We comply with all aspects of the UK’s data protection legislative framework, which includes the European General Data Protection Regulation (GDPR) and the UK’s own legislation, as well as other confidentiality obligations that apply to us because we are solicitors.
- our clients and people that represent them or who work for them;
- people who make enquiries about our services;
- people who visit our websites or who follow us on our various social media channels;
- people whose personal information is required in order to enable our clients to obtain legal advice or otherwise establish, exercise or defend legal rights;
- people (and their representatives) who are involved in one of our client’s matters including witnesses and the other parties to litigation or on the other side of transactions;
- our business contacts;
- suppliers that we use or that our clients use; and
- our regulators, insurers, auditors, professional advisers and certification bodies.
If you believe that we are processing your personal information, but you are not included in the above list please contact us to discuss this.
- The personal data that we collect and use,
- The lawful basis we rely on to collect and use it,
- Why we collect and use personal data,
- Where we get the personal data from,
- With whom we share personal data,
- When we transfer personal data outside the EEA,
- How long we keep information and how we ensure it is secure; and
- Your privacy rights.
You should ensure that you read this general privacy notice alongside any specific privacy notice we may issue to you, from time to time, in relation to your information.
Categories of personal data that we hold
- The personal data we collect includes:
- Basic information, such as your name (including name prefix or title).
- Contact information, such as your postal address, email address and phone number(s).
- identification and background information provided by you or collected as part of our client checking processes. This may include date of birth, nationality and previous addresses.
- financial information, such as payment-related information and information relevant to funding.
- information you provide to us for the purposes of attending meetings and events we host, including access and dietary requirements
- In order to determine your eligibility to make a claim, we will collect information about the vehicle in question including if it has a diesel engine, its engine size, the manufacturer and model, the vehicle registration number (VRN), vehicle identification number (VIN) and when you acquired it.
- Technical information is collected when you visit our website or in relation to materials and communications we send to you electronically, which includes information about the type of device you are using, your IP address and geographic location, your operating system and version, browser type, the content you view and the search terms you enter.
If we collect or receive your personal data, we might also receive information from third parties, for example those from whom we may obtain details about your vehicle.
While we want to keep you fully aware of all the services we offer, we are keen to ensure that we are not responsible for sending you unwanted marketing material. We therefore do our best to tailor the information and invitations we send out. To do this we store information about your professional and personal interests and communication preferences. We also track your level of engagement with us through our on-line and digital platforms.
The data protection legislative framework recognises that it is in our legitimate business interests to collect and use personal data for marketing reasons. We are obliged to inform you that you have a right to object to this.
When we send you information about the services we offer or invitations to our events, we always include a simple “unsubscribe” option. If you have any difficulty using it or wish to find out more about this activity, please contact us.
Sources of information
The personal data we have comes from a range of sources.
- You give us your personal data directly when you engage with us, including via our websites or digital media channels
- We obtain additional information when undertaking checks in order to comply with our statutory and regulatory obligations or where such checks are in our legitimate business interests
- We obtain contact details and other information from our business contacts
- We collect information from publicly available sources such as social media, the internet and news articles
- We collect personal data while monitoring our technology tools and services, including our websites, e-mail and social media communications. For information about our use of tracking devices and cookies, please refer to our Cookies Policy.
If you wish to give us personal information about another person, please speak to us to ensure that you are legally entitled to give us the information and for advice on whether you need to inform that person.
Sharing your personal data
- A number of third parties may have access to your personal data or we may share or send it to them. This includes:
- Suppliers, bound by obligations of confidentiality, who provide goods, services and professional advice to us to help us run our businesses
- Credit reference agencies to help us undertake identity and credit checks
- Third parties engaged in the course of services we provide to clients such as experts, counsel, professional advisers, funders, and insurance providers
- Third parties involved in our clients’ matters such as counterparties in litigation and transactions, their representatives and other advisers, courts and tribunals, government agencies and law enforcement agencies
We may also be required to share personal data with regulatory authorities, government agencies and law enforcement agencies. We will use reasonable endeavours to notify you before we do this, unless we are legally restricted from doing so.
We do not sell, rent or otherwise make personal data commercially available to any third party.
Transfers outside the European Economic Area (EEA)
We do not send personal data outside the European Economic Area (EEA) as a matter of course, however, some of our service providers including but not exclusively consultants and funders are based outside the EEA.
Transfers of personal data outside the EEA can arise where we are acting for individuals or business clients with interests outside the EEA, such as in the following circumstances:
Where we are acting for individual clients that:
- live outside the EEA
- have assets or relatives based outside the EEA
- work or have worked for businesses that have operations based outside the EEA
- have a reason to make a claim against a business, individual, trust, estate or organisation based outside the EEA
Where we are we acting for businesses or organisations that:
- have operations or employees / contractors that based outside the EEA
- buy goods or services from businesses or organisations that are based outside the EEA
- are entering into transactions with business, organisations or individuals based outside the EEA
- have potential legal disputes with a business, individual, trust, estate or organisation based outside the EEA.
