ELN

Privacy Policy

ELN is a network of law firms with member firms based in Europe and North America. ELN enables member firms to provide clients with value-added advice in complex international transactions while addressing fundamental client demands for efficiency, value and knowledge of local law in foreign jurisdictions.

This privacy policy explains how we collect and process your personal data. Personal data, or personal information, means any information about an individual from which that person can be identified. This includes information that you tell us, what we learn from you and the choices you make about the marketing you want us to send to you. This policy explains how we do this, what your rights are and how the law protects you.

We do not knowingly collect data relating to children.

  1. Who we are and how you can contact us

We are European Lawyers Network (No.2) (UKEIG) (CRN: GE000033) (“we”, “us”, “ELN”). Our registered office is at 70 New Cavendish Street, London, W1M 8AT.

You can contact us by email at hello@joelsonlaw.com or in writing to Joelson LLP, 2 Marylebone Road, London, NW1 4DF.

Our representative for all queries in relation to this policy and your data protection rights is the data protection officer of Joelson LLP, who can be contacted by email at privacy@joelsonlaw.com or by post at Joelson, 2 Marylebone Road, London, NW1 4DF

When we refer to our website, we mean our website at https://elninternational.com/.

Where we collect your personal information from

We collect personal information about in the following ways:

Data you may give to us:

  • Data you give to us and use our services
  • When you talk to us on the phone or in person
  • When you use our website
  • In emails or letters to us
  • When you sign up to our mailing list
  • If you take part in our competitions, events or promotions
  • When you give us feedback

Data we collect when you use our services:

  • Profile and usage data, including data we gather from the devices you use to connect to those services such as computers and mobile phones, using cookies (please see our separate cookies policy) and other internet tracking software.

Data from third parties we work with:

  • Members firms of ELN who may refer you to us or provide us with your details
  • Companies and individuals that introduce you to us
  • Public information sources, such as Companies House or other publicly available company registers.
  • Agents working on our behalf
  • Government and law enforcement agencies
  • Professional intermediaries including accountants, corporate finance advisers, other lawyers, property agents, planning consultants, banks and expert witnesses
  1. Data we collect about you

We may collect, use, store and transfer many different kinds of personal data about you which we have grouped together as follows:

  • Identity data – name, marital status, title, date of birth, gender and social media details
  • Contact data – business address, business name, home address, email address or telephone numbers
  • Technical data – internet protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access our website
  • Usage data – information about how you use our website, products and services
  • Marketing and communications data – your preferences in receiving marketing from us and our third parties and your communication preferences
  • Open Data and Public Records – information about you that are in public records, such as Companies House or the Land Registry, and information that is openly available on the internet

We may also collect, use and share aggregated data such as statistical or demographic data for any purpose. Aggregated data may be derived from your personal data but is not considered personal data in law as this data does not directly or indirectly reveal your identity. For example, we may aggregate your usage data to calculate the percentage of users accessing a specific website feature. However, if we combine or connect aggregated data with your personal data so that it can directly or indirectly identify you, we treat the combined data as personal data which will be used in accordance with this privacy notice.

Special Categories of Personal Data

We will not collect any special categories of personal data about you.

  1. How we use your personal information

Your privacy is protected by law.

We are only allowed to use personal information about you if we have a legal basis to do so, and we are required to tell you what that legal basis is.  This includes when we share your information with third parties.  The law says we must have one or more of the following legal bases:

  • to fulfil a contract we have with you; or
  • when it is our legal duty; or
  • when it is in our legitimate interest; or
  • when you consent to it.

A legitimate interest is when we have a business or commercial reason to use your information which, when balanced against your rights, is justifiable.

We have set out in the table below the personal information which we collect from you, how we use it, and the legal basis (or bases) on which we rely when we use the personal information.  If we are relying on our legitimate interests, we have set that out in the table below.

What we use your personal information for

What personal information we collect

Our legal grounds for processing

Our legitimate interests (if applicable)

