Brucher Thieltgen & Partners takes great care of your privacy and personal data.
In accordance with the relevant legislation, we collect and process your personal data with complete confidentiality and in the manner explained below.
The “data controller” is the person or entity that determines the means and purposes of the processing of your personal data.
In this case, the controller is the firm Brucher Thieltgen & Partners and more specifically Maître Nicolas Thieltgen, Maître Marie Bena et Maître Nicolas Bernardy.
Brucher Thieltgen & Partners is a law firm based in Luxembourg and which premises can be found at:
2, rue Sainte Zithe
L- 2763 Luxembourg
Grand-Duchy of Luxembourg
Personal data we collect and process
The personal data we collect and process are only those of our clients and, in certain cases, the data of specific persons who wish to keep being informed regarding Brucher Thieltgen & Partners’ news and messages.
In accordance with relevant national and European legislation, and more specifically article 6 of the General Regulation on Data Protection (“GDPR”), we collect and process our client’s data as to diligently fulfil the legal services they ask from us.
In addition, if specific persons give their consent, we collect and process the data of these persons in view of keeping them up to date with Brucher Thieltgen & Partners’ news and communications.
Therefore, we process personal data either on a voluntary basis or on the basis of the contracts we conclude with our clients, as legal counsels or as legal representatives.
We collect the data you give us, either orally, in writing, via our website or by other similar means. Of course, the confidentiality of such data is of paramount importance for our law firm.
The types of information we collect include, but are not limited to:
- Names, Surnames, Forenames;
- Postal address;
- Email address;
- Phone and fax numbers;
- VAT numbers;
- Bank accounts numbers;
- Personal information necessary for the fulfillment of our services regarding proceedings or legal advice.
Do we share personal data with third parties?
Given the highly confidential nature of our profession, we do not share your personal data with any third party, except and only if you give us your express consent to do so or if we need to communicate these data to defend your legal interests.
For instance, it might occur that, in the frame of legal proceedings, we communicate some of your personal data to our court bailiff, as to deliver a summon to court to a respondent.
Of course, such communications are strictly limited by law and are only used when they are necessary to respect a procedural obligation.
We do not sell your personal data to third parties and we do not share them as to make a commercial benefit.
In some exceptional cases, it might occur that a judge demands from us to communicate some of your personal data that we hold, but such scenarios are strictly bound and limited by the rules of the Bar Council or by virtue of the Law.
Prosecution of crimes and offences, and in particular effective anti-money laundering and anti-terrorist financing requirements, can sometimes be considered as cases when we are forced to communicate personal data with law enforcement agencies or with the police.
Safety of your personal data
The personal data we process are kept safely and their accesses are limited to only authorized personnel when we need to use them to defend your interests.
We have established physical as well as digital measures to protect the confidentiality and integrity of your personal data. For instance, your data are saved on a regular basis on one of our back-up servers, which enables us to verify that your data have not been damaged or lost.
Moreover, access to our premises and to our files is under strict monitoring, and the documents containing your data are protected against any intrusion or physical damage, to the extent of our ability.
When you communicate with us and especially when you share your personal data with us, be careful to protect yourself against any intrusion or illegal collection of your data by a third party. Please use highly secure passwords, disconnect yourself after each use of your computer and encrypt your messages and documents as often as possible.
In addition, would you wish to access to your personal data, we might ask you to provide us with a proof of your identity, to make sure that your data is kept safe.
Finally, your personal data are kept only for the time necessary for the fulfillment of our legal or contractual duties. Exceptions to such retention period may apply when the law obliges us to keep you data for a longer time. For instance, in the frame of our invoicing and accountability obligations, we must retain the relevant data for at least 10 (ten) years.
As a data subject, you have several rights regarding your personal data:
- The right to ask for access to your personal data (but only your data);
- The right to ask for correction of your personal data;
- The right to ask for the erasure of your personal data;
- The right to ask for the limitation of processing of your personal data and to know the impact of such limitation;
- The right to oppose the processing of your personal data and to know the impact of such opposition;
- When the processing of you data is based on your consent, the right to withdraw your consent at any given moment, taking into account that such withdrawal would not affect the legality of previous processing;
- The right to introduce a complaint to the relevant data protection authority.
Please note that we might restrict or refuse the exercise of one or several of the above-mentioned rights, if a legal obligation forces us to do so or when special circumstances occur.
Such a case would occur when we are bound by an obligation of professional secrecy. In addition, we are sometimes obliged to collaborate with enforcement authorities in the matter of anti-money laundering and anti-terrorist financing requirements.