Privacy Policy


Saliba Stafrace Legal regulates the use of the data to facilitate your understanding of our commitment whilst complying with your data rights, security as well as the adherence to the General Data Protection Regulation of the European Union (“GDPR”) and Chapter 586 of the Laws of Malta.

All information provided by our clientele, is necessary for the firm to provide you with the best assistance and service.

Saliba Stafrace Legal may also request data or further information for other purposes knotted with the provision of legal services, such as to ensure observance with all legal obligation to which the firm is subject or in order to protect the legitimate interests our clients, the firm and all concerned parties.

Data Collected

We may collect personal information about our clientele such as name, address, telephone number, e-mail address, business affiliations as well as all the details in relation to your legal queries. This information may be collected when you first meet any of the legal team.  

Additionally, we may collect or receive information about individuals from service providers, and other third parties, such as our clients, representatives and professional advisers, content providers, government authorities and public sources and records.

Purpose and Use of Collected Data

Saliba Stafrace Legal will use all provided data to assist to your request/inquiry as well as to adhere to the general conduct of the firm:

  • Determining whether Saliba Stafrace Legal will enter into a professional relationship with the addressed client

To determine whether the firm can assist you and provide you with the requested services and hence enter into an official commitment with you on the matter for which you have approached us.

  • To establish and verify prospective and current clientele’s identity

In order to protect the firm’s legitimate interests, we reserve the right to establish and verify the identity of our clients, even in certain cases where the requested assistance does not amount to a ‘relevant activity’ in relation to the internal risk assessment.

  • Assisting to our clients’ requests

To respond to your inquiries, fulfill your instructions and requests, and review your demand for further judicial representation.

  • Newsletters, mailing lists and direct marketing

For your legal interest, the firm may send you information we think may interest you.

  • Marketing and Communications

To market the firm’s services to all our clientele via email or other communicatory means as well as deliver relevant website content and advertisements. 

  • In Protection of the firm’s legal rights and to prevent misuse as well as mandatory reporting obligations

To prevent and detect fraud unauthorized activities and other misuse. The firm reserves the right to investigate, prevent or take action regarding illegal activities, suspected fraud, situations involving potential threats to the safety or legal rights of the firm, any person assisting it and other third parties. Thus the firm reserves its right to fulfill its external mandatory reporting obligations that it may have in relation to the FIAU, the MFSA, the Police and any other (including overseas) public, regulatory, law enforcement or tax authorities. The firm as well as its legal team will assist and cooperate in any criminal or regulatory investigations against you, as may be required of us.

  • Comply with legal obligations and to fulfill our other internal compliance policies and requirements

To comply with the law or legal proceedings such as disclose information in response to summonses, court orders, and/or other lawful requests by regulators and/or law enforcement, including responding to national security or law enforcement disclosure requirements. And this with specific relevance to those obligations arising out of the PMLA, PMLFTR and others laws and regulations that may be applicable to us in terms of client due diligence and AML requirements.

  • For billing, invoice and debt recovery purposes

To collect and recover money which is owed to the firm. This is necessary for our legitimate interests to recover debts due to us, to keep track of the services provided to the client and their status or outcome and to be able to revisit such matters if new issues arise.

Disclosure of personal information

Saliba Stafrace Legal may share personal information with the following categories of third parties:

  • Third party service providers that provide services to us or to whom we outsource certain services, such as data hosting or software or technology services.
  • Government and/or regulatory authorities.
  • Professional indemnity insurers.
  • Regulators, tax authorities and/or corporate registries.

In addition, the firm may disclose personal information to other third parties under the following circumstances:

  • As part of any merger, sale and transfer of our assets, acquisition or restructuring of all or part of our business, bankruptcy, or similar event, including related to due diligence conducted prior to such event where permitted by law.
  • If the firm or any of its legal team is legally obliged to do so following a request by law enforcement, courts or other legal entities.
  • In protection of our rights.
  • Where we believe it necessary to respond to claims asserted against us, comply with legal processes, enforce our engagement letters, or for fraud prevention, risk assessment, investigation, and to protect the rights, property or safety of Saliba Stafrace Legal, our clients and customers, or others.

Our Clientele’s Rights

All clientele may gain access to the data provided by contacting us at our offices or by sending us an email with your specific request.

When your data is processed based on your consent, you may inform us that you wish to retract consent at any time and at which point, unless there are other legal bases, we will not process your data any longer.

Data retention and Data Minimisation

Saliba Stafrace will retain the  personal data only for as long as is necessary (taking into consideration the purpose for which it was originally obtained). Our normal practice is to determine whether there is/are any specific EU and/or Maltese law(s) (for example anti-money laundering or corporate laws) permitting or even obliging the firm to keep certain Personal Data for a certain period of time (in which case We will keep the Personal Data for the maximum period indicated by any such law).

Nonetheless, our retention of your personal data shall not exceed the period of two (2) years from the termination of your engagement with Saliba Stafrace Legal. This retention period enables us to make use of your personal data for potential AML reporting obligations to the FIAU (a legal obligation) and/or for the assertion, filing or defence of possible legal claims by or against you (taking into account applicable statutes of limitation and prescriptive periods).

Saliba Stafrace’s advocates and administrators are released from any obligation to account for papers relating to lawsuits or advice on the expiration of two (2) years from the day when such lawsuits have been decided or otherwise disposed of, or such advice given.

Our Commitment to Your Security

We employ security measures to prevent unauthorized access to information that we collect online. However, we cannot guarantee the security of your personal information.

Revisions to our Privacy Policy

We reserve the right to revise this Policy or any part of it from time to time. Please review the Policy periodically for changes.