  • To register you as a new contact.
  • Identity data
  • Contact data
  • Transaction data
  • Open Data and Public Records
  • Marketing and communications data
  • Performance of a contract with you
  • Our legitimate interests
  • Our legal duty
  • Your consent
  • Keeping our records up to date, working out which of our services may interest you (including referrals to a member firm of ELN) and telling you about them
  • To manage our relationship with you or your business
  • Identity data
  • Contact data
  • Transaction data
  • Marketing and communications data
  • Performance of a contract with you
  • Our legitimate interests
  • Our legal duty
  • Seeking your consent when we need it to contact you
  • Being efficient with respect to our legal and contractual duties
  • To develop and carry out marketing activities
  • Identity data
  • Contact data
  • Transaction data
  • Marketing and communications data
  • Our legitimate interests
  • Your consent
  • Developing services
  • Defining types of clients for new services
  • Connecting you with member firms of ELN who may be able to provide you with legal services
  • To study how clients and contacts use our services, to develop them, to promote and grow our business and that of member firms of ELN and to inform our marketing strategy
  • To study how our clients use our services and those of our member firms
  • Identity data
  • Contact data
  • Transaction data
  • Marketing and communications data
  • Our legitimate interests
  • Our legal duty
  • Your consent
  • Developing services
  • Defining types of clients for new services
  • To study how clients use our services and those of our member firms, to develop them, to promote and grow our business and to inform our marketing strategy
  • To communicate with you about our services and those of our member firms
  • Identity data
  • Contact data
  • Transaction data
  • Marketing and communications data
  • Performance of a contract with you
  • Our legitimate interests
  • Our legal duty
  • Your consent
  • Developing services
  • Defining types of clients for new services
  • To study how clients use our services and those of our member firms, to develop them, to promote and grow our business and to inform our marketing strategy
  • To manage relationships with our business contacts and within the ELN member network
  • Identity data
  • Contact data
  • Marketing and communications data
  • Your consent
  • Our legitimate interests
  • Keeping our records and those of our member firms up to date, working out which of our services may interest you and telling you about them
  • Developing services.
  • To assess the health of our relationships with business contacts
  • To manage relationships with our suppliers
  • Identity data
  • Contact data
  • Your consent
  • Our legitimate interests
  • Keeping our records up to date, working out which of our services may interest you and telling you about them
  • Developing services.
  • To assess the health of our relationships with business contacts
  • To administer and protect our business and our website
  • Usage data
  • Technical data
  • Fulfilling contracts
  • Our legitimate interests
  • Being efficient about how we fulfil our legal and contractual duties
  • To use data analytics to improve our website, services, marketing, client relationships and experiences
  • Usage data
  • Performance of a contract with you
  • Our legitimate interests
  • Being efficient about how we fulfil our legal and contractual duties
  • Improving the operation and functionality of our website
  • To exercise our rights set out in agreements or contracts
  • Identity data
  • Contact data
  • Transaction data
  • Financial data
  • Performance of a contract with you
  • Our legitimate interests
  • Being efficient about how we fulfil our legal and contractual duties
  • To run our business in an efficient and proper way. This includes managing our financial position, business capability, planning, adding and testing systems and processes, managing communications, corporate governance, and audit
  • Identity data
  • Contact data
  • Transaction data
  • Financial data
  • Open Data and Public Records
  • Our legitimate interests
  • Our legal duty
  • Complying with rules and guidance from regulators
  • Being efficient about how we fulfil our legal and contractual duties
  • To develop new ways to meet our clients’ needs and to grow our business
  • Identity data
  • Contact data
  • Transaction data
  • Financial data
  • Open Data and Public Records
  • Marketing and communications data
  • Performance of a contract with you
  • Our legitimate interests
  • Our legal duty
  • Developing our products and services and assisting our member firms in doing the same
  • Defining types of clients for new services
  • Being efficient about how we fulfil our legal and contractual duties
  1. Who we share your personal information with

We may share your personal information with any of the following organisations, for the purposes of providing the services which you have requested from us or fulfilling a request which you have made of us or a member firm of ELN:

  • Agents and advisers that we use
  • Member firms of ELN
  • HM Revenue & Customs and other regulators or authorities
  • Companies, organisations and individuals that introduce us to you
  • Companies, organisations and individuals that we introduce you to
  • Any party linked with you or your business (for example, other directors of your company)
  • Companies, organisations and individuals that you ask us to share your information with
  • Direct marketing companies who help us manage our electronic communications with you
  • Third party organisations that provide applications/functionality, data processing or IT services to us. (For example, we use third parties to support us in providing our services and to help provide, run and manage our internal IT systems.  These include providers of IT services, cloud-based software as a service providers, identity management, website hosting and management, data analysis, data back-up, security and storage services.)

You can find details of how these third parties use your personal information by looking at their privacy policies, all of which should be available on the relevant websites, or on request.

We request all organisations who we share your data with to respect the security of your personal data and to treat it in accordance with the law. We do not allow any of our service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.

We may also share your personal information in the following circumstances:

  • if ELN or substantially all of its assets are acquired by a third party it is very likely that the personal data held by it about its clients will be one of the transferred assets
  • if we are under a duty to disclose or share your personal data in order to comply with any legal obligation, or in order to enforce or apply our terms of use, or to protect our rights, property, or safety, our clients, or others. This includes exchanging information with other companies and organisations for the purposes of fraud protection and credit risk reduction.
  1. Failing to provide personal data

Where we need to collect personal data by law, or under the terms of a contract we have with you and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you (for example, to provide you with the legal services you have requested). In this case, we may have to cancel a service you have with us but we will notify you if this is the case at the time.

  1. Third party links

Our website may include links to third party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy notice or policy of every website you visit.

