Skip to content Skip to footer
Legal Counsel IT
let’s talk
Legal Counsel IT
let’s talk
Close

Privacy statement Legal Counsel IT

This privacy statement was last modified on 20 May 2024

Thank you for your visit to this website, which is provided to you by Legal Counsel IT. On this page we inform you about the processing and protection of your personal data by or on behalf of Legal Counsel IT. We also inform you about your rights under relevant data protection laws.

Summary

When we receive personal data from you, we make every effort to process and protect it as carefully as possible. In doing so, we comply with applicable laws and regulations, including the EU General Data Protection Regulation (EU GDPR). Briefly summarized, this means the following:

  • We clearly state our identity as the data controller of your personal data;
  • We clearly state the purposes and legal bases for which we process personal data – we do so in this privacy statement or in a separate statement that we make available at the time we obtain your personal data;
  • We let you know to whom we may pass on your personal data and what parties these are. Where necessary, we always enter into a (data processing) agreement with the receiving party to ensure the protection of personal data;
  • If we need your consent to process your personal data, we will ask you for it and offer you the opportunity to withdraw your consent at any time;
  • We secure your personal data in an appropriate manner, proportionate to the risks;
  • We inform you of your rights in connection with your personal data, such as the right to access, correct, or delete it.

Contents

In this privacy statement you can read the following:

  • Who we are and what we do
  • What are personal data
  • What personal data we can process and why
  • What legal grounds we apply to process personal data
  • Who can receive personal data from us and why
  • How we protect personal data
  • What your rights are regarding your personal data
  • How you can exercise your rights

1. Who we are and what we do

We are Legal Counsel IT, a firm that provides consulting services aimed at protecting the legal position and interests of our clients. Legal Counsel IT specializes primarily in the topics of privacy and information security. This includes advising about compliance with data protection laws such as the EU GDPR and the EU Network and Information Security Directive (1 and 2).

If your organization needs a qualified (remote) data protection officer or privacy officer, we can provide this for you. Our data protection officer will competently perform all tasks in accordance with the GDPR, including informing and advising the client about GDPR obligations and compliance, monitoring compliance with data protection policies, providing advice about data protection impact assessments, as well as cooperating with and being a contact point for the competent supervisory authority.

If you need someone to draft and implement the necessary policies and other documents for GDPR compliance in a practical and hands-on manner, we will be happy to provide a (remote) privacy officer for your organization.

Legal Counsel IT also advises and represents clients in contracting matters, such as drafting and negotiating (commercial) contracts. Important goals are to thoroughly understand each client’s interests and needs in order to add as much value as possible for them, while also understanding the other party’s interests and possible concerns in order to reach a win-win outcome. To put ourselves in position to reach these goals, we also do our utmost to deeply understand the technical and economic aspects of the IT products and services which the contract or (compliance) advice relates to.

For example, we understand fundamental elements of computer science, digital data processing and storage, encryption, packet-switched networking, and AI. We also understand related economic principles and effects, such as network effects, vendor lock-in, and positive and negative externalities. We use our broad knowledge to draft and negotiate contracts, terms, policies, and other legal documents for you that protect your interests and help keep your data safe.

2. What are personal data

Personal data is any data related to you as an individual, such as your contact information and the questions you ask us. Online identifiers, such as the IP address of the device you use to visit our website and a cookie ID on your device, are also personal data.

3. What personal data we can process and why

What personal data we will process about you will depend on the services you receive from us. If you contact us as part of your role in your organization to consult with a legal counsel and/or data protection officer, we will process any personal information you provide solely to determine together how we may best be of assistance to you and to provide any agreed services to you and your organization.

If you simply browse our website, any personal information you provide during your browsing activities (such as your IP address) will be processed solely to provide you access to the website in a safe and secure manner. The professional hosting provider and website administrator of Legal Counsel IT may process the personal data on behalf of Legal Counsel IT for the same purposes.

4. What legal grounds we apply to process personal data

The legal grounds under the EU GDPR for processing your personal data are normally either (1) necessity to perform a contract with you (art. 6(1)(b) GDPR, or (2) necessity for our legitimate interest in providing the services you have requested on behalf of your organization (art. 6(1)(f) GDPR).

5. How long we retain personal data

We retain your personal data for as long as is necessary to provide you or your organization with the agreed services and/or as long as we are required to under applicable laws. We may also retain any information related to our provision of services to you or your organization until the statute of limitations with regards to any claims under the agreement have expired.

Web server logs are normally retained for no longer than six (6) months.

6. Who can receive personal data from us and why

We use IT products and services from reputable vendors to process personal data. This includes our web hosting company providing access to the website, as well as the online office productivity software (Google Workspace and/or MS 365) we use for emails, online meetings, and document creation, editing, storage, and management.

The web hosting company will process all traffic to the website, which will include your IP address. Information you provide via the contact form will be delivered to our e-mail system (part of the online office productivity suite). The web hosting company is bound by the applicable service agreement to keep the data confidential and protect it with appropriate technical and organizational security measures.

Our online office productivity software provider processes your data as we process it in their systems. These providers are bound by a data processing agreement to secure your data and only process it as part of their services to us.

7. How we protect personal data

Here are some examples of measures we take to secure the IT products and services we use in order to protect your data:

  • We use current computing devices from reputable vendors;
  • We implement security updates without delay whenever these become available;
  • We enable the antivirus and/or antimalware functionalities provided in the operating systems of our devices (or in a separate product);
  • We use multifactor authentication (MFA) in our office productivity environment, our financial and customer administration system, and in any other online software environment that (a) offers this and (b) processes data for us that is sufficient in quantity and/or sensitivity that we deem this appropriate.

8. What your rights are regarding your personal data

You have the right to request us to:

  • Access the personal data we process about you;
  • Correct your personal data if it is inaccurate or delete it if it is no longer needed;
  • Object to our processing of your personal data if you believe that the processing in question would not be lawful and to limit our processing to that which is strictly necessary and lawful;
  • Withdraw your consent to the processing of your personal data, with the withdrawal not affecting the lawfulness of the processing operations before you withdrew your consent.

9. How you can exercise your rights

You can easily submit a request related to your personal data to us via our contact form or info@legalcounselit.pro.

If you have a complaint about our processing of your personal data, please let us know about it so that we can try to resolve it for you. In addition, you always have the right to submit a complaint to the competent supervisory authority.