This privacy notice is set out to inform you how we use your personal information. This notice covers personal information relating to you that we may collect through any medium, including specifically in relation to the professional services we provide to you, in person or through our website. This notice describes how you can access and make certain choices about how we use your personal information. This is a requirement of new privacy laws under the General Data Protection Regulation (GDPR). This privacy notice is separate, and in addition to, any contractual confidentiality obligations we may owe you – please refer to our terms of engagement for further details.
We may collect and process your personal details in a variety of ways, depending in part on how we provide services to you:
Individuals connected with our professional services: We may collect and process your:
personal details, including your name, address, email and telephone/fax numbers, date of birth and nationality;
employment details, including your employer's name, your position or title and your corporate contact details; and
information on your financial circumstances, including your profession, income, assets and liabilities, as well as sensitive and/or criminal data.
We may also need to collect and process information about persons related to a client. In such circumstances, it is your responsibility to ensure that you have permission from that third-party for us to collect their information and you remain responsible for ensuring that the third-party understands how their information is being used. You may refer to this privacy notice in explaining to third parties how their information is being used.
Individuals connected with our in person services: We may collect and process your:
contact information, including your name, address, position, email and telephone/fax numbers;
financial details, including relevant details for invoicing and billing; and
KYC documentation, if and where required under relevant Anti-Money Laundering or Counter-Terrorism Financing ("AML/CTF") legislation.
Individuals connected with our website: We may collect and process your:
personal details, including your name, address, email and telephone/fax numbers, as well as your login identification and password details; and
technical information, including your IP address, browser information, and details relating to your visit behaviour on our website.
Personal information may be collected directly from you, or from other publicly available sources, so that we may provide services as directed or agreed. In processing any personal data, we will ensure that the information we collect is proportionate to our contracted, legitimate interest and stated purposes.
Unless specifically stated otherwise, we use personal information in the following ways and based upon the following lawful bases:
in order to achieve our legitimate interests. In doing so, we ensure that:
your rights and interests are considered and protected;
it has a minimal privacy impact upon you;
we are able to demonstrate that we use your data in a proportionate manner and you would not likely be surprised or likely to object to our usage;
we may lawfully disclose personal data to a third-parties where we can demonstrate that this disclosure is justified;
in order to fulfil our contractual obligations. This includes where you have asked us to do something before entering into a contract; for example to provide a fee estimate;
with explicit consent to do so. For example to provide you with updates about our services or forthcoming events but clients will have to opt in to receive this information;
to comply with our legal or regulatory obligations. For instance, where we are required to notify the Solicitors' Regulatory Authority of something; and
based upon reasons of substantial public interest.
We take appropriate technical and organisational measures in order to keep your personal information safe and secure. These measures are set out in our internal policies and procedures. We may store your personal information in hard copy securely in our UK offices or electronically. We use IT 'cloud' systems which have servers in located in the USA for our electronic storage.
Where information is held outside the UK we have contractual arrangements in place which ensure that the information is held securely and in line with the requirements of GDPR.
It should be noted that where you choose to transmit your personal data to us via the internet, we do not guarantee the security of the personal information transmitted and therefore any transmission is at your own risk.
We may share personal information with the following category of recipients, based upon the legal bases and purposes set-out above:
Companies House and the Financial Conduct Authority where we are asked to make filings or applications on a client's behalf;
our staff and any contracted consultants we may use in order to provide our services to our clients; and
any law enforcement, court, regulator or other government authority in order for us to comply with a legal obligation laid down by UK or EU law.
All organisations, staff and contractors with whom we share personal information are required to ensure an adequate level of protection for your personal data at all times.
All personal data held by Watson Brady is deleted when it is no longer required or at the latest 6 years after a client contract with Watson Brady has ended. Watson Brady will delete personal information relating to an individual upon the request of that individual, provided that information is not being used to carry out work we have been instructed to do under contract. If we cannot delete personal information on request we will tell you why.
In rare instances, we may contact you in order to market our services to you but you will be asked for your consent for us to do this at the outset. If, at any time, you wish to withdraw your consent for us to contact you in this way please notify us at email@example.com. Generally though, you provide personal information to us when it is in your interests for us to process your data.
You have a legal right to find out what information we hold about you via a "subject access request". If you wish to make a subject access request please contact us at firstname.lastname@example.org or by phone on 0207 099 5936.
We will require evidence of identity prior to disclosing any personal information.
This privacy notice will be reviewed on an annual basis but we may make changes to it at any time and may do so without expressly notifying you of these changes. However, should the legal bases or purpose(s) for processing your personal information changes then we shall expressly notify you.
You can choose to block cookies that we may deliver to your device through settings on your web- browser; however, in doing so you may not be able to access or utilise all aspects of our website.