Consultation

Privacy Statement

George Janssen Advocatuur

George Janssen Advocatuur (“Janssen Law”), established in Rotterdam and registered with the Dutch Chamber of Commerce (Kamer van Koophandel) under number 99724308, respects your privacy. Janssen Law acts as a data controller within the meaning of the General Data Protection Regulation (“GDPR”) and ensures that personal data provided to us or otherwise obtained by us is treated confidentially and processed in accordance with applicable privacy legislation, including the GDPR.

In this Privacy Statement, we explain:

  • which personal data we process;
  • for which purposes and on which legal bases we process personal data;
  • how long we retain personal data;
  • with whom we share personal data;
  • how we protect personal data;
  • your rights as a data subject;
  • cookies used on our website;
  • social media;
  • amendments to this Privacy Statement; and
  • our contact details.

1. Personal Data We Process

Personal data means any information relating to an identified or identifiable natural person. Depending on the context, we may process the following categories of personal data:

  • Basic information such as first and last name, title, and salutation;
  • Contact details such as email address, postal address, and telephone number;
  • Website and device information such as IP address and information regarding visits to our website;
  • Information provided in the context of a legal matter, including correspondence, pleadings, agreements, and other case file documents;
  • Information provided when attending meetings or events, including accessibility requirements and dietary preferences;
  • Recruitment and application information, including information contained in your curriculum vitae (CV);
  • Identification data required pursuant to the Dutch Anti-Money Laundering and Anti-Terrorist Financing Act (Wet ter voorkoming van witwassen en financieren van terrorisme – “Wwft”), including information from valid identification documents and information regarding Ultimate Beneficial Owners (“UBOs”);
  • Any other personal data voluntarily provided to us or lawfully obtained from third parties or public sources.

2. Purposes and Legal Bases for Processing

We process personal data for the following purposes:

  • Providing and managing legal services, including conducting legal proceedings;
  • Billing, invoicing, and financial administration;
  • Providing legal advice, mediation, and referrals;
  • Complying with legal and regulatory obligations, including obligations arising under the Wwft and the Dutch Lawyers Act (Advocatenwet);
  • Marketing activities, such as sending newsletters and invitations to events;
  • Handling job applications and recruitment procedures;
  • Maintaining contact with clients, suppliers, and other business relations;
  • Improving our services, website, and internal processes.

Processing takes place on one or more of the following legal grounds under Article 6 GDPR:

  • Performance of a contract or taking steps prior to entering into a contract;
  • Compliance with a legal obligation;
  • Legitimate interests pursued by Janssen Law or a third party;
  • Consent, where required.

3. Retention Periods

We do not retain personal data longer than necessary for the purposes described above or as required by applicable laws and regulations.

  • Client files are retained in accordance with the retention periods applicable to the legal profession;
  • Wwft-related data is retained for the statutory retention period prescribed under the Wwft;
  • Personal data relating to complaints is retained for five (5) years in accordance with the internal complaints procedure of Janssen Law.

4. Sharing Personal Data with Third Parties

Where necessary for the provision of our services, we may share personal data with third parties, including:

  • Opposing parties, their legal advisers, courts, tribunals, experts, bailiffs, and governmental authorities;
  • Supervisory and regulatory authorities where legally required;
  • External service providers such as ICT providers, accountants, notaries, and cloud service providers.

Where a third-party acts as an independent data controller, that party is responsible for compliance with the GDPR regarding its own processing activities. Where a third-party acts as a processor on our behalf, we enter into a data processing agreement in accordance with Article 28 GDPR.

If the transfer of personal data outside the European Economic Area (“EEA”) is necessary, we ensure that such transfers comply with applicable data protection laws and that appropriate safeguards are implemented.


5. Security of Personal Data

We take appropriate technical and organizational measures to protect personal data against loss, misuse, unauthorized access, disclosure, alteration, or destruction, taking into account the state of the art and the nature of the processed data.

These measures include:

  • access controls;
  • encrypted communications where appropriate;
  • secure data storage;
  • up-to-date security software;
  • periodic backups; and
  • internal confidentiality obligations.

In the event of a data breach, we will take immediate action and assess whether notification to the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) and/or affected individuals is required. Where confidential client information is involved, the Dean of the local Bar Association may also be informed where appropriate.

6. Your Rights

Under the GDPR, you have the following rights:

  • Right of access;
  • Right to rectification;
  • Right to erasure, in certain circumstances;
  • Right to restriction of processing;
  • Right to object to processing;
  • Right to data portability;
  • Right to withdraw consent at any time where processing is based on consent;
  • Right to lodge a complaint with the Dutch Data Protection Authority.

We may not always be able to fully comply with a request due to legal obligations, professional confidentiality, legal privilege, or statutory retention periods.

To verify your identity, we may request a copy of a valid identification document with your photograph and citizen service number (BSN) redacted.

7. Cookies

We use cookies on our website (www.janssenlaw.nl). More information regarding the cookies we use can be found in our Cookie Statement available on the website.

8. Social Media

Our website may contain links to third-party websites or social media platforms such as LinkedIn. We are not responsible for the processing of personal data by such third parties and recommend reviewing their respective privacy statements before using those services.

9. Complaints

If you have a complaint regarding the processing of your personal data, you may submit it in writing to Janssen Law. Complaints will be handled in accordance with the internal complaints procedure of Janssen Law by the designated complaints officer.

If your complaint is not resolved satisfactorily, you may lodge a complaint with the Dutch Data Protection Authority or the relevant Dutch Bar Association.

10. Amendments to this Privacy Statement

We may amend this Privacy Statement from time to time. The most recent version will always be published on our website.

11. Contact Details

George Janssen Advocatuur
E-mail: privacy@janssenlaw.nl
Attn. George Janssen
Rotterdam, the Netherlands
Chamber of Commerce (KvK) number: 99724308
Website: www.janssenlaw.nl
Last updated: May 2026