Privacy Statement for a Mandate Relationship

With this privacy statement, Blum&Grob Attorneys at law Ltd would like to inform you about how Blum&Grob processes personal data in the course of its business and inform you about your rights. Please read our privacy statement carefully.

We process personal data (data that directly or indirectly identifies natural persons). in accordance with the applicable provisions of data protection law. The responsible for the processing of personal data and therefore the controller in accordance with this privacy statement is Blum & Grob Attorneys at law Ltd, Neumühlequai 6, 8001 Zürich, Switzerland.

Some of the personal data is provided to us by you or other data subjects when you or they contact us by e-mail or telephone and request our services. This includes, for example, name and contact details as well as information about the role of the data subject at the company or organization for which you or the respective contact persons work or on whose behalf you or they contact us. We also process personal data that we receive in our correspondence with third parties (in particular clients, counterparties, authorities and courts and their employees or other contact persons) in the context of the relationship (e.g. name, contact data, date of birth, information about your professional or private situation). In addition, we collect some personal data ourselves, e.g. from public registers or websites.

We process personal data primarily to provide, document and bill our legal services. In addition, we process the contact details of clients, their employees or other contacts for marketing purposes (using any means of communication such as email, social media, post or telephone) in order to provide information about publications, events, news, services or products that may be of interest.

In order to achieve the purposes described in this privacy statement, it may be necessary for us to share personal data with the following categories of recipients: external service providers, clients, counterparties and their legal representatives, business partners with whom we may need to coordinate the provision of legal services, and public authorities and courts.

We process personal data in Switzerland and the EEA (European Economic Area). However, we may transfer the personal data to recipients (namely clients, counterparties or authorities) who process the personal data in other countries, including those that do not ensure a level of data protection comparable to Swiss law. We will do the latter based on consent or standard contractual clauses, or if it is necessary for the performance of a contract or the enforcement of legal claims.

We store personal data for as long as is necessary for the handling of the client relationship, for as long as there is a legal obligation to retain and document the data, or for as long as we have an overriding private or public interest in doing so. We take reasonable and appropriate precautions to protect personal data from loss, unauthorized modification or unauthorized access by third parties. If you provide us with personal data through a third party (e.g., through your employees or other contacts), it is your responsibility to inform them about the processing by legal service providers (such as us) or other external service providers (e.g., in a privacy statement for employees).

We would like to point out that we use external IT service providers and cloud providers with servers in Switzerland and the EEA. Further, we also use certain IT services and means of communication which may be associated with data security risks (e.g. e-mail, video conferences). It is your obligation to inform us about your wish for special security measures.

We have a legitimate interest in the processing of personal data for the aforementioned purposes. Some of our processing activities are also necessary to fulfill our contractual obligations or our legal obligations (e.g. retention obligations).

Data subjects have, inter alia, the right to information about their personal data processed and the purpose of the data processing, the right to rectification and to request deletion or restriction of the processing of their personal data, the right to object to the processing, the right to take legal action before a competent supervisory authority and the right to data transmission/transferability. However, please note that requirements and exceptions apply to these rights. To the extent permitted or required by law, we may refuse such requests. For example, we may be obliged to retain or otherwise continue to process personal data despite a request to delete the personal data or restrict processing for legal reasons.

If you have any questions or if you or your employees or other contact persons would like to exercise your or their data protection rights, please contact us at datenschutz@blumgrob.ch, by phone at +41 58 320 00 00 or write to Blum & Grob Rechtsanwälte AG, Datenschutz, Neumühlequai 6, Postfach, 8021 Zürich.

No consent from the mandate, their employees or other contact persons to the privacy statement is required. The privacy statement is merely information about the type, scope and purpose of the use of personal data by Blum & Grob Attorneys at Law Ltd. We reserve the right to unilaterally change the content of the aforementioned privacy statement at any time and without notice. It is therefore recommended that you consult our privacy statement regularly on our website. For the processing of personal data other than the mandate relationship, we refer to our general privacy statement, which is also available on our website.