The following notice is provided as required by the General Data Protection Regulation 2016/679 and in the spirit of transparency on behalf of:
(1) in the UK - GQ Employment Law LLP (trading as "GQ|Littler"); and
(2) in the Republic of Ireland - the general partnership trading as "GQ|Littler Ireland" (No. 14748803).
Except to the extent otherwise specified in this notice, these provisions apply to both GQ|Littler and GQ|Littler Ireland.
Both GQ|Littler and GQ|Littler Ireland are part of a global community of law firms called “Littler Global”, which is a Swiss verein. The lead law firm for Littler Global is Littler Mendelson P.C., which is a law firm headquartered and based in the United States of America.
In operating our business, the entity with which an individual’s relationship is with acts as the data controller in relation to the data of individuals associated with our current, past and prospective corporate clients, our individual clients and other contacts of the firm such as barristers, suppliers, co-counsel, potential recruits and other lawyers to whom we make or receive referrals. In certain circumstances, GQ|Employment Law LLP and GQ|Littler Ireland may act as joint controllers in respect of data.
We operate a client relationship management database which includes details of individual contacts employed by our current, former and prospective clients together with other professional contacts of the firm. The information we hold includes individual contact details, details of our interactions, past work and work opportunities and any other information relevant to our relationship. This information is processed for our legitimate business purposes of marketing our services to interested persons, operating our business and managing our client and other external relationships. We do not systematically share marketing information with third parties. We will share data between our Ireland or UK offices (as appropriate).
On occasion we may share limited details with other Littler Global member firms or other firms with whom we have a close relationship, but we only do this on a case by case basis where one of our fee earners believes that you or your organisation may be interested in a wider service offering. Where we provide such information to Littler Global entities outside the EEA we transfer such data under the terms of a model agreement. Records are held in our database for the lifespan of our relationship and are reviewed on a regular basis in order to remove contacts who we believe are no longer interested in our practice. If you would prefer not to be included in our client relationship management database, please let us know.
We publish a monthly email newsletter and we periodically email our clients and contacts with invitations to events and other developments in the law and our practice. All our communications include an opt out mechanism. If you opt out from our marketing communication we will remove your from our circulation list. We welcome feedback and you can also opt out at any time by emailing us at [email protected].
Client Due Diligence
In common with other EU law firms. we carry out due diligence on our individual clients and on officers and the beneficial owners of our corporate clients. Where you are an individual providing this information please see the following notice:
“GQ|Littler and GQ|Littler Ireland act as data controller in relation to either: (i) the client due diligence information requested by us and provided by you or on your behalf; or (ii) information about you which is obtained from reputable public and private compliance databases. Such data is processed for the purpose of complying with our legal obligations and our legitimate interest in ensuring that our clients share our values. This information is not shared with third parties except where we instruct other law firms or professional service firms as part of the work we have been asked to do (in which case this disclosure may involve a transfer outside the EEA which will be legitimised on an ad hoc basis). We may also share this information with the authorities and this information is typically retained for at least seven years after the client relationship ends although we may hold it for longer periods where necessary to defend against legal claims. You have the right of access, rectification and erasure and, although we would hope that you would address any queries directly to us in the first instance so that we can resolve them, you may complain to the UK Information Commissioner or to the Irish Data Protection Commissioner.
Should you apply for a role with us either directly or via a recruitment agent, you understand that, in order to process your application for employment, we will process information about you from your CV and other information provided by you or on your behalf. Where you apply through an agent we may also be provided with their assessment of your suitability and our expectation is that before approaching us your agent will have: (a) drawn your attention to this notice; and (b) obtained your express consent to submit your application to us. During the recruitment process we may also take up references on you and make notes about you for the purpose of assessing your suitability for employment.
You understand that if you receive and accept an offer of employment with us, you will have to provide proof of your right to work in the UK or Ireland (as appropriate) and a failure to provide this will mean that we are unable to hire you. Information about your application may be shared with any Littler Global member firm in the countries in which Littler Global operates (in particular GQ|Littler or GQ|Littler Ireland as appropriate or the USA) and where we have a model agreement in place to ensure that appropriate safeguards are in place. If you are successful in obtaining employment with us, then a separate privacy notice will be provided to you. If you are not successful, then we will usually delete your CV and associated records within 6 months of receiving it unless we agree to a different arrangement with you.
In common with most businesses, we use outsourced IT solutions who operate as processors on our behalf. Our marketing database provider and email marketing provider which we use to send our newsletters both host their data on servers which are located in the United States. We have appropriate safeguards in place regarding the transfer of your data outside the EEA.
Our terms of business address the basis on which we handle personal data in the course of providing our legal services. We are required to inform data subjects that they have (or may have) rights of access, rectification and erasure and to complain to the UK or Irish data protection regulator (although we would hope that any queries would be directed to us in the first instance so that we can resolve them).
If you have any questions, please contact [email protected].