Effective Date: February 16, 2026
Because getting injured is hard, getting legal help doesn’t have to be. This Privacy Policy explains how Pain Injury Law, a d/b/a of Pena Persaud Law PLLC (“Firm,” “we,” “us,” or “our”), collects, uses, protects, and discloses information when you visit our public-facing marketing website (www.paininjurylaw.com), use our secure digital client portal (the “Command Center”), or interact with our associated communications, advertising, and software infrastructure (collectively, the “Platform”).
By accessing or using the Platform, you acknowledge that you have read, understood, and expressly consent to the data practices described in this Privacy Policy. You acknowledge that using internet-based technology involves inherent risks, and you use the technical aspects of this Platform entirely at your own risk.
1. Information We Collect
We collect information that identifies, relates to, describes, or could reasonably be linked to you (“Personal Data”).
A. Information You Provide Directly to Us
- Identifiers & Contact Data: First and last name, email address, physical address, phone numbers, and government-issued identification (if required for case verification).
- Sensitive Health & Case Data: Highly sensitive information including medical records, imaging (X-Rays/MRIs), accident reports, insurance policy details, and photographs/videos.
- Financial Information: Bank account routing numbers or payment card details strictly for the disbursement of settlement funds or the payment of case expenses.
B. Information Collected Automatically (Tracking & Analytics)
When you interact with our Platform, we and our authorized third-party service providers automatically collect certain telemetry data. We utilize two distinct categories of tracking:
- Marketing & Public Analytics: On our public-facing website, we collect data regarding pages visited, referring URLs, device identifiers, and ad performance.
- Internal Security & Session Telemetry: Inside the secure Command Center portal, we actively track user sessions, page navigation, and IP addresses. By using the Platform, you expressly consent to our use of session-monitoring technologies. This tracking is utilized strictly for security purposes, fraud prevention, and maintaining operational integrity. Third-party vendors utilized for this telemetry act as our authorized data processors and are contractually bound by stringent confidentiality agreements that align with our professional obligations as a law firm.
- Communication Metadata: Through integrations with third-party communication APIs, we log metadata regarding the time, date, and routing of emails, faxes, and SMS messages.
2. Omnichannel Advertising & Data Privacy Compliance
We utilize tracking technologies to operate our Platform and deliver targeted legal marketing.
- Public Tracking Technologies: On our public-facing marketing pages, we deploy cookies, web beacons, and tracking pixels. These are shared with third-party networks, including Social Media Platforms, Search Engines, and Connected TV (CTV) streaming providers.
- Data Privacy Protocols: We implement technical measures designed to prevent third-party advertising tracking scripts from executing within the secure, authenticated Command Center. You acknowledge that the Firm does not control the behavior of third-party browsers, ISPs, or device-level tracking outside our proprietary environment, and we disclaim liability for data collection occurring through channels outside our direct technical control.
- Video Privacy Protection Act (VPPA) Consent: If the VPPA applies, you acknowledge that your separate, affirmative consent for the sharing of video viewing history for analytics and marketing is obtained via the clear and conspicuous Cookie Consent tools and UI mechanisms presented upon your entry to the Platform.
- Opting Out: You can opt out of targeting by interacting with our Cookie Banner or adjusting the privacy settings within your third-party accounts (e.g., Google or Meta). We honor legally recognized browser-based opt-out signals (e.g., Global Privacy Control).
3. How We Use & Disclose Your Information
We use your Personal Data to evaluate potential legal claims, provide representation (if a formal Retainer Agreement is executed), troubleshoot the Command Center software, and process financial transactions.
We do not sell your personal information for monetary compensation. We disclose data strictly to:
- Authorized Service Providers: Secure tech vendors providing infrastructure for the Platform (e.g., E-Signature platforms, Telecommunications APIs, Financial processors).
- Legal & Medical Professionals: Co-counsel, expert witnesses, or medical providers strictly as necessary to prosecute your legal claim, and subject to your authorization.
- Compliance & Legal Obligations: We will only disclose your data to law enforcement or regulatory authorities when compelled by a valid subpoena, court order, or as otherwise strictly mandated or permitted by the New York Rules of Professional Conduct.
- SMS Opt-In Exclusion: Text messaging originator opt-in data and consent will not be shared with any third parties, provided to any agencies, or sold to any affiliates for marketing or promotional purposes.
4. Health Information & Prospective Client Duties (NY Rule 1.18)
Pain Injury Law is a law firm, not a healthcare provider or a “Covered Entity” under the Health Insurance Portability and Accountability Act (HIPAA). However, pursuant to New York Rule of Professional Conduct 1.18, any individual who consults with us is considered a “Prospective Client.” We treat sensitive health and case data uploaded to the Command Center with the strict confidentiality required by the New York State Bar. While we employ commercially reasonable encryption, no system is immune to cyberattacks, and you utilize the digital transmission aspects of the portal at your own risk.
5. Artificial Intelligence (AI) and Automated Processing
We utilize AI to optimize document processing and software efficiency. We do not use AI to make final legal determinations, provide medical diagnoses, or replace the review of a licensed attorney. In accordance with our duty of technological competence, we require our AI infrastructure vendors to execute strict Data Processing Agreements (DPAs) that explicitly prohibit the retention of client data or its use for training public or generalized AI models.
6. Data Retention
We retain your data for as long as necessary to fulfill the purposes outlined in this policy, or as strictly required by New York State Bar data retention rules (generally seven years following case closure), after which your data may be securely destroyed without notice.
7. Children’s Privacy (COPPA)
Our Platform is not directed at children under the age of 18. If you are under 18, you may not use the Command Center or submit information. If you are a parent or guardian representing a minor child in a legal claim, all data must be submitted by the adult guardian. If we discover we have inadvertently collected data directly from a minor without verified adult guardian consent, we will delete it.
8. Contact Us
Pain Injury Law
9052 Desarc Rd, Jamaica, NY 11417
Phone: 718-777-7246