INTRODUCTION
\We at Somma Law PLLC and its affiliated undertakings (“Somma”, “we”, “us” and/or “our”) value the relationship we have with you.
This Privacy Policy explains how we collect, use, share, store and otherwise process your personal data when you use our website (“Site”), in connection with your relationship with us as a Somma client, vendor, prospective employee, or your general interest in our services, publications and events.
AUTOMATICALLY COLLECTED DATA
When you interact with us through the Site, we automatically collect information about you through cookies (small text files placed on your device). Please read our Cookie Policy to learn more about how we use cookies. Our servers also record information (“log data”), including information that your browser automatically sends whenever you visit the Site. This log data includes your Internet Protocol (“IP”) address (from which we can discern the country you are connecting from at the time you visit the Site), browser type and settings, and the date and time of your request.
Where the information that we collect automatically on our Site is personal data, our legal basis for the use of this information is that it is necessary for the purposes of our legitimate interests in maintaining the safe operation of our Site and learning how Site visitors interact with our Site to improve your use of it.
FAILURE TO PROVIDE THE PERSONAL DATA WE REQUEST
When we need your personal data to comply with legal obligations or to perform our contract, failure to provide this data may impact our ability to provide our services.
HOW WE SHARE YOUR PERSONAL DATA
We share your information as follows:
Third party service providers. Third parties who provide services to us have access to your personal data. For the purposes described above, we engage providers of website analytics, hosting and cloud computing services and other IT services, payroll services, auditing services, consultancy services, regulatory services, legal services, CRM, marketing and sales software solutions, software platforms and services for the legal profession, translation services, background checks, talent management and recruitment services, in addition to other administrative services. Pursuant to our instructions, these parties may access, process or store personal data in the course of performing their duties to us and solely in order to perform the services we have hired them to provide.
Event co-hosts. We may share limited personal data with co-hosts of events we host or otherwise sponsor in order to administer the event and provide a list of attendees.
Administrative and legal reasons. We may disclose personal data as we deem necessary and appropriate under applicable laws, such as to comply with a subpoena, bankruptcy proceedings, or similar legal process; in response to lawful requests by public, governmental and regulatory authorities, including to meet national security or law enforcement requirements; or when we believe in good faith that disclosure is reasonably necessary to protect the property or rights of Somma, you or third parties, or the public at large.
Business transfers. We may disclose and transfer your information and data to a third party: (a) if we assign our rights regarding any of the information to a third party or (b) in connection with a corporate merger, consolidation, restructuring, sale of certain of our ownership interests, assets, or both, or other corporate change, including without limitation, during the course of any due diligence process.
RETAINING YOUR PERSONAL DATA
We retain your personal data only for as long as is necessary to fulfill the purposes for which it was collected and processed, in accordance with our retention policies, and in accordance with applicable laws or until you withdraw your consent (where applicable). To determine the appropriate retention period for your personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we use your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements. In some circumstances we may anonymize your personal data so that it can no longer be associated with you, in which case it is no longer personal data.
We do not collect more personal data than we need to fulfill our purposes stated in this Privacy Policy. We may retain your personal data for an additional period to the extent deletion would require us to overwrite our automated disaster recovery backup systems or to the extent we deem it necessary to assert or defend legal claims during any relevant retention period.
KEEPING YOUR PERSONAL DATA SECURE
We take appropriate technical and organizational measures to protect against accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, your personal data, in accordance with our internal security procedures. Personal data may be stored on our own technology systems or those of our vendors or in paper files.
PERSONAL DATA OF CHILDREN
Our Site is not directed to children who are under the age of 16 and is solely intended for adults. Somma Law does not knowingly collect personal data from children under 16. If you have reason to believe that a child under the age of 16 has provided personal data to Somma Law through the Site please contact us and we will endeavor to delete that information from our databases.
