This document regulates the manner in which Šiška & Advokáti, s. r. o. processes and protects your personal data in accordance with Articles 13 and 14 of Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (“GDPR”), as well as with the Personal Data Protection Act and the Advocacy Act.
These Privacy Policy principles explain what personal data Šiška & Advokáti, s. r. o. collects, how it is used, and for what purposes. They apply primarily to data obtained through the use of this website, as well as to information you provide when ordering our legal services, registering, or subscribing to our informational materials.
The personal data processed will include only the personal data you voluntarily provide, namely your email address, and, where applicable, your name and surname (if derived from the email address) and phone number.
The controller of your personal data is Šiška & Advokáti, s. r. o., with its registered office at Mýtna 42, 811 07 Bratislava, Slovak Republic, Company ID (IČO): 36 868 582, registered in the Commercial Register of the Bratislava III District Court, Section Sro, Insert No. 65787/B.
1. Purpose and Legal Basis of Processing
We will process your personal data mentioned above solely for the purpose of mutual communication.
Purpose:
- Provision of legal services
- Consultation
- Provision of non-legal services
- Accounting and tax purposes
2. Data Retention
Protecting your personal data is our priority.
We retain your personal data only for the period reasonably necessary to achieve the purposes for which it was collected. This period also includes compliance with legal, regulatory, tax, and accounting obligations.
Your email address and phone number, which you provide to us, will not be shared or disclosed to third parties. The only exception to this rule is the potential disclosure of information to state authorities, if required by law.
We do not transfer your personal data to third countries or international organizations that do not provide adequate data protection.
3. Data Retention Period
When determining the data retention period, we consider several factors, such as the scope, nature, and sensitivity of the data, the potential risk of misuse or unauthorized disclosure, the purposes of processing, and the availability of alternative ways to achieve these purposes. We also comply with the relevant legal, regulatory, tax, accounting, and other applicable requirements.
The retention period for client files is 10 years, starting from the date when all conditions for archiving the file have been met.
4. Sources of Personal Data
We collect and process personal data primarily for the purpose of providing legal services and facilitating communication, which is the core activity of our law firm. Most personal data is obtained directly from clients or through Calendly when booking an online consultation, ensuring the proper fulfillment of our cooperation’s purpose. Providing personal data is, in most cases, voluntary; however, its completeness is essential for delivering high-quality legal services and advice.
In certain situations, we may also obtain clients’ personal data from publicly available sources, judicial authorities, state administration, local government bodies, or other individuals. In such cases, we always act in compliance with the law and in the best interest of the client.
5. Rights of the Data Subject
Right to Rectification – If the data subject believes that the data held by the Controller is inaccurate, incomplete, or outdated, they have the right to request its correction, supplementation, or update.
Right to Erasure – The data subject may request the deletion of their personal data if it is no longer necessary for the original purpose of processing.
Right to Access – The data subject has the right to obtain a copy of the personal data retained by the Controller, as well as information on how it is processed.
Right to Restriction of Processing – In certain cases, the data subject may request the Controller to temporarily restrict the use of their personal data. This applies particularly if they believe that the processed data is inaccurate or that the Controller no longer needs it for the original purpose.
6. Data Security
We have implemented appropriate security measures to protect your personal data from accidental loss, unauthorized access, use, alteration, or disclosure.
Access to your personal data is granted only to our employees and authorized third parties who need to process it in order to fulfill their work or contractual obligations. These individuals process data exclusively based on our instructions and are bound by confidentiality obligations.
7. Withdrawal of Consent
If you, as a data subject, have given us consent to process your personal data, you have the right to withdraw this consent at any time, either in writing or by sending a message to our email address – office@msak.sk.
PRIVACY POLICY
COPYRIGHT © 2024 | ŠIŠKA & ADVOKÁTI S.R.O.