We take our data protection obligations seriously. We're providing this privacy notice to tell you how we collect and process your personal data in accordance with the General Data Protection Regulation (GDPR). Please read this notice – it contains important information you need to know.
In short, we collect the minimum amount of personal information necessary for the purpose of your interaction with us. We don't sell it to third parties, and we only use it as this privacy notice states.
Of course, the short version doesn't tell you everything, so please read on for more details.
The purpose of this notice is to explain how we collect, use and disclose personal information about you when you visit our website and when you contact us.
We are a 'data controller'. This means we're responsible for deciding how we hold and use personal information about you. We're required under data protection legislation to notify you of the information contained in this privacy notice.
It applies to information we collect when you:
We only collect information for stated purposes (see 'Using your information') and we won't keep it for longer than necessary.
We collect standard internet log information and details of visitor behaviour patterns – essential in helping us provide a fast, bug-free service with relevant information.
If accepted by your browser, some of the cookies will be stored on your hard drive, while other cookies will reside in memory and expire when you close your browser. Cookies cannot be used to run programs or deliver viruses to your computer. Cookies are uniquely assigned to you, and can only be read by a web server in the domain that issued the cookie to you.
We consider the listed "strictly necessary cookies" and "performance cookies" essential to our website's performance, smooth running and continued improvement. By using our site, you agree that we can place these types of cookies on your device.
We make an effort to keep our use of "functionality cookies" and "marketing or targeting cookies" as non-intrusive and small in number as possible, and you can disable them by clicking the "ON" button next to their name below, to "OFF".
Here we chart the identity of each cookie, their individual purpose and their categorisation according to The International Chamber of Commerce UK.
You have the ability to accept or decline cookies. Most web browsers automatically accept cookies, but you can usually modify your browser setting to decline cookies if you prefer.
If you choose to decline cookies through your browser settings, you will not be able to fully experience this website and you will not be able to move through the e-commerce quote and buy process.
Information we may collect from you and process falls into two categories:
Legitimate interests – the processing is necessary to enable us to
You can unsubscribe from our marketing emails at any time either by calling us on 0345 561 0320, emailing us at firstname.lastname@example.org, or using the unsubscribe link at the bottom of our marketing emails.
Contract – the processing is necessary for a contract (insurance policy or employment) between us, or because we are taking specific steps towards entering into a contract
We share the data you provide with selected insurance providers and Feefo, a customer feedback company. These businesses will not use your personal information except to provide services via us. They're required to maintain the confidentiality of your information.
We do not sell, rent or otherwise give customer data to third parties.
We will keep your personal information for as long as necessary per the relevant purposes detailed under 'Using your information', and in order to comply with our legal and regulatory obligations.
Generally we keep quote information for 3 years, and policy and claims records for 7 years from the end of our relationship with you. If there is a dispute or a legal action we may need to keep this personal information longer.
All information collected from you during your usage of our website is transmitted to us via Transport Layer Security (TLS) technology. Payment cardholder information is in addition relayed instantly to our payment gateway provider. We do not store any payment cardholder information.
Inbound and outbound email is transmitted via Transport Layer Security (TLS) technology when supported by the endpoint.
We secure all personal information you have provided us on computer servers in a controlled, secure environment, and protect that information from unauthorised access, use or disclosure.
Non-digital personal data received is scanned to our network and the originals are confidentially destroyed.
We'll only disclose your personal information, without notice, if we have to by law or in the good faith belief that such action is necessary to:
We do not transfer personal information outside of the European Union.
You have the right to:
You can find out if we hold any personal information on you and request that information by making a ‘subject access request’. If we do hold information about you we will:
A subject access request needs to be made in writing (by email or letter).
If you find the information we hold about you is wrong, you can ask for it to be corrected. You can also ask us to delete the information. To do so please call us on 0345 561 0320 or email us at email@example.com. For record-keeping and compliance purposes, we'll retain certain information collected from you in connection with commercial transactions.
If you'd like to opt out of any storage of your personal data or direct marketing, please either call us on 0345 561 0320 or email us at firstname.lastname@example.org.
This privacy notice doesn't cover external websites linked to us.
You have the right to submit a complaint about our processing of your personal data. Our supervisory authority is the ICO and submitting a concern can be made using its website: https://ico.org.uk/concerns/handling/
We keep this policy under regular review. We may change this privacy notice from time to time by updating this page in order to reflect changes in the law and/or our privacy practices.