At Peters & Peters we are committed to safeguarding the privacy of all visitors to our website.
All data subjects whose personal data is collected, in line with the requirements of the Data Protection Act 1998 (The Act) and the General Data Protection Regulation (GDPR) guidelines from May 2018.
4. Our Responsibilities
The Data Protection Officer (DPO) is responsible for ensuring that this notice is made available to data subjects prior to Peters & Peters collecting/processing their personal data.
All Employees/Staff/Partners of Peters & Peters who interact with data subjects are responsible for ensuring that this notice is drawn to the data subject’s attention and their consent to the processing of their data is secured.
5. Our Legal Obligations
We will share specific and relevant information with law enforcement and government agencies or public bodies where we are legally obliged to do so and where this obligation over-rides our professional duties of confidentiality. Examples may include
- The prevention or detection of crime and fraud
- The apprehension or prosecution of offenders
- The assessment or collection of tax or duty owed to customs and excise
- Sharing in connection with legal proceedings
- Sharing in relation to the physical or mental health of an individual, where disclosure is required to protect them or others from serious harm
6. The Information we collect
The personal data we may collect from/process on you includes, Name, Contact Details, Cookies, IP Address. The personal data we collect will be used for the following purposes:
To provide and improve this website, including auditing and monitoring its use
To provide and improve our services to you and to our clients, including handling the personal information of others on behalf of our clients
- To provide information requested by you
- To promote our services, including sending legal updates, publications and details of events
- To manage and administer our relationship with you and our clients
- To fulfil our legal, regulatory and risk management obligations, including establishing, exercising or defending legal claims
- For the purposes of recruitment
You are not required to provide any personal information on the public areas of this website. However you may choose to do so by completing the job application forms or the email alerts sign-up form found on the latest section of our website. We may for example, keep a record of your name, email address, and any other information you volunteer to provide to us. We may supplement the information that you provide to us with information that we receive or obtain from other sources.
We do not keep personal information longer than necessary. We will hold personal information for 1 year, so long as you give express consent. You can request that this information is removed from our servers in accordance with the data retention policies. You can opt-out of the email alerts at any time by either contacting us at firstname.lastname@example.org or clicking on the opt-out hyperlink included within an email that you have received.
7. Email Newsletter
Our website uses an email newsletter program, using an RSS feed from our Latest News page which is used to inform subscribers about news and event services supplied by this website. Subscriptions are taken in compliance with UK Spam Laws detailed in the Privacy and Electronic Communications Regulations 2003, please see http://www.legislation.gov.uk/uksi/2003/2426/contents/made . All personal details relating to subscriptions are held securely and in accordance with the Data Protection Act 1998 and GDPR guidelines. No personal details are passed on to third parties nor shared with companies / people outside of the company that operates this website.
Email marketing campaigns published by this website or its owners may contain tracking facilities within the actual email. Subscriber activity is tracked and stored in a database for future analysis and evaluation. Such tracked activity may include; the opening of emails, forwarding of emails, the clicking of links within the email content, times, dates and frequency of activity.
This information is used to refine future email campaigns and supply the user with more relevant content based around their activity.
In compliance with UK Spam Laws and the Privacy and Electronic Communications Regulations 2003 subscribers are given the opportunity to unsubscribe at any time through an automated system. This process is detailed at the footer of each email campaign. If an automated un-subscription system is unavailable, clear instructions on how to unsubscribe will by detailed instead. You can also send an email request to be removed or unsubscribed at any time by emailing email@example.com
Our legal basis for processing your personal data: Contractual basis for providing a service
Any legitimate interests pursued by us, or third parties we use, are as follows: Commercial Interests
Any additional or special categories of personal data we collect are: Not Applicable
8. How we will use your information
We use your personal information on the following bases:
- To perform a contract, such as engaging with an individual to provide legal or other services
- For the establishment, exercise or defence of legal claims or proceedings
- To comply with legal and regulatory obligations
- For legitimate business purposes. Please see ‘The Information We Collect Section above for more information.
