Skip to content
Home » Privacy Statement

Privacy Statement

Privacy

We understand that your privacy is important to you and that you care about how your personal data is used. We respect and value the privacy of all of our suppliers and customers. We will only collect and use personal data in ways that are described here, and in a way that is consistent with our obligations and your rights under the law.

We are Bradshaw Trees Law Limited, our registered office is Bradshaw Trees Barn, Chatterton Lane, Mellor, Stockport, Cheshire SK6 5NF and we are regulated by the Solicitors Regulation Authority number 830128. Our Data Protection Officer is Karen Fletcher.

This Privacy Statement explains how we use your personal data or that of your employees and staff: how it is collected, how it is held, and how it is processed. It also explains your rights under the law relating to your personal data.

Personal data is defined by the General Data Protection Regulation (EU Regulation 2016/679) (“GDPR”) as ‘any information relating to an identifiable person who can be directly or indirectly identified in particular by reference to an identifier.

Personal data is, in simpler terms, any information about you that enables a living person to be identified.

Your rights

Under GDPR, you have a number of legal rights over the personal data held by us:

  • To be informed about our collection and use of your personal data.
  • To access, correct and update any personal data we hold about you.
  • To ask us to delete or otherwise dispose of any of your personal data that we hold.
  • To restrict or prevent the processing of your personal data.
  • To object to us using your personal data for a particular purpose or purposes.

Should you have a complaint regarding our use of your personal data, please contact our Data Protection Officer Karen Sanderson on 0161 519 6810 or [email protected] and we will endeavour to resolve any issues as soon as possible. However if we are unable to resolve the situation to your satisfaction, you can contact the Information Commissioner’s Office  www.ico.org.uk Tel: 0303 123 1113.

Personal Data

Most personal data is supplied directly by you. We may collect some or all of the following personal data (this may vary according to your relationship with us).

  • Details for identification purposes; name, gender, address, telephone number, email, date of birth, copy of passport/driving licence
  • Business name, business address, job title, professional details, employment
  • Case management, document management and time recording systems
  • Automated monitoring of our websites and other technical systems, such as our computer networks and connections, CCTV and access control systems, communications systems, email and instant messaging systems including text message, Skype and WhatsApp
  • Any other information which you may share with us for the performance of any contractual obligations, e.g. financial data, medical records.

Some data may be collected via third parties such as suppliers, referrers, public regulators, publicly accessible sources, credit reference agencies. 

We may also obtain data from a third party with your consent, such as your bank or building society, consultants and other professionals we may engage in relation to your matter, your employer and/or trade union, professional body or pension administrators, and your doctors, medical and occupational health professionals.

This personal data is required to enable us to provide our service to you.  If you do not provide personal data we ask for, it may delay or prevent us from providing services to you.

Use of Personal Data

We must always have a lawful basis for using personal data. This may be because the data is necessary for our performance of a contract with you or because it is in our legitimate business interests to use it. Your personal data may be used for one of the following purposes:

• Communicating with you to provide legal services and to comply with legal obligations
• To perform credit reference or other regulatory checks, such anti-money laundering
• To engage the services of a third party where instructed

We may occasionally send out marketing information.

Storage and Security

We will only store data securely in the UK. We will not keep your personal data for any longer than is necessary in light of the reason(s) for which it was first collected. We will retain your personal information in accordance with applicable law. This is usually in accordance with the statutory limitation period.

Please be assured that we will keep your personal information confidential and take appropriate measures to protect it against loss, theft or misuse and to safeguard your privacy. Where you are provided with any confidential information (including a user ID or password), you must not disclose such information to any third party. We will store your data for 7 years after our contract with you comes to an end. After the appropriate retention period we will securely destroy your personal information in accordance with applicable laws and regulations.

Sharing Personal Data

We will not share any of your personal data with any third parties for any purposes unless we are legally required to do so to comply with legal obligations, a court order, or the instructions of a government authority. We may sometimes provide payment details to our accountant or bank. If any of your personal data is required by a third party, as described above, we will take steps to ensure that your personal data is handled safely, securely, and in accordance with your rights, our obligations, and the third party’s obligations under the law.

We may share information with our external service suppliers, representatives and agents that we use to make our business more efficient, e.g. typing services, marketing agencies, document collation or analysis suppliers.

