This Policy sets out and explains how your personal data is collected, stored, used or accessed.
Downie & Gadban (“We/us”) is a firm of Solicitors regulated by the Solicitors regulated by the Solicitors Regulation Authority (SRA), registered in England and Wales with Registration number: 48943 and whose office is at Rockbourne House, 100 High Street, Alton, Hampshire GU34 1ER.
For the purposes of the Data Protection Act 1998 we are the Data Controller (a party who determines the purpose and means of the processing of data) and under the General Data Protection Regulation (GDPR). We may also be a Data Processor (a party who processes personal data on behalf of the Data Controller)
This Policy should be read carefully to understand the way in which we deal with your personal data. Upon providing your personal data to us, you are taken to have consented to the process of such data by us as set out in this Policy.
Please note that if you do not agree with the use of your personal data by us, please do not submit such data to us for use on this Website.
2. COLLECTION/USE OF PERSONAL DATA/INFORMATION
What data we collect:-
Your personal data may be collected through e.g. our Website, meetings, emails and telephone calls or by contacting us by any means. Your personal data may also be provided to us by third parties.
Please note that the data that we may collect from you may include, but is not limited to:-
- • Name, title and status/position.
- • Contact details such as personal business address, email address and telephone number(s).
- • Other information that may be relevant.
What we do with the data:-
Please also note that you should be aware that your personal data may be processed by us for any of the following reasons:-
- • To contact you by email, letter, post, telephone or similar medium (where you have given us consent) about our services and events. Also contact with you by telephone, email or letter post about services and events that are linked to certain persons or organisations.
- • To provide you with legal advice.
- • To notify you about any changes to our services.
- • To maintain and administer our Website.
- • To copy the personal data that we hold about you to certain third parties.
- • Sensitive Personal Data will only be disclosed with your express consent, as required by law or as otherwise authorised under the Data Protection legislation.
Please note that you should not email to us confidential or sensitive information such as Bank details. We will not accept liability for unauthorised access to your personal information that is outside our control.
We may combine this data with other information that we may hold about you as a client, or where you have made enquiries of us before.
3. AMENDING DATA/YOUR PREFERENCES
If you should at any time wish to amend, update or simply check your personal data, please let us know.
4. CONFIDENTIALITY AND DATA MOVEMENT
We follow the necessary procedures in relation to the disclosure and storage of personal data to prevent loss or unauthorised access to it by a third party.
Any party to whom we transfer personal data are required by law to comply with the same statutory provisions. You do, however, need to be aware that Website/Online processors connected to the Internet are not a completely secure medium. It is acknowledged and agreed by you that we will not be responsible for any unauthorised use, distribution, damage or destruction of personal data (except to the extent that we are required to accept such responsibility by the Data Protection legislation).
Although unlikely, it is possible that we may sometimes transfer your personal data to a country situated outside the European Economic Area (“EEA”) that may not have the same level of protection as countries within the EEA. Before doing so we will put in place contractual arrangements to ensure adequate protection for your data and we will aspire to ensure that any such contractual arrangements comply with the standards expected from the Data Regulator in the UK i.e. the ICO (Information Commissioners Office).
5. SECURITY OF DATA
We will do our best to ensure that your personal data and information is safeguarded and secure so as to prevent unauthorised access to it.
We are aware that cybercrime is on the increase and sometimes communications (emails and telephone calls) from other persons can be fraudulent. We have Policies and systems in place to try and prevent any such data breaches.
Data electronically stored will be encrypted.
6. PASSING DATA TO THIRD PARTIES AND LINKS
No personal data will be passed by us to any third party except where :-
- (a) We have your written consent;
- (b) On the terms set out as follows:-
- (ii) In respect of any promotions that we run jointly with the third party;
- (iii) In respect of any future acquisition or merger we may transfer your personal data to actual potential purchasers. This would enable you to continue your relationship with us despite any change of ownership;
- (iv) In respect of the content posted by you;
- (v) In circumstances where we are required or authorised through any legislation or regulatory authority to disclose your personal data/information.
- (c) If you access (or provide information) to any external Website linked to this Website you do so entirely at your own risk and we accept no responsibility for any loss or damage that you may sustain as a result.
7. RESTRICTING/CONTROLLING USE OF DATA
Please note that we will not sell or licence the use/distribution of your personal data to Third Parties otherwise than is provided for in this Policy.
You may choose to restrict the gathering or use of your data when you are requested to complete a form on our Website, if it asks you to click a box as to whether your data may be used for direct marketing purposes.
8. ACCESSING YOUR PERSONAL DATA/INFORMATION
You may request details of the personal data that we hold about you, the purpose for which it is/has been processed and the types of recipient to whom it is/has been disclosed. If you wish to request such data (i.e. make a ‘data subject access request’) we may charge you a fee for this, although the position will change once the General Data Protection Regulation (GDPR) becomes operational from 25th May 2018.
Any requested data will (if so requested) be provided in an electronic format.
If you think that any data we hold about you is incorrect, requires to be updated or you require access to your data, please contact us at:-
Downie & Gadban
100 High Street
Please note: that if you provide us with information about another person our acceptance of this will be conditional on your having made that other person aware as to how we will use and disclose such information, and that the other person has authorised you to provide their information to us.
Similarly, we will accept information about you from another person on the same terms.
Please note that in addition to the right of access, you also have the following rights:-
- (a) Right to be forgotten – You may withdraw your consent to your data being held and for it to be deleted/erased.consent;
- (b) Data Portability – You may request, obtain, and/or transfer possession of your data to a Third Party at any time.
If you wish us to either delete your data or transfer it to you or an authorised named Third Party, please make your request in writing by email (or both by email and post). You can complete a Form and to do so, click on Request Withdrawal/Request to View Form for this purpose.
You should be aware that unless:-
- (a) we have agreed otherwise in writing; or
- (b) you ask us to delete your data;
we will normally hold/store your data for a period of at least 6 years.
9. AMENDMENTS TO THE POLICY
The Policy is operative with effect from the dates shown and we reserve the right to vary this at our discretion from time to time. By continuing to use this Website you will be taken to have accepted any variations to it.
10. EFFECT OF USE OF WEBSITE
This Website is not intended to be a substitute for formal legal advice and as such should not be relied upon for this purpose.
11. REPORTING A BREACH AND RIGHT TO COMPLAIN
If a material data breach occurs where there has been an unauthorised disclosure or loss of an individual’s personal data, we will be required to report the breach to the ICO (Information Commissioner’s Office) within 72 hours. Depending on the circumstances, you will have the right to raise a complaint with the ICO.
12. APPLICABLE LAW & IP RIGHTS
Please note that:-
- (a) All intellectual property rights in or arising from our Website (including copyright) are reserved and belong to Downie and Gadban, unless specified otherwise;
Downie & Gadban
15th March 2018