Privacy Policy

April 4, 2013 by

This Privacy Policy sets out our commitment to protecting the privacy of personal data provided to us or otherwise collected by us, offline or online including through this website (www.lawdownunder.com) (Site). In this Privacy Policy ‘you’ means any party that provides personal data to LawDownUnder Limted (NZBN 9429030830776) (we, our, or us), its successors and assignees.

What personal data we collect from you

We may collect, use, store and transfer different kinds of personal data about you which we have grouped together as follows:
  • Identity Data includes names, username or similar identifier, age, occupation, date of birth, gender and nationality;
  • Contact Data includes billing address, delivery address, email address, skype or facetime address, and telephone numbers;
  • Financial Data includes bank account, payment card details and credit ratings;
  • Transaction Data includes details about payments to and from you and other details of services that you have purchased from us; and
  • Log Data includes internet protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technology on the devices you use to access this website.

When we collect personal data from you

Direct interactions: You give us your personal data in your direct interactions with us. Such direct interactions include, for example, instances when you:

  • enquire about our client services;
  • give us personal data necessary to complete the specific instructions.
  • in some circumstances we request specific information from you to enable us to comply with anti-money laundering and terrorism laws and to ensure that there is no conflict of interest in accepting your instructions;
  • give us your business card at an event or a meeting, or otherwise personally give us your personal data (for example, by leaving your contact details at the reception of one of our offices or with our switchboard);
  • give us your personal data via an electronic platform ( which we make available or which we have agreed with you to use in connection with our client services (e.g. through email or online form);
  • subscribe to our newsletter or download a publication such as a white paper;
  • participate in our client seminars and similar events; or
  • give us feedback (for example, by completing a survey).

Third parties or publicly available sources: We may receive personal data about you from various third parties and public sources as set out below:

  • Technical Data from the following parties:
    a) analytics providers such as Google based outside the EU;
    b) search information providers.
  • Identity and Contact Data from publicly availably sources.

Why we process personal data

We use your personal data in the following circumstances:

  • Performance of a contract: where we need to perform a contract which we are about to enter into or have entered into with you as a party or to take steps at your request before entering into such a contract;
  • Legal or regulatory obligation: where we need to comply with a legal or regulatory obligation that we are subject to;
  • Legitimate interests: where necessary for our interests (or those of a third party), provided that your fundamental rights do not override such interests. This can mean, for instance, that it is in our interest, to monitor how you are using any client portals or access to systems to ensure that the security of such portals or systems is maintained. We make sure we consider and balance any potential impact on you (both positive and negative) and your rights before we process your personal data for our legitimate interests; and
  • Consent: where you have provided your consent or explicit consent to processing your personal data.

We may process your personal data for more than one legal basis depending on the specific purpose for which we are using your personal data. If we need to use your personal data for an unrelated purpose, we will notify you and we will explain the legal basis which allows us to do so. We will only use your personal data for the purposes for which we collected it.

Purpose/Activity

Type of data

Lawful basis for processing including basis of legitimate interest

To register you as a new customer

(a) Identity Data

(b) Contact Data

Performance of a contract with you

To process and deliver your order including:

(a) Manage payments, fees and charges

(b) Collect and recover money owed to us

(a) Identity Data

(b) Contact Data

(c) Financial Data

(d) Transaction Data

(a) Performance of a contract with you

(b) Necessary for our legitimate interests (to recover debts due to us)

To manage our relationship with you which will include:

(a) Notifying you about changes to our terms or privacy policy

(b) Asking you to leave a review or take a survey

(a) Identity Data

(b) Contact Data

(a) Performance of a contract with you

(b) Necessary to comply with a legal obligation

(c) Necessary for our legitimate interests (to keep our records updated and to study how customers use our products/services)

To enable you to partake in a prize draw, competition or complete a survey

(a) Identity Data

(b) Contact Data

(c) Profile Data

(a) Performance of a contract with you

(b) Necessary for our legitimate interests (to study how customers use our products/services, to develop them and grow our business)

To administer and protect our business and this website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data)

(a) Identity Data

(b) Contact Data

(c) Log Data

(a) Necessary for our legitimate interests (for running our business, provision of administration and IT services, network security, to prevent fraud and in the context of a business reorganisation or group restructuring exercise)

(b) Necessary to comply with a legal obligation

To deliver relevant website content and advertisements to you and measure or understand the effectiveness of the advertising we serve to you

(a) Identity Data

(b) Contact Data

(c) Profile Data

(d) Log Data

Necessary for our legitimate interests (to study how customers use our products/services, to develop them, to grow our business and to inform our marketing strategy)

To use data analytics to improve our website, products/services, marketing, customer relationships and experiences

(a) Log Data

Necessary for our legitimate interests (to define types of customers for our products and services, to keep our website updated and relevant, to develop our business and to inform our marketing strategy)

To make suggestions and recommendations to you about goods or services that may be of interest to you

(a) Identity Data

(b) Contact Data

(c) Log Data

Necessary for our legitimate interests (to develop our products/services and grow our business)

When and how we share personal data and locations of processing

We will only share personal data with others when we are legally permitted to do so. When we share data with others, we put contractual arrangements and security mechanisms in place as appropriate to protect the data and to comply with our data protection, confidentiality and security standards.

