Privacy Policy


Liouta and Partners Law Firm has determined responsibilities for compliance with the obligations under applicable privacy legislation for processing your personal data. This policy describes how we collect, use and look after your personal data. It also describes the rights you have and control you can exercise in relation to your personal data.

This policy is issued by Liouta and Partners Law Firm, registered in the Piraeus Bar Association with registration no. 30036. When we mention “we”, “us” or “LP Law Firm” in this privacy policy, we are referring to the relevant company (as mentioned above responsible for processing your data.

This policy is addressed to individuals outside LP Law Firm with whom we interact, including individual clients, representatives, directors, direct or indirect shareholders, beneficial owners and other stakeholders of client organisations, visitors to our website, other users of our services and suppliers.

If you have any questions in relation to this privacy policy or the use of your personal data by LP Law Firm or if you want to exercise your legal rights, please contact our Data Privacy Manager using the details set out below:


Liouta and Partners Law Firm

8-10 Sachtouri street,

18537 Piraeus, Greece

T: +30 210 4282203

  • We may collect and process the following categories of personal information:
  • Name, passport number and other identifying information
    For example, we may collect your name, title, gender and date of birth, your nationality, country of residence and passport number, bank references and statements, position, role to a company or organization.
  • Your contact details and personal account or registration details
    Your contact details may include your address, telephone number and email address.
  • Financial Information
  1. Payment related information and financial information required for anti-money laundering or compliance purposes and ancillary services;
  2. Billing address, payment method, bank account number, accountholder name, account security details, invoice records, payment records, SWIFT details, IBAN details, payment amount, payment date, records of cheques;
  • Business Information
  1. Data identifying you in relation to matters on which you instruct us or in which you are involved;
  2. Identification and background information provided by you or collected by us as part of our business acceptance processes, anti-money laundering and compliance obligations;
  • Information from publicly available sources and screening providers: e.g. OFAC lists
  • Attendance Records

Details of your visits to our premises

  • Any other information relating to you which you may provide to us, such as health personal data, if required by us in order to be able to provide legal and other services to you e.g. to defend you in legal proceedings or to request postponement of a case hearing.



We collect the aforementioned categories of personal data in the following ways:

  1. We collect data you directly provide to us;
  2. We receive your personal data from your personal assistants or employees that you authorize to provide your personal data to us;
  • You make public;
  1. When you or your organization or business associates seek legal advice or legal, administrative, corporate, trust and other services from us;
  2. From public authorities or governmental organizations.
  • The main purposes for which we use your personal information are:
  1. To communicate with you;
  2. To provide our services to you i.e. legal advice and legal, administrative, corporate, trust and other services by LP Law Firm;
  • To facilitate our business relationship;
  1. Client compliance check: Know your client checks and confirming and verifying your identity. Client due diligence checks (under anti-money laundering, sanctions screening and other crime prevention and detection laws and regulatory requirements) which may involve automated screening checks to ensure that clients and contacts are genuine and to prevent fraud or crime and we may not be able take instructions if you do not provide the information we need to do these checks;
  2. Financial management: managing and administering the payment of our invoices and the fulfilment of your financial obligations towards us;
  3. Legal proceedings: establishing, exercising and defending legal rights/claims;
  • For record keeping and to comply with statutory obligations:
    we collect, store and use your data for internal business purposes, such as record keeping and to comply with our legal and fiscal obligations.
    We may be required by law to collect and share your identifying information with public authorities or governmental organizations for renewal of legalization purposes
  • Managing suppliers: who deliver services to us, including processing payments, accounting, auditing, billing and collection;
  • We will process your personal data for the following reasons:
  1. you have given us your consent;
  2. it is necessary to comply with legal or regulatory obligations to which we are subject to: for example anti-money laundering regulations;
  • processing is necessary in connection with an instruction you have given us or a contract which we have entered into with you or to take steps at your request before entering into such a contract to provide legal advice and legal, administrative, corporate trust or other services to our clients;
  • If you refuse to provide personal data that we require for the performance of the contract or compliance with a legal obligation, we may not be able to provide all or parts of the services you have requested from us. When we process your personal data for our legitimate interests or the interests of a third party, we have balanced these interests against your legitimate interests. Where necessary we have taken appropriate measures to limit implications and prevent unwarranted harm to you. Our legitimate interests may for example include security and safety purposes or to provide better services to you.
  • General: we may disclose or share your personal data with our correspondent lawyers worldwide including their lawyers and staff in order to provide legal advice and other services.
  • To trusted third parties: we may share your personal information with certain trusted third parties which provide services to LP Law Firm, such as our professional advisers and accountants, suppliers and processors to whom we outsource certain support services, IT service providers, software providers, communication suppliers. We shall take measures to protect the confidentiality and security of the personal data in such circumstances;
  • Third parties which provide professional services to your company or organization provided we are requested by you or your company or organization to do so;
  • Law authorities and public authorities and organizationse. courts, tribunals, chambers, company commercial registries in accordance with legal requirements;
  • Banks and financial institutions for the provision of services that you require and so as to comply with legal obligations


