2 Some of the personal data you or the data subjects provide to us yourself when you or they contact us via email or by telephone and request our services. This includes, for example, name and contact details as well as information about the role of the data subject at the company or organization for which you or the respective contact persons work or on whose behalf you or they contact us. We also process personal data that we receive in our correspondence with third parties (namely clients, counterparties, authorities and courts and their employees or other contact persons) in the context of the mandate relationship (e.g. name, contact data, date of birth, information on employment or income situation). In addition, we collect some personal data ourselves, e.g. from public registers or websites.
3 We process the aforementioned types of personal data primarily to provide, document and bill our legal services.
5 We process personal data in our area of responsibility in Switzerland. However, we may transfer the personal data to recipients (namely clients, counterparties or authorities) who in turn process the personal data in other countries, including those that do not ensure a level of data protection comparable to Swiss law. We will do the latter based on consent or standard contractual clauses, or if it is necessary for the performance of a contract or the enforcement of legal claims.
6 We store personal data only for as long as is necessary for the processing of the client relationship, for as long as there is a legal obligation to retain and document the data, or for as long as we have an overriding private or public interest in doing so. We take reasonable and appropriate precautions to protect personal data from loss, unauthorized modification or unauthorized access by third parties. If you provide personal data to us through a third party (e.g., through your employees or other contacts), it is up to you to inform them in a general way about the processing by legal service providers (such as us) or other external service providers (e.g., in a privacy statement for employees).
7 We would like to point out that we use external IT service providers and cloud providers with servers in Switzerland as part of our mandate. We then use certain IT services as well as means of communication which may be associated with data security risks (e.g. e-mail, video conferencing). It is up to you to inform us about the request for special security measures.
8 We have a legitimate interest in the processing of personal data corresponding to the aforementioned purposes. Some processing is also necessary so that we can fulfill our contractual obligations to you or our legal obligations (e.g. retention obligations).
9 In particular, data subjects have the right to obtain information about the personal data stored about them and the purpose of the data processing, the right to rectification as well as to erasure or restriction of the processing of their personal data, the right to object to the processing, the right to seek redress from a competent supervisory authority and to data transmission/transferability. However, please note that conditions and exceptions apply to these rights. To the extent permitted or required by law, we may refuse requests to exercise these rights. For example, we may or must retain or otherwise continue to process personal data despite a request to delete the personal data or restrict processing for legal reasons.
11 If you have any questions or if you or your employees or other contacts wish to exercise your or their data protection rights, please contact us at email@example.com or write to Marghitola Dispute Resolution, Freigutstrasse 4, CH-8002 Zurich.