1.1 Conyers Dill & Pearman and its affiliated entities including Conyers Client Services (collectively “Conyers”, “us” “our” and “we”) is committed to maintaining the security, confidentiality and privacy of your Personal Data.
1.2 “Personal Data” means information associated with a specific identifiable individual but does not include information about corporate or commercial entities.
2.2. For the purposes of the European Union’s General Data Protection Regulation and the Cayman Islands’ Data Protection Law, Conyers collects and processes Personal Data and acts as a data controller. In delivering our services to you, your Personal Data that is collected through our website or by any of our staff may be transferred between our servers and offices, including our data centre, which is located in Toronto, Canada. As such our various offices may act as joint data controllers of your Personal Data. Our London office acts as our European Union representative.
3.1. In addition to Personal Data provided to us by you through our staff or website, we may also collect information that is publicly available. The Personal Data we may hold includes:
(a) Contact information, including name, telephone number, address and email address;
(b) Occupation and employer details;
(c) Identification documents (which may include gender, nationality, photograph, signature, date of birth, etc.) and numbers necessary to meet our legal obligations, such as those related to anti-money laundering and “know-your-customer” requirements;
(d) IP addresses; and
(e) Details related to marketing our services, including recording your usage of our website and the mailing lists for which you have subscribed or unsubscribed.
4.1. Conyers comes into the possession of Personal Data in order to provide professional services. Conyers only collects and processes Personal Data if it is lawful to do so, specifically where:
(a) it is required to fulfill a contract with you;
(b) it is required for us to comply with the law;
(c) it is necessary for us to perform a task in the public interest;
(d) it is necessary for our legitimate interests, or the legitimate interests of a third party; or
(e) you have provided us with your consent.
4.2. Your Personal Data may be used for the following purposes:
(a) to meet our regulatory, legal and professional obligations;
(b) to establish and manage our relationship with you;
(c) to provide legal advice and services;
(d) to monitor and manage the performance of our business operations;
(e) to manage conflicts of interest;
(f) to analyse performance, and generate internal reports;
(g) to assess risks including legal and financial risks;
(h) to invoice and process payments;
(i) to process applications for employment;
(j) to monitor visitor traffic to and usage of the Conyers website;
(k) to market our services;
(l) to engage in business transactions;
(m) to prevent fraud;
(n) to undertake network and information security activities; and
(o) for any other purposes for which we have your consent, or for which Conyers or its third parties have a legitimate interest.
4.3. Conyers collects and processes Personal Data in order to fulfil its contractual obligations with you and to meet our applicable statutory obligations. If you decide not to provide us with necessary Personal Data this may prevent us from meeting our legal obligations, and therefore prevent us from performing our services for you.
6.2. International Transfers. Your Personal Data may be transferred to or accessed from countries that may not have data protection laws equivalent to those of your country. Unless we have your consent to transfer your Personal Data, the transfer is necessary for the performance of a contract, for the establishment, exercise or defence of legal claims, or is otherwise permitted by applicable data protection and privacy laws, we will only transfer your Personal Data to a country considered to have an adequate level of protection. If such a country does not have equivalent privacy laws, Conyers will ensure it has the appropriate safeguards in place; such safeguards may include binding corporate policies and procedures, standard contractual data protection clauses approved by applicable supervisory authorities, an approved employee code of conduct, or an approved certification mechanism.
7.1. Right to Access. You have the right to request and obtain from us the details of your Personal Data and how it is processed, including the purposes of processing, whether it has been disclosed to third parties, and how long we intend to hold on to the data. Your information will be provided upon written request and we reserve the right to request authentication of identity in the event of such a request.
7.2. Right to Withdraw Consent. Where you have consented to us processing your Personal Data, you have the right to withdraw that consent at any time. If we consider that the withdrawal of such consent will impede our ability to provide any service to you we reserve the right to terminate our service in the event of such a withdrawal.
7.3. Right to Accuracy/Rectification. You have the right to request that we rectify inaccurate Personal Data concerning you.
7.4. Right to Object To or Restrict Processing. You have the right to object to or request that we restrict processing your Personal Data if:
(a) you believe the Personal Data we hold about you is inaccurate;
(b) you believe the processing is unlawful but you oppose us erasing your Personal Data;
(c) we no longer need to process the Personal Data but you require it for the establishment, exercise or defence of legal claims; or
(d) you object to the grounds upon which we have determined that processing your data is legitimate.
We are required to comply with your request unless the processing is to meet the conditions of a contract, under a legal obligation, in order to protect the vital interests of an individual, or otherwise permitted under applicable law.
7.5. Right to Object to Processing for Direct Marketing. You have the right at any time to object to the processing of your data for direct marketing purposes.
7.6. Right to Avoid Automated Decision Making. You have the right not to be subject to a decision based solely on automated processing (i.e. a decision made without human involvement), including profiling, which produces legal or similarly significant effects concerning you, unless it is necessary for entering into, or the performance of, a contract between you and Conyers.
7.7. Right to Data Portability. You have the right to receive your Personal Data in a machine-readable format and the right to have that information transferred to another data controller, where technically feasible.
7.8. Right to Erasure/”Right to Be Forgotten”. You have the right to request for us to erase your Personal Data. We will fulfill this request provided that there are no legal requirements for us to continue processing your Personal Data.
7.9. Right to Raise Your Concerns. Conyers has procedures in place to receive and respond to complaints or inquiries about our policies and practices relating to the handling of Personal Data. If you have any questions or concerns about your Personal Data or how it is being used by Conyers, you can contact our Chief Privacy Officer at the address below. If we are unable to satisfactorily address your concerns, you have the right to communicate with the relevant supervisory authority.
8.1. You are required to advise us of any changes that may impact the services we are providing. From time to time, you may be asked to verify or update your Personal Data.
9.1. Conyers protects the Personal Data in its custody or control by making reasonable security arrangements to prevent unauthorized access, collection, use, disclosure, copying, modification or disposal, in accordance with our information technology and security policies, which are reviewed and tested on a regular basis. Confidentiality and security are not assured when information is transmitted through e-mail or other wireless communication. Conyers will not be responsible for any loss or damage suffered as a result of a breach of security and/or confidentiality when information is transmitted by e-mail or wireless communication. We will take your use of a particular mode of communication as permission for us to communicate with you using the same mode of communication unless otherwise instructed by you.
10.2. Cookies are small files that are downloaded onto your computer to help improve your browsing experience and enable us to evaluate how people use our website. We currently use a session cookie and a persistent cookie. The session cookie is temporary and stored on your computer only for as long as you visit our website. The persistent cookie is uploaded to your computer only after you check the “Remember Me” box and enables you to store information to more quickly access password protected portions of our website.
10.4. Our website may from time to time contain links to third party websites. Conyers does not take responsibility for the privacy practices of any third party website. Please ensure you read the policies of any third party website you visit.
11.2. Conyers reserves the right to amend this policy from time to time without prior notice to you. Please check our website periodically at www.conyers.com to see if any changes have been made.
Last updated 03 October 2019.