2.0 Who we are
FisherWright Solicitors collects, uses and is responsible for personal information about you. When we do this, we are the “controller” of this information for the purposes of the General Data Protection Regulation and other applicable data protection laws. This Policy covers the following domains owned and managed by FisherWright Solicitors:
2.1 We are committed to safeguarding the privacy of our website visitors and service users; in this policy, we explain how we will handle your personal data.
3.0 Personal data collected
3.1 In this Section 3 we have set out:
(a) the general categories of personal data that we may process;
(b) the purposes for which we may process personal data; and
(c) the legal bases of the processing.
3.2 We may process data about your use of our website and services “site usage data.” The site usage data may include your IP address, geographical location, browser type and version, operating system, referral source, length of visit, page views and website navigation paths, as well as information about the timing, frequency and pattern of your service use. The source of the usage data is in Google Analytics tracking system. This usage data may be processed for the purposes of analysing the use of the website and services. The legal basis for this processing is consent OR our legitimate interests, namely monitoring and improving our website and services.
3.3 We may process information contained in any enquiry you submit to us regarding or services “enquiry data” this may include your name and email address, plus any details you provide to us to support your enquiry. The enquiry data may be processed for the purposes of contacting you either by phone or an email address provided by you to discuss further the legal services we offer. The legal basis for this processing is consent.
3.4 We may process information in our secure client portal relating to the progress of your legal case, “client data”. The transaction data may include your contact details, your case details and your contract with us. The legal basis for this processing is the performance of a contract between you and us and/or taking steps, at your request, to enter into such a contract and our legitimate interests, namely our interest in the proper administration of our business. Our use of your information is subject to your instructions, GDPR and current the Data Protection regulations and our duty of confidentiality. Therefore, we keep information passed to us confidential and will not disclose it to third parties except as authorised by you or required by law. However, if on your instruction, we are working with other professional service providers (such as expert witnesses or other professional advisors) we will assume that we may disclose any relevant information about your matter to them, but will request your permission ahead of doing so.
What information are we collecting?
We collect your Full name, email and post address, phone number and other relevant information directly from your CV or application form provided by you during the application process. We may also obtain data about you from third parties to enhance and personalise your experience, and make sure we’re finding the jobs most suited to you.
Our team will use the contact details you have provided to get in touch with you by phone, e-mail, post or SMS about the recruitment process and your application. Please let them know if you do not wish them to use a method of contact, and remember to ensure that the contact details you give us are sufficiently private to receive information about your application.
Information we get from social media. Social media is a great way of finding people, and if our recruitment team has approached you about a vacancy, we may have obtained your contact details from sites such as LinkedIn or Facebook, together with any publicly visible information about your skills or experience.
How we share your information.
Like most organisations we use external companies to carry out some aspects of our business, as well as systems and tools provided or hosted externally. Where personal information is processed by a third party, we carry out checks to ensure that they will give it the same level of care and protection as we do. Both we and they are obliged to handle your information in accordance with data protection law, and we are required to put in place contractual measures reinforcing those obligations.
3.8 In addition to the specific purposes for which we may process your personal data set out in this Section 2, we may also process any of your personal data where such processing is necessary for compliance with a legal obligation to which we are subject, or to protect your vital interests or the vital interests of another natural person.
3.9 Please do not supply any other person’s personal data to us, unless we prompt you to do so.
4.0 Use and disclosure of personal information
4.1 We may disclose your personal data to any member of our company insofar as reasonably necessary for the purposes set out in this policy.
4.2 We may disclose your personal data to our insurers and/or professional advisers insofar as reasonably necessary for the purposes of obtaining and maintaining insurance coverage, managing risks, obtaining professional advice and managing legal disputes.
4.3 In addition to the specific disclosures of personal data set out in this Section 4, we may also disclose your personal data where such disclosure is necessary for compliance with a legal obligation to which we are subject, or in order to protect your vital interests or the vital interests of another natural person.
5.0 International transfers of your personal data
5.1 In this Section we provide information about the circumstances in which your personal data may be transferred to countries outside the European Economic Area (EEA).
