Privacy and Cookie
Privacy and Cookie Policy
This document outlines Kayson Solicitors Limited’s practices regarding collecting, processing, and sharing personal data. It provides detailed information on the legal bases for processing, data retention periods, the rights available to data subjects, and the safeguards to protect personal data in compliance with applicable data protection regulations.
Data Controller
Kayson Solicitors Limited (Company No. 10200839), registered at Warlies Park House, Horseshoe Hill, Upshire, EN9 3SL, United Kingdom, is the data controller responsible for processing personal data. For clarity, references to “Kayson Solicitors,” “we,” “us,” or “our” within this document are made by the company’s role as the data controller.
Types of Personal Data Processed
Kayson Solicitors processes various categories of personal data for a range of purposes. The data types we collect either directly from data subjects or from third parties include:
- Identity and Contact Data: Includes identifiers such as names (current and previous), contact details (email, phone numbers, addresses), date of birth, marital status, passport numbers, employment history, and preferences relevant to our services.
- Financial and Payment Data: Includes banking details, credit/debit card information, tax status, and other billing data necessary for payment processing, fraud prevention, and compliance with financial regulations.
- Contractual and Business Information: Data provided in the context of contractual relationships, including business-specific identifiers, terms, and transaction history.
- Legal and Compliance Data: Includes sensitive data necessary for providing legal services, including health information, criminal records, and other special category data as defined under GDPR.
- Profile and Usage Data: This includes behavioural data derived from interactions with our platforms (e.g., cookies, device identifiers, session logs) and user preferences related to marketing communications.
- Technical Data: Includes IP addresses, device information, operating system details, and other technical information generated through our website or services, which may be automatically collected during visits.
- Physical Access Data: Data on physical access to our premises, such as visitor logs and access control records.
Purpose of Data Processing
Legal Obligations
Kayson Solicitors processes personal data to fulfil contractual obligations, meet legal requirements, and ensure compliance with financial and regulatory standards. This includes processing personal data for purposes such as:
- Fulfilling financial obligations and regulatory reporting (e.g., tax filings).
- Compliance with data protection laws and industry-specific regulations.
- Detection, prevention, and reporting of fraudulent activity or criminal behaviour.
- Processing and defending legal claims or disputes.
Consent-Based Processing
Where applicable, Kayson Solicitors may process personal data based on explicit consent. This includes:
- Informing data subjects about third-party services or relevant business offers.
- Conducting behavioural profiling or analysing usage trends to improve services.
- Processing unique category data with informed consent, where required.
Data subjects can withdraw consent at any time, though this does not affect the lawfulness of processing before the withdrawal.
Legitimate Interests
Kayson Solicitors may rely on legitimate business interests to process personal data compatible with data subjects’ expectations and in line with our service delivery. Such purposes include:
- Service delivery and communications regarding our products and services.
- Conducting market research, business development, and improving customer engagement.
- Maintaining and improving the functionality and security of our IT systems, including cybersecurity measures.
Special Categories of Data
In certain circumstances, Kayson Solicitors processes special categories of personal data, such as health information or criminal records. Processing such data is based on explicit consent or is necessary for establishing, exercising, or defending legal claims or other substantial public interest grounds per GDPR.
Data Sources
We collect personal data directly from data subjects through interactions on our website, via forms, or through direct communication. Additionally, we may obtain personal data from publicly available sources, including professional networks, social media, regulatory filings, and governmental or public authority databases.
Specific personal data, such as IP addresses, cookies, and device identifiers, may be collected automatically via tracking technologies or as part of technical data generated by website use.
Data Sharing and Disclosure
Per the purposes mentioned above, Kayson Solicitors may share personal data with third parties, including:
- Service providers and sub-processors engaged to perform services on our behalf (e.g., IT infrastructure, payment processors, legal advisors).
- Regulatory bodies, law enforcement agencies, or other public authorities where legally required to do so.
- Third parties in mergers, acquisitions, or business reorganisations.
We ensure that any third parties to whom we transfer personal data comply with applicable data protection laws and have implemented appropriate safeguards.
Data Storage and Transfers
Kayson Solicitors ensures that all personal data is stored securely. We do not transfer personal data to any jurisdiction outside the European Economic Area (EEA) unless the European Commission has deemed the recipient country adequate or appropriate safeguards are in place (e.g., Standard Contractual Clauses, binding corporate rules).
Data Retention
Personal data will be retained only for as long as necessary to fulfil the purposes outlined in this privacy policy unless a more extended retention period is required by law or for the establishment, exercise, or defence of legal claims. Data retention periods are subject to regulatory requirements and contractual obligations.
Data Subject Rights
Data subjects have the following rights regarding their data under applicable data protection laws:
- Right of Access: The right to request access to personal data processed by Kayson, including information on processing activities and data retention.
- Right to Rectification: The right to request the correction or completion of inaccurate or incomplete data.
- Right to Erasure: Also known as the “right to be forgotten,” this right allows individuals to request the deletion of personal data, subject to specific legal exceptions.
- Right to Restriction: The right to request the restriction of processing where certain conditions are met.
- Right to Object: The right to object to processing based on legitimate interests, including direct marketing activities.
- Right to Data Portability: The right to request a copy of personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.
To exercise any of these rights, data subjects should contact Kayson directly using the details provided below.
Complaints
Suppose a data subject believes their rights have been infringed upon. In that case, they can complain to a supervisory authority, such as the UK Information Commissioner’s Office (ICO) or the relevant data protection authority in their jurisdiction.
Changes to This Privacy Policy
This policy may be updated periodically to reflect changes in our data processing activities or response to regulatory developments. Any material changes to this policy will be communicated to data subjects, where applicable, through appropriate means.
Contact Information
For further information or to exercise your rights, please contact:
Kayson Solicitors Limited
Warlies Park House, Horseshoe Hill, Upshire, EN9 3SL, United Kingdom
Phone: 0203 096 9976
Email: legalteam@kaysonlaw.co.uk