Sharing of personal data with courts and other professional advisers

Only appropriate employees of our firm will access personal information necessary to perform our functions and activities, such as providing legal services to you, or for employment related activities such as your application for employment with us.

In some circumstances it may be necessary for us to disclose personal information about you to provide legal advice, commence legal proceedings or for employment related activities. The types of third parties we may need to provide information to include:

  • barristers;
  • other experts/specialists;
  • auditors;
  • a court, tribunal or regulatory authority; and
  • service providers such as document management or legal document reproduction companies, agency employees, superannuation funds and insurers.

Where you have provided information to a third party that we are required to verify by the third party (such as your employment history), we will request that you consent to our disclosure of the information. For example, if you are an employee, this may include situations such as financial institutions or potential employers contacting us to confirm details of your employment.

Third party organisations that provide applications/functionality, data processing or IT services to us

We use third parties to support us in providing our services and to help provide, run and manage our internal IT systems, data storage, web-hosting and server providers, debt collectors, professional advisors and payment systems operators.

We may transfer personal data to countries other than the one in which you live. We transfer personal data to New Zealand which is deemed to have adequate privacy standards.

Third party applications that we use to process your data (such as Google, AWS, and Apple) have self-certified their compliance with the E.U.-U.S. Privacy Shield and Swiss-U.S. Privacy Shield. These frameworks were developed to enable companies to comply with data protection requirements when transferring personal data from the European Union and Switzerland to the United States.

Google Analytics

We may use Google Analytics to collect and process data. To find out how Google uses data when you use third party websites or applications. See here for how Google uses data when you use our Service and how you may opt out, https://policies.google.com/technologies/partner-sites.

When you visit our website

When you come to our Site, we may collect certain information such as browser type, operating system, website visited immediately before coming to our site, etc. This information is used in an aggregated manner to analyse how people use our site, such that we can improve our service.

Storage and security

Although we take appropriate technical and organisation measures to safeguard against unauthorised disclosures of information, the transmission and exchange of information is carried out at your own risk and we cannot guarantee how information that is shared using our services will be used or the safety of such information.

How long do we keep personal data?

We keep personal data only for as long as necessary and this will reflect the requirements of:

  • the activity or service for which it is being processed;
  • any legal, regulatory or contractual requirements; or
  • the time in which any litigation or investigations might arise in relation to a service that we provided.

Your Rights

Access

You may request details of the personal information that we hold about you. An administrative fee may be payable for the provision of such information.

Correction

If you believe that any information we hold about you is inaccurate, out of date, incomplete, irrelevant or misleading, please contact us using the details set out at the bottom of this Privacy Policy. We will take reasonable steps to correct any information found to be inaccurate, incomplete, misleading or out of date.

Complaints

If you believe that your privacy has been compromised, or if you feel that we have breached privacy laws, you are entitled to make a complaint. Please contact us using the details below and provide us with full details of the complaint. We will promptly investigate your complaint and respond to you, in writing, setting out the outcome of our investigation and the steps we will take to deal with your complaint.

Rectification

If you become aware of any errors or inaccuracies concerning your personal data, please let us know either by updating your details on the website or applications you are registered with or contacting us.

Withdraw consent

Where we process personal data based on consent, you have a right to withdraw consent at any time.

Unsubscribe

To unsubscribe from our e-mail database or opt-out of communications (including marketing communications), please contact us using the details below or opt-out using the opt-out facilities provided in the communication.

Deletion

You can ask us to erase or delete your personal data when we no longer need it for the purposes it was obtained.

Data portability

You can ask for your personal data to be sent to you or to another organisation

Restrict or object to our processing

You can ask to restrict or object to our processing of your personal data (eg removal from a newletter subscription list).

Third party links and content

This website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy policy of every website you visit.

Amendments

This Privacy Policy may be amended, including with changes, additions and deletions, from time to time in our sole discretion. Your continued use of our Site following any amendments indicates that you accept the amendments. You should check this Privacy Policy regularly, prior to providing personal information, to ensure you are aware of any changes, and only proceed to provide personal information if you accept the new Privacy Policy.

The data controller, i.e., the person responsible for processing your personal data is:

LawDownUnder Limited

6A Wetherill Street, Leichhardt 2040, NSW, Australia

Email: info@lawdownunder.com

Last update: 4 October 2018