Privacy Policy

This privacy policy describes how we process personal data, collected in connection with the use of our website available under the address: lynx.legal, including any landing pages using the same domain (“Website”) as well as how we process personal data when you contact us directly by e-mail, in particular in connection with the services provided by us.

Who is the controller of your personal data?

This Website is administrated by bnt international s.r.o., with its registered seat in Cintorínska 7 Bratislava 811 08, Slovakia. When navigating our website, the controller of your personal data is bnt international s.r.o. In order to find out what personal data we process during your visit on our website please refer to the corresponding section below (i.e., “What categories of your personal data do we process?”).

LYNX is a network of independent law firms operating through affiliated offices in nine jurisdictions: Bulgaria, Czech Republic, Estonia, Hungary, Latvia, Lithuania, Poland, Romania and Slovakia. Each LYNX member firm is a separate and independent legal entity and acts as an independent controller in respect of the personal data it processes.

The LYNX member firm responsible for processing your personal data will generally be the office with which you communicate or which provides legal services to you (hereinafter collectively referred to as “LYNX”, “we” or “us”).

How to contact us?

If you have any questions regarding the processing of your personal data, or if you wish to exercise your rights as a data subject in connection with navigating this website, you may contact us by email at: privacy@lynx.legal

Should your data request be related to the processing of your personal by a respective LYNX member firm, your inquiry will be handled by such member firm relevant to your jurisdiction or request. Contact details of each firm can be found by accessing the relevant country links on this Website.

We have not appointed a Data Protection Officer (DPO), unless otherwise required under the applicable local law in one of the jurisdictions in which we operate. Should such be the case, this policy will be updated accordingly.

What categories of your personal data do we process? What is the purpose and legal basis for the processing of your personal data? What are the sources of your personal data?

When you are navigating our Website, we do not process your personal data or IP address.

If you contact us directly (for example, by email), particularly in connection with our services, we may process additional categories of personal data, such as your name, surname, email address, and any other information you choose to include in your message. Providing this data is voluntary, but basic contact details are required for us to address your request.

If you engage us for legal services, additional categories of personal data may be processed in accordance with a separate client engagement agreement and applicable professional secrecy and legal privilege rules.

We collect personal data directly from you.

We process the personal data you provide via direct communication (such as email) to handle your inquiry, maintain communication, and, where relevant, assess a potential engagement and provide you with information regarding our legal services. The legal basis for this processing is our legitimate interest (Article 6(1)(f) GDPR), which is to ensure effective communication with individuals interested in our services and to respond to their requests.

Where applicable, processing may also be based on Article 6(1)(c) GDPR (compliance with legal obligations) under applicable laws governing the legal profession or any other legal obligations in connection with our services.

Should you enter into a contractual relationship with any of the LYNX member firms, the processing of your personal data will be governed under the separate client engagement agreement and applicable professional secrecy and legal privilege rules.

What rights do you have in relation to your personal data?

You have certain rights regarding your personal data - in the cases and to the extent detailed in the provisions of the GDPR. These include the right to:

Request access to your personal data

At any time, you can find out what data we process and receive a copy of such data.

Request rectification of your personal data

You have the right to request your personal data are corrected if it is inaccurate or completed if it is incomplete.

Request erasure of your personal data

You have the right to request that your personal data are deleted or removed if:

1. they are no longer necessary in relation to the purposes for which they were collected or otherwise processed
2. they have been unlawfully processed
3. the erasure of your personal data is necessary for compliance with a legal obligation

Request restriction of our use of your personal data

You have the right to restrict the processing of your personal data if:

1. you contest the accuracy of your personal data, for a period enabling us to verify their accuracy
2. the processing is unlawful and you oppose the erasure of your personal data and request the restriction of their use instead
3. we no longer need your personal data for the purposes of the processing, but you require them for the establishment, exercise or defence of legal claims
4. you have objected to processing of your personal data pending the verification whether our legitimate grounds override yours

Object to the processing of your personal data

You have the right to object to the processing of your personal data based on our legitimate interests.
We will no longer process your personal data unless we demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or we process your personal data for the establishment, exercise or defence of legal claims.
Where your personal data are processed for direct marketing purposes, i.e., to provide you with marketing communication from us, you have the right to object at any time to the processing of your personal data for such purpose. In such case we will no longer process your personal data for such purposes.

