (persistent). _gid – Purpose: Another Google Analytics cookie, used to distinguish users on a daily basis. It stores a unique user session ID and groups the user’s activity within a 24-hour period. Duration: 24 hours (persistent). _gat (or _gat_UA-*) – Purpose: Google Analytics throttle request rate. This cookie does not store user data; it is used to limit the amount of data collected on high-traffic sites. Duration: 1 minute. ga – Purpose: If we are using Google Analytics 4, this cookie might appear (it combines with _ga to store and count pageviews). It similarly lasts up to 2 years. GA Tracking (Third-Party): Google Analytics might also use some third-party domains or local storage for certain features (like Google’s analytics may use localStorage for performance). However, no personal information is stored in these – they are just to ensure the analytics function properly.
The information these analytics cookies collect is aggregated and anonymous. We do not obtain personally identifying information via Google Analytics. For instance, _ga cookies might track that a user visited Page A then Page B, but it does not tell us the user’s name or exact identity. These cookies help us understand metrics like number of visitors, which pages are popular, what sources bring traffic, and so on . We use this data purely to improve our site content and performance. Google Analytics data may be processed on Google’s servers in the United States (with appropriate safeguards as mentioned in our Privacy Policy).
If you choose not to allow these analytics cookies, your site experience won’t be impacted (the site will still function), and your visits will not be included in our statistics. There is no impact on the services we provide; it simply means we have less data on site usage.
4. Third-Party Cookies (Summary):
Many of the cookies above are actually set by third-party domains because of the services we use. For transparency, here is a summary of third-party cookie involvement on our site:
Google (Analytics): Sets cookies like _ga, _gid (as first-party cookies on our domain) and processes data on Google’s servers. Google’s privacy policy and opt-out options can be found on Google’s site. You can opt out of Google Analytics by refusing cookies or by using the Google Analytics Opt-Out Browser Add-on . Calendly: When the scheduling widget is loaded, it might set cookies under calendly.com domain (such as _calendly_session). Also, via Calendly’s integration, Cloudflare cookies (__cf_bm, __cfruid) and Stripe cookies (__stripe_mid, __stripe_sid) might be set under Calendly’s domain or related subdomains . These cookies facilitate scheduling and any payment processing through Calendly. Calendly automatically presents its own cookie consent to EU/UK users for the embedded scheduling page ; if you decline, Calendly will not store persistent cookies (which might limit certain features like calendar integration). Stripe: When making a payment or if Stripe elements are present, Stripe may set cookies on its domain .stripe.com or via our domain for fraud prevention and session management (__stripe_mid, __stripe_sid as listed). Stripe’s cookies are considered necessary for the secure operation of payment, thus they might run even without explicit “analytics” consent (since they are categorized as essential security cookies to prevent fraudulent transactions) . Stripe’s Privacy Center details their cookie usage . WordPress.com / Automattic: Since our site is hosted on WordPress.com, Automattic might set cookies for their stats or functionality (for example, tk_ai or wp_lang for site functionality, or wordpress_* cookies for logged-in sessions as mentioned). If any Automattic/WordPress analytics (Jetpack) are active, they might set cookies, but currently we primarily rely on Google Analytics. Automattic’s cookie policy covers their usage. Any such cookies will either fall under necessary (for site function) or be disabled if not needed. We do not use advertising or marketing cookies on our site. You will not receive third-party advertising cookies (like tracking pixels for ads) through our site. We have no ads or social media pixels embedded. All third-party cookies in use are for the functional reasons stated (analytics, scheduling, payments, security).
Please note that third-party providers have their own privacy policies and cookie notices. We encourage you to review those for more information: for instance, see [Calendly’s Privacy Policy] and [Stripe’s Cookie Policy] for details on their handling of data.
Cookie Consent Banner & Your Choices
Consent Banner: On your first visit to our site (and periodically thereafter, or whenever we add new cookies), you will see a cookie consent banner. This banner will inform you about the categories of cookies we use and ask for your consent for non-essential cookies. It provides an “Accept” option (to consent to all non-essential cookies), a “Reject” or “Only Necessary” option (to decline those cookies), and a “Preferences” or “Settings” option where you can choose which categories to allow. We operate on an opt-in basis for analytics and functional cookies – meaning those cookies will not be set unless you actively consent via the banner. The text of our cookie banner is along the lines of:
“This website uses cookies to enhance your browsing experience and to integrate with third-party services (such as analytics and scheduling tools). We will not set non-essential cookies unless you enable them. You can accept all cookies, reject non-essential cookies, or customize your preferences. [Accept All] [Reject] [Manage Preferences]”
By clicking “Accept All”, you agree to our use of all cookies described above (except strictly necessary ones which are always active). If you click “Reject” or ignore the banner, we will default to not setting any non-essential cookies – meaning only the strictly necessary cookies will run. You are free to adjust these choices at any time.
