Last updated on 14 July 2021

This Privacy and Cookie Policy (hereinafter “Privacy Policy”) explains how we process your personal data. We are bv Sirius Legal Business Law Firm based at Veemarkt 70, 2800 Mechelen and registered in the KBO under number 0742.701.086 (hereinafter “Sirius Legal”).
Please read this Privacy Policy carefully. It contains essential information on how your personal data is processed and what cookies are used. By sharing your personal data on, by contacting us by e-mail/by phone/by any other means, by submitting a question/complaint/file, you declare to have read this Privacy Policy and you explicitly agree with its content. When we contact you, we will inform you of this Privacy Policy. By contacting us, you declare that you have read this Privacy Policy and explicitly agree with its contents.


Article 1 What personal data do we process about you?

Sirius Legal processes the following personal data of you within the framework of its activities:
Category 1: if you engage the services we offer as a lawyer, we process your surname, first name, sex, address, telephone and/or mobile phone number, e-mail address, company name, invoicing data, copy of your identity card and any other personal data you voluntarily provide us with in order to be able to handle your case or which we obtain from another party to the proceedings or their counsel, bailiffs, notaries, court experts or other actors in the context of the cases we handle for our clients;

Category 2: in some cases it is necessary for the handling of your case to also process special categories of data such as personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, health data or data relating to your sexual behaviour or orientation. Depending on the case, we may also process personal data relating to your criminal convictions and offences or related security measures;

Category 3: if you use our services as a Data Protection Officer (DPO), we will process your first name, surname, gender, company name, VAT number, e-mail address, telephone and/or mobile phone number, address details, billing details and possibly any other details you voluntarily provide us with in order to carry out our assignment as DPO;

Category 4: if you have not used our services, it is also possible that we process your personal data as part of the services we provide to our clients. In this case, we will process any personal data that you submit to us yourself or that is submitted to us by your counsel, the counsel of another party to proceedings, experts, the court or other actors in the context of the files we manage for our clients. This may include the data listed in category 2 that pertains to you;

Category 5: every time you visit our website, we may use cookies and similar technologies to collect various personal data about you, in particular your IP-address, surfing behaviour, origin and search terms. You can find more information about the way we use cookies in Article 7;

Category 6: via the forms on our website, we process your surname and first name, possibly the name of your company and VAT number, address details, email and any other details you provide us with in the free input field;

Category 7: if you call us or send us an e-mail, we process your first and last name, e-mail address and/or telephone number, as well as the data you provide us with; and

Category 8: when you subscribe to our newsletter, we process your e-mail address. 


Article 2 What do we use your personal data for?

We use your personal data exclusively for:

Category 1, 2, 3 and 4: the provision of the service and its invoicing with the legal basis of performing a contract you have requested or for performing the services you have requested and for which the processing of your personal data is necessary because it is required by law or because we have a legitimate interest in doing so in the context of our case management as lawyers;

Category 5: to maintain and improve our website and to include personal data in anonymous statistics, from which the identity of specific persons or companies cannot be ascertained, with the legal basis of your explicit, prior consent at the time of your first visit to our website;

Category 6 and 7: to be able to answer the question you have asked with the legal basis of your explicit, prior online consent and our legitimate interest in telephone contact; and

Category 6, 7 and 8: direct marketing and newsletters by Sirius Legal itself, with the legal basis being our legitimate interest in relation to existing clients or your explicit, prior consent if you are not yet a Sirius Legal client. You can indicate at any time that you no longer wish to receive our newsletters by using the opt-out option in our newsletters or by contacting us directly by e-mail or telephone.


Article 3 Who receives your personal data?

We never pass on your data to third parties for commercial reasons. However, in case of internal reorganisation or transfer of activities, we may pass on your data to new entities within the Sirius Legal group or to third parties who may guarantee the continuity of our services. In such case Sirius Legal will always inform you in advance to the extent possible, but you understand that this is not technically or commercially feasible in all circumstances.
In rare cases, we may be obliged to disclose personal sata on the basis of a court order or to comply with other mandatory laws or regulations. We will do our best to inform you in advance, unless we cannot do so for legal reasons.
We do, of course, share your data with third parties for the purposes of managing your file. Your data may be transferred to and processed by courts, bailiffs, notaries, other lawyers, government agencies, consultants, software and cloud providers, financial partners or any other third party involved or affected by your case. The current list can be obtained upon simple request by e-mail. For each transfer to a third party, we ensure the appropriate security measures with respect to your personal data, including the conclusion of processing agreements where necessary.
We always try to make maximum use of European suppliers, but if we have to rely on non-European third parties we ensure that your data is just as safe outside Europe as it is here in Europe. Thus, where necessary, we conclude Standard Contract Clauses with these partners and provide additional guarantees.


Article 4 How long do we keep your personal data?

We keep your personal data for as long as is necessary for the purposes of processing.
For legal reasons, we have to keep all case data for at least 5 years after the closure of your case. We will also keep your contact details for 10 years after the closure of your case to ensure the continuity of our services to our clients and for reasons of proof and liability.
For legal reasons, we have to keep your invoice data for at least 10 years after the last invoice date. We keep contact details of clients and contacts as long as we have a commercial relationship with them and for 10 years after the end of this relationship, for the continuity of our services on the one hand and our marketing interests on the other.


Article 5 Your rights

You have the right to be informed at any time, free of charge, about your personal data and how we use that personal data. You have the right to request us to correct, supplement or delete your personal data. You may also request to limit the processing of your personal data in a number of cases listed in the GDPR. You have the right to oppose the processing of your personal data if you have serious and legitimate reasons for doing so that exceed our need to process your data. You also have the right to object at any time to the use of personal data for direct marketing purposes, even without having to provide a reason for doing so. You have the right to request your personal data in digital and readable form and/or to have them transferred to another service provider of your choice. As far as our processing is based on your prior consent, you have the right to withdraw such consent.
You can exercise your rights by sending an e-mail to, by post to Sirius Legal, Veemarkt 70, 2800 Mechelen or by using the forms on our website.
You have the right to lodge a complaint with the Belgian Data Protection Authority:

Drukpersstraat 35
1000 Brussels
Tel: +32 (0)2 274 48 00
If necessary, you can also go to the civil courts to claim damages.


Article 6 How do we secure your personal data?

We have taken appropriate technical and organisational security measures to guarantee the safety of your personal data. For example, our server and software tools are secured with a username and password, two-step verification, access restrictions apply, and we use encryption whenever possible. Furthermore, we provide training to our staff on data protection, we have internal guidelines on data security and we take appropriate security measures in the form of up to date antivirus and firewall protection.
In no event can Sirius Legal be held liable for any direct or indirect damage resulting from a wrongful or unlawful use of the personal data by a third party.


Article 7 Cookies

Our website uses cookies and similar technologies. This helps us to provide you with a better user experience when you visit our website and also allows us to optimise our website. Without your prior consent, we only place the cookies that are strictly necessary to make our website work properly. For all other cookies we ask your permission first.
The cookie list below gives you an overview of the cookies our website uses.