Data portability (where the basis for data processing is your consent or performance of a contract to which you are a party)

You have the right to receive your personal data, which you have provided to us, in a structured, commonly used, electronic format where the processing is carried out by automated means.
Moreover, you have the right to transmit those data to another controller or request to have the personal data transmitted directly from us to another controller, where technically feasible.

Object to the processing of your personal data (where the basis for data processing is our legitimate interest)

You have the right to object to the processing of your personal data based on our legitimate interests.
We will no longer process your personal data unless we demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or we process your personal data for the establishment, exercise or defence of legal claims.

Withdraw your consent (where the basis for data processing is your consent)

You have the right to withdraw your consent for the data processing at any time.
The withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal.

Lodge a complaint with a supervisory authority

If you believe that your personal data is being processed unlawfully you can lodge a complaint with a supervisory authority.
Contact details to the supervisory authorities in the European Economic Area, Switzerland are available here: https://www.edpb.europa.eu/about-edpb/about-edpb/members_en .

We will contact you if any additional information from you will be needed to honour your requests.

Who do we share your personal data with?

Depending on the specific case, your personal data may be transferred to:

• other LYNX member firms located in the jurisdictions in which we operate, where necessary;
• contractors and service providers supporting our activity, in particular providers of IT systems and infrastructure services (including hardware and software suppliers), hosting and email providers;
• providers of accounting, audit and tax advisory services;
• external experts or correspondents involved in the provision of legal services (e.g. local counsel, experts, translators), where necessary.

Do we transfer your personal data to third countries?

Generally, we do not transfer your personal data to countries outside the European Economic Area (EEA) when you are navigating our Website. Our Website infrastructure and servers are located within the European Union.

As we operate through offices in multiple jurisdictions, personal data provided by you via email may, where strictly necessary, be shared with external experts located outside the EEA in the context of providing legal services, assessing potential engagement, or handling your request.

In such cases, we ensure that any transfer of personal data is carried out in accordance with applicable data protection laws, including:

• the country to which we transfer personal data ensures an adequate level of protection as decided by the European Commission;
• the data is transferred to a recipient in the United States of America who has registered in accordance with the Data Privacy Framework;
• the data is transferred on the basis of standard data protection clauses adopted by the European Commission;
• the transfer is necessary for the performance of a contract between LYNX and you or for the implementation of pre-contractual measures taken at your request;
• the transfer is necessary for the establishment, exercise or defence of claims;
• you have expressly agreed to the transfer.

For more information on potential international data transfers and applicable safeguards, please contact us.

How long do we keep your personal data?

When navigating our Website, we do not retain your personal data or IP address. Any data accessible to us in connection with Website usage is presented in an aggregated form that does not allow us to identify individual users.

Personal data provided by you when contacting us directly via email will be retained for the period necessary to handle your inquiry and maintain communication with you. This retention period may be extended by the applicable statute of limitations if the processing of your personal data is necessary for the establishment, exercise, or defence of potential legal claims or by professional obligations applicable to respective LYNX member firms.

Do we process your personal data automatically (including through profiling) in a way that affects your rights?

Certain technical processing operations may be carried out by automated means; however, LYNX does not carry out automated decision-making, including profiling, that produces legal effects or similarly significant effects on you.

Cookies

Our Website does not currently use cookies. We use a privacy-focused, cookieless analytics solution (Fathom Analytics) that allows us to obtain aggregated statistical information about website usage (such as number of visitors, countries and pages views). This solution does not store cookies on your device and does not collect personal data that would allow us to identify you. Any data accessible to us is presented in an aggregated and anonymised form.

Should cookies be implemented in the future for technical, security or functional purposes, this Privacy Policy will be updated accordingly. Where required by applicable law, a cookie banner will be introduced to inform you about the types of cookies used and to collect your consent.

Cookies are text files placed on your computer or device. There are two main types of cookies:

• persistent cookies, which remain on your device for a defined period;
• session cookies, which are deleted when you close your browser.

As our Website does not currently use cookies, no personal data is stored in cookies.

If cookies are introduced in the future, you will be able to manage your preferences through your browser settings or via the cookie banner made available on the Website.

Links

The Website may contain links to third-party websites or resources (such as, LinkedIn, Facebook, etc.). These links are provided solely for your convenience. If you click on a third-party link, you will be redirected to that third party’s website. We strongly recommend that you review the privacy policy of every website you visit as the processing of your personal data when navigating those websites is governed by their own privacy policies.