Managing Preferences: If you want to change your cookie settings after your initial choice, you can do so by clicking the “Cookie Settings” link (or similarly named link) available in the footer of our website (if provided), or by clearing cookies in your browser to trigger the consent banner again on refresh. Our cookie management tool (if enabled) will allow you to toggle categories on or off and save your new preferences.
Using Browser Settings: In addition to using our banner, you have the ability to control cookies through your web browser settings. Most browsers allow you to view, delete, and block cookies. For example, you can usually find cookie settings in the “Options” or “Preferences” menu of your browser. You can set your browser to reject all cookies, or to only accept cookies from specific websites. You can also delete any cookies that have already been set. Please be aware that if you block all cookies (including necessary cookies) via your browser, some parts of our site might not function properly (for instance, you might not be able to use the scheduling form or the site may not remember your cookie choices).
For more information on how to manage cookies in popular browsers:
Chrome: Settings > Privacy and Security > Cookies and other site data. Firefox: Options > Privacy & Security > Cookies and Site Data. Safari: Preferences > Privacy > Manage Website Data. Edge: Settings > Cookies and site permissions. (Refer to your browser’s help documentation for exact instructions).
Do Not Track: Our site does not currently respond to “Do Not Track” signals. If you have DNT enabled, we still ask for cookie consent via our banner as described. It’s recommended to use the cookie consent tools to explicitly opt out of analytics if you do not want tracking.
Changes to This Cookie Policy
We may update this Cookie Policy to reflect changes in the cookies we use or to adhere to legal requirements. When we make changes, we will update the “last updated” date below. Significant changes may be communicated via the site (for example, through the cookie banner or a notice on the website). We encourage you to review this Cookie Policy periodically for the latest information on our cookie practices.
Last updated: December 15, 2025.
If you have any questions about our use of cookies or your choices, please contact us (see the Privacy Policy contact information). We will be happy to assist you.
Terms and Conditions / Legal Disclaimer
Introduction and Acceptance of Terms
Welcome to marklorrell.co.uk. This website is operated by Mark Lorrell, who is a barrister in England and Wales practising at Millennium Chambers in London. By accessing or using this website, you acknowledge that you have read and agree to these Terms and Conditions of use. If you do not agree with any part of these terms, you should refrain from using the website.
These Terms govern your use of the site; they are not the terms under which legal services are provided (see the Engagement of Services section below for information on that). The content on this site is provided for general information purposes only. Mark Lorrell is regulated by the Bar Standards Board and holds a current practising certificate as a self-employed barrister. He is authorized to provide legal services directly to the public (Public Access), meaning individuals and businesses can instruct him without a solicitor if their case is suitable. You can find Mark Lorrell’s profile on the BSB Barristers’ Register (an official register of barristers with details of their status) . This site also provides information required by the BSB’s transparency rules, such as the scope of services offered, and how you can request a quote for legal work.
By using this site, you confirm that you accept these terms. We may update the terms from time to time (especially to reflect changes in law or regulatory guidance), so please check this page periodically. The date of the latest revision is given at the end of the document.
Professional and Regulatory Information
Barrister Status: Mark Lorrell was called to the Bar of England & Wales (Year of Call: 1999) and is a practising barrister, currently a member of Millennium Chambers (London). He is registered and regulated by the Bar Standards Board (BSB) . As a regulated barrister, he abides by the BSB Handbook and Code of Conduct. Mark Lorrell holds a valid practising certificate, which is renewed annually through the Bar Standards Board.
Practising Certificate and Insurance: As required for all practising barristers, Mark Lorrell has professional indemnity insurance provided by the Bar Mutual Indemnity Fund. The details of this insurance (including territorial coverage) can be provided on request. Holding a practising certificate means he is authorized to provide the full range of barrister services (including advocacy and legal advice) to clients.
