Privacy & Cookies
Jobling Gowler Privacy Notice
This policy sets out the basis upon which any personal data we collect from you, or that you provide, is processed by us.
If you are a client of the firm, the whole statement is relevant to you; otherwise, only parts of it will apply.
Your personal data- what is it?
Personal data relates to an individual who can be identified, directly or indirectly, from that data. The processing of personal data is governed by the Data Protection Act 1998 (DPA) and the new General Data Protection Regulation (GDPR).
Identity and contact details of the Data Controller
For the purpose of the GDPR regulations, Jobling Gowler Solicitors (‘We’) are the data controller of personal data we hold about you.
We have a nominated Data Protection Officer, Emily Raw, who can be contacted via email@example.com. Alternatively, you can call Emily on (01625) 614250.
Information we may collect from you
Jobling Gowler Solicitors complies with its obligations under the GDPR by endeavouring to keep personal data up-to-date; by storing and destroying it securely; by not collecting or retaining excessive amounts of data; by protecting personal data from loss, misuse and unauthorised access and disclosure; and by ensuring that appropriate technical measures are in place to protect personal data.
As a visitor to our website
In general, you can visit our website without revealing any personal data about yourself. When you visit this website, we do not collect personal information about you unless you voluntarily submit the data using one of the forms on the website (referred to within this policy as ‘Registration Pages’) and give your consent to the collection and use of your personal data for the specified purposes. On these Registration Pages we may collect various pieces of your personal information that you provide including, for example, your name, address, email address and phone number.
A ‘cookie’ is a small file stored on the user’s computer. The file contains a modest amount of non-personally-identifiable information about the user and the website. This file can be accessed by either the web server or the client computer.
There are three types of cookies in use on our website. Visitors to our website are able to adjust what cookies we collect. The three types of cookies are :-
These are required for the website to function correctly (e.g. to generate an enquiry form submission). These are enabled by default and can only be
disabled by changing your browser settings. Most browsers can be set to notify you when you receive a new cookie and how to disable cookies completely. The help menu of your web browser will be able to give you further details. Or visit www.aboutcookies.org for information about how you can control and delete cookies.
Google Analytics Cookies
These include other third-party code that we use on our site. These will be disabled by default and will require consent before they are set.
Our website may, from time to time, contain links to and from other websites. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.
As a Client
We routinely collect personal information, necessary for us to undertake your instructions and meet the associated regulatory requirements. The type of data collected may include, but is not limited to:
- Your contact details
- Information that you provide to us to confirm your identity when you first instruct us
- Information collected from third parties necessary for us to carry out your instructions. Such information may include:
- medical records
- information included in witness statements
- information provided by experts
- Information contained in emails or other correspondence from you and records of telephone calls or meetings with you
- Information contained in documents provided by you in the course of your instructions
- We may also ask you to complete surveys that we use for research purposes, although you do not have to respond to them and you can answer them anonymously.
- Details of transactions you carry out through us in the course of your instructions and in the settlement of your account with us.
- Your interests and preferences so we can select what briefings and event notifications we send you.
Purpose of collecting and processing your personal data
- To provide you with advice and carry out your instructions
- To carry out our obligations arising from any contracts entered into between you and us
- To issue bills and arrange payment with you
- To provide you with details of any changes in the law that may affect you
- To provide you with information about events, products or services and news that you request from us or which we feel may interest you, where you have consented to be contacted for such purposes
- To conduct appropriate anti-fraud or credit reference checks necessary to ensure our compliance with anti-money laundering regulations
- To notify you about changes to our service
- To perform bookings and associated administration when you book to attend any of our events
- We may also be obliged to disclose personal information about you to agreed third parties, in order to meet our obligations, as identified above. This may include sharing information with, for example, experts, the courts, and regulators.
If we wish to use your personal data for a new purpose, not covered by this data protection notice, then we will provide you with the new notice explaining this new use prior to commencing the processing and setting out the relevant purposes and processing conditions. Where and whenever necessary, we will seek your prior consent to the new processing.
The legal basis for processing your personal data
It is necessary to process the data identified within this notice, in the manner described, for the performance of our contract with you. In some cases, it is necessary for us to take steps, at your request, prior to entering into a contract with you. This may include, for example, responding to a Registration Page, that you have completed, on our website.
Where the information we hold about you is deemed under the GDPR to be of a special category (e.g. data concerning your health), you will be asked to provide explicit consent for its collection.
In such circumstances where we have been instructed to act on behalf of a vulnerable individual who is unable to provide consent, we will only collect and process data necessary to protect the vital interests of the that individual and will do so in accordance with GDPR and Court of Protection Regulations.
