We are committed to protecting the privacy of our contacts, clients, suppliers and employees (“you” and when relating to you, “your”) and complying with the Australian Privacy Principles set out in the Privacy Act 1988 (Cth) (Privacy Act).
In this policy we describe how we manage your personal information.
1. The kinds of personal information we collect
1.1 The kinds of personal information that we collect include:
(a) contact details such as name, role or position, address, email address, mobile number, landline number and fax number;
(b) information relating to your circumstances and affairs relevant to the matter/s in which we are instructed;
(c) information about your legal interests and requirements and the legal services that you may wish to purchase;
(d) information regarding our communications with you and your attendance at seminars and promotional events held by us;
(e) if you are an employee or prospective employee, information about your qualifications, skills and work experience;
(f) if you are a supplier or prospective supplier, information about your business skills, services, products and prices;
(g) if you access our website we collect cookies, Google and WordPress analytics data which is anoymous
2. How we collect personal information
2.1 We collect personal information by various means including when:
(a) you contact us with a question or inquiry;
(b) you attend a seminar or event where we are hosting or presenting;
(c) you instruct us to act for you and we open a file and conduct a conflict check;
(d) our clients provide information relating to related and adverse parties relevant to the advice or services we are providing;
(e) we undertake a search or investigation;
(f) you visit our website;
(g) you email us or call us
2.2 Where practicable we collect personal information about you directly from you. However, we may have collected information about you from a third party such as a client, a third party information provider, the courts or a person responding to our questions or inquiries.
2.3 We are required to collect the full name and address of our clients by the Solicitors Rules made under the Legal Profession Act 2004 (NSW). Accurate name and address information must also be collected in order to comply with the trust account record keeping requirements in the Legal Profession Regulation 2005 (NSW) and to comply with our duty to the courts.
2.4 If you are a client and do not provide us with name and address information we cannot act for you.
2.5 If you do not provide us with accurate personal information we may not be able to carry out our instructions or achieve the purpose for which the information has been sought.
3. The purposes for which we collect, hold, use and disclose personal information
3.1 We collect, hold, use and personal information in order to:
(a) respond to your enquiries;
(b) provide legal services;
(c) employ competent and diligent personnel;
(d) monitor or improve the use of and satisfaction with our legal services; and
(e) let you know about legal developments, our expertise and legal services that may be of interest to you.
3.2 We disclose personal information:
(a) in order to carry out the instructions of our clients; and
(b) subject to our confidentiality obligations, when using services in support of our legal practice.
4. The parties to whom your personal information is disclosed
4.1 Subject to our confidentiality obligations, we may share some relevant personal information with:
(a) parties related to a matter you have with us, government authorities and service providers as reasonably required to carry out your instructions;
(b) third party service providers who assist us with archival, auditing, accounting, legal, business consulting, website or technology services.
(c) We also will disclose your information if required by law to do so or in circumstances permitted by the Privacy Act – for example, where we have reasonable grounds to suspect that unlawful activity, or misconduct of a serious nature, that relates to our functions or activities has been is being or may be engaged in, in response to a subpoena, discovery request or a court order.
5. Disclosure of information outside the jurisdiction of collection
5.1 We use Dropbox and Google Docs and may use other third party cloud services from time to time whereby data that may include Personal Information is stored overseas.
5.2 We ensure copies of all files are retained on our local computer servers regardless of the location of any cloud server and if at any time you wish to have your files removed from any cloud services we will do so upon receipt from you of written request. Whilst we shall make best endeavours to ensure any cloud services use reasonable security measures we cannot protect files from any illegal unauthorised access, or actions of any properly legally empowered authorities under jurisdictions where cloud service servers may be located.
Google has data centres in the Americas, Taiwan, Singapore, Ireland, Netherlands, Finland and Belgium*. Dropbox servers are situated in data centres across the United States+.
We take reasonable physical, technical and administrative safeguards to protect your personal information from misuse, interference, loss, and unauthorised access, modification and disclosure. For example, we maintain our files in secure offices and limit access to personal information to individuals with a need to know.
7. Opting In Or Out Of Newsletters And Marketing Information
We may, from time to time, send you newsletters, invitations to receive marketing information. You can opt out of receiving further such communications by notifying us using our contact details below by clicking the “unsubscribe” option at the bottom of any marketing e-mail received from us.
8. Access/correction/updating personal information
8.1 You can contact us to access, correct or update your personal information. Unless we are subject to a confidentiality obligation or some other restriction on giving access to the information and we are permitted to refuse you access under the Privacy Act, we will endeavour to make your information available to you within 30 days. Examples of circumstances where we may refuse to give you access to your personal information include where:
(a) giving access would be unlawful;
(b) we reasonably believe that giving you access would pose a serious threat to the life, health or safety of any individual or to public health or public safety;
(c) giving access would have an unreasonable impact on the privacy of others;
(d) the information could reveal the intentions of a party in negotiations;
(e) giving access could prejudice the taking of appropriate action in relation to unlawful activity;
(f) giving access could reveal evaluative information in a commercially sensitive decision making process.
8.2 If you request to correct your personal information, we will correct, or, if we consider more appropriate, note your request for amendment of the information on your record.
8.3 We will not charge you to make a request to access your record but we may charge you to actually provide access depending on the costs associated with obtaining and providing the material.
8.4 These actions can usually be taken by contacting a customer relations representative using the contact information on the “Contact Us” section below.
9. Notification of Changes
10. Complaints / Contact us
P.O. Box 14
Potts Point NSW 1335
Attention: Raena Lea-Shannon
10.2 We will endeavour to respond to any complaint within 30 days. If you are not satisfied with our response to your complaint you may seek a review by contacting the Office of the Australian Information Commissioner using the information available at http://www.oaic.gov.au/privacy/privacy-complaints.