9. Who we will share your information with
We may share your personal information with certain trusted third parties in accordance with contractual arrangements in place with them, including:
- Our professional advisers and auditors
- Suppliers to whom we outsource certain support services such as counsel and experts
- IT service providers to Peters & Peters
- Third parties engaged in the course of the services we provide to clients and with their prior consent, such as barristers, local counsel and technology service providers like data room and case management services
- Third parties involved in hosting or organising events or seminars
Where necessary, or for the reasons set out in this policy, personal information may also be shared with regulatory authorities, courts, tribunals, government agencies and law enforcement agencies. While it is unlikely, we may be required to disclose your information to comply with legal or regulatory requirements. We will use reasonable endeavours to notify you before we do this, unless we are legally restricted from doing so.
We do not sell, rent or otherwise make personal information commercially available to any third party, except with your prior permission.
10. How we protect your information
We use a variety of technical and organisational measures to help protect your personal information from unauthorised access, use, disclosure, alteration or destruction consistent with applicable data protection laws.
Peters & Peters holds the internationally recognised security standard Cyber Essentials Plus in respect of its document management and email systems and the supporting infrastructure. This is an independently verified certification that information security is managed in line with international best practice. Staff training is held regularly and recorded. The firm operates within the requirements of the Data Protection Act 1998 and within the guidelines of the GDPR.
11. Retention period
Peters & Peters will process personal data for 1 year or as long as required by the terms of a contract.
12. Your rights to access personal information
You have the right to receive information about the personal data (as defined in the Data Protection Act 1998 and the General Data Protection Regulation and applicable local UK legislation) we maintain on you upon written request. If you are concerned that any of the information we hold on you is incorrect please contact us.
13. Data Subject Rights
Under the General Data Protection Regulation you have a number of important rights free of charge. In summary, those include rights to:
- Right of access – you have the right to request a copy of the information that we hold about you.
- Right of rectification – you have a right to correct data that we hold about you that is inaccurate or incomplete.
- Right to be forgotten – in certain circumstances you can ask for the data we hold about you to be erased from our records.
- Right to restriction of processing – where certain conditions apply to have a right to restrict the processing.
- Right of portability – you have the right to have the data we hold about you transferred to another organisation.
- Right to object – you have the right to object to certain types of processing such as direct marketing.
- Right to object to automated processing, including profiling – you also have the right to be subject to the legal effects of automated processing or profiling.
- Right to judicial review – in the event that Peters & Peters refuses your request under rights of access, we will provide you with a reason as to why.
14. If you would like to exercise any of those rights, please:
- email, call or write to at Peters & Peters, 15 Fetter Lane, London, EC4A 1BW United Kingdom, or email our Data Protection Officer firstname.lastname@example.org
- let us have enough information to identify you (eg account number, user name, registration details),
- let us have proof of your identity and address (a copy of your driving licence or passport and a recent utility or credit card bill), and
- let us know the information to which your request relates, including any account or reference numbers, if you have them
- If you would like to unsubscribe from any email newsletter/bulletin you receive, you can also click on the ‘unsubscribe’ button at the bottom of the email newsletter. It may take up to seven days for this to take place
- You can also email email@example.com to have your details updated/removed or unsubscribed from any communication you may receive from us.
We endeavour to take all reasonable steps to protect your personal information but cannot guarantee the security of any data you disclose on-line. Please note that email is not a secure medium, and should not be used to send confidential or sensitive information. You accept the inherent security risks of providing information over the Internet and will not hold us responsible for any breach of security unless this is due to our negligence or wilful default.
16. Information Technology
We operate using technology that is most suitable for the case work and transaction being completed. Systems are allays based within the UK and UK data centres where possible. All IT and third party suppliers must conform to the Data Protection Act 1998 and adhere to the requirements of the GDPR guidelines. This information is requested by Peters & Peters at the outset of using these services, it is maintained in a contracts catalogue and reviewed annually or sooner should circumstances dictate.
When accessing our website, Peters & Peters will collect standard internet log information for statistical purposes and to provide the website experience.
When we collect personal information, for example via an online form, we will explain what we intend to do with it
Our websites contain links to various third party websites. We are not responsible for the content or privacy practices of any external websites that are linked from our sites.
18. Contact details of the Data Protection Officer / GDPR Owner:
020 7822 7777
19. Document Owner and Approval
The Data Protection Officer is the owner of this document and is responsible for ensuring that this record is reviewed in line with the review requirements of the GDPR.
20. Change History Record
This document is reviewed at least annually.
21. Questions and Complaints