1) Who is responsible for your data
Chris Carter, as the Data Protection Officer (DPO) at Peter Bonner & Co. is responsible for your data. Our registered address is 74 Lee High Rd, London, SE13 5PT. We are registered as a company in England and Wales. We are the data controller of the data which we collect from you, and as such we control the ways your personal data are collected and the purposes for which your personal data are used.
2) Personal data we collect about you
We collect information that is supplied as part of the information that we need to properly prepare your case. This is your name and contact details such as address, telephone number, e-mail address and other relevant information.
In addition, we are supplied with the details of your past and pending cases and criminal convictions and similar information. This might be in the form of physical media such as paper, electronic data, DVDs, CCTV tapes, photographs or any other form in which it is supplied.
We do automatically collect certain non-personally identifiable information when you visit our site – such as the type of browser you are using, the type of operating system you are using, and the domain name of your Internet service provider.
3) How we use your personal data
We can only use your personal data if we have a proper reason for doing so. According to the law, we can only use your data for one or more of these reasons:
- When you consent to it, or
- If we have a legal duty to use your data for a particular reason, or
- To fulfil a contract we have with you, or
- When it is in our legitimate interests.
Legitimate interests are our business or commercial reasons for using your data, but even so, we will not unfairly put our legitimate interests above what is best for you.
If we rely on our legitimate interests for using your personal data, we will explain that to you.
It is not the policy of Peter Bonner & Co. to ever use your personal data for marketing purposes. In the unlikely event that this policy changes, we will notify you accordingly.
5) How long we keep your data
We keep your data only for as long as we need it. How long we need data depends on what we are using it for, whether that is to provide services to you, for our own legitimate interests (described above) or so that we can comply with the law.
We will actively review the information we hold and when there is no longer a customer, legal or business for us to hold it, we will either delete it securely or in some cases anonymise it.
The Solicitor’s Regulatory Authority and legal requirements means that your casework data will be kept for six years before destruction.
6) How we protect your data
We protect your personal data against unauthorised access, unlawful use, accidental loss, corruption or destruction.
We use technical measures such as encryption and password protection to protect your data and the systems they are held in. We also use operational measures to protect the data, for example by limiting the number of people who have access to the databases in which our casework information is held.
We keep these security measures under review and refer to industry security standards to keep up to date with current best practice.
Where we use an outside supplier, we will ensure that they comply with industry security standards before they are entrusted with your data
7) Sharing your data
It is the policy of Peter Bonner & Co. to only share with the supplier of the casework management system which improve the quality of service we provide or with your consent or where there is a legal requirement to do so or to protect our interests. In the unlikely event that this policy changes, we will notify you accordingly.
8) Sending data outside the European Economic Area
It is not the policy of Peter Bonner & Co. to ever send your personal data outside the European Economic Area. In the unlikely event that this policy changes, we will notify you accordingly.
9) 16 or Under
We are concerned to protect the privacy of children aged 16 or under. If you are aged 16 or under‚ please get your parent/guardian’s permission beforehand whenever you provide us with personal information.
10) Your rights
You are entitled to see copies of all personal data held by us and to amend, correct or delete such data. You can also limit, restrict or object to the processing of your data.
If you gave us your consent to use your data, e.g. so that we can contact you easily or the prepare your case, you can withdraw your consent. Please note that even if you withdraw your consent, we can still rely on the consent you gave as the lawful basis for processing your data before you withdrew your consent.
You can object to our use of your data although that will complicate case preparation and contact. This includes personal data which identify you or which could be used to identify you such as your name and contact details, any details of your past and pending cases and criminal convictions and any other similar information.
To raise any objections or to exercise any of your rights, you can send an email to us at email@example.com or you can write to us at Data Protection Officer, Peter Bonner & Co., 74 Lee High Rd, London SE13 5PT.
When you get in touch, we will come back to you as soon as possible and where possible within one month. If your request is more complicated, it may take a little longer to come back to you but we will come back to you within two months of your request. There is no charge for most requests, but if you ask us to provide a significant about of data for example we may ask you to pay a reasonable administration fee. We may also ask you to verify your identity before we provide any information to you.
If you have any complaints concerning Peter Bonner & Co.’s processing of your personal data please email us at firstname.lastname@example.org or you can write to us at Data Protection Officer, Peter Bonner & Co., 74 Lee High Rd, London SE13 5PT.
Please note that you have the right to lodge a complaint with the supervisory authority which is responsible for the protection of personal data in the country where you live or work, or in which you think a breach of data protection laws might have taken place.
Customers in the UK can contact the Information Commissioner’s Office by telephone on 0303 123 1113, or by using the live chat service which is available through the Information Commissioner’s website www.ico.org.uk.