- Introduction The following notice explainsthe facts that how, when and why we collect personal information about you, how we use it, the conditions under which we may disclose it to others and how we keep it secure.
- About US This firm Sri Kanth & Co solicitors which is regulated by Solicitors regulation authority under reference number 564285 strongly adheres the regulations of SRA, Laws of England & wales and EU laws including the General Data Protection Regulations (GDPR). We are also committed to protecting and respecting privacy of our clients.
- About children Our website, information and services are not aimed at children because children are generally represented by their parents or guardians in legal matters. If you are a child and need further advice or explanation about how we would use your data please contact us through an appropriate adult such as your parents or guardians.
- Sources & Types of information we obtain
For clients of SriKanth & solicitors - you should read this notice alongside our client care letter, general terms and conditions in it, furtherinformation on confidentiality and data privacy.
This notice does not apply to any websites that may have a link to ours.
This policy sets out the basis on which any personal data we collect from you, or that you provide to us, whether via this website or otherwise, will be processed by us. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it.
For the purpose of protecting our clients, stakeholders and the public this firm has appointed its Principal Subramaniam Srikanthalingam as the data controller and Data Protection Officer (DPO)
- Given by you when dealing your matter.
- Given by you when dealing on someone else's matter e.g. minors & elderly clients
- Given by some else when dealing with your matter e.g. Bank & Estate agents
- Following/liking/subscribing to our social media channels
- Agree to fill in a questionnaire or survey on our website or on our forms
- Ask us a question or submit any queries or concerns you have via email or on social media channels
- Post information to the our website or social media channels, for example when we offer the option for you to comment on, or join, discussions
- When you leave a review about us.
- Submitting an online enquiry.
- By using cookies
- Types The exact information we will request from you will depend on what you have asked us to do or what we are contracted to do for you.
- Personal data: is the general information that you supply about yourself – such as your name, address, gender, date of birth, contact details, financial information etc.
- Sensitive personal data: is, by its nature, more sensitive information and may include your racial or ethnic origin, religion, sexual orientation, political opinions, health data, trade union membership, philosophical views, biometric and genetic data.
The following are some other examplesof how we collect your personal information:
There are two types of personal data (personal information) that you may provide to us:
In the majority of cases personal data will be restricted to basic information and information needed to complete ID checks. However some of the work we do may require us to ask for more sensitive information.
The following are few examples of how we may use your personal information for our legitimate business interests:
- fraud prevention
- direct marketing
- network and information systems security
- data /analytics /enhancing, modifying or improving our services
- identifying usage trends
- determining the effectiveness of promotional campaigns and advertising.
We may use your personal information for legitimate interests such as direct marketing or under reasonable expectation to provide you with information you would expect to receive or that would benefit and enhance our relationship. This information will help us review and improve our products, services and offers.
Generally, we will only use your information withinour firm. However there may be circumstances where in carrying out your legal work, we may need to disclose some information to third parties; for example:
- HM Land Registry to register a property
- HM Revenue & Customs; e.g. for Stamp Duty Liability
- Court or Tribunal
- Solicitors acting on the other side
- Asking an independent Barrister or Counsel for advice; or to represent you
- Non legal experts to obtain advice or assistance
- Translation Agencies
- Contracted Suppliers
- External auditors or our Regulator; e.g. Lexcel, SRA, ICO etc.
- Bank or Building Society; or other financial institutions
- Insurance Companies
- Providers of identity verification
- Any disclosure required by law or regulation; such as the prevention of financial crime and terrorism
- If there is an emergency and we think you or others are at risk
In the event any of your information is shared with the aforementioned third parties, we ensure that they comply, strictly and confidentially, with our instructions and they do not use your personal information for their own purposes unless you have explicitly consented to them doing so.
There may be some uses of personal data that may require your specific consent. If this is the case we will contact you separately to ask for your consent which you are free to withdraw at any time.
We have technology and operational security in order to protect personally identifiable data from loss, misuse, alteration or destruction. Similarly, we adopt a high threshold when it comes to confidentiality obligations and both internal and external parties have agreed to protect confidentiality of all information; to ensure all personal data is handled and processed in line with our stringent confidentiality and data protection policies.
We use computer safeguards such as firewalls and data encryption and annual penetration testing; and we enforce, physical access controls to our buildings and files to keep data safe.
- For a minimum of 6 years from the conclusion or closure of your legal work.
- In some matterswe may keep the file and information for longer period even foran indefinite period.
A request for access to your personal data means you are entitled to a copy of the data we hold on you – such as your name, address, contact details, date of birth, information regarding your health etc. - but it does not mean you are entitled to the documents that contain this data.
Under certain circumstances, in addition to the entitlement to ‘access your data’, you have the following rights:
- The right to be informed: which is fulfilled by way of this privacy notice and our transparent explanation as to how we use your personal data
- The right to rectification: you are entitled to have personal data rectified if it is inaccurate or incomplete
- The right to erasure / ‘right to be forgotten’: you have the right to request the deletion or removal of your personal data where there is no compelling reason for its continued processing. This right only applies in the following specific circumstances:
- Where the personal data is no longer necessary in regards to the purpose for which it was originally collected
- Where consent is relied upon as the lawful basis for holding your data and you withdraw your consent
- Where you object to the processing and there is no overriding legitimate interest for continuing the processing
- The personal data was unlawfully processed
- Where you object to the processing for direct marketing purposes
- The right to object: you have the right to object to processing based on legitimate interests; and direct marketing. This right only applies in the following circumstances:
- An objection to stop processing personal data for direct marketing purposes is absolute – there are no exemptions or grounds to refuse – we must stop processing in this context
- You must have an objection on grounds relating to your particular situation
- We must stop processing your personal data unless:
- We can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms; or
- The processing is for the establishment, exercise or defence of legal claims.
- The right to restrict processing: you have the right to request the restriction or suppression of your data. When processing is restricted, we can store the data but not use it. This right only applies in the following circumstances:
- Where you contest the accuracy of the personal data – we should restrict the processing until we have verified the accuracy of that data
- Where you object to the processing (where it was necessary for the performance of a public interest or purpose of legitimate interests), and we are considering whether our organisation’s legitimate grounds override your right
- Where processing is unlawful and you request restriction
- If we no longer need the personal data but you require the data to establish, exercise or defend a legal claim
Relevant marketing communication by email will be sent during the case and once the case has been closed. Clients have the option to exclude themselves from marketing by clicking on the unsubscribe link on all of our emails, on the telephone when speaking to an advisor or contacting us through email or on social media.
If you are not satisfied with our response or believe we are not processing your personal data in accordance with the law, you can complain to the Information Commissioner’s Office (ICO).