5.2 FisherWright Solicitors stores all client data inside England and Wales.
5.2 Our data is stored with Amazon Web Services (AWS) in the US. Amazon.com, Inc. is certified under the EU-US Privacy Shield and AWS is covered under this certification. This helps customers who choose to transfer personal data to the US to meet their data protection obligations. Amazon.com Inc’s certification can be found on the EU-US Privacy Shield website here: https://www.privacyshield.gov/list
5.3 You acknowledge that personal data that you submit for publication through our website or services may be available, via the internet, around the world. We cannot prevent the use or misuse of such personal data by others.
6.0 Retaining and deleting personal data
6.1 This Section 6 sets out our data retention policies and procedure, which are designed to help ensure that we comply with our legal obligations in relation to the retention and deletion of personal data.
6.2 Personal data that we process for any purpose or purposes shall not be kept for longer than is necessary for that purpose or those purposes.
Site Usage data –cookies will be held for a maximum of 90 days but are refreshed each time you visit the site
Enquiry data – will be held for a maximum of 18 months if the enquiry doesn’t progress into a case the personal details supplied will be deleted.
Call data – call recordings will be held for a 30-day period and used for training and quality control.
Client data and Correspondence data – We are required to keep our file of papers (except for any of your papers which you ask to be returned to you) for six years. We keep the file upon the understanding that we have your authority to destroy it six years after the date of the final bill we send you. We will not destroy the documents you ask us to deposit in safe custody.
7.0 Your options and consent
7.1 You may instruct us to provide you with any personal information we hold about you; provision of such information will be subject to the supply of appropriate evidence of your identity for this purpose, we will usually accept a photocopy of your passport certified by a solicitor or bank plus an original copy of a utility bill showing your current address.
7.2 We may withhold personal information that you request to the extent permitted by law.
7.3 You may instruct us at any time not to process your personal information for marketing purposes.
7.4 In practice, you will usually either expressly agree in advance to our use of your personal information for marketing purposes, or we will provide you with an opportunity to opt out of the use of your personal information for marketing purposes.
8.0 Your rights
8.1 In this Section 8, we have summarised the rights that you have under data protection law. Some of the rights are complex, and not all of the details have been included in our summaries. Accordingly, you should read the relevant laws and guidance from the regulatory authorities for a full explanation of these rights.
8.2 Your principal rights under data protection law are:
(a) the right to access;
(b) the right to rectification;
(c) the right to erasure;
(d) the right to restrict processing;
(e) the right to object to processing;
(f) the right to data portability;
(g) the right to complain to a supervisory authority; and
(h) the right to withdraw consent.
8.3 You have the right to confirmation as to whether or not we process your personal data and, where we do, access to the personal data, together with certain additional information. That additional information includes details of the purposes of the processing, the categories of personal data concerned and the recipients of the personal data. Providing the rights and freedoms of others are not affected, we will supply to you a copy of your personal data. The first copy will be provided free of charge, but additional copies may be subject to a reasonable fee.
8.4 You have the right to have any inaccurate personal data about you rectified and, taking into account the purposes of the processing, to have any incomplete personal data about you completed.
8.5 In some circumstances you have the right to the erasure of your personal data without undue delay. Those circumstances include: the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed; you withdraw consent to consent-based processing; the processing is for direct marketing purposes; and the personal data have been unlawfully processed. However, there are certain general exclusions of the right to erasure. Those general exclusions include where processing is necessary: for exercising the right of freedom of expression and information; for compliance with a legal obligation; or for the establishment, exercise or defence of legal claims.
8.6 In some circumstances you have the right to restrict the processing of your personal data. Those circumstances are: you contest the accuracy of the personal data; processing is unlawful but you oppose erasure; we no longer need the personal data for the purposes of our processing, but you require personal data for the establishment, exercise or defence of legal claims; and you have objected to processing, pending the verification of that objection. Where processing has been restricted on this basis, we may continue to store your personal data. However, we will only otherwise process it: with your consent; for the establishment, exercise or defence of legal claims; for the protection of the rights of another natural or legal person; or for reasons of important public interest.
8.7 You have the right to object to our processing of your personal data on grounds relating to your particular situation, but only to the extent that the legal basis for the processing is that the processing is necessary for: the performance of a task carried out in the public interest or in the exercise of any official authority vested in us; or the purposes of the legitimate interests pursued by us or by a third party. If you make such an objection, we will cease to process the personal information unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms, or the processing is for the establishment, exercise or defence of legal claims.
