This website is operated by Flynn O’Driscoll LLP (“FOD” / “we” / “us”/ “our”), a business law firm with its headquarters located at No.1 Grant’s Row, Lower Mount Street, Dublin 2, Ireland.
We respect your right to privacy and take seriously our responsibilities in relation to the processing of personal data. We do not collect or process personal data unnecessarily. We do not knowingly attempt to solicit or receive information from children.
This Policy sets out important information about:
Please read this Policy to learn more.
If you join our team, whether as an intern, pre-trainee, trainee, solicitor, associate, partner, consultant or as a technical, administrative, operational or other employee of the firm, additional terms and policies will apply and be notified to you. Our Letter of Engagement and Terms of Business also governs our relationship with clients and the provision of our Services in relation to any particular legal matter.
We will collect and process the following data about you for the following purposes:
Your Data. This is information about you that you give us by filling in forms on our Site or by corresponding with us by telephone, e-mail, post or otherwise in relation to the Services or any particular or ancillary matter. This includes information you provide when you use our Site, or report a problem with our Site, or when you use the Services.
The information you give us may include:
Automatically Collected Information. With regard to each of your visits to our Site we will automatically collect the following information:
We do not require or collect any personal data that is your sensitive personal data or any special category of personal data under the GDPR, unless you decide to provide this information to us and/or this information is required to help us ensure a safe place of work and comply with government guidelines and public health advice.
“Cookies” are small text files which are stored by your browser on your computer and are normally used to gather statistical information and to analyse trends of use or access to a website.
Cookies may be placed on your computer or internet-enabled device whenever you visit us online. This allows the site to remember your computer or device and serves a number of purposes. For example, cookies may be used to save your personal preferences so you do not have to re-enter them each time you access the Site.
We will only use your personal information when the law allows us to. Most commonly, we will use your personal data in the following circumstances:
We have set out in the table below a description of the way we plan to use your personal data and the legal basis we rely on to do this. Where you see legitimate interests mentioned in the table below, we have included additional information about the legitimate interests pursued.
We will only use your personal data for the purposes for which we collected it, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose. If you wish to get an explanation as to how the processing for the new purpose is compatible with the original purpose, please contact us at email@example.com. If we need to use your personal data for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so. Please note that we may process your personal data without your knowledge or consent, in compliance with this Policy, where this is required or permitted by law.
We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. This means that the period of time for which we store your personal data may depend on the type of data we hold. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements. For more information about our data retention policies please contact us at firstname.lastname@example.org.
We do not sell your personal information to third parties for marketing purposes.
We may disclose information to third parties if you consent to us doing so as well as in the following circumstances:
You agree that we have the right to share your personal information with the following recipients or categories of recipients:
Our servers are located in Ireland.
Personal data may be transferred to our trusted partners and service providers who maintain their servers outside of the European Economic Area (“EEA”), where the privacy and data protection laws may not be as protective as those in your jurisdiction. This is only for the purposes of providing, and to the extent necessary to provide, the Services to you.
We appreciate that there are special requirements set out under Chapter V of the GDPR (with which we would comply) to regulate such data transfers and ensure that adequate security measures are in place to safeguard and maintain the integrity of your personal data on transfer.
For more information about this and the safeguards in place relating to the transfer, please contact us at email@example.com
We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.
We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.
You may request access at any time to a copy of the personal data we hold about you. Any such request should be submitted to us in writing and sent to firstname.lastname@example.org. We may need to verify your identity in such circumstances and may request more information or clarifications from you if needed to help us locate and provide you with the personal data requested.
There is usually no charge applied to access your personal data (or to exercise any of the other rights). However, if your request is clearly unfounded, repetitive or excessive, we may charge a reasonable fee. Alternatively, we may refuse to comply with your request in these circumstances.
You may restrict us from processing your personal data in any of the following circumstances:
If we hold personal data concerning you which are no longer necessary for the purposes for which they were collected or if you withdraw consent for us to process your personal data, you can request the deletion of this personal data. This right, however, will not apply where we are required to process personal data in order to comply with a legal obligation or where the processing of this information is carried out for reasons of public interest in the area of public health. If the personal information we hold about you is inaccurate, you may request to have your personal information updated and corrected. To do so at any time, please contact us at email@example.com
You have the right to object to the processing of your personal data at any time:
To exercise your right to object at any time, please email us at firstname.lastname@example.org
Should this occur, we will no longer process your personal data for these purposes unless doing so is justified by a compelling legitimate ground as described above. For more information about our marketing practices, please see the Marketing Communications section below.
Where we process your personal data by automated means (i.e., not on paper) and this processing is based on your consent or required for the performance of a contract between us, you have the right to request from us a copy of your personal data in a structured, commonly used machine-readable format and, where technically feasible, to request that we transmit your personal data in this format to another controller.
Profiling is an automated form of processing of personal data often used to analyse or predict personal aspects about an individual person. This could relate to a person’s performance at work, economic situation, health, personal preferences, reliability, behaviour, location or movements. An example of this would be where a bank uses an automated credit scoring system to assess and reject a loan application.
We, however, do not engage in profiling or automated processing for profiling purposes.
The rights described in this section are personal rights and are exercisable only by the individual person (or data subject) concerned.
We will not use your data to send marketing communications to you about promotions, competitions, updates and new products or services that may be of interest to you, unless we have your permission to do so.
You have the right to object to the processing of your personal data for our marketing purposes. To object or if you change your mind at any later time, you can withdraw your consent to the processing of your personal data for such marketing purposes by contacting us at email@example.com You may also opt out of receiving marketing communications at any time by selecting the unsubscribe option when you receive an electronic marketing communication from us. The withdrawal of your consent will not impact upon the lawfulness of processing based on your consent prior to the withdrawal.
If you follow or connect with us on any social media platform and/or register to attend, and attend, any event, seminar or webinar we host, manage or participate in, you understand we will process certain personal data relating to you for these purposes and to communicate with or respond to you in this way. You will be free at any time to opt out of receiving updates or information from us about our future events or seminars by contacting us at firstname.lastname@example.org or by selecting the unsubscribe option. Your account with and use of any third party social media platforms will be subject to their respective terms and conditions.
Any changes made to this Policy from time to time will be published at the Site.
Any material or other change to the data processing operations described in this Policy which is relevant to or impacts on you or your personal data, will be notified to you in advance by email. In this way, you will have an opportunity to consider the nature and impact of the change and exercise your rights under the GDPR in relation to that change (e.g., to withdraw consent or to object to the processing) as you see fit.
If you have any questions or complaints relating to this Policy, please contact us at:
Supervisory Authority. We are committed to complying with the terms of the GDPR and to the processing of personal data in a fair, lawful, transparent and responsible way. If, however, you believe that we have not complied with our obligations under the GDPR, you have the right to lodge a complaint with the Data Protection Commission in Ireland.