We only allow our service providers to handle your personal data if we are satisfied they take appropriate measures to protect your personal data. We also impose contractual obligations on service providers relating to ensure they can only use your personal data to provide services to us and to you.

We may disclose and exchange information with law enforcement agencies and regulatory bodies to comply with our legal and regulatory obligations. 

Where your personal data is held

Information may be held at our offices, third party agencies, service providers, representatives and agents.

How long will your personal data be kept

We will keep your personal data after we have finished advising or acting for you. We will do so for one of these reasons:

  • to respond to any questions, complaints or claims made by you or on your behalf;
  • to show that we treated you fairly; and/or
  • to keep records required by law.

We will not retain your data for longer than necessary for the purposes set out in this policy. Different retention periods apply for different types of data. Further details on this are available in our client care letter/terms of business.

When it is no longer necessary to retain your personal data, we will delete or anonymise it.

Transferring your personal data out of the EEA

To deliver services to you, it is sometimes necessary for us to share your personal data outside the European Economic Area (EEA), for example:

  • with your and our service providers located outside the EEA;
  • if you are based outside the EEA;
  • where there is an international dimension to the matter in which we are advising you.

These transfers are subject to special rules under European and UK data protection law.

Your rights

You have the following rights, which you can exercise free of charge:

  • Access: The right to be provided with a copy of your personal data
  • Rectification: The right to require us to correct any mistakes in your personal data
  • To be forgotten: The right to require us to delete your personal data – in certain situations
  • Restriction of processing: The right to require us to restrict processing of your personal data – in certain circumstances, for example, if you contest the accuracy of the data
  • Data portability: The right to receive the personal data you provided to us, in a structured, commonly used and machine-readable format and/or transmit that data to a third party – in certain situations
  • To object: You have the right to object:
    • At any time to your personal data being processed for direct marketing (including profiling);
    • In certain other situations to our continued processing of your personal data, for example, processing carried out for the purpose of our legitimate interests.
  • Not to be subject to automated individual decision-making: The right not to be subject to a decision based solely on automated processing (including profiling) that produces legal effects concerning you or similarly significantly affects you

For further information on each of those rights, including the circumstances in which they apply, please contact us or see the Guidance from the UK Information Commissioner’s Office (ICO) on individuals’ rights under the General Data Protection Regulation.

If you would like to exercise any of those rights, please:

  • complete a data subject request form, which is available from our Data Protection Officer; 
  • email, call or write to our Data Protection Officer — see below: “Contact details”;
  • let us have enough information to identify you eg your full name, address and client or matter reference number;
  • let us have proof of your identity and address (a copy of your driving licence or passport and a recent utility or credit card bill); and
  • let us know what right you want to exercise and the information to which your request relates.

Keeping your personal data secure

We have appropriate security measures to prevent personal data from being accidentally lost, or used or accessed unlawfully. We limit access to your personal data to those who have a genuine business need to access it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.

We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.

If you want detailed information from Get Safe Online on how to protect your information and your computers and devices against fraud, identity theft, viruses and many other online problems, please visit www.getsafeonline.org. Get Safe Online is supported by HM Government and leading businesses.

How to complain

We hope that we can resolve any query or concern you may raise about our use of your information. 

The General Data Protection Regulations also give you right to lodge a complaint with a supervisory authority, in particular in the European Union (or European Economic Area) state where you work, normally live or where any alleged infringement of data protection laws occurred. The supervisory authority in the UK is the Information Commissioner who may be contacted at https://ico.org.uk/concerns or telephone: 0303 123 1113.

Changes to this Privacy Notice

This Privacy Notice was created in November 2021.  We reserve the right to change or update this Privacy Notice at any time.

Contact details

Karen Sanderson is our Data Protection Officer. Her contact details are:
Mobile:            07941 956340
Tel:                   0161 519 6810
Email:              [email protected]
Address:         Bradshaw Trees Law, Bradshaw Trees Barn, Chatterton Lane, Mellor SK6 5NF

Please contact us by post, email or telephone if you have any questions about this privacy statement or the information we hold about you.

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Who we share your data with

If you request a password reset, your IP address will be included in the reset email.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service.