

PRIVACY POLICY
This notice explains when and why we collect personal information about you; how we use it, the conditions under which we may disclose it to others and how we keep it secure. For clients of this firm, you should read this notice alongside our general terms and conditions which provide further information on confidentiality, data privacy etc. This notice does not apply to any websites that may have a link to ours.
Who we are
Data is collected, processed and stored by Dale & Dunphy Solicitors. We are the ‘data controller’ of the personal information you provide to us. Dale & Dunphy Solicitors is a partnership providing specialist criminal defence and related legal services to clients. We are authorised and regulated by the Solicitors Regulation Authority under reference number 537314. Our Data Protection Manager is Kieran Dunphy who can be contacted by email at office@dale-dunphy.co.uk or via our Norwich office.
Children
Our website and services are not aimed specifically at children because in legal work children are generally represented by their parent or guardians. If you are a child and need further advice or explanation about how we would use your data, please email our data protection officer.
What we need
The exact information we will request from you will depend on what you have asked us to do or what we are contracted to do for you. There are two types of personal data that you may provide to us:
Sources of information
Information about you may be obtained from a number of sources; including:
Why we need it
The primary reason for asking you to provide us with your personal data is to allow us to carry out your request, which will usually be to represent you and/or carry out legal work on your behalf. Examples of what we may use your information for (this is not an exhaustive list):
Who has access to it
We have a data protection regime in place to oversee the effective and secure processing of your personal data. We will not sell or rent your information to third parties. We will not share your information with third parties for marketing purposes. Generally, we will only use your information within Dale & Dunphy Solicitors. However, there may be circumstances, in carrying out your legal work, where we may need to disclose some information to third parties; such as (non-exhaustive list):
In the event any of your information is shared with third parties, we ensure that they comply, strictly and confidentially, with our instructions and they do not use your personal information for their own purposes unless you have explicitly consented to them doing so.
There may be some uses of personal data that may require your specific consent. If this is the case we will contact you separately to ask for your consent which you are free to withdraw at any time.
How do we protect your personal data
We recognise that your information is valuable and we take all reasonable measures to protect it whilst it is in our care. We have high standards of technology and operational security in order to protect personally identifiable data from loss, misuse, alteration or destruction. Similarly, we adopt a high threshold when it comes to confidentiality obligations and both internal and external parties have agreed to protect confidentiality of all information; to ensure all personal data is handled and processed in line with our stringent confidentiality and data protection policies. We use computer safeguards such as firewalls and other electronic protection means; and we enforce physical access controls to our buildings and files to keep data safe.
How long will we keep it for
Your personal information will be retained, usually in computer and/or manual files, only for as long as necessary to fulfil the purposes for which the information was collected; or as required by law; or as long as is set out in any relevant contract you may hold with us. This will usually be either:
What are your rights?
Under the General Data Protection Regulations (GDPR), you are entitled to access your personal data (otherwise known as a ‘right to access’). If you wish to make a request, please do so in writing addressed to our Data Protection Manager. A request for access to your personal data means you are entitled to a copy of the data we hold on you – such as your name, address, contact details, date of birth, information regarding your health etc. – but it does not mean you are entitled to the documents that contain this data.
Under certain circumstances, in addition to the entitlement to ‘access your data’, you have the following rights:
Complaints about the use of personal data
If you wish to raise a complaint about how we have handled your personal data, you can contact our Data Protection Manager who will investigate further. If you are not satisfied with our response or believe we are not processing your personal data in accordance with the law, you can complain to the Information Commissioner’s Office (ICO): Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF. Helpline number: 0303 123 1113. ICO website: www.ico.org.uk
Any questions regarding this notice and our privacy practices should be sent by email to our Data Protection Manager.