|LEON KAYE SOLICITORS
Summary of how we use your data
Please read this policy carefully to understand our views and practices regarding your personal data and how we will treat it.
NOTE: For the purpose of the Data Protection Act 1998 (the Act) and the General Data Protection Regulation 2016/679 (GDPR), the data controller is Leon Kaye Solicitors, 591-593 Kings Road, London SW6 2EH, United Kingdom.
INFORMATION WE MAY COLLECT FROM YOU
Information you give us
You may give us information about you by filling out forms or corresponding with us by email.
This may include information you provide to us for: use of our legal services, subscribing to our mail-list, or providing feedback.
The information you give us may include: your name, address, e-mail address, financial and credit card information, personal description and photograph
WHO WILL WE SHARE THIS DATA WITH, WHERE AND WHEN?
In the event that the business is sold or integrated with another business or subject to material new investment, your details may be disclosed to our advisers and any prospective purchaser’s or investor’s adviser and will be passed to any new owners of the business.
WHERE WE STORE YOUR PERSONAL DATA
The majority of personal data that we collect is processed within the UK. Some data may be transferred to, and stored at, a destination within the European Economic Area (“EEA”). Particularly: our secure servers, which contain our app users’ profile data, are based in the Republic of Ireland.
Information may also be processed by staff operating outside the EEA who work for us or for one of our suppliers. If information were to be transferred outside of the EEA, and where this is to a stakeholder or vendor in a country that is not subject to an adequacy decision by the EU Commission, data is adequately protected by EU Commission approved standard contractual clauses, an appropriate Privacy Shield certification or a vendor’s Processor Binding Corporate Rules.
Where we have given you (or where you have chosen) a password which enables you to access certain parts of our site, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
Unfortunately, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our site; any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorised access. All our staff have been been trained on how to prevent, identify and respond to a security breach that may compromise your personal data. If there is a cybersecurity breach, we have reporting procedures in place to notify the relevant parties, including the Information Commissioner’s Office and you, the data subject.
WHAT RIGHTS DO I HAVE?
You have an absolute right to opt-out of direct marketing, or profiling we carry out for direct marketing, at any time. We will usually inform you (before collecting your data) if we intend to use your data for such purposes or if we intend to disclose your information to any third party for such purposes. You can exercise your right to prevent such processing by checking certain boxes on the forms we use to collect your data. You can also exercise the right at any time by contacting us at firstname.lastname@example.org.
You have the right to ask us for a copy of your personal data; to correct, delete or restrict (stop any active) processing of your personal data; and to obtain the personal data you provide to us for a contract or with your consent in a structured, machine readable format, and to ask us to share (port) this data to another controller.
In addition, you can object to the processing of your personal data in some circumstances (in particular, where we don’t have to process the data to meet a contractual or other legal requirement, or where we are using the data for direct marketing).
These rights may be limited, for example if fulfilling your request would reveal personal data about another person, or if you ask us to delete information which we are required by law to keep or have compelling legitimate interests in keeping.
To exercise any of these rights, you can get in touch with us using the details set out below. If you have unresolved concerns, you have the right to complain to an EU data protection authority where you live, work or where you believe a breach may have occurred.
HOW LONG WILL YOU RETAIN MY DATA?
Where we process personal data for marketing purposes or with your consent, we process the data until you ask us to stop and for a short period after this (to allow us to implement your requests). We also keep a record of the fact that you have asked us not to send you direct marketing or to process your data so that we can respect your request in future.
Where we process personal data for a survey or competition, we keep the data for six years from your last interaction with us.
Where we process personal data that you voluntarily provided to us, for example for feedback purposes, we will keep this data for as long as you continue to interact with us and for six months after this. After that, we may keep the information in an aggregated or anonymised format, but not in a way that you can be identified.