Public Access Accreditation: Mark Lorrell is Public Access accredited, which means members of the public can instruct him directly in appropriate cases without a solicitor. If you are a lay client seeking to instruct Mark directly, please be aware that Public Access rules apply. We recommend that you read the [BSB’s Public Access Guidance for Lay Clients] , which explains how Public Access works and what you can expect when dealing directly with a barrister. A link to this guidance is provided prominently on our site in compliance with BSB transparency requirements.
“Regulated by the Bar Standards Board”: In accordance with BSB rules, the homepage of this website clearly states that Mark Lorrell is regulated by the Bar Standards Board . This regulatory statement signifies to clients that the services provided are subject to oversight and standards set by the BSB. Additionally, all information on this site is reviewed periodically (at least annually) to ensure accuracy and compliance with the BSB’s transparency rules .
Areas of Practice & Services: Mark Lorrell’s main practice areas include civil fraud, cryptocurrency litigation, insolvency, and property litigation (Chancery/commercial matters). Common services offered are advocacy (court representation), advisory work (legal opinions, consultations), drafting of legal documents, and related legal services in these areas. Typical factors that can affect case timescales include the complexity of the matter, court schedules, the amount of evidence to review, and the actions of other parties – these are outlined on the site to help clients set expectations . We also indicate the pricing models typically used (for example, hourly rates for advisory work or fixed fees for certain hearings) in line with transparency obligations . For a personalized quote, you may contact Mark or his clerks with details of your case – if sufficient information is provided, you can request a quotation for legal services, which will be given in clear terms within a reasonable time .
Complaints and Redress: Mark Lorrell aims to provide a high-quality service. However, if you are dissatisfied, there is a formal complaints procedure. In the first instance, you can raise any complaint with Mark or directly with his clerks at Millennium Chambers. We will provide you with a copy of the Chambers’ Complaints Procedure (which is also available via the Millennium Chambers website) . If a complaint is not resolved to your satisfaction, you have the right to refer it to the Legal Ombudsman. We provide a link on this site to the Legal Ombudsman’s decision data, in compliance with BSB transparency rules . Note that the Legal Ombudsman typically expects you to try to resolve the complaint with the barrister first and has time limits for accepting complaints (usually within 6 years of the issue, or 3 years from when you should reasonably have known about it, and within 6 months of our final response to you). Further details will be given in our client care letter if you formally instruct Mark. Also, the BSB can consider certain types of serious misconduct complaints.
Regulatory Contact: The Bar Standards Board’s contact information is available on their official site (www.barstandardsboard.org.uk). Regulated barristers like Mark Lorrell appear on the BSB’s online Register along with any record of disciplinary findings. (Mark Lorrell has no current disciplinary findings affecting his practice – if he had, these would be disclosed as required.)
Use of Website – Disclaimer of Liability
This website and its contents are provided for general informational purposes only. No legal advice: Nothing on this site (including blog articles, FAQs, or resources) should be taken as legal advice for your specific situation. Although Mark Lorrell is a qualified barrister, the content here is intended to be general commentary. If you have a legal issue, you should seek a personalized consultation for advice tailored to your circumstances. Do not rely solely on the information on this website when making decisions about a legal matter; always consult directly with a qualified lawyer for advice.
No Guarantee of Accuracy or Currency: We strive to keep the information on this site accurate and up-to-date, but we cannot guarantee that all content is current or free from errors. Law and procedure can change, and while we may update articles from time to time, some posts might become out-of-date. The website is provided “as is” and no assurances are made regarding its accuracy, completeness, or availability . Mark Lorrell disclaims all liability for any errors or omissions in the content. You should not act (or refrain from acting) based on anything on this site without first obtaining professional advice.
Limitation of Liability: To the fullest extent permitted by law, Mark Lorrell shall not be liable for any loss or damage arising out of or in connection with your use of this website or reliance on its content. This includes, without limitation, any direct, indirect, incidental, or consequential losses, loss of profits, business interruption, loss of data, or damage to your computer systems. We do not exclude liability for death or personal injury caused by negligence, or for any other liability which cannot be excluded or limited under law. However, in the context of using this informational website, there is no scenario where such extreme liabilities should arise. By using the site, you acknowledge that using information from a general website is at your own risk.
