The ILA collects and uses information about its members and other individuals with whom it comes into contact (including through its website). We are committed to protecting your privacy and we therefore ask that you please read this policy carefully as it describes the personal data we collect, the ways that we use it and how we make sure your rights are protected.
If you would like to know more please contact us by post at Data Protection, Insolvency Lawyers Association, C/O Westcotts, 26-28 Southernhay East, Exeter, EX1 1NS or by email at presidentila@ilauk.com
Best practice in relation to privacy and the processing of personal data is constantly evolving and we may change this Policy from time to time. We request that you refer to our website on a regular basis to ensure that you are aware of our most recent policy.
We are the Insolvency Lawyers Association Limited (“we”, “us” or “our”). Our registered office is C/O Westcotts, 26-28 Southernhay East, Exeter, EX1 1NS
For the purposes set out in this privacy policy, we are the “data controller” of your personal data.
“Personal data” is any information that could be used to identify you in some way. We collect the following personal data about you:
In most situations, we will collect personal data directly from you when you become a member, visit our website, attend one of our events, contact a member of the committee or otherwise get in touch with us.
From time to time we may access and store personal data which is available from other public sources including some personal data.
Our website uses cookies to recognise you when you visit and use the website. Cookies help ensure the website runs smoothly and also allow us to improve our website. For more information on the cookies we use, the purposes for which we use them and ways to limit the use of cookies and similar technologies in relation to your browser or devices, please see our Cookie Policy.
We use your personal data for a variety of purposes related to the successful management and day to day running of our organisation. From a legal perspective, there are various reasons for doing so. We’ve set each use and our legal justifications out in the table below:
For purposes related to the provision of the services that we offer to you and our members generally: |
|
---|---|
|
We use your personal data in this way either because we have a contract with you (for example, members will expect to receive relevant updates and be invited to key events as part of their membership to the association) or because it is in our legitimate interests to do so (for example, it is in our interests to measure member satisfaction and 'troubleshoot' issues). Where we rely on our legitimate interests to use your personal data we will always ensure that your rights are protected. |
For purposes related to the events we run or that others host on our behalf: |
|
|
We do this because it is in our legitimate interests to process personal data in this way to ensure that our events are managed well and serve the interests of delegates. We will always ensure that your rights are protected. If you no longer wish to hear from us about these events you may 'opt-out' by responding to our latest email. |
For purposes related to awarding the Paul Bromfield Insolvency and Restructuring Research Scholarship: |
|
|
We do this because it is in our legitimate interests to ensure fair running of the scholarship award process and ensure consistent with our professional objectives. We will always ensure that your rights are protected. |
To measure how effective our communications and events are: |
|
|
We do this because it is in our legitimate interests to ensure that we send content to members and host events which are relevant and useful but we will always ensure that your rights are protected. |
For administrative and internal business purposes: |
|
|
It is in our legitimate interests as a business to use your personal data in this way. For example, we have a clear interest in ensuring that we manage the association effectively and efficiently. We will always ensure that your rights are protected. |
For security and legal and compliance purposes: |
|
|
In some cases, we will need to use your personal data to fulfil a legal obligation (for example, if we receive a legitimate request from law enforcement agencies), and in other cases (such as the detection of fraud or ensuring the security of the site) we will rely on our legitimate interests as a business to use your personal data in this way. |
We will not disclose your personal data to others except for the reasons set out below. Where we do share your personal data with others we will only do this where we have a genuine reason for doing so and only where we are confident your rights are protected.
The only circumstances where your personal data may be disclosed to others are:
Where we need to share your personal data with a third party which is providing a service to us. For example, we use a third party partner to help us manage our website and a third party will conduct any audits on our behalf. It is in our legitimate interests to do this where we do not have the capabilities to provide these services ourselves. In each case, we will ensure that these third parties are only allowed to use your personal data to provide the relevant services to us. We will always make sure we use third parties we trust to look after your personal data appropriately and as required by applicable laws;
Occasionally, third parties (such as law firms) will host events on our behalf, this may mean that we need to share certain personal data with them or with registration website providers regarding attendees/delegates and speakers in order for them to successfully run the event. We only work with third parties we trust to host and run events on our behalf and we will always ensure that your rights are protected;
Where we are required to do so by the Courts or to comply with other legal, statutory and/or regulatory obligations including accounting and taxation requirements, for example, we are a company limited by guarantee and have certain statutory obligations which require us to process the personal data of members in a certain way; or
To prevent and/or detect crime.
If you would like further details of who we share your personal data with and for which purposes, please contact us using the details in section 8 below.
We do not currently transfer or share any personal data outside of the European Union. However, if this changes we will update this policy accordingly.
Please note that whilst we will do all we can to prevent others from doing so, as certain personal data about our members (i.e. their names and organisation on the public section and names, organisation and contact details on the members section) are made available on our website there is a chance that third parties will collect and use this information for their own purposes.
The law gives you a number of rights in relation to your personal data and our use of it. You have the right:
(a) to ask us not to use your personal data for direct marketing purposes;
(b) to ask to see what personal data we hold about you and to find out about the way that we process the data (and in some circumstances, you can ask us to provide a copy to a third party);
(c) to ask us to correct or update any personal data which is inaccurate;
(d) to ask for personal data to be deleted in some (but not all) circumstances where there is no good reason for us to continue to process it;
(e) to ask us to temporarily stop using your data if you don’t believe that we have a right to use it, or to stop us from using your personal data where there is no good reason for us to continue to use it; and
(f) not to be subject to decisions made solely on the basis of ‘automated processing’ (i.e. the right not to be subject to decisions made solely by algorithms or computers without input from a human) in certain circumstances.
We will do all we can to uphold your rights. If you would like to exercise any of the rights listed above or if you have any queries or concerns about the way that we use your personal data please contact us by post at Data Protection, Insolvency Lawyers Association, C/O Westcotts, 26-28 Southernhay East, Exeter, EX1 1NS or by email at presidentila@ilauk.com
You also have the right to complain about our use of your personal data. You can contact the Information Commissioner’s Office via their website: ico.org.uk/concerns/ or by calling 0303 123 1113.
Please help us to keep your personal data current and accurate by ensuring that your profile is current and up to date or contacting us with any changes by post at Data Protection, Insolvency Lawyers Association, C/O Westcotts, 26-28 Southernhay East, Exeter, EX1 1NS or by email at technical@ilauk.com.
Security
We take the security of your personal data seriously and have put in place appropriate measures to safeguard the personal data we hold from unauthorised access or improper use. We keep these security measures under review.
If you are a member of the association, we will provide you with your password and user name, you must not share them with or disclose them to anyone else and you are responsible for protecting them. We will not ask you for your password to your account. Please notify us if you notice any suspicious activity on your account. If a breach is has been identified the ILA will immediately contact its legal representatives for assistance.
Retention
We will only keep your data for as long as we need it for the purposes described above and in accordance with our internal retention policies and as permitted by applicable laws. This means that the retention periods will vary according to the type of the data and the reason that we have the data in the first place. For example we will keep members data for a minimum of 10 years to comply with statutory obligations, but we will destroy personal data in relation to events (such as delegate lists) much sooner.