  1. Transferring your personal information outside the UK or the EEA

The EEA is the European Economic Area, which consists of the EU Members States, Iceland, Liechtenstein and Norway. If we transfer your personal information outside of the UK or the EEA we have to tell you.

We will only send your data outside the UK or the EEA to:

  • follow your instructions to us to do so;
  • comply with a legal duty; or
  • work with our agents and advisers who we use to help provide our services to you.

By way of example, this may happen if one or more of our servers are from time to time located in a country outside the EEA/UK or one of our service providers is located in a country outside the EEA/UK. This may also occur whereby you explicitly request that we connect you with an ELN member firm based outside of the UK/EEA.

If we do transfer your personal information outside the EEA or the UK, we will make sure that it is protected in the same way as if it was being used in the EEA by ensuring at least one of the following safeguards is implemented:

  • We will only transfer your personal data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission or the UK government (as applicable).
  • Where we use certain service providers, we may use specific contracts approved by the European Commission or the UK government which give personal data the same protection it has in Europe.
  • Where we transfer your personal data to ELN member firms who operate in countries which do not have the benefit of an adequate level of protection for personal data by the European Commission or the UK government (as applicable), we will only do so with your consent having informed you of the risks relating to such transfers.

Please contact us if you want further information on the specific mechanism used by us when transferring your personal data out of the EEA/UK.

  1. Data security

We have put in place appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorised way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator (including the UK ICO) of a breach where we are legally required to do so.

  1. How long do we keep your personal information

We will keep your personal information for as long as you are our client.

We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for, including for one or more of the following reasons:

  • To respond to any questions or complaints from you;
  • To maintain our records; and/or
  • To comply with laws and rules applicable to us.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

In respect of personal data which we receive and process in order to comply with our legal duties to prevent money laundering and terrorist financing, we are required by law to retain such personal data for a period of five years from the end of the matter we are handling for you or from the date upon which you cease to be our client.  In most cases we will retain the personal data in accordance with our file retention policy of six years from the date of the file being archived but we may do so for longer if necessary.

Where you have asked us not to send you direct marketing, we keep a record of that fact to ensure we respect your request in future.

  1. Marketing

We may use your personal information to tell you about relevant services.

We can only use your personal information to send you marketing messages if we have either your consent or a legitimate interest to do so.

You can ask us to stop sending you marketing messages at any time – you just need to contact us by sending an email to hello@joelsonlaw.com, or use the opt-out links on any marketing message sent to you.

We will get your express opt-in consent before we share your personal data with any other company   for its marketing purposes. You can ask a third party company to stop sending you marketing messages at any time, by adjusting your marketing preferences in relation to that company or by using the opt-out links on any marketing message sent to you.

Where you opt out of receiving marketing messages, this will not apply to personal data provided to us as a result of purchasing our services or any other transaction between you and us.

  1. Your rights

You have certain rights which are set out in the law relating to your personal information.  The most important rights are set out below.

Getting a copy of the information we hold

You can ask us for a copy of the personal information which we hold about you, by contacting us using the details set out in section 1 above.   This is known as a data subject access request.

You will not have to pay a fee to access your personal data, unless we believe that your request is clearly unfounded, repetitive or excessive. In such circumstances we can charge a reasonable fee or refuse to comply with your request.

We will try to respond to all legitimate requests within one month.  Occasionally it may take us longer than a month and in that case we will notify you and keep you updated.

Telling us if information we hold is incorrect

You have the right to question any information we hold about you that you think is wrong or incomplete.  Please contact us using the details set out in section 1 above if you want to do this and we will take reasonable steps to check its accuracy and, if necessary, correct it.

Telling us if you want us to stop using your personal information

You have the right to:

  • object to our use of your personal information (known as the right to object); or
  • ask us to delete the personal information (known as the right to erasure); or
  • request the restriction of processing; or
  • ask us to stop using it if there is no need for us to use it (known as the right to be forgotten).

There may be legal reasons why we need to keep or use your data, which we will tell you if you exercise one of the above rights.

Withdrawing consent

You can withdraw your consent to us using your personal information at any time.  Please contact us using the details set out in section 1 above if you want to withdraw your consent.  If you withdraw your consent, we may not be able to provide you with certain products or services.

Where we rely on our legitimate interest

In cases where we are processing your personal data on the basis of our legitimate interest, you can ask us to stop for reasons connected to your individual situation. We must then do so unless we believe we have a legitimate overriding reason to continue processing your personal data.

Request a transfer of data

You may ask us to transfer your personal information to a third party. This right only applies to automated information which you initially provided consent for us to use or where we used the information to perform a contract with you.

  1. Making a complaint

Please let us know if you are unhappy with how we have used your personal information by contacting us using the details set out in section 1 above.

You also have a right to complain to the Information Commissioner’s Office.  You can find their contact details at www.ico.org.uk. We would be grateful for the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.