No Warranty: We make no warranty that the website will be available uninterrupted or error-free, that defects will be corrected, or that the site or server is free of viruses or bugs. While we employ security measures (see Privacy Policy), you should use your own virus protection software. We are not responsible for technical issues that may temporarily make the site unavailable.
Third-Party Links: This website may contain links to external websites or resources for your convenience (for example, links to news articles, legal resources, Millennium Chambers site, Bar Standards Board, Legal Ombudsman, etc.). These third-party links are provided for information only; we do not have control over the content or availability of those sites. No endorsement or responsibility: A link to an external site does not signify endorsement of the site or its contents. We are not responsible for the content of any linked websites and accept no liability for any loss or damage that may arise from your use of them. We recommend you review the terms and privacy policies of any third-party sites you visit.
User Conduct: When using our site, you agree to do so lawfully and respectfully. You must not attempt to compromise the site’s security or functionality. You also agree not to use any contact information or forms on the site to send unsolicited marketing or spam. Any improper use (such as attempting to hack the site, or sending abusive or harassing messages) is strictly prohibited. We reserve the right to restrict or block any user’s access to the site if we suspect misuse.
No Lawyer-Client Relationship
Use of this website or communication through it (such as sending an email or filling out a contact form) does not in itself create a barrister–client relationship between you and Mark Lorrell. A client relationship with a barrister is only formed when Mark Lorrell has expressly agreed to take on your case and terms of engagement have been agreed (usually through a client care letter or contract signed by both you and the barrister/Chambers). Until you receive a written confirmation of instruction from Mark or his clerks, any information you provide through the site or via email is not subject to barrister–client privilege (though we will keep it confidential as a matter of course).
No Obligation to Accept Instructions: Please be aware that by contacting us with an enquiry, while we will endeavor to assist you, Mark Lorrell is not obligated to accept every case or inquiry. There may be various reasons (such as availability, conflict of interest, the matter not falling within his expertise, or professional rules) that prevent acceptance of instructions. There is no guarantee that we will be able to take on your matter. We reserve the right to decline any instruction or inquiry at our discretion. In such cases, we will usually inform you promptly and may, where appropriate, direct you to alternative resources (for example, suggesting you contact the Bar Council’s Direct Access Portal or another lawyer). As stated in similar terms by a related service, “there are no guarantees and no assurances that we will be able to assist you or have an available barrister” .
If you contact us via email, phone, or form, we will do our best to respond and help, but if you do not receive a response or if we inform you that we cannot assist, please do not take offense – it may simply be due to other commitments or constraints. There is no obligation on our part to provide services until a formal agreement is in place . Similarly, you are under no obligation to use our services unless and until you have formally instructed Mark and agreed on terms.
Engagement of Services and Terms of Business
Should you wish to engage Mark Lorrell as your barrister, this will be handled either through Millennium Chambers’ clerking team or via a formal public access arrangement. Any agreement for legal services will be subject to a separate contract or terms of engagement, which will be provided to you and must be agreed upon. Typically:
For solicitors or other professional clients instructing Mark Lorrell: The Standard Contractual Terms for the Supply of Legal Services by Barristers to Authorised Persons 2020 (Bar Council Terms) will generally apply, unless otherwise agreed . These are standard terms recommended by the Bar of England & Wales. We can also accept instructions on other industry-standard terms if agreed (for example, COMBAR/CLLS terms for certain commercial cases) . Such terms will be negotiated through correspondence with the instructing solicitors. For lay clients (public access clients) instructing Mark directly: You will receive a Client Care Letter outlining the terms and conditions of the engagement, including the scope of work, fees, and other important information such as the right to complain. You will usually need to sign and return a copy of that letter (or otherwise indicate agreement) to formally confirm the instruction. The client care letter will incorporate either Chambers’ standard terms or the Bar Standards Board’s model terms for public access, ensuring you have clarity on the arrangement.
Referral to Millennium Chambers Terms: For comprehensive details of the terms under which Mark provides his services, you can refer to the [Terms of Business on the Millennium Chambers website] or contact the clerks at Millennium Chambers. The Chambers Terms of Business page outlines how instructions are accepted and mentions the Bar Council Standard Terms that apply post-2013. Essentially, any legal services provided by Mark Lorrell will be carried out in accordance with those professional terms of business. The terms cover aspects such as fees, billing, liability, confidentiality, and intellectual property in work product, among others. When you engage Mark, you will have an opportunity to review these terms (either via the Chambers website or provided directly) before finalizing the instruction.