  • LP Law Firm will take appropriate technical and organizational measures to protect your personal data against loss or unlawful use.
  • Your personal data will be retained for as long as required for the purposes described in this privacy policy or in so far as such is necessary for compliance with statutory obligations and for solving any disputes.
  • Personal data may be kept on our personal IT systems, those of our contractors or in paper files.
  • LP Law Firm may transfer your personal data to countries other than your country of residence (including countries outside the European Economic Area). This is often necessary to provide our services to you. The laws of these countries may not afford the same level of protection to your personal data.
  • We may also be required to disclose your personal data to foreign public or government authorities and to banks and financial institutions to provide our services to you and if applicable law outside EEA requires disclosure.
  • You may contact our Privacy Office (please see below) to exercise any of the rights you are granted under applicable data protection laws, which includes (1) the right to access your data, (2) to rectify them, (3) to erase them, (4) to restrict the processing of your data, (5) the right to data portability and (6) the right to object to processing.
  1. Right to access

You may ask us whether we process any of your personal data and, if so, receive access to that data in the form of a copy. When complying with an access request, we will also provide you with additional information, such as the purposes of the processing, the categories of personal data concerned as well as any other information necessary for you to exercise the essence of this right.

  1. Right to rectification

You have the right to have your data rectified in case of inaccuracy or incompleteness. Upon request, we will correct inaccurate personal data about you and, taking into account the purposes of the processing, complete incomplete personal data, which may include the provision of a supplementary statement.

  1. Right to erasure

You also have the right to have your personal data erased, which means the deletion of your data by us and, where possible, any other controller to whom your data has previously been made public by us. Erasure of your personal data only finds place in certain cases, prescribed by law and listed under article 17 of the General Data Protection Regulation (GDPR). This includes situations where your personal data are no longer necessary in relation to the initial purposes for which they were processed as well as situations where they were processed unlawfully. Due to the way we maintain certain services, it may take some time before backup copies are erased.

4. Right to restriction of processing

You have the right to obtain the restriction of the processing of your personal data, which means that we suspend the processing of your data for a certain period of time. Circumstances which may give rise to this right include situations where the accuracy of your personal data was contested but some time is needed for us to verify their (in)accuracy. This right does not prevent us from continuing to store your personal data. We will inform you before the restriction is lifted.

  1. Right to data portability

Your right to data portability entails that you may request us to provide you with your personal data in a structured, commonly used and machine-readable format and to have such data transmitted directly to another controller, where technically feasible. Upon request and where this is technically feasible we will transmit your personal data directly to the other controller.

6. Right to object

You also have the right to object to the processing of your personal data, which means you may request us to no longer process your personal data.


  • You may withdraw your consent at any time.
  • When you would like to exercise your rights, all you have to do is send your request to the Data Privacy Manager of LP Law Firm.
  • You can also contact us at if you have any questions, remarks or complaints in relation to this privacy policy. However, if you have unresolved concerns you also have the right to complain to the Hellenic Data Protections Authority

This privacy policy was most recently amended on 25 May 2018 and replaces earlier versions. We may amend this privacy policy from time to time and will notify you of any changes prior to these changes taking effect.