GDPR

Privacy Notice (terms of engagement)

At Ann O’Neill Family Law ann@aonfamilylaw.com we are committed to ensuring that your privacy is protected. This privacy notice together with our cookies policy, and our general terms and conditions where provided to you sets out the basis on which any personal data we collect from and about you, or that you provide to us, will be processed by us.

Please read this privacy notice, our cookies policy and any other document we provide to you, such as our general terms and conditions carefully so you understand our views and practices regarding your personal data and how we will treat it.

This notice is being provided to you in line with our obligations from 25 May 2018 under the General Data Protection Regulation (GDPR).

1. Who we are

We are Ann O’Neill Family Law Solicitors, 20/21 Anglesea House, 63 Carysfort Avenue, Blackrock, Co. Dublin and we are your data controller. You can contact us at this address by post or by email at. For queries in relation to your personal data, you can contact us at these contact details or by email to ann@aonfamilylaw.com

2. Why we process your data, the lawful basis for processing your data and who we share it with

A. For our clients, we process data:

• in order to provide you with legal advice
  to assist you with legal claims or legal proceedings
  to assist you with your legal rights
• The legal basis for the processing of this data is processing necessary for the performance of a contract to which you are a party.Where we process special categories of data relating to you, e.g. health data that we may process in connection with a legal claim where we are acting on your behalf, our legal basis for processing will be that the processing is necessary for the establishment, exercise or defence of legal claims.There may also be limited circumstances where our legal basis for processing is your consent (where we have sought it and you have provided it to us), in which case you can withdraw your consent at any time.We share this data with our practice management system provider. We may also send you emails through our email service provider. They may only process this data to provide us with their services, and no other purpose.We may also share certain parts of this data with your barrister, doctor or expert witness and with the counterpart solicitor.B. For our potential, current and past clients, we process data:
  • in order to market the services of our firm
    to provide you with legal updates and newsletters to which you have subscribed
  • The legal basis for this processing is our legitimate interest in the administration and operation of our legal services as well as our legitimate interest in marketing and promoting our firm’s legal services.

3. 3.  Information received from third parties and the source of that dataDepending on the circumstances, we might also obtain personal data about you from other sources such as public registers, government and regulatory authorities, business partners, financial and insurance advisors, service providers, etc.You are not obliged to provide us with your personal information. However, if you do not, we might not be able to carry out the services you have requested of us.
4. 4.  Transfers of data outside the European Economic Area
   If we transfer your personal data out of the EEA, we will ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented:
   • We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission.
   • Where we use certain service providers, we may use specific contracts approved by the European Commission which give personal data the same protection it has in Europe.
   • Where we may use service providers based in the US, we may transfer data to them if they are part of the Privacy Shield which requires them to provide similar protection to personal data shared between Europe and the US.Please contact us if you want further information on the specific mechanism used by us when transferring your personal data out of the EEA.
5. 5  Your rights relating to personal data
   You have the following rights under the GDPR, in certain circumstances and subject to certain exemptions, in relation to your personal data:
6. • right to access the data – you have the right to request a copy of the personal data that we hold about you, together with other information about our processing of that personal data.
   • right to rectification- you have the right to request that any inaccurate data that is held about you is corrected, or if we have incomplete information you may request that we update the information such that it is complete.
   • right to erasure – you have the right to request us to delete personal data that we hold about you. This is sometimes referred to as the right to be forgotten.
   • right to restriction of processing or to object to processing – you have the right to request that we no longer process your personal data for particular purposes, or to object to our processing of your personal data for particular purposes.
   • Right to data portability – you have the right to request us to provide you, or a third party, with a copy of your personal data in a structured, commonly used machine readable format.

In order to exercise any of the rights set out above, please contact us at the contact details at the start of this privacy notice.

If we are processing personal data based on your consent, you may withdraw that consent at any time. This does not affect the lawfulness of processing which took place prior to its withdrawal.

If you are unhappy with how we process personal data, we ask you to contact us so that we can rectify the situation.

You may lodge a complaint with a supervisory authority. The Irish supervisory authority is the Data Protection Commissioner.

6 Requirement to process personal data

If you do not provide us with your information for the purposes described above, we cannot provide you with legal advice, represent you in legal proceedings or send you our legal updates or other information which we think may be of interest to you.

7 Automated decision-making and profiling

We do not use any personal data for the purpose of automated decision-making or profiling.

8 Data Retention

It is our aim to only hold your personal data for as long as this is necessary. Unless otherwise required under applicable law, we store your personal data for as long as we provide services to you and for a period of no less than seven years beginning on the date we archive your file.

9 Data security

We take our personal data security responsibilities seriously, employing the most appropriate physical and technical measures, including staff training and awareness. We review our personal data security measures and procedures regularly.

Unfortunately, the transmission of information by means of the internet, including through e- mail, is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to or from us by means of e-mail and any such transmission is at your own risk.