This policy applies to information we collect:
- On this Site
- In email or other electronic messages between you and this Site via the Contact Form (as defined hereafter).
This policy does not apply to information collected by:
- Us offline or through any other means
- Any third party, including through any application or content that may link to or be accessible from or on the Site.
Who We Are and What We Do
The Nilson Law Group, PLLC is a U.S.-based legal practice providing client services worldwide. Our Data Protection Officer is Nathalie Gast. If you have any questions about the Firm’s use of your personal data, please contact her by any of the following means of communication:
- Postal Address: 10 East 40th Street, Suite 3310 New York, NY 10016
- Phone Number: 212-687-1155
- E-Mail Address: email@example.com
As a law firm, we serve you, the client. In order to best serve you, we may need to collect certain information. The Site is used to present the Firm’s philosophy, services, and the background of the Firm and our team. The Site also provides a means for you to contact the Firm, so that we may communicate with you directly to determine whether the Firm can serve you.
At no point does your use of our Site create an attorney-client relationship between you and the Firm.
We are a global legal practice. Your information may be transferred out of your local jurisdiction or region. Data protection laws vary by country and those applicable in the United States and elsewhere are not equivalent to those applicable in, for example, the European Union or other jurisdictions. NLG will take steps to protect your information in line with locally applicable data protection requirements.
Information You Provide to Us
To access the information contained on our Site, you do not have to submit any personal information. However, if you choose to provide such information to us by way of the “Contact Us” page on the Site (the “Contact Form”), you will have the choice of allowing us to follow up with you on specific matters, to provide you with information that you may be interested in, or to respond to your questions. If you grant us permission to send you information about our services, we and the companies operating on our behalf may use your data to send you this information.
If you give us permission, we may collect the following data through the Contact Form (the “Contact Data”):
- Contact Information: Your name (first and last), telephone (including mobile phone number where provided), and e-mail (including personal e-mail address where provided); and
- Business Information: Company or organization name (if provided) and website (if provided).
You may choose to communicate with NLG using means other than the Site. Please do not send us confidential information until we have confirmed in writing that we represent or act for you or your company or organization. Unsolicited e-mails from non-clients do not establish a lawyer-client relationship and will not be considered privileged.
Information that may be collected through Automatic Data Collection Technologies
As you navigate through and interact with the Site, we may use automatic data collection technologies to collect certain information about your equipment and browsing actions, including information about your computer and internet connection, including your operating system, and browser type.
The information we collect automatically is only statistical data and does not include personal information, but we may maintain it or associate it with personal information we collect in other ways or receive from third parties.
The technologies used for this automatic data collection may include:
How We Use Your Information
We use information that we collect about you or that you provide to us, including any personal information:
- To present the Site and its contents to you.
- To provide you with information or services that you request from us.
- To fulfill any other purpose for which you provide it.
NLG may use the data you have provided through the Contact Form is to effectively communicate directly with you, to run our business, to process your requests, or to provide you with the services you desire. Your personal data will be stored in our server. Additionally, we may share your information with third parties to complete your purchase of services and to aid in the running of the Firm. The extent to which we use and share your information depends upon the nature and purpose of the data itself.
Some of the Firm’s uses of your data include:
- Communication: Sending e-mails, newsletters and other messages to keep you informed of legal developments, market insights, our services, or any events that we think may be relevant to your business interests or needs;
- Regulatory: Compliance with our legal and regulatory obligations as a law firm including auditing and reporting requirements;
- Managing Suppliers: Providing the relevant information our third-party suppliers need to deliver services to us; and
- Legitimate Interests: To pursue the legitimate business interests listed in the “Data Justification” section of this policy, below.
We will process your personal data for a number of reasons:
- Consent: You have given us consent. For example, where you share details for particular purposes or by submitting your personal information via the Site;
- Necessary for Legal or Regulatory Obligations: The Data Processing is required to comply with legal or regulatory obligations.