- third parties (such as regulatory authorities, advisors or other suppliers to LGWP Law);
- overseas suppliers and;
- a cloud-based storage provider
We want to make sure that your data is stored and transferred in a way which is secure. We will therefore only transfer data outside the EEA where it is compliant with data protection legislation and the means of transfer provides adequate safeguards in relation to your data, for example where it is necessary for the conclusion or performance of a contract between ourselves and a third party and the transfer is in your interests for the purposes of that contract (for example, if we need to transfer data outside the EEA in order to meet our obligations under that contract if you are a client of ours), or when you have consented to the data transfer.
If we are required to transfer personal data outside of the EEA, we will ensure that we do so in a legally compliant manner and take steps to ensure the information is protected in the same way as if it was being used in the EEA. If you are affected, you should discuss this with the lawyer acting for you who will explain the particular safeguards that we will put in place.
To ensure that your personal information receives an adequate level of protection, we have put in place appropriate procedures with the third parties we share your personal data with to ensure that your personal information is treated by those third parties in a way that is consistent with and which respects the law on data protection.
Choosing not to give personal data
If you choose not to provide us with certain personal data, you should be aware that we may not be able to offer you certain services. For example, we cannot act for you unless we are able to check your identity and run anti-money laundering checks.
How long we keep personal data
Our policy is to hold personal data for no longer than is necessary. We have established data retention timelines for all the personal data that we hold based on why we need the information. The timelines take into account any statutory or regulatory obligations we have to keep the information, our ability to defend legal claims, our legitimate business interests, best practice and our current technical capabilities. We have developed a Data Retention Policy that captures this information. We delete or destroy personal data securely in accordance with the Data Retention Policy.
We are strongly committed to information security and we take reasonable and appropriate steps to protect your personal data from unauthorised access, loss, misuse, alteration or corruption. We have put in place physical, electronic, and managerial procedures to safeguard and secure the information you provide to us. If you wish to discuss the security of your information, please contact us.
You have rights in relation to your personal data stored by us. Not all of the rights apply in all circumstances. If you wish to exercise any of them, please contact us in the ways detailed below:
- You have a right of access to the personal data we hold about you.
- You have the right to ask us to correct any information we hold about you that you think is wrong or incomplete.
- You have the right to object to any processing of your personal data where we are relying on a legitimate interest to do so and you think that your rights and interests outweigh our own and you wish us to stop. There may, however, be legal or other legitimate reasons why we need to keep or use your information. If this is the case, we will consider your request and explain why we cannot comply with it. You can ask us to restrict the use of your personal data while we are considering your request.
- You have the right to object if we process your personal data for the purposes of direct marketing. If you no longer want to receive communications from us, please contact us. We will stop sending you communications but will continue to keep a record of you and your request to not hear from us. If we deleted all of your information from our direct marketing databases, we would have no record of the fact that you have asked us not to communicate with you and it is possible that you may start receiving communications from us at some point in the future if we obtain your details from a different source.
- You have the right to ask us to delete your information. This is also known as the right to be forgotten or to erasure. We will not always agree to do this in every case as there may be legal or other legitimate reasons why we need to keep or use your information. If that is the case, we will consider your request and explain why we cannot comply with it. You can ask us to restrict the use of your personal data while we are considering your request.
- Where our processing of your personal data is based on your consent, you have the right to withdraw it at any time. Please contact us if you wish to do so.
- You may have a right to obtain the personal data that you have given us in a format that may be easily re-used and to ask us to pass this personal data on in the same format to other organisations. Please contact us to find out if this right applies to you.
Complaints regarding personal data handling
Please let us know if you are unhappy with how we have used your personal data. To notify us of a concern please contact our Director of Client Care, David Evans on 029 2022 29716 or by email at email@example.com or by post to David Evans, LG Williams & Prichard, 22 St Andrews Crescent, Cardiff, CF10 3DD.
You also have the right to complain to the Information Commissioner’s Office. Find out on their website (www.ico.org.uk) how to report a concern.
What’s a cookie?
Cookies are small text files that can be used by nearly all websites to make a user’s experience more efficient. It allows the website to recognise that user’s device and store some information about the user’s preferences or past actions.
This site uses different types of cookies. Some cookies are placed by third party services that appear on our pages.
1. We are required to obtain your consent for all non-essential cookies used on our website. You can block cookies (including essential cookies) at any time in your browser settings. Blocking essential cookies may mean you will be unable to access all or parts of our site.
2. We use targeting cookies on our website to anonymously record your visit and the pages visited. We use this information to make our website and the information displayed on it more relevant to your interests.
3. Third party cookies are used on our website and enable us to remarket to you, most often using Facebook pixels so that we can show you relevant content from us when you are on Facebook. We use the following third-party cookies:
- Universal Analytics (Google analytics)
- Facebook Pixels (Facebook advertising)
- Active Campaign (email tracking)
- landbots.io (website optimisation)
- ASPXANONYMOUS (data delivery)
- RequestVerificationToken (security)
- ASP.NET_SessionId (website functionality)
- CookieConsent (consent to website cookies)
- dnn_IsMobile (mobile device formatting optimisation)
- language (saves user’s language preference)
- firebase:host:#.firebaseio.com (website optimisation)
- InfoBoxUserId (website optimsation)
Your consent to cookies applies to the domain https://cleanairclaims.co.uk. You may withdraw your consent from the Cookie Declaration on our website at any time.