Privacy Policy for clients

Privacy Policy for clients

At Labora Legal, we take the protection of your personal data very seriously. Confidentiality, trust and secrecy obligations form part of our DNA. This Privacy Policy is aimed at our clients whose personal data we are processing in connection with our professional relationship. Therefore, this Privacy Policy supplements our general Privacy Policy – which you can read here.

You may also contact Labora Legal for any questions regarding our collection and processing of personal data by email to:

Types of personal data and where we get them from

In connection with the establishment and handling of your client relationship, we will process the following personal data provided primarily by yourself:

  • name
  • address
  • phone number
  • email address
  • business
  • position
  • bank details relating to the client relationship
  • financial data relating to the client relationship
  • historical data of the case

In connection with the administration of the client relationship, we may also need to collect and process additional personal data relating to, for instance, proceedings at the relevant au-thorities.

We collect personal data about the client, the client’s representative and contact persons from the relevant contact persons themselves or from personal data disclosed on the client’s web-site, from the company registration system of the Danish Business Authority, or from LinkedIn, as well as from any recommendation written by third parties in publicly available sources.

We will only collect necessary and relevant ordinary personal data for the purpose of our as-sessment of you as a client, including for instance for the purpose of conducting the required examination of conflicts of interests.
Normally, we will not collect any sensitive personal data about clients. However, in connection with our case handling, sensitive personal data, such as civil registration number(s) and in-formation on any offences or criminal convictions may be collected.

Purpose and legal basis for processing

We only process personal data about the client or the client’s representatives for the purpose of handling the client relationship to the necessary extent, including documentation in this re-spect. The information in question is necessary to enable us to unequivocally identify the cli-ent, communicate with the client, as well as administrate the client relationship and comply with the terms of our contracts. It is also necessary for the compliance with the legal obliga-tions imposed on us under Danish law.

We process your personal data on basis of Article 6 (1) (b) of the General Data Protection Regulation since such processing is necessary for the performance of the agreement on legal assistance. In the event of sensible personal data or civil registration numbers, the legal basis for our processing will be Article 9 (2) (f) regarding the exercise or defence of a legal claim.

The client’s civil registration number will be shared with public authorities to the extent we are under an obligation in this respect pursuant to Danish law.

We make sure that personal data on contact persons of the client are updated by consulting, at appropriate intervals, the relevant LinkedIn pages about any occupational changes. If we are informed directly by the contact person that he/she is resigning from his/her position, we will ensure to update our registration of the client’s contact persons. Subsequently, the re-signed contact person will no longer be processed as contact person, but the information of the resigned contact person will continue to be processed in accordance with the principles described in the first section of this paragraph.


We retain personal data until the date on which any claims in relation to the relevant client relationship are statute-barred, after which the data will be erased. This will, in principle, be for a period of 25 years. However, we may keep some personal data for a shorter or longer stor-age period if the personal data in question are not relevant for a possible subsequent claim, or if it is necessary for the compliance of a legal obligation under Danish law, or for the estab-lishment, exercise or defence of a legal claim.

Also, we may include personal data in our general back-up procedures, where they will be erased in accordance with the back-up renewal. Normally, we will not collect any sensitive personal data on clients. However, in connection with our case management, sensitive data may be collected, e.g. civil registration numbers or information on offences or criminal con-victions. In that case, the processing will take place on a legal basis, for instance for the pur-pose of establishing, exercising or defending a legal claim.

In the event that you are requested to give your consent, you will receive more specific in-formation about what happens to your personal data.

We will retain your personal data as long as necessary in relation to you as our client.

Therefore, with due regard to our liability insurance and the Danish Act on Bookkeeping, your personal data will normally be erased no later than five years following the final decision to terminate the client relationship, unless it is specifically agreed that we keep your personal data for a longer period or there is another legal basis for continued storage.

Data Controller

The law firm of the responsible partner will be the data controller for the processing of your personal data.


As client, you have a number of rights, for instance the right to gain access to the processing of your data and to require that personal data be erased. However, these rights may be re-stricted to certain situations or be subject to certain conditions. For further information about the rights of the data subject, including a request to exercise such rights, we refer to our policy on the rights of the data subject.