For the purpose of the UK General Data Protection Regulation (“UK GDPR”) and the Data Protection Act 2018 the Data Controller is Waterfront Solicitors LLP (Registration Number OC343353) with registered address at 14 Weller Street, London SE1 1QU.
Please note that, where We process personal data on behalf of a client as part of the provision of Our services, We are a data processor. Our processing of such data shall be in accordance with the data processor agreement agreed with the applicable client, and is not covered by this Policy.
YOUR PERSONAL INFORMATION
Information We collect from you
We collect and process some or all of the following types of information in the course of providing Our services or your use of the website:
We will inform you at the point of collecting information from you, whether you are required to provide further information to Us which shall always be processed in accordance with the terms of this Policy.
Information We Collect From Other Sources
We collect most of this information from you. However, We may also collect information:
If you have also provided Us with personal information about any other person, you confirm that he/she consents to Our use of his/her personal data and that you have informed him/her of Our identity and provided him/her with a copy of this policy.
USES MADE OF YOUR INFORMATION
Lawful basis for processing
We rely on performance of a contract as the lawful basis on which We collect and use your personal data in order to fulfil Our contractual obligations (whether in relation to Our provision of Our services to you or in relation to Our receipt of services from you) pursuant to an agreement We have entered into with you.
We rely on legitimate interest as the lawful basis on which We use your personal data where:
Purposes of processing
We use information held about you in the following ways:
In addition to the above uses We may use your information, to notify you about goods or services and updates about legal developments, and Our services, which may be of interest to you. We rely on legitimate interest as the lawful basis on which We use your personal data for this purpose. If you do not want Us to use your data in this way please either (i) tick the relevant box situated on the form on which We collect your data (for example, the contact form); (ii) unsubscribe from Our electronic communications using the method indicated in the relevant communication; or (iii) inform Us at any time by contacting Us at the contact details set out below.
DISCLOSURE OF YOUR INFORMATION
We will never sell your information or pass it to any third party for marketing purposes or for any other purpose unconnected with Our business.
We may pass your information to Our third party service providers, agents, subcontractors and other associated organisations for the purposes of completing tasks and providing services to you on Our behalf (e.g. to Our consultants and to host Our servers), in which case We will impose contractual obligations on them to ensure they are only allowed to use your information to complete those tasks and that they take appropriate measures to protect your personal data.
We may also disclose your personal data to third parties:
Other than as set out above, and save insofar as is necessary in order for Us to carry out Our obligations arising from any contracts entered into between you and Us, We will not share your data with third parties unless We have procured your express consent to do so.
STORING YOUR PERSONAL DATA
We take appropriate measures to ensure that any personal data are kept secure, including security measures to prevent personal data from being accidentally lost, or used or accessed in an unauthorised way. We limit access to your personal data to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.
We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where We are legally required to do so.
Unfortunately, the transmission of information via the internet is not completely secure. Although We will do Our best to protect your personal data, We cannot guarantee the security of your data transmitted to the Website; any transmission is at your own risk. Once We have received your information, We will use strict procedures and security features to try to prevent unauthorised access.
Keeping your personal data up to date
If your personal details change or if you have any questions about how We use data collected which relates to you, please contact Us by sending an email to the contact details below.
We will endeavour to update your personal data within seven (7) working days of any new or updated personal data being provided to Us, in order to ensure that the personal data We hold about you is as accurate and up to date as possible.
How long We keep your personal data
We retain personal information for the period reasonably necessary for the purpose for which it was collected. In particular:
Where We store your personal data
All information We hold about you is stored on secure servers provided by Our third party service provider within the UK.
Under UK and EU data protection law, you have a number of important rights. In summary, those include rights to:
For further information on each of those rights, including the circumstances in which they apply, Guidance from the UK Information Commissioner’s Office (ICO) on individual rights under the UK General Data Protection Regulation.
If you would like to exercise any of those rights, please:
HOW TO COMPLAIN
We hope that We can resolve any query or concern you raise about Our use of your information.
You have the right to lodge a complaint with the Information Commissioner’s Office who may be contacted at https://ico.org.uk/concerns/ or by telephone on 0303 123 1113.