1.1
Privacy and data protection is important to us at Qap Legal Advisors AB (“QAP”, “we”, “us” or “our”) and this Privacy Policy aims to explain how we process personal data as a personal data controller. We may process personal data in connection with client Engagements, business contacts and recruitments. The processing of personal data is carried out in accordance with applicable legislation, including the general data protection regulation (“GDPR”). Set forth below is a description of how personal data are processed by us.
1.2
This Privacy Policy is incorporated in, and an integral part of our General Terms and Conditions. Terms defined in our General Terms and Conditions applies to this Privacy Policy unless otherwise stated.
1.3
If you have any further questions or queries concerning how we process your personal data, you are welcome to contact us at: privacy@qaplegal.com.
2.1
Personal data refers to information which, directly or indirectly, may be associated with a living natural person, such as name, contact details, photos, personal identity number, IP address and the contents of e-mails and other communication forms etc.
2.2
We process personal data about persons who:
2.2.1 are employed by a client or counter-party;
2.2.2 represent a client or counter-party;
2.2.3 are clients in their capacity as a private individual;
2.2.4 are otherwise affected by our Engagements;
2.2.5 receives our newsletters, other communication and/or attend our events; or
2.2.6 applies for a job with us or an assignment for us.
2.3
If you have any further questions or queries concerning how we process your personal data, you are welcome to contact us at: privacy@qaplegal.com.
2.4
We process personal data for the purposes of administering and performing our Engagements, managing client relationships, complying with legal obligations, recruiting new team members, sending newsletters and market our services.
2.5
We obtain personal data from our clients in connection with an Engagement. We may also extract personal data from private and public registers as well as from public authorities.
3.1
We process personal data when necessary to fulfill our client Engagements, in accordance with applicable legislation, to send out newsletters and other communication and otherwise when there is a legitimate interest for us to process your personal data. If we process your personal data for any specific purpose which requires your consent under the GDPR, or any other data protection legislation, we will obtain your consent in advance.
3.2
Personal data will always be processed confidentially and protected by appropriate security measures. We ensure that companies that manage personal data on our behalf, uses a high level of security measures in order to protect your personal data.
3.3
We may disclose your personal data to external companies with whom we collaborate. We may also disclose your personal data when we have a legal obligation to do so, or in response to a legal request, e.g. on the basis of anti-money laundering and terrorist financing legislation, court orders or from law enforcement authorities.
4.1
Personal data will only be stored for as long as it is necessary in order for us to fulfil the purposes of the processing, or for as long as we are required to store the information according to applicable legislation and relevant guidelines. The personal data is thereafter erased in accordance with our erasure procedure.
4.2
QAP uses professional services in order to destroy physical documents and manage digital information. The professional service providers ensure integrity and confidentiality of information contained in any physical documents and digital information and are specialised in accommodating our needs for digital integrity and confidentiality.
4.3
You may unsubscribe from newsletters or similar communication at any time. In such event we will no longer store or process your personal data for such purposes.
5.1
QAP is a law firm and is therefore subject to rules of professional secrecy, meaning that we are not allowed to disclose information relating to client Engagements to anyone but the client (other than for reasons set forth in Section 3.3 above).
5.2
As a data subject, you have certain rights as regards your personal data. The rights are however not absolute, meaning that there are exceptions to some of the rights where we cannot proceed and fulfill your request.
5.3
As a data subject, you have the following rights:
5.3.1
Right to withdraw your consent – meaning that you have the right to withdraw your consent where QAP process your personal data based on consent;
5.3.2
Right to access – meaning that you have the right to information about the processing, access to the personal data in question, and the right to obtain a copy of your personal data;
5.3.3
Right to rectification – meaning that you have the right to have any incorrect personal data about you as a data subject corrected by us;
5.3.4
Right to erasure – meaning that you have the right have your personal data erased under certain circumstances (such as if there no longer is a legitimate purpose for our processing of your personal data);
5.3.5
Right to object – meaning that you have the right to object to QAP’s processing of your personal data in certain specific cases;
5.3.6
Right to restricted processing – meaning that you have the right to have QAP restrict the processing of your personal data, but not delete it; and
5.3.7
Right to data portability – meaning that you may request QAP to transfer your personal data to another data controller.
5.4
If you feel that our processing of your personal data does not comply with data protection legislation, you are entitled to lodge a complaint with the Swedish Data Protection Authority (Sw. Datainspektionen).
5.5
Any requests by you as a data subject under this Privacy Policy shall be sent to privacy@qaplegal.com.
This Privacy Policy may be amended by us from time to time. The latest version will always be available on our website: www.qaplegal.com/privacy-policy/