Ashurst is responsible for your personal data. Ashurst comprises Ashurst LLP ("we", "us" or "our") (OC330252) London Fruit & Wool Exchange, 1 Duval Square, London E1 6PW, United Kingdom; Ashurst Australia, (ABN 75 304 286 095) a general partnership constituted under the laws of Australian Capital Territory at 5 Martin Place, Sydney, New South Wales 2000 and their respective representatives and affiliates throughout the world (the "Ashurst Entities"). Specifically, your data will be controlled by the Ashurst Entity that you have instructed or that is providing services or communication to you in your region.
The personal data we collect may include:
From time to time, it may include personal data about your membership of a professional or trade association or union, health personal data, details of dietary preferences when relevant to events to which we invite you and details of any criminal record you may have.
We may collect personal data about you in a number of circumstances, including:
In some circumstances, we collect personal data about you from a third party source. For example, we may collect personal data from your organisation, other organisations with whom you have dealings, government agencies, a credit reporting agency, an information or service provider or from a publicly available record.
As a general principle, you will provide us with your personal data entirely voluntarily; there are generally no detrimental effects for you if you choose not to consent or to provide personal data. However, there are circumstances in which Ashurst cannot take action without certain of your personal data, for example because this personal data is required to process your instructions or orders, provide you with access to a web offering or newsletter or to carry out a legally required compliance screening. In these cases, it will unfortunately not be possible for us to provide you with what you request without the relevant personal data and we will notify you accordingly.
You agree that we may use your personal data and any information you provide in accordance with this Notice for the following purposes only ("Permitted Purposes"):
Where you have expressly given us your consent, we may process your personal data also for the following purposes:
With regard to marketing-related communication, we will - where legally required - only provide you with such information after you have opted in and provide you the opportunity to opt out anytime if you do not want to receive further marketing-related communication from us. We will not use your personal data for taking any automated decisions affecting you or creating profiles other than described above.
Depending on for which of the above Permitted Purposes we use your personal data, we may process your personal data on one or more of the following legal grounds:
In addition, the processing may be based on your consent where you have expressly given that to us.
We may share your personal data in the following circumstances:
Otherwise, we will only disclose your personal data (i) when you direct us or give us permission, (ii) when we are required by applicable law or regulations or judicial or official request to do so, (iii) as required to investigate actual or suspected fraudulent or criminal activities or when we believe disclosure is necessary or appropriate to prevent physical harm or financial loss or in connection with an investigation of such activities, (iv) to enforce the terms of this Notice, (v) to protect the rights, property, security or safety of FinTech Legal Labs, its sponsors and the supporting organisations to the FinTech Legal Labs, Website users or the public, (vi) to respond to an emergency, or (vii) as otherwise stated in this Notice.
If you provide personal data to us about someone else (such as one of your directors or employees, or someone with whom you have business dealings) you must ensure that you are entitled to disclose that personal data to us and that, without our taking any further steps, we may collect, use and disclose that personal data as described in this Notice. In particular, you must ensure the individual concerned is aware of the various matters detailed in this Notice, as those matters relate to that individual, including our identity, how to contact us, our purposes of collection, our personal data disclosure practices (including disclosure to overseas recipients), the individual's right to obtain access to the personal data and make complaints about the handling of the personal data, and the consequences if the personal data is not provided (such as our inability to provide services).
We will take appropriate technical and organisational measures to keep your personal data confidential and secure in accordance with our internal procedures covering the storage, disclosure of and access to personal data. Personal data may be kept on our personal data technology systems, those of our contractors or in paper files.
Kindly note, however, that maintaining “perfect security” on the internet is not possible and we cannot guarantee the full security of your information. We shall not be liable for any system violations or interception of our transmission. Any liability associated with any claim relating to a breach of security, data or information is hereby fully disclaimed, to the fullest extent provided under law.
Ashurst is a globally active law firm. We may transfer your personal data abroad if required for the Permitted Purposes as described above. This may include countries which do not provide the same level of protection as the laws of your home country (for example, the laws within the United Kingdom and other countries in the European Economic Area, or Australia). We will ensure that any such international transfers are made subject to appropriate or suitable safeguards as required by the General Data Protection Regulation (EU) 2016/679 or other relevant laws. This includes entering into the EU Standard Contractual Clauses which are available here [https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_en]. You may contact us anytime using the contact details below if you would like further information on such safeguards.
All Ashurst offices throughout the world will at all times ensure a level of data protection at least as protective as that required in the United Kingdom and other countries in the European Economic Area and Australia. We will also require our agents, consultants and sub-contractors and others who are outside the United Kingdom, the European Economic Area or Australia and to whom we transfer your personal data to ensure a similar level of data protection.
When doing so we will comply with applicable data protection requirements and take appropriate safeguards to ensure the security and integrity of your personal data,
If any of the personal data that you have provided to us changes, for example if you change your email address or if you wish to cancel any request you have made of us, or if you become aware we have any inaccurate personal data about you, please let us know by sending an email to email@example.com. We will not be responsible for any losses arising from any inaccurate, inauthentic, deficient or incomplete Personal Data that you provide to us.
Your personal data will be deleted when it is no longer reasonably required for the Permitted Purposes or you withdraw your consent (where applicable) and we are not legally required or otherwise permitted to continue storing such data. We will, in particular, retain your personal data where required for Ashurst/FinTech Legal Labs to assert or defend against legal claims until the end of the relevant retention period or until the claims in question have been settled.
Subject to certain legal conditions, you have the right to request a copy of the personal data about you which we hold, to have any inaccurate personal data corrected and to object to or restrict our using your personal data. You may also make a complaint if you have a concern about our handling of your personal data.
If you wish to do any of the above please send an email to firstname.lastname@example.org. We may request that you prove your identity by providing us with a copy of a valid means of identification in order for us to comply with our security obligations and to prevent unauthorised disclosure of data. We reserve the right to charge you a reasonable administrative fee for any manifestly unfounded or excessive requests concerning your access to your data, and for any additional copies of the personal data you request from us.
We will consider any requests or complaints which we receive and provide you with a response in a timely manner. If you are not satisfied with our response, you may take your complaint to the relevant privacy regulator. We will provide you with details of your relevant regulator upon request.
This Notice was last updated in October 2019. We reserve the right to update and change this Notice from time to time in order to reflect any changes to the way in which we process your personal data or changing legal requirements. In case of any such changes, we will post the changed Notice on this Website or publish it otherwise. The changes will take effect as soon as they are posted on this Website.
We welcome your questions or views about this Website and our Notice. If you would like to contact us with any queries or comments, please send an email to email@example.com or send a letter to Data Manager, Ashurst LLP, London Fruit & Wool Exchange, 1 Duval Square, London E1 6PW, United Kingdom, or to the Privacy Officer, Ashurst Australia, GPO Box 9938 Sydney, New South Wales, Australia 2001.