No Contract via Website Use: Please note, using this website does not constitute entering into a contract for legal services. Only a formal confirmation from Mark/Chambers can do that. Until such confirmation, any information on fees or availability is indicative only and not binding.
Intellectual Property
Unless otherwise stated, the content on this website (text, graphics, logo, blog articles, etc.) is the intellectual property of Mark Lorrell or is used under appropriate license. You may view and read the content for your personal use. You are not permitted to reproduce, distribute, modify, or republish any material from this site without explicit permission, except as allowed under applicable law (such as fair dealing for the purpose of quotation with appropriate attribution). If you wish to quote or reference blog content or articles authored by Mark Lorrell, please attribute the source. For online citations, we kindly request that you provide a link back to the original content on this site. All trademarks, trade names, and logos displayed are the property of their respective owners and are used on this site for identification purposes only.
Communication and Notices
When you use the contact form or email addresses provided on this site, you are responsible for ensuring that the information you submit is correct and that you have the right to submit it. While we maintain confidentiality for enquiries, do not send highly sensitive personal information through unsecured forms; initial contact should be kept to general information, and more secure methods can be used once a barrister-client relationship is established.
If we need to notify you regarding these Terms or any other aspect of site use, we may do so by posting a notice on the website or contacting you via any contact information you have provided.
No Acceptance of Service: Important: We do not accept service of legal proceedings or other formal notices through this website or by email, unless explicitly agreed in advance. For the avoidance of doubt, this means you should not send court documents, claim forms, or formal notices to our email or via the contact form expecting they have been legally served. Service of any court documents or legal notices must be done in accordance with the Civil Procedure Rules or other relevant rules, typically to a specified address (usually the Chambers postal address) and with explicit agreement. Any attempt to serve documents via electronic means without prior permission will not be considered valid. As stated by a related service: “We only accept legal service at our postal address in the Temple. We do not accept service via email or our contact form” . This is to ensure proper handling of important legal documents.
Limitation of Use
You agree that you will not use the website in any way that is unlawful or damages its operation or content. This includes, but is not limited to, refraining from: introducing viruses or other harmful material, attempting to gain unauthorized access to the server or backend, or using the site to harass, defraud, or deceive others. If you breach these terms, your right to use our site may be terminated immediately and we reserve the right to take any appropriate legal action.
Governing Law and Jurisdiction
These Terms and Conditions, as well as any dispute or claim arising out of website use or related to the website (including non-contractual disputes or claims), are governed by and construed in accordance with the laws of England and Wales. By using the site, you agree that the courts of England and Wales shall have exclusive jurisdiction to settle any dispute or claim that arises out of or in connection with these Terms or your use of the website.
However, if you are a client and have entered into a contract for legal services, any dispute about that contract would be dealt with under the terms specified in the client care letter or contract (which may include different dispute resolution mechanisms, such as arbitration, or involvement of the Legal Ombudsman for service complaints).
Miscellaneous
If any provision of these website terms is found to be invalid or unenforceable by a court of competent jurisdiction, that will not affect the validity of the remaining provisions, which will remain in full force and effect. Any failure by us to enforce a right or provision under these Terms does not constitute a waiver of that right or provision.
These Terms (together with our Privacy Policy and Cookie Policy) constitute the entire agreement between you and us regarding the use of the website, and supersede any prior agreements or understandings relating to website use.
Contact Details
This website is owned and operated by Mark Lorrell, Barrister. If you have any questions about these Terms and Conditions, you may contact us at:
Email: marklorrell@millenniumchambers.com Postal Address: Mark Lorrell – Chambers of Simon Farrell KC, Millennium Chambers, 3 Paper Buildings, Temple, London EC4Y 7EU, UK. Clerks’ Office Phone: (As listed on the Contact page or on Millennium Chambers’ site) – available Monday to Friday, 9am to 6pm.
Please note, the above contact details are for general enquiries regarding the site or initial enquiries for legal services. For formal engagement, the client care letter will provide specific contact details for case-related communication (including designated emails or phone numbers for Mark and his clerks).
Last updated: December 15, 2025
By continuing to use the site, you indicate your acceptance of these terms. Thank you for visiting marklorrell.co.uk.