We respect your rights to data protection and privacy
This notice only relates to the processing of personal data directly provided by you or collected as a result of visiting this website. Should we process your personal data in a different context or circumstances (for instance if you instruct us and become our client), we will provide you with a separate notice.
Who are we?
In respect of personal data processed when you use this website, MDR LAB is the controller. “Personal data”, “processing” and “controller” are all used in this notice according to their definitions in the UK General Data Protection Regulation (“UK GDPR”) and the Data Protection Act 2018.
What personal data do we collect?
As a result of your visiting this website, we may collect or otherwise process your personal data in the following ways:
- When you provide your personal data on a contact form.
- When you contact us by other means, such as email, telephone or fax
What is our basis for processing your personal data?
Any personal data that you give to us may be retained by us to provide a requested service, or for our legitimate interests as a business. You do not have to give us any of your personal data in order to use most of the website or associated online systems. However, if you wish to take advantage of some of the more special personalised services that we offer on our website, you will need to provide certain information.
In general, our legal basis for processing your personal data is that it is in our legitimate interests (and, indeed, in some cases, yours) to do so, although we would refrain from doing so if our legitimate interests were overridden by your interests or fundamental rights and freedoms. We have an interest in operating our business in the most customer-focused and professional way, and our processing of your personal data is done in accordance with this.
We will maintain this Privacy Notice from time to time on this site.
Who might access or receive your personal data?
Recipients of personal data provided as a result of your visiting this website will generally only consist of our employees. In certain circumstances we may be compelled to provide information we hold to third parties, such as regulatory or law enforcement bodies. We would only do so in compliance with the law, and where strictly necessary.
We do not intend to transfer your personal data provided or collected as a result of visiting our website outside of the UK.
As a result of your providing requests for services or updates, we may occasionally send you those mailings which you have requested or, in accordance with marketing laws, which we feel may interest you and/or are relevant to your practice/work. Such mailings may include details of our products and services, newsletters, briefing notes and legal updates and invitations to our various training seminars and other events. We will not send you such marketing unless you have asked to receive it, and we will always offer you the option to opt out of any future marketing (please note that the situation might be different if you subsequently become one of our clients).
We do not rent, sell or otherwise disclose your personal data to any other third party.
Your personal data provided or collected as a result of visiting our website will be stored for six months after the most recent activity recorded.
You have the right to:
- request from us access to, and rectification or erasure of, personal data
- request that we restrict processing concerning you
- object to our processing of the data
- data portability, where applicable
You also have the right to complain to the Information Commissioner’s Office about the manner in which, or otherwise, in which we process your personal data.
Contacting us about your information
If you have any questions or concerns regarding your personal data or how it is used, please contact us.
To help us keep your personal data up-to-date, you should let us know should any of your contact details change, or if you notice any inaccuracies in them. You can do this directly via email. From time to time we may contact you to confirm that the data we hold for you is correct.
The Information Commissioner describes cookies (and similar technology) as “a small file of letters and numbers that is downloaded on to your computer when you visit a website. Cookies are used by many websites and can do a number of things, eg remembering your preferences, recording what you have put in your shopping basket, and counting the number of people looking at a website”.
In addition, where websites allow users to log in to services, authentication cookies are the most common method used by web servers to know whether a user is logged in or not.
Tracking cookies, and especially third-party tracking cookies, are commonly used as ways to compile long-term records of individuals’ browsing histories.
The law distinguishes between “strictly necessary” cookies, such as those which enable websites to operate properly, or which allow purchases to be safely completed, and those which are not strictly necessary, such as tracking cookies, or cookies used for the purposes of web analytics.
We are allowed to place strictly necessary cookies on your device without your consent (as long as we inform you, such as by way of this notice), but for all other cookies we require your express consent. This is why we have a clear “cookie banner” when you land on our website, which allows you either to consent to receive these “non-necessary” cookies, or decline them.
Cookies that are strictly necessary to enable you to move about the site or to provide certain features you have requested, e.g. site cookie settings, ASP.NET Session variables.
Cookies that enhance the functionality of website by storing your preferences. For example, your subscription preferences. This is an anonymous random ID not shared with any third parties used to power certain site functions that improve the site functionality based on the services that interest you.
Cookies that help improve the performance of mishcon.com, providing a better user experience. When you visit, data collected via performance cookies will be used to provide you with personalised services such as recent search data or tailored news.
To measure the performance of our communications to our users we use tools provided by third parties to track which campaign is the most effective.
We don’t use any targeting advertising cookies on this website.
- MDR Lab uses analytic cookies to understand how its websites are being used. These measure the number of visitors and tell MDR Lab how they navigate the sites.
- To play video content on the site, Vimeo.com and YouTube set analytics cookies to measure performance.
- MDR Lab offers sharing tools (Facebook, Twitter etc) – If you use these, the sharing tools for those sites set a variety of cookies.
Cookies from 3rd party sites
Google services (Analytics, Tag Manager)
How can I control cookies?
You can also refuse our use of all cookies, including cookies that are necessary to be remembered by specific services of our website, simply by adjusting your browser settings.
Blocking cookies in specific browsers
- Enable or disable cookies – Accounts Help [Google]
- Block or allow cookies – [Windows – Microsoft]
- Enable and disable cookies that websites use to track your preferences [Firefox]
- Safari web settings on your iPhone, iPad, and iPod touch [Safari]
- Google Analytics Opt-Out Browser Add-On
Information regarding cookie settings on other browsers is easily accessible via a simple web search. If you are having problems however, please contact us.
For general information about cookies and how to disable them, please visit www.allaboutcookies.org.
- HTTP Cookies Wikipedia
- Information Commisioners Office
- Cookie consent models [PDF]
Explanatory note: this Privacy Notice is in place to inform you, in line with our general obligations, and in particular in line with Article 13 of the UK GDPR, of the processing by us of your personal data. It isn’t a contractual document, so we don’t ask you to “agree” to it, or claim that by reading it you are taken to have agreed to it.
Please note that where we are offering goods or services to individuals in the European Union we will also be subject to the GDPR itself (not just the UK GDPR). In those cases you would also have the right to make a complaint, under Article 77, to another GDPR supervisory authority. Also in those cases, we have designated a representative, under Article 27(1) of the GDPR. This is Mishcon de Reya IP B.V., of Prinsenkade 9D, 4811 VB Breda, The Netherlands, who can be contacted at email@example.com.