8.8 You have the right to object to our processing of your personal data for direct marketing purposes including profiling for direct marketing purposes. If you make such an objection, we will cease to process your personal data for this purpose.
8.9 You have the right to object to our processing of your personal data for scientific or historical research purposes or statistical purposes on grounds relating to your particular situation, unless the processing is necessary for the performance of a task carried out for reasons of public interest.
8.10 To the extent that the legal basis for our processing of your personal data is consent, and such processing is carried out by automated means, you have the right to receive your personal data from us in a structured, commonly used and machine-readable format. However, this right does not apply where it would adversely affect the rights and freedoms of others.
8.11 If you consider that our processing of your personal information infringes data protection laws, you have a legal right to lodge a complaint with a supervisory authority responsible for data protection. You may do so in the EU member state of your habitual residence, your place of work or the place of the alleged infringement.
8.12 To the extent that the legal basis for our processing of your personal information is consent, you have the right to withdraw that consent at any time. Withdrawal will not affect the lawfulness of processing before the withdrawal.
9.0 How to make a complaint
We hope that you are happy with our service and that we can resolve any issues or complaints that arise. Please get in touch if you have any concerns (see “Our details” below).
The General Data Protection Regulation also gives you the right to lodge a complaint with a supervisory authority, in particular in the European Union (or European Economic Area) state where you work, normally live or where the alleged infringement of data protection laws occurred. The UK supervisory authority if the Information Commissioner’s Office who can be contacted at https://ico.org.uk/concerns/.
10.0 About cookies
10.1 A cookie is a file containing an identifier (a string of letters and numbers) that is sent by a web server to a web browser and is stored by the browser. The identifier is then sent back to the server each time the browser requests a page from the server. To find more information about cookies, manage or delete the cookies on your devices, please visit: www.allaboutcookies.org
10.2 Cookies may be either “persistent” cookies or “session” cookies: a persistent cookie will be stored by a web browser and will remain valid until its set expiry date, unless deleted by the user before the expiry date; a session cookie, on the other hand, will expire at the end of the user session, when the web browser is closed.
10.3 Cookies do not typically contain any information that personally identifies a user, but personal information that we store about you may be linked to the information stored in and obtained from cookies.
11.0 Cookies that we use
12.0 Managing cookies
12.1 Most browsers allow you to refuse to accept cookies and to delete cookies. The methods for doing so vary from browser to browser, and from version to version. You can however obtain up-to-date information about blocking and deleting cookies via these links:
(a) https://support.google.com/chrome/answer/95647?hl=en (Chrome);
(c) http://www.opera.com/help/tutorials/security/cookies/ (Opera);
(d) https://support.microsoft.com/en-gb/help/17442/windows-internet-explorer-delete-manage-cookies (Internet Explorer);
(e) https://support.apple.com/kb/PH21411 (Safari);
(f) https://privacy.microsoft.com/en-us/windows-10-microsoft-edge-and-privacy (Edge).
12.2 Blocking all cookies will have a negative impact upon the usability of many websites.
13.1 This Site takes precautions to protect our users’ information. When users submit sensitive information via the Site, FisherWright Solicitors shall endeavour to ensure that your information is protected both online and off-line. If you have any questions about the security at our Site, please contact FisherWright Solicitors.
This web site could contain links to other sites. Please be aware that FisherWright Solicitors is not responsible for the privacy practices of such other sites. We encourage our users to be aware when they leave our site and to read the privacy statements of these third-party sites.
This privacy statement applies solely to information collected by the Web sites listed in this policy.
15.1 We may update this policy from time to time by publishing a new version on our website. This policy is dated 24/05/2018
15.2 You should check this page occasionally to ensure you are happy with any changes to this policy.
15.3 We will not update you of every little change to this policy but significant changes will be notified via email.
15.4 You can contact us:
(a) by post, using the postal address above;
(b) using our website contact form;
(c) by telephone, on 0208 719 0101;
16.0 Our details
FisherWright Solicitors is a Limited Company authorised and regulated by the Solicitors Regulation Authority Registration No. 622283
We are registered in England and Wales under registration number 09536645 and our registered office our head office at: 26 New Broadway, London, W5 2XA.