Privacy Policy

1. Introduction

Paul Brady & Co. Solicitors is committed to respecting the privacy of our users, clients and staff. This privacy notice will explain how we collect and use your information.

All your personal information is held and used in accordance with the EU General Data Protection Regulation 2016/679 (GDPR) and any laws implementing GDPR and any other legislation relating to the protection of personal data.

This privacy policy will allow you to understand what information we collect and hold about you. It
will also provide you with the information you require to exercise any of your rights in respect of your personal information.

2. Who we are

We are Paul Brady & Co. Solicitors of 3 Railway Street, Navan, Co. Meath. You can contact us at this address by post or by email at Our telephone number is +353 (0)46 9028011.

Paul Brady & Co. Solicitors is the controller of your information for the purposes of GDPR and responsible for your personal data. This means we make decisions about how and why we use your personal data, meaning we are responsible for ensuring it is used in accordance with the relevant data protection laws.

3. What we collect, why we process your data, the lawful basis for processing your data and who we share it with

Personal data, or personal information, means any information about an individual from which that person can be identified.

Processing of data includes collection, recording, organisation, structuring, storage, adaption, alteration, retrieval, consultation, use, disclosure, erasure, or destruction of data.

We use personal data to provide legal advice, to assist with legal claims or proceedings, to manage our business, recruit new staff, comply with our legal obligations.

The information we collect can be broken down into a number of categories:

  • Contact Information (name, address, telephone numbers, email, the company you work for, your title or position and your relationship to a person);
  • Identity and Other Regulatory Information (date of birth, identification [passport, driving licence, utility bill, bank statement], identification and background information provided by you for anti-money laundering information [including proof of funds, politically exposed persons];
  • File and Billing Information (correspondence relating to your files or enquiries, Information about other parties that you share with us [i.e. your customer and staff information], billing and banking information for payment purposes);
  • Marketing Information (marketing communications preferences, areas of interest);
  • Browsing and Device Usage Information (information generated through use of our website and other digital platforms, IP addresses).

We have set out below how we process data and the lawful basis upon which we do so:

What is your information used for?Lawful BasisOur Legitimate Interests
To respond to your query when sent through our ‘contact us’ form and to provide you with the information you request through other communication mediums

  • Consent

  • Legitimate Interest

  • To satisfy your enquiries

To manage our relationship with you and to fulfil our legal duties, to assist you with legal claims or legal proceedings, and to assist you with your legal rights

  • Consent

  • Legitimate Interest

  • Performance of a contract, provision of efficient client care

  • Establishing, exercising or defending legal actions on your behalf

  • Comply with legal

  • To keep our records updated

To administer and protect our business and this website

  • Legitimate Interest

  • To run our business

  • Provision of IT and security services

  • Compliance with legal obligations

To manage the system that contains our marketing database and marketing preferences

  • Legitimate Interest

  • To improve our systems and services

  • To seek feedback

  • For data management for marketing and business development purposes

In certain limited circumstances we will share your information with other trusted third parties including our client relationship management system providers, IT providers, our professional advisors and auditors, barristers involved in your case, third party AML providers. They may only process this data for the purpose of providing us with their services, and no other purpose.

If we receive a request from a regulatory body or law enforcement agency, and if permitted under the GDPR, we may disclose your personal information to such bodies.

4. Retention of Personal Information

We will only retain this data for as long as is necessary for the purpose or purposes for which we have collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements.

How we determine retention periods will be determined by the nature of the data and the purpose for which it is kept. Details of retention periods for different aspects of your personal data are available by contacting us at the address set out in Part 2 above.

5. Links to Third Party Websites

Our website may contain links to other websites. Paul Brady & Co. Solicitors are not responsible for the privacy practices or the content of such other websites. If you visit or link to another website, please review the privacy notice for that website.

6. Security of your Data

We use industry standard security measures to protect your information and to prevent the loss, misuse or alteration of information in our control. All staff are subject to strict confidentiality obligations.

However, as no security system is entirely secure we cannot guarantee the security of your information. Should there be any suspected personal data breach we will notify you and the regulator where we are legally required to do so.

7. Transfers of data outside the European Economic Area

We generally hold all information concerning you and your affairs in Ireland and/or within the European Economic Area (EEA). Where we are required for any reason to transfer or provide your information to a location outside of the EEA, we will ensure that we have a lawful basis for doing so and that your information is protected to the same standard as if it were being processed within the EEA.

8. Your rights relating to personal data

You have the following rights under the GDPR, in certain circumstances and subject to certain
exemptions, in relation to your personal data:

  • The right to access the data – you have the right to request a copy of the personal data that we hold about you, together with other information about our processing of that personal data;
  • The right to rectification – you have the right to request that any inaccurate data that is held about you is corrected, or if we have incomplete information you may request that we update the information such that it is complete;
  • The right to erasure – you have the right to request us to delete personal data that we hold about you. This is sometimes referred to as the right to be forgotten;
  • The right to restriction of processing or to object to processing – you have the right to request that we no longer process your personal data for particular purposes, or to object to our processing of your personal data for particular purposes;
  • The right to data portability – you have the right to request us to provide you, or a third party, with a copy of your personal data in a structured, commonly used machine readable format.

In order to exercise any of the rights set out above, please contact us at the contact details at the start of this privacy notice.

If we are processing personal data based on your consent, you may withdraw that consent at any time. This does not affect the lawfulness of processing which took place prior to its withdrawal. If you are unhappy with how we process personal data, we ask you to contact us so that we can rectify the situation.

You may lodge a complaint with a supervisory authority. The Irish supervisory authority is the Data Protection Commission. The Irish Data Protection Commissioner’s office details are as follows:

Office of the Data Protection Commissioner
Canal House,
Station Road
Co. Laois
R32 AP23

Telephone: +353 (0761) 104 800

9. Requirement to process personal data

You may browse our website without providing us with any personal data and this will not affect your ability to view our website.

If you do not provide us with your information for the purposes described above, we cannot send you our newsletter, respond to your queries sent through our contact us form, liaise with you on client matters or assess your suitability for a role within our firm.

10. Automated decision-making and profiling

We do not use any personal data for the purpose of automated decision-making or profiling.

11. Changes to Privacy Policy

We reserve the right to change this Privacy Notice from time to time at our sole discretion. If we make any changes, we will post those changes here and update the “Last Updated” date at the bottom of this Privacy Notice. Your continued use of this website after we make changes is deemed to be acceptance of those changes, so please check this Privacy Notice periodically for updates.

Paul Brady & Co.
Last Updated: August 2018