The following provides information on how Kilpatrick Townsend & Stockton Advokat KB processes personal data that we receive within the scope of our legal practice, in connection with other business contacts, and through our website.
For information on the processing of personal data in connection with recruitment, please see karriar.kilpatrick.se/data-privacy.
1. How we process personal data
Kilpatrick Townsend & Stockton Advokat KB (“we” or “us”) is the controller of the personal data we receive:
- in connection with assignments or otherwise processed when assignments are prepared or administered,
- in connection with other business-related contacts and events (for example, when registering for our training sessions, other events, or newsletters), and
- when visiting our website.
You are not required to provide personal data to us. However, if you do not provide such data, we may be unable to accept an engagement, as we cannot carry out the necessary conflict of interest and anti-money laundering checks. The same applies to suppliers and other business partners, as we may then be unable to enter into or fulfil contracts. We may also be unable to send you newsletters or offer you a place at our events. You can visit our website without having to provide any personal data or accept cookies. For information on how we use cookies, see www.kilpatrick.se/cookies/.
2. Categories of personal data we process
In connection with assignments, we process contact details, ID documents, and other personal data related to the assignment that clients, counterparties, or other individuals linked to the assignment provide to us. If relevant to the assignment, we may in rare cases process so called sensitive personal data or data relating to criminal convictions and offences. If you represent a supplier or business partner, we process personal data that we receive from the organization you represent (such as contact details and information about our business relationship). We may also obtain personal data from private or public registers or other sources.
We also process personal data that you provide when communicating with us via email or other channels. Furthermore, we process personal data when you sign up for newsletters, seminars, or other events (such as contact details and information about our business relationship). During seminars or other events, we may take photographs or record videos for marketing purposes.
3. Purpose and legal basis for processing
Personal data obtained in connection with assignments is processed to carry out conflict of interest and anti-money laundering checks, to perform and administer the assignment, to protect our clients’ interests, and for accounting and billing purposes. Such processing is based on our need to fulfil contracts with our clients and on our legitimate interest in providing legal services, as well as to comply with our legal obligations. If you represent a supplier or business partner, we process your personal data to perform our contract with you or with the organization you represent, to comply with our legal obligations, and based on our legitimate interest in maintaining our business relationships. Where applicable, we also process personal data to establish, exercise, or defend legal claims.
In addition, personal data is used for business and method development, market analysis, statistics, and risk management. This processing is based on our legitimate interest in developing and marketing our business and communicating with our contacts.
4. Transfer of personal data
Personal data may be transferred between our different group or sister companies for the purpose of performing conflict of interest and anti-money laundering checks, exchanging information and knowledge, and allocating resources. We do not disclose personal data to third parties except in cases where (i) it has been specifically agreed between you and us, (ii) it is necessary within the framework of a particular assignment to protect our clients’ rights and interests (e.g., to a court, arbitral tribunal, authority, counterparty, opposing counsel, insurer, or auditor), (iii) it is required to protect legal interests, (iv) it is necessary to fulfil a legal obligation or comply with a decision by an authority or court, or (v) we engage external service providers performing tasks on our behalf.
We may also share personal data on social media to promote our business, for example in connection with training sessions and other events.
As we are an international law firm, personal data may be transferred to the United States using so called standard contractual clauses, which ensure adequate protection of personal data.
5. How your personal data is stored
Personal data is stored in accordance with our legal obligations and the Swedish Bar Association’s Guiding Rules on Professional Conduct (in the latter case, for ten years from the date the assignment was completed, or longer if required by the nature of the assignment).
Data processed for the purpose of developing, analyzing, and marketing our business is retained as long as it remains relevant for that purpose. If the processing is based on your consent, you may withdraw your consent at any time by contacting us as described below. If you unsubscribe from newsletters or similar communications, your data will no longer be stored for that purpose.
6. Your rights
You have the right to request, free of charge, information from us about the use of personal data relating to you. Upon your request, or on our own initiative, we will rectify or delete incorrect data or restrict the processing of such data. In certain cases, for example where processing is based on our legitimate interest, you have the right to object to the processing. You also have the right to request that your data not be processed for direct marketing purposes. In certain cases, you have the right to receive your personal data in a machine-readable format or, if technically feasible, to have it transferred to another controller. If you are dissatisfied with our processing of your personal data, you may file a complaint with the relevant supervisory authority. In Sweden, this is the Swedish Authority for Privacy Protection (Integritetsskyddsmyndigheten, IMY) (www.imy.se). You may also contact the supervisory authority in the country where you live or work.
Please note that the rights described above may be limited due to the confidentiality obligations imposed on us by the Swedish Bar Association and other applicable laws and regulations. We are, for example, required to retain certain personal data for a specific period to comply with legal requirements related to accounting, anti–money laundering and fraud prevention, or limitation rules.
7. Changes
We reserve the right to amend this privacy policy from time to time. The latest version is always available on our website.
Contact Us
Via ComplianceSTK@kilpatrick.se or by mail at the address below if you have any questions regarding our personal data processing.
Data Controller
Kilpatrick Townsend & Stockton Advokat KB
Hovslagargatan 5B
Box 5421, 114 84 Stockholm
Telephone: 08-505 646 00
Org. no: 969676-8705
