Abbiss Cadres LLP (“Firm”, “We”) are committed to the protection of your personal data. This document sets out key information relating to what we do with your data and what we use it for. It is addressed to our clients, potential clients, visitors to our website and those people outside the firm that subscribe for our communications or who seek further information about our services or who communicate with us.
We deal with your personal data in accordance with UK data protection laws and the General Data Protection Regulations “GDPR” (together the “Data Protection Legislation”). This document is drafted in compliance with the Data Protection Legislation and may be updated from time to time in accordance to changes in UK law.
We are a “data controller” in relation to your personal data. Our contact details are: Abbiss Cadres LLP, 11 Ironmonger Lane, London, EC2V 8EY. Telephone: +44 (0) 203 051 5711. Abbiss Cadres LLP is a limited liability partnership registered in England and Wales with number OC339497.
“Identity Data and Biographical Data” including first name, maiden name, last name, marital status, title, date and place of birth, nationality, gender, tax status, passport / national identity card details and country of domicile, your employment (including applicable terms and policies) and employment history, job title and roles, earnings (particularly where we provide tax/social security advisory or compliance services to you), work performance, education, interests and other information relevant to our interaction with you or provision of professional services to you
“Contact Data” includes billing address, delivery address, email address and telephone numbers.
“Financial Data” includes bank account details and date relating to your financial status and for fraud prevention purposes.
“Transaction Data” includes details about payments from you and other details of matters on which you have instructed us and/or products and services you have purchased from us as well as information gleaned from meetings with you, including your aims if you are seeking professional services from the Firm.
“Technical Data” includes internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access this website.
“Usage Data” includes information about how you use our website, products and services.
“Marketing and Communications Data” includes your preferences in receiving marketing from us and your communication preferences and your feedback and survey responses obtained through professional and/or social interaction.
We collect data from and about you in various ways including from:
Direct interactions. You may give us information about your identity, contact and job data by giving us business cards in hard or electronic copy, by filling in forms (including electronic forms on our website) or by communicating with us by telephone, email, post, or otherwise, or briefing us when you meet with us in person or otherwise interact with our systems. This includes personal data you provide when you:
Automated technologies or interactions. As you interact with our website, we may automatically collect technical data about your equipment, browsing actions and patterns. We collect this personal data by using cookies, server logs and other similar technologies. We may also collect data relating to you if you use other systems belonging to or operated by the firm.
From third parties or publicly available sources. Information about you may also be supplied to us by your organisation or your agents, advisers or other intermediaries or persons acting on your behalf, or by other clients of ours. We may also receive personal data about you from various third parties and public sources as set out below:
We will only use your personal information when the law allows us to. Most commonly, we will use your personal information in the following circumstances:
We may also use your personal information in the following situations, which are considered unlikely to arise:
We set out below the purposes for which we may use your personal data as well as identifying the legal basis. How we use personal data will vary as between clients, their representatives, business contacts, intermediaries and potential clients or other individuals whose personal data we necessarily process as part of our provision of professional services or the operation of our business:
The provision of our services to you or the operation of a contract with you may also require us to process special categories of personal data (including data relating to racial or ethnic origin, political opinions, religious beliefs, trade union membership, health and sexual life) and / or data relating to criminal convictions and offences. Such special category data is subject to additional protection. We may only process such personal data with your explicit consent or the processing is necessary for the establishment, exercise or defence of legal claims, or for reasons of substantial public interest or where you have made such data public or where processing is necessary for the purposes of carrying out the obligations and exercising specific rights we or you may have in the field of employment and social security and social protection law.
In addition to our own staff we may share your data with third parties who process your data on our behalf, when required by law to do so, where it is necessary to administer the commercial relationship with you or where we have another legitimate interest in doing so.
We currently share personal data with the following categories of third party:
We are required to ensure that all such third parties are obliged to take appropriate security measures to protect your personal information. We do not allow our third-party service providers to use your personal data for their own purposes. We only permit them to process your personal data for specified purposes and in accordance with our instructions.
To ensure that your personal information receives an adequate level of protection we have put in place appropriate measures to ensure that your personal information is treated by those third parties in a way that is consistent with and which respects Data Protection Legislation.
We may also share your data with other third parties who do not process your data on our behalf.
It is important that the personal information we hold about you is accurate and current. Please keep us informed if your personal information changes during your working relationship with us.
Under certain circumstances, by law you have the right to:
If you want to review, verify, correct or request erasure of your personal information, object to the processing of your personal data, or request that we transfer a copy of your personal information to another party, please contact us on firstname.lastname@example.org or by post to Privacy Partner at our address as stated above.
You can ask us or third parties to stop sending you marketing messages at any time by logging into the website and checking or unchecking relevant boxes to adjust your marketing preferences or by following the opt-out or unsubscribe links on any marketing message sent to you or by contacting us at any time.
Please note that we may process your personal data without your knowledge or consent, in compliance with the above rules, where this is required or permitted by law. In the limited circumstances where you may have provided your consent to the collection, processing and transfer of your personal information for a specific purpose, you have the right to withdraw your consent for that specific processing at any time. To withdraw your consent, please contact us. Once we have received notification that you have withdrawn your consent, we will no longer process your information for the purpose or purposes you originally agreed to, unless we have another legitimate basis for doing so in law.
The provision of our services to you may require us to transfer personal data outside the European Economic Area to a jurisdiction which may have inferior levels of data protection. We will ensure that any such transfer has appropriate safeguards to meet the requirements of the Data Protection Legislation.
Where you provide us with us with personal data that we use for marketing or business development purposes we may process the data on third party providers’ platforms which may be located outside of the European Economic Area (“EEA”). Where we do so, or where we otherwise process your data outside of the EEA, we can confirm that there are adequate safeguards and protections in place to ensure compliance with the Data Protection Legislation. Please contact email@example.com for a list of these third parties and information on their compliance measures that satisfy the relevant Data Protection Legislation.
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties acting on our behalf who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.
In many cases this will mean that we shall retain your personal data for the same period as we retain your files or a copy of your files. If you are a client of the Firm then we will usually retain our file of the matter (which may include personal data) for 16 years.
If you have any questions about this privacy notice or how we handle your personal information, please contact us at firstname.lastname@example.org, on +44 (0) 203 051 5711 or by post to Privacy Partner at our address as stated above.
The data commissioner’s contact details can be found here or here.
Information Commissioner’s Office
Tel: 0303 123 1113 (local rate) or 01625 545 745 if you prefer to use a national rate number
Fax: 01625 524 510
Changes to this privacy notice
We reserve the right to update this privacy notice at any time. We may also notify you in other ways from time to time about the processing of your personal information.