Privacy Policy

Lexia FZE is subject to the General Data Protection Regulation and the Federal Decree-Law No. 45 of 2021 on the Protection of Personal Data (PDPL 2021)


I. Controller
The Controller in the meaning of the General Data Protection Regulation (“GDPR” in the following) and other national data protection laws and provisions is:
Lexia FZE
Phone: 00971 55 621 9134
E-Mail: [email protected]


II. General Information on Data Processing
Data protection is of particular significance to us. Therefore, we only collect and use personal data of our users insofar as is required to provide our content and services and a functioning website. Personal data includes all information referring to an identified or identifiable natural person (“Person Concerned” in the following).
The collection and use of personal data of our users is always conducted in accordance with the GDPR and the applicable national data protection laws and provisions. If the processing of personal data is required, and such processing is not allowed by statutory regulations, we always seek the consent of the Person Concerned.
In general, we do not transfer personal data to third parties. A transfer only takes place, if you have given your express consent (Art. 6 Sec. 1 p. 1 lit. a GDPR); if a legitimate interest in such transfer exists and there is no reason to assume that you have an overriding and legitimate interest in you data not being transferred (Art. 6 Sec. 1 p. 1 lit. f GDPR); if a transfer is necessary for compliance with a legal obligation (Art. 6 Sec. 1 p. 1 lit. c GDPR); or if a transfer is necessary for the performance of a contract to which you are a party (Art. 6 Sec. 1 p. 1 lit. b GDPR).


III. Visits on our Website
When you visit our website www.lexia-legal.com, the browser you use automatically sends information to the server on our website. The following information are collected and stored until automatic deletion:
• IP adress,
• Time of the server request,
• Referrer URL,
• Browser type and browser version,
• Operating system used,
• Host name of the accessing computer.
These data are only stored temporarily in a so-called log file. Not affected by this are the IP addresses of the user or other data that allow the assignment of the data to a user. A storage of this data together with other personal data of the user does not take place. When using this data, we draw no conclusions about the person concerned.
The legal basis for this processing is Art. 6 Sec. 1 p. 1 lit. f GDPR. The legitimate interest in the meaning of the GDPR is providing a working website with properly delivered content, optimizing our systems and providing law enforcement with the information needed to prosecute cyberattacks. As soon as there is no legitimate interest and there is no statutory retention requirement, these data will routinely deleted.
In addition, we use cookies and analytics and marketing services. Further information can be found under sections IV., V. and VI. in this privacy policy.


IV. Rights of the data subject
As the Person Concerned (= data subject) you have the following rights against the Controller. If you wish to assert any of such rights, please contact the Controller under the contact details mentioned in I.


1. Right of access (Art. 15 GDPR)
You have the right to obtain information from the Controller on whether or not personal data concerning you are being processed.
Where that is the case, you may obtain from the Controller access to the personal data and information on the purposes of the processing; the categories of personal data concerned; the recipients or categories of recipient to whom the personal data have been or will be disclosed; where possible, the envisaged period for which the personal data will be stored, or, if not possible, the criteria used to determine that period; the existence of the right to request from the Controller rectification or erasure of personal data or restriction of processing of personal data concerning you or to object to such processing; the right to lodge a complaint with a supervisory authority; where the personal data are not collected from you, any available information as to their source; the existence of automated decision-making, including profiling, referred to in Art. 22, Sec. 1 and 4 GDPR and, at least in those cases, meaningful information about the logic involved, as well as the significance and the envisaged consequences of such processing to you; information on the transfer of personal data to a third country or to an international organization, and the appropriate safeguards pursuant to Art. 46 GDPR relating to the transfer.


2. Right to Rectification (Art. 16 GDPR)
You have the right to obtain from the Controller without undue delay the rectification and/or completion of personal data concerning you that is incorrect or incomplete.


3. Right to Erasure (Art. 17 GDPR)
You have the right to obtain from the Controller the erasure of personal data stored by us, if the personal data are no longer necessary in relation to the purposes for which they were collected or otherwise processed; if you withdraw consent on which the processing is based, and where there is no other legal ground for the processing; if you object to the processing pursuant to Art. 21, Sec. 1 and there are no overriding legitimate grounds for the processing, or you object to the processing pursuant to Article 21, Sec. 2; if the personal data have been unlawfully processed; if the personal data have to be erased for compliance with a legal obligation; or if the personal data have been collected in relation to the offer of information society services referred to in Art. 8, Sec. 1 GDPR.
This right to erasure does not apply to the extent that processing is necessary for exercising the right of freedom of expression and information; for compliance with a legal obligation; for reasons of public interest; or for the establishment, exercise or defence of legal claims.


4. Right to Restriction of Processing (Art. 18 GDPR)
You have the right to obtain from the Controller restriction of processing, if the accuracy of the personal data is contested by you, for a period enabling the controller to verify the accuracy of the personal data; if the processing is unlawful and you oppose the erasure of the personal data and request the restriction of their use instead; if the Controller no longer needs the personal data for the purposes of the processing, but they are required by you for the establishment, exercise or defence of legal claims; or if you have objected to processing pursuant to Art. 21 Sec. 1 GDPR, pending the verification whether the legitimate grounds of the Controller override those of you.
Where processing has been restricted, such personal data shall, with the exception of storage, only be processed with your consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State.
If you have obtained restriction of processing, you shall be informed by the Controller before the restriction of processing is lifted.


5. Right to Data Portability (Art. 20 GDPR)
You have the right to receive the personal data concerning you, which you have provided to a controller, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller.


6. Right to Object
Insofar as your personal data are processed on the basis of legitimate interests in accordance with Art. 6 Sec. 1 p. 1 lit. f GDPR, you have the right to object such processing of your personal data on grounds relating to your particular situation. If your objection is directed against direct marketing, you have a general right to object which we will implement without you being required to submit grounds relating to your particular situation


7. Right to Withdraw Consent (Art. 7 Sec. 3 GDPR)
You have the right to withdraw your consent at any time so that we are not allowed to continue processing data based on such consent in the future.


8. Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)
You have the right to lodge a complaint with a supervisory authority. You may address the supervisory authority of your habitual residence or place of work, or the supervisory authority concerned with us.


V. Data Security
To protect your data, we use the SSL (Secure Socket Layer) method on our website, combined with the highest level of encryption supported by your browser. Whether a single page of our website is transmitted in encrypted form is indicated by the closed presentation of the key or lock symbol in the status bar of your browser.
Incidentally, we use appropriate technical and organizational security measures to protect your data against manipulation, loss, destruction or against unauthorized access by third parties