LINKS TO OTHER WEBSITES
Our Site may contain links to other sites operated by third parties, including social media websites and services. We are not responsible for information on these sites, nor for services or products offered by them. By providing these links we do not imply that we endorse or have reviewed these sites. Use of these sites, including transmitting your personal data to them, is at your own risk. The information that you share with these sites will be governed by the specific privacy policies and terms of service of these third-party sites and not by this Privacy Policy. Please contact those sites directly for information on their privacy practices and policies.
ADDITIONAL INFORMATION FOR CALIFORNIA RESIDENTS
Disclosures Related to Collection, Use, and Disclosure of Personal Information
Pursuant to the CCPA, we are providing the following additional details regarding the collection, use, and disclosure of personal information about California residents:
Categories of Personal Information Collected: In the preceding 12 months, we have collected the following categories of personal information: identifiers, characteristics of protected classifications under California or U.S. law, professional and employment-related information, education information, commercial information, internet and electronic network activity, inferences drawn about your preferences, and other categories of personal information that relates to or is reasonably capable of being associated with you. For examples of the data points we collect, please see “Information We Collect” above.
Business or Commercial Purpose for Collecting and Using Data: We have collected the above categories of personal information for the business purposes described in the “Information We Collect” section above.
Categories of Sources of Personal Information: We may have collected the above categories of personal information directly from you, automatically about your use of our Site , and from third parties, such as clients of our legal services, government and public entities, public records, industry research databases, parties and related parties in litigation matters, and others.
Categories of Personal Information Disclosed: In the preceding 12 months, we have disclosed the following categories of personal information for business or commercial purposes: identifiers, characteristics of protected classifications under California or U.S. law, professional and employment-related information, education information, commercial information, internet and electronic network activity, inferences drawn about your preferences, and other categories of personal information that relates to or is reasonably capable of being associated with you.
Categories of Third Parties With Whom We Share Personal Information: We may share your personal information with the third parties as described in the “How We Share Your Personal Data” section above.
Sale of Personal Information (as defined by the CCPA): We do not sell, and in the preceding 12 months have not sold, the personal information we have collected.
Your Rights
To the extent provided for by law and subject to applicable exceptions, including but not limited to attorney-client privilege, California residents have the following privacy rights in relation to the personal information we collect:
The right to know what personal information we have collected and how we have used and disclosed that personal information;
The right to request deletion of your personal information;
The right to opt out of the sale of your personal information; and
The right to be free from discrimination relating to the exercise of any of your privacy rights.
Exercising Your Rights
California residents can exercise the above privacy rights by emailing us at Christopher@sommalawpllc.com, or calling toll-free us at +1 800 642-7912.
Verification: in order to protect your personal information from unauthorized access or deletion, we may ask you to provide additional personal information for verification. If we cannot verify your identity, we will not provide or delete your personal information.
Authorized Agents: you may submit a request to know or a request to delete your personal information through an authorized agent. If you do so, the agent must present signed written permission to act on your behalf and you may also be required to independently verify your identity with us and confirm that you have provided authorization to the agent.
California “Shine the Light” Disclosures
Pursuant to California Civil Code Section 1798.83(c)(2), California law requires us to inform California residents who have provided us with personal information that they may request information from us about our disclosures to third parties for their direct marketing purposes. To request this information, please contact us at Christopher@sommalawpllc.com.
CHANGES TO THIS PRIVACY POLICY
We reserve the right to amend this Privacy Policy from time to time to reflect changing legal requirements or our processing practices. Any such changes will be posted on this Site and will be effective upon posting. If we make a material change to this Privacy Policy, we will provide you with notice in accordance with the applicable law.
HOW TO CONTACT US
If you have any questions about our Privacy Policy, or if you would like to access personal data we hold about you or exercise your other rights under the applicable law, you can contact us toll free at +1 800 642 7912 at Somma Law PLLC, 130 Mill Road, Durham, NH 03824, or at Christopher@sommalawpllc.com.
Please also refer to our Cookie Policy, which explains the use of cookies via our Site.