PRIVACY AND COOKIES NOTICE
1. DATA PROTECTION
We are committed to protecting and respecting your privacy in accordance with the current Data Protection Legislation (“Legislation”). This notice sets out the basis on which we will process any personal data that we collect from you, or that you provide to us. For the purposes of the Legislation, the Data Controller in relation to any personal data you supply to us will be the Group Company to whom you have provided your data.
2. INFORMATION WE MAY COLLECT OR RECEIVE ABOUT YOU
We may collect and process personal data that you provide directly to us by filling in forms, via our website, over the phone or via mobile phone apps, or that we receive via third parties such as brokers and agents.
2.1 Sensitive (Special) Personal Data (such as information relating to health or criminal convictions), may be required by us for the specific purposes of underwriting and fraud detection, or as part of the claims handling process. The provision of such data is conditional for us to be able to provide insurance or manage a claim and, whilst you can withdraw your consent for us to process such data, this may result in us not being able to continue cover, or to process any claims.
Where such data is provided to us, it will only be used for the specific purposes set out above, and will be treated securely and in line with this notice.
3. HOW WE USE YOUR INFORMATION
We may use the personal data we hold about you in the following ways:
|The reason we use your data||Our legal basis for its use|
|· For the purposes of providing insurance, handling claims and any other related purposes – this may include underwriting decisions made via automated means.||For the performance of the insurance contract between you and us.|
|· For offering renewal, research or statistical purposes.||Our legitimate interests – for us to analyse historic activity, to improve our rating algorithms and to help predict future business impact. To further our commercial interests, to enhance our product offering and to develop new systems and processes.|
|· To provide you with information, products or services that you request from us or which we feel may interest you, where you have consented to be contacted for such purposes.||Where you have provided consent|
|· To administer our site and for internal operations, including troubleshooting, data analysis, testing, research, statistical and survey purposes||Our legitimate interests - for us to analyse activity and traffic and for testing, research, statistical and survey purposes.|
|· To notify you about changes to our service.||Our legal and regulatory obligations.|
|· To safeguard against fraud and money laundering.||Our legal and regulatory obligations.|
|· To meet general legal or regulatory obligations||Our legal and regulatory obligations.|
4. DISCLOSURE OF YOUR PERSONAL DATA
We may disclose your personal data to third parties involved in providing products or services to us, or to service providers who perform services on our behalf. These include:
a. Our group companies, which means our subsidiaries, our ultimate holding company and its subsidiaries, as defined in section 1159 of the UK Companies Act 2006;
b. Affinity partners;
c. Brokers, agents, third party administrators, reinsurers;
d. Other insurance intermediaries;
e. Insurance reference bureaus;
f. Credit agencies;
g. Medical service providers;
h. Fraud detection agencies;
i. Loss adjusters;
j. External law firms;
k. External Auditors;
l. Regulatory authorities; and
m. As may be required by law.
We may also disclose your personal information:
a. In the event that we sell or buy any business or assets, in which case we may disclose your personal data to the prospective seller or buyer of such business or assets.
b. If any AmTrust company or substantially all of its assets are acquired by a third party, in which case personal data held by it about its customers will be one of the transferred assets.
5. INTERNATIONAL TRANSFERS OF DATA
We may transfer your personal data to destinations outside the European Economic Area (“EEA”). Where we transfer your personal data outside of the EEA, we will ensure that it is treated securely, and in accordance with this privacy notice and the Legislation. We only transfer data to countries deemed as having adequate protection by the European Commission or, where there is no adequacy decision, we use the European Commission approved ‘Standard Contractual Clauses’ with such parties to protect the data. A copy of the ‘Standard Contractual Clauses’ can be obtained by writing to The Data Protection Officer, AmTrust International Limited, 5th Floor, Exchequer Court, 33 St Mary Axe, London, EC3A 8AA.
6. YOUR RIGHTS
You have the right to:
- Ask us not to process your data for marketing purposes.
- See a copy of the personal information we hold about you.
- Ask us to delete any of your personal data (subject to certain exemptions).
- To have any inaccurate or misleading data corrected or deleted.
- Ask us to provide a copy of your data to any controller.
- Lodge a complaint with the local data protection authority.
For access to your personal data please write to:
The Data Protection Officer, AmTrust International Limited, 5th Floor, Exchequer Court, 33 St Mary Axe, London, EC3A 8AA.
A cookie is a small file of letters and numbers that we store on your browser or the hard drive of your computer. Cookies contain information that is transferred to your computer's hard drive.
We use the following cookies:
- Strictly necessary cookies. These are cookies that are required for the operation of our website. They include, for example, cookies that enable you to log into secure areas of our website, use a shopping cart or make use of e-billing services.
- Analytical/performance cookies. They allow us to recognise and count the number of visitors and to see how visitors move around our website when they are using it. This helps us to improve the way our website works, for example, by ensuring that users are finding what they are looking for easily.
The cookies we use do NOT hold any personally identifiable data about you, such as:
- Phone Numbers
- Email Addresses
- Mailing Addresses
- Bank Account Numbers
- Credit Card Information
You can block cookies by activating the setting on your browser that allows you to refuse the setting of all or some cookies. However, if you use your browser settings to block all cookies (including essential cookies) you may not be able to access all or parts of our site. Please refer to your browser's 'help' facility on how to configure accepting cookies. For more information on cookies and deletion of cookies please visit: www.allaboutcookies.org/manage-cookies.
Where you have provided consent, we may share personal data that you provide to us within the AmTrust Group of Companies and with other companies that we establish commercial links with. They and we may contact you (by mail, e-mail, telephone, text, or other agreed means) in order to tell you about products, services or offers that we believe will be of interest to you, or to provide you with commercial updates. If you do not wish us to continue marketing to you, please let us know.
Your data will not be retained for longer than is necessary, and will be managed in accordance with our data retention policy. In most cases the retention period will be for a period of seven (7) years following the expiry of the insurance contract, or our business relationship with you, unless we are required to retain the data for a longer period due to business, legal or regulatory requirements. In any case, where data is retained we will endeavour to delete or to anonymise any personal elements, in order to maintain your privacy and security.
If you have any questions concerning our use of your personal data, please contact The Data Protection Officer, AmTrust International Limited, 5th Floor, Exchequer Court, 33 St Mary Axe, London, EC3A 8AA.