- Legitimate Business Interests: Provided that our Legitimate Business Interests do not override or infringe upon any interests or rights that you have as a data subject, we may use your data to pursue our Firm’s legitimate business interests. We have legitimate business interests in:
- Providing legal services;
- Managing and/or developing our business;
- Understanding and responding to inquiries and client feedback;
- Understanding how visitors use the Site; and
Disclosure to Third Parties
We may share your information with the following third-parties:
- Suppliers: who support our business, including IT and communication suppliers, outsourced business support, and marketing services. Our suppliers must meet minimum standards as to information security and will only be provided data in line with their function; or
- Law Enforcement Bodies and Our Regulators: Or other competent authorities in accordance with legal requirements and/or good practice.
Your Rights and Access to Your Data
If applicable, the European Union’s General Data Protection Regulation (the “GDPR”) and other countries’ privacy laws may provide you, the data-subject, with certain rights. A good explanation of them (in English) is available on the website of the United Kingdom’s Information Commissioner’s Office. However, for your convenience, please find below some of these rights. Please note that some of these rights will only apply in certain circumstances.
- Access: you are entitled to ask us if we are processing your data and, if we are, you can request access to your personal data, including asking which categories of your personal data we store and/or use. This enables you to receive a copy of the personal data we hold about you and certain other information about the data;
- Purpose: you are entitled to understand the purpose of our processing of your personal data;
- Correction: you are entitled to request that any incomplete or inaccurate personal data we hold about you be corrected or rectified;
- Origin: if you didn’t provide your personal data to us directly, you may ask us about the origin of your personal data. Said differently: you may ask us where NLG obtained your personal data;
- Duration: you may ask us how long your personal data will be stored in our database;
- Erasure: you are entitled to ask us to delete or remove personal data in certain circumstances. There are certain exceptions where we may refuse a request for erasure; for example, where the personal data is required for compliance with law or in connection with claims;
- Restriction: you are entitled to ask us to suspend the processing of certain of your personal data; for example, if you want us to establish its accuracy or the reason for processing it;
- Transfer: when technically feasible and not prohibited by law, you may ask us to help you transfer certain of your personal data to another party. If access cannot be provided within a reasonable time- frame, NLG will provide you with a date when the information will be provided. If – for some reason – access is denied, NLG will provide an explanation as to why access has been denied; further, you may ask us who else outside of NLG might have received your personal data;
- Objection: where we are processing your personal data based on a legitimate interest (or those of a third-party), you may challenge this legitimate interest. However, we may be entitled to continue processing your information. You also have the right to object where we are processing your personal information for direct marketing purposes;
- Automated decisions: you may contest any automated decision made about you where this has a legal or similar significant effect and ask for it to be reconsidered; and
- Consent: where we are processing personal data with your consent, you can withdraw your consent.
If you want to exercise any of these rights, please contact Nathalie Gast, our Data Protection Officer, via email at firstname.lastname@example.org. Additionally, note that in many countries you have a right to lodge a complaint with the appropriate data protection authority if you have concerns about why NLG processes your personal data. Any complaint you would like to lodge may be submitted to either the European Union Member-State in which you reside or where an alleged infringement of data protection law has taken place.
Direct Marketing Opt-Out
As described above, if you fill-out the Contact Form and submit personal data through the Site, we may use the information you give us for direct marketing purposes to provide e-mails, newsletters, and other messages to keep you informed of legal developments, market insights, and of our services.
You can opt-out of receiving direct marketing from us at any time. You can do this by clicking the “unsubscribe” link included at the end of any marketing e-mail we send you, or by contacting our Data Protection Officer.
We take commercially reasonable physical, electronic, and administrative steps to maintain the security of your personal data collected, including limiting the number of people who have physical access to database servers, as well as employing electronic security systems and password protections that guard against unauthorized access. Unfortunately, the transmission of information via the internet is not completely secure. Although we do our best to protect your personal information, we cannot guarantee the security of your personal information transmitted to the Site. Any transmission of personal information is at your own risk.
The Site is not intended for children under 16 years of age. No one under age 16 may provide any personal information to the Site. We do not knowingly collect personal information from children under 16. If you are under 16, do not use or provide any information on this Website or provide any information about yourself to us, including your name, address, telephone number, email address, or any screen name or username you may use. If we learn we have collected or received personal information from a child under 16 without verification of parental consent, we will delete that information. If you believe we might have any information from or about a child under 16, please contact our Data Protection Officer.
How to Contact Us
If you would like more information about the way we manage the personal data that we hold about you, please contact us by using the contact information set out at the top of this notice.