Sharing your personal data
Your data is treated as strictly confidential and will only be shared with:
- Identified and agreed third parties necessary for the fulfilment of our contract with you. This may include, but is not restricted to:
- legal team (Counsel)
- The Courts
- Regulators, this may include, but is not restricted to:
- Solicitors Regulation Authority (SRA)
- Government organisations. This may include, but is not restricted to:
- Social Services
- Professional bodies required to audit our professional practices. This may include, but is not restricted to:
- The Legal Aid Agency
- Law Society Personal Injury & Clinical Negligence Panels
- The Society for Trust and Estate Practitioners (STEP)
- Law Society Lexcel assessors – Lexcel is the Legal Practice Quality Mark
- Our nominated company accountants
We use a cloud-based legal software package to help us ensure the efficient progression of your matter and the safe storage and management of your data. The software meets the current standards for security and data protection. We have carefully selected this outsourced provider to ensure that they can meet and uphold the standards outlined within this policy. A copy of their privacy notice is held by Jobling Gowler Solicitors.
Storing your personal Information
We keep your personal data for no longer than is reasonably necessary in order for us to fulfil our obligations. All files will be securely stored until any risk of a potential claim has passed.
The retention dates correspond with the dates of limitation for any potential claim and vary according to the nature of the file and the client’s individual circumstances. The table below identifies the general principles for storage of documents. As a client you will be notified at the end of your matter of how long we will store the file and your personal information.
|Type of File||Data||Period of Retention|
|Any file relating to a person lacking capacity||
|Conveyancing (Acting for the purchaser or for the vendor if retaining part of the title)||
|Any file relating to a minor||
||Until the child’s 21st Birthday or 7 years (whichever is later)|
|Conveyancing (Acting for the vendor on the sale of the whole property)||
|Probate and Estate Administration (Where the whole estate is wound up and distributed)||
||7 years (unless it involves a property transfer in which case 12 years)|
|Enquiry only (from any source) involving advice being given||· Electronic File only||7 years|
|Completion of Website Registration Pages||· Electronic information entered by the user into the Registration Pages and received electronically by the firm and any subsequent enquiry.||Contact details and other data supplied in the course of a general enquiry are retained only whilst the enquiry is being dealt with. If the enquiry involves the giving of advice and becomes a client file, one of the file categories above will apply|
The data that we control, whether electronic or in paper form, is stored within the European Economic Area (‘EEA’). In practice, your data is held within the UK.
Security of your information
Jobling Gowler Solicitors have established a secure framework within which its electronic data is stored:
- Electronic Information Assets are stored within a secure Windows Domain environment or in a secure cloud-based solution
- Data is protected by file structure permissions
- Data is backed up locally and remotely with encrypted backups
- Data is secured in transit via an SSL certificate
- All devices are password protected
- The infrastructure of the firm’s IT incorporates an active password protection policy
- Following partner approval, solicitors and managers may have remote access to data held by the controller, via encrypted VPN access (IPSEC VPEN).
In order that Jobling Gowler Solicitors can successfully undertake your instructions, it will be necessary for us to collect and process your data.
You have a right to access your personal information, to object to the processing of your personal information, to rectify, to erase, to restrict and move your personal information.
Unless subject to an exemption under GDPR, you have the following rights with respect to your personal data:
- the right to request a copy of your personal data which we hold about you. This is known as Subject Access Request (SAR). Specific guidance about how to make an SAR, can be found from the Information Commissioner’s Office (ICO) website at https://ico.org.uk/for-the-public/;
- the right to request that Jobling Gowler corrects any personal data if it is found to be inaccurate or out of date;
- the right to request that your data is erased. (Please note the exception to this right, where there is a lawful reason to retain the information, e.g. in order for us to comply with regulatory requirements and/or to establish, exercise or defend legal claims);
- the right to withdraw your consent to the processing of data at any time;
- the right to request that the data controller provide the data subject with his/her personal data and where possible, to transmit that data directly to another data controller (known as the right to data portability);
- the right, where there is a dispute in relation to the accuracy or processing of your personal data, to request that a restriction is placed on further processing;
- the right to launch a complaint with the ICO. Specific guidance about how to make such a complaint can be found on the ICO website https://ico.org.uk/for-the-public/
- the right to ask us not to process your personal data for marketing purposes.
To exercise all relevant rights, queries or complaints please contact Emily Raw via email at enquiries@Jobling-Gowler.co.uk or call on (01625) 614250.
Questions, comments and requests regarding this privacy statement are welcomed and should be addressed to: firstname.lastname@example.org