Louise M. Corrigan & Associates
- Who we are:
We are Louise M. Corrigan & Associates (“LMCA”) of 4 Upper Pembroke Street, Dublin 2, Ireland. You can contact us at this address by post or by email firstname.lastname@example.org.
Our data protection representative is Louise Corrigan, 4 Upper Pembroke Street, Dublin 2. Email:email@example.com
LMCA is responsible for your Personal Data and this Privacy Statement explains how and why LMCA processes personal information that we collect from or that is provided to us by clients and/or those with whom we deal on behalf of clients, as part of business operations, including via our website, www.louisecorriganlaw.com
- When do we process your data?
We may process your personal data
- When you, or an organisation with which you are connected, become our client;
- For marketing, business operation and relationship management purposes;
- When you visit our website.
Processing your personal data when you, or an organisation with which you are connected, are our client.
A, How we collect your personal data:
When you or an organisation with which you are connected (e.g. your employer) engaged us to perform legal or other services, we may collect certain personal data directly from you, your organisation and/or from publicly available resources.
B. Nature of the data we collect:
LMCA will collect and process personal data including, where applicable:
- Your name;
- Your employment information;
- Your contact details, including your address, email address and phone number;
- Documentation confirming your identity, such as your passport or driving licence;
- Your status as a director or beneficial owner of a company;
- Financial information, including information necessary to make or receive payments from you or on your behalf and for the purposes of fraud prevention;
- Details of your visits to our office and your correspondence, communications and connections with our firm;
- Special category of personal data, specifically information regarding racial/ethnic origin, religious beliefs, trade union membership, physical/mental health, sex life/sexual orientation, genetic data, biometric data, immigration history, criminal history, which we will only process on the basis of your consent;
- Publicly available information;
- Any information which is provided to us by you or on your behalf.
C. Why we process your personal data:
We process this personal data according to the following legal bases:
- Entering into and performing a contract with you, and in particular:
- To incept you or your organisation as our client;
- To provide legal advice or other services or matters that have been requested;
- Managing and administering you or your organisation’s business relationship with LMCA, including processing payments, auditing, billing and collection and support services; and
- For purposes related and/or ancillary to any of the above or any other purpose for which your personal data was provided to us.
It is necessary to provide us with your Personal Data on this basis as it is necessary to provide our services to you. The consequence for not doing so is that we will not be able to perform the legal services or other services for which you or your organisation engage us.
2. Legitimate Interests:
We process your personal data where it is in our legitimate interest to do so, and in particular:
- To incept the organisation with which you are connected as our client;
- To enter into a contractual relationship with the organisation with which you are connected;
- To provide legal advice or other services or matters that the organisation has requested;
- Managing and administering the organisation’s business relationship with LMCA, including processing payments, accounting, auditing, billing and collection and support services;
- To conduct client due diligence checks; and
- For purposes related to/ancillary to any of the above or any other purpose for which your personal data was provided to us.
When we process your personal data based on our legitimate interests, we make sure to balance any potential impact on you and your data protection rights. You have certain rights when we process your personal data on this basis, which is further explained under “Your Rights”.
3. Compliance with legal obligations:
We also process your personal data in order to comply with legal obligations to which we are subject, in particular:
- To comply with our legal and regulatory obligations;
- To conduct client due diligence checks;
- To comply with our obligations under anti-money laundering and terrorist financing legislation;
- To comply as appropriate with the Law Society of Ireland, New York State Bar, United States Supreme Court, Chartered Accountants Ireland and other relevant governmental and/or regulatory authorities or bodies;
- To conduct conflict checks;
- To establish, exercise and defend our legal rights and any legal proceedings which may arise; and
- To prevent, detect and respond to any actual or potential fraud or other illegal activities.
D. Sharing and Disclosure of your Personal Data
We may disclose some or all of your personal data we collect from you to certain trusted third parties in accordance with contractual arrangements we have in place with these third parties or as required by law, including:
- Government agencies or departments who process and adjudicate applications with which we are engaged to assist;
- Third parties such as barristers, foreign counsel, consultants, advisors and technology service providers;
- Other people in your organisation;
- Our auditors and professional advisors;
- Suppliers and service providers to whom we outsource support services;
- IT service providers;
- Third parties involved in hosting or organising events or seminars;
- Regulators and official authorities.
E. Data Retention
In accordance with our Data Retention Policy, we shall keep the personal data we process on the instructions of our clients for a minimum period of 13.5 years from closure of the relevant matter or for a period of 7.5 years after the client I question ceases to be our client. We retain the personal data so that we may fulfil our obligation and duty as a law firm to protect our client’s interests, to protect our own interests as a law firm and as is required by legal and regulatory obligation to which we are subject.
Personal Data which you provide to LMCA
It is your responsibility to ensure that all personal data which you provide to us is complete, accurate and up-to-date in all respects and in no way misleading. Our ability to provide our advice and services, and the quality thereof, may be negatively affected if you fail to do so. Whenever you provide us with personal data about another person, you must ensure that you are entitled to disclose the personal data about that other person to LMCA and that we may process that personal data in accordance with this privacy statement without having to take any further steps. It is your responsibility to ensure that the person concerned is aware of the content of this privacy statement.
Transfers of Personal Data
We may transfer your personal data outside of the EU where necessary for us to be able to perform the services for which we are engaged and to provide legal advice. We only transfer your personal data where the EU Commission has decided that the third country in question ensures an adequate level of protection in line with EU Data Protection standards, or where there are appropriate safeguards in place to protect your personal data, or where we have your consent to do so. If you would like to find out more about the appropriate safeguards that are in place to govern the transfer for your personal data, you can contact us at firstname.lastname@example.org.
You have the following rights under the GDPR, in certain circumstances and subject to certain exemptions, in relation to your personal data:
- Right of Access– you have the right to request a copy of the personal data that we hold about you, together with other information about our processing of that personal data.
- Right to Rectification– you have the right to request that any inaccurate data that is held about you is corrected, or if we have incomplete information you may request that we update the information such that it is complete.
- Right to erasure– you have the right to request us to delete personal data that we hold about you. This is sometimes referred to as the right to be forgotten.
- Right to restrictionof processing or to object to processing – you have the right to request that we no longer process your personal data for particular purposes, or to object to our processing of your personal data for particular purposes.
- Right to data portability– you have the right to request us to provide you, or a third party, with a copy of your personal data in a structured, commonly used machine-readable format.
In order to exercise any of the rights set out above, please contact us at the contact details at the start of this privacy notice. Please bear in mind that your rights in relation to your personal data are not absolute and that we must be cognisant of our legal and regulatory obligations and our duties as a law firm.
If we are processing personal data based on your consent, you may withdraw that consent at any time. This does not affect the lawfulness of processing which took place prior to its withdrawal.
If you are unhappy with how we process personal data, we ask you to contact us so that we can rectify the situation.
You may lodge a complaint with a supervisory authority. The Irish supervisory authority is the Data Protection Commission.