PRIVACY
POLICY
PRACTICAL
INFORMATION
PRIVACY POLICY OF ADVICE LAW FIRM
Ourprivacy policy gives you the confidence in knowing that we process and store your personal data safely, securely and in accordance with current legislation.
This privacy policy is updated from time to time.
Who we are and how to contact us
Advice Law Firm is a Danish general partnership of lawyers.
Toldbodgade 57, 1
1253 Copenhagen K, Denmark
Business reg. (CVR) no. 32300774
If you (i) have any questions regarding our privacy policy, (ii) would like to exercise your right of access, your right to rectification, erasure or restriction, your right to object or in certain cases your right to transmit personal data or (iii) just want to know which personal data we process about you and for what purpose, you are always welcome to contact Lars Hilliger, Attorney-at-Law, on telephone:
-
+45 33 23 84 23
How we use your personal data
We process your personal data for the purpose of safeguarding your interests in the best possible way. We do this by providing legal advice, preparing legal documents and possibly by appearing in court for clients. In addition, we naturally process your personal data for the purpose of complying with current legislation.
The legal basis for our processing of your personal data follows from (i) the engagement, (ii) your consent or (iii) legislation.
The personal data we use
We first and foremost use your contact details, such as name, address, e-mail, phone number, proof of identity and billing information.
Depending on the specific case, and if necessary, we may in some circumstances process your civil registration (CPR) number and your sensitive personal data, including but not limited to information about your health, data relating to criminal convictions and offences, data revealing trade union membership and data about your financial conditions.
Disclosure of your personal data
Your personal data will not be disclosed to any third party for marketing or similar purposes.
We will only disclose your personal information to third parties when disclosure is necessary to enable us to comply with our legal obligations or safeguard your interests. Data will typically be disclosed to public authorities, courts, opposing parties and their advisers.
In connection with our duty to ensure that all client money we receive is paid into a client account, we are required to disclose the client’s identity data to the account-holding bank for the purpose of the bank’s fulfilment of its obligations under the Danish Anti-Money Laundering Act.
We make personal data available to our data processors, who, among other services, supply our IT systems under data processing agreements, for the sole purpose of facilitating our use of the relevant systems, and we have also implemented measures to exercise appropriate control over the processing of your personal data by such third parties. Depending on the specific case, it may be necessary to use other third-party data processors, such as ad hoc translators or external IT investigators.
We do not usually transfer any of your data to third countries (countries outside the EU/EEA), and if such transfer occurs, we will ensure your data are transferred on a valid legal basis, for instance on the basis of the EU-U.S. Privacy Shield or the European Commission’s standard contractual clauses etc. for transfers to third countries, or that the transfer is necessary for the purposes of establishing, exercising or defending legal claims.
Security
We have implemented a series of internal procedures and policies and taken appropriate technical and organisational precautions to safeguard against unauthorised access to, loss of or destruction of any data in respect of which we are the controller.
Sensitive personal data will always be transmitted over a secure connection, and if you need to send sensitive personal data to us, we recommend that you also use encryption technology. We may, on request, provide a secure portal for the transfer of sensitive personal data to us.
Retention and erasure
As a general rule, we retain personal data for up to 10 years after a case has closed. The retention period has been determined by taking into account the Danish Limitation Act and the Code of Conduct for the Danish Bar and Law Society governing retention of case files. If circumstances so require, we will retain data for a shorter or longer period of time, for instance when it comes to documents intended to create legal relations.
Your rights
You have the following rights – subject to the terms, conditions and exceptions set out in legislation, for instance those pertaining to the professional secrecy of lawyers.
-
The right, on request, to gain access to the personal data we process about you.
-
The right to have inaccurate and incomplete personal data rectified.
-
The right, in special circumstances, to have your personal data erased before our usual time limit for general erasure.
-
The right to request restriction of the processing of your personal data.
-
The right to data portability, i.e. the right to receive a copy of your personal data in a structured, commonly used and machine-readable format and to request us to transmit the data to another data controller.
-
The right to object to our lawful processing of your personal data when the processing is based on legitimate interests or public interests.
-
Where the legal basis for this processing is legitimate interests, you have the right to object – on grounds relating to your particular situation – to our processing of your personal data. If you make such an objection, Advice Law Firm may no longer process the personal data unless Advice Law Firm demonstrates compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing is necessary for the establishment, exercise or defence of legal claims.
-
You are also entitled to lodge a complaint with the Danish Data Protection Agency. For more information, see the Agency’s website at: www.data supervision.dk