Privacy statement

In this privacy statement, information is provided on the processing of personal data by Root Legal B.V. (Root Legal). Root Legal is the controller as referred to in the General Data Protection Regulation regarding the processing mentioned below. The contact details of Root Legal are:

Singel 149
1012VJ Amsterdam

This privacy statement was last updated in May 2018.

Data and processing

Root Legal may use your personal data for the offering of legal services, financial administration, the sending of a newsletter and communications. Root Legal will not use your data for other purposes. Root Legal may do so on the basis of the performance of a contract, a legal obligation or its legitimate, commercial interests. Root Legal will only send you newsletters with your consent. You may withdraw your consent at any time.

Website and cookies

Root Legal offers its website, which can be reached via and a couple of aliases, through hostingprovider TransIP. Root Legal does not use cookies or other ways to track visitors. It does have access to the visitor statistics of Greenhost.

Email data

Root Legal uses email services of Soverin. When you email with Root Legal, your email is stored on the servers of Soverin. A local copy of relevant emails will be stored on the computers of Root Legal. Root Legal deletes emails which do not have to be archived as soon as possible after reading. Emails which are related to a certain file will be archived in that file. Other emails are archived in a general folder. Periodically, a check will be performed to see whether such archived emails can be deleted.


Root Legal uses a CRM-system which runs on a server administered by it. Contact details and contact moments are recorded in this system. These data are used to contact these persons individually or through a mailing list. These contact details are coming from, for example, a business card or a mail which is sent. When there is doubt whether a person would object to being registered in this system, Root Legal will ask for permission. Everyone can request to be removed completely or partially from the CRM-system. Periodically, a check will be performed to review whether there was contact with a person in the past years. If this was not the case, this person will be removed.

Financial administration

For its financial administration, Root Legal may use the services of third parties, such as an accountant or a tax advisor. In this case, it will take the necessary measures to ensure the confidentiality of the data to be given to these third parties.

Your rights

You have the right to access, correct or delete the personal data Root Legal has about you. You can send an access request to the contact details mentioned above. A Dutch-language example of such a request can be found at To ensure the confidentiality of the files of its clients, Root Legal shall in response to such a request not provide information from a file to third parties, unless the client has given permission to do so. You also in some cases have the right to data portability. Lastly, you have the right to lodge a complaint with a supervisory authority. For the Netherlands, this is the Autoriteit Persoonsgegevens.


Root Legal takes measures to ensure the confidentiality of the information entrusted to it. It offers the possibility to communicate with her through encrypted email (you can find the PGP/GPG-keys here). It avoids the storage of confidential data with other parties to the extent possible (this is unavoidable with email). Root Legal’s policy is to send confidential email communication inside Root Legal encrypted. In the case of highly sensitive information, further measures are taken to ensure confidentiality.