Fair Processing Notice

Car, Home, Travel

Who controls my personal information?

This notice tells you how Zurich Insurance Plc. (“Zurich”), as data controller, will deal with your personal information. Where Zurich introduces you to a company outside the group, that company will tell you how your personal information will be used.

You can ask for further information about our use of your personal information or complain about its use in the first instance, by contacting our Data Protection Officer at:

Zurich Insurance Group
Tri-centre 1
Newbridge Square
Swindon
SN1 1HN

or by emailing the Data Protection Officer at GBZ.General.Data.Protection@uk.zurich.com.

If you have any concerns regarding our processing of your personal information, or are not satisfied with our handling of any request by you in relation to your rights, you also have the right to make a complaint to the Information Commissioner's Office. Their address is: First Contact Team, Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, SK9 5AF.

What personal information will you collect about me?

We will collect and process the personal information that you give us by phone, e-mail, filling in forms, including on our website, and when you report a problem with our website. We also collect personal information from your appointed agent such as your trustee, broker, intermediary or financial adviser in order to provide you with the services you have requested and from other sources, such as credit reference agencies and other insurance companies, for verification purposes. We will also collect information you have volunteered to be in the public domain and other industry-wide sources.

We will only collect personal information that we require to fulfill our contractual or legal requirements unless you consent to provide additional information. The type of personal information we will collect includes; basic personal information (i.e. name, address and date of birth), occupation and financial details, health and family information, claims and convictions information and where you have requested other individuals be included in the arrangement, personal information about those individuals.

If you give us personal information on other individuals, this will be used to provide you with a quotation and/or contract of insurance and/or provision of financial services. You agree you have their permission to do so. Except where you are managing the contract on another's behalf, please ensure that the individual knows how their personal information will be used by Zurich. More information about this can be found in the ‘How do you use my personal information’ section.

How do you use my personal information?

We and our selected third parties will only collect and use your personal information

(i) where the processing is necessary in connection with providing you with a quotation and/or contract of insurance and/or provision of financial services that you have requested;

(ii) to meet our legal or regulatory obligations; or

(iii) for our "legitimate interests".

It is in our legitimate interests to collect your personal information as it provides us with the information that we need to provide our services to you more effectively including providing you with information about our products and services. We will always ensure that we keep the amount of information collected and the extent of any processing to the absolute minimum to meet this legitimate interest. Examples of the purposes for which we will collect and use your personal information are:

  • to provide you with a quotation and/or contract of insurance;
  • to identify you when you contact us;
  • to deal with administration and assess claims;
  • to make and receive payments;
  • to obtain feedback on the service we provide to you;
  • to administer our site and for internal operations including troubleshooting, data analysis, testing, research, statistical and survey purposes;
  • for fraud prevention and detection purposes.

We will contact you to obtain consent prior to processing your personal information for any other purpose, including for the purposes of targeted marketing unless we already have consent to do so.

Who do you share my personal information with?

Where necessary, we will share the personal information you gave us for the purposes of providing you with the goods and services you requested with the types of organisations described below:

  • associated companies including reinsurers, suppliers and service providers;
  • introducers and professional advisers;
  • regulatory and legal bodies;
  • survey and research organisations;
  • credit reference agencies;
  • healthcare professionals, social and welfare organisations;
  • and other insurance companies

Or, in order to meet our legal or regulatory requirements, with the types of organisations described below:

  • regulatory and legal bodies;
  • central government or local councils;
  • law enforcement bodies, including investigators;
  • credit reference agencies; and
  • other insurance companies.

How do you use my personal information for websites and email communications?

When you visit one of our websites we may collect information from you such as your email address or IP address. This helps us to track unique visits and monitor patterns of customer website traffic, such as who visits and why they visit.

We use cookies and/or pixel tags on some pages of our website. A cookie is a small text file sent to your computer. A pixel tag is an invisible tag placed on certain pages of our website but not on your computer. Pixel tags usually work together with cookies to assist us to provide you with a more tailored service. This allows us to monitor and improve our email communications and website. Useful information about cookies, including how to remove them, can be found on our websites.

How do you transfer my personal information to other countries?

Where we transfer your personal information to countries that are outside of the UK and the European Union (EU) we will ensure that it is protected and that the transfer is lawful. We will do this by ensuring that the personal information is given adequate safeguards by using 'standard contractual clauses' which have been adopted or approved by the UK and the EU, or other solutions that are in line with the requirements of European data protection laws.

A copy of our security measures for personal information transfers can be obtained from our Data Protection Officer at:

Zurich Insurance Group
Tri-centre 1
Newbridge Square
Swindon
SN1 1HN

or by emailing the Data Protection Officer at GBZ.General.Data.Protection@uk.zurich.com.

How long do you retain my personal information for?

We will retain and process your personal information for as long as necessary to meet the purposes for which it was originally collected. These periods of time are subject to legal, tax and regulatory requirements or to enable us to manage our business.

What are my data protection rights?

You have a number of rights under the data protection laws, namely:

  • to access your data (by way of a subject access request);
  • to have your data rectified if it is inaccurate or incomplete;
  • in certain circumstances, to have your data deleted or removed;
  • in certain circumstances, to restrict the processing of your data;
  • a right of data portability, namely to obtain and reuse your data for your own purposes across different services;
  • to object to direct marketing;
  • not to be subject to automated decision making (including profiling), where it produces a legal effect or a similarly significant effect on you;
  • to claim compensation for damages caused by a breach of the data protection legislation;
  • if we are processing your personal information with your consent, you have the right to withdraw your consent at any time.

We will, for the purposes of providing you with a contract of insurance, processing claims, reinsurance and targeted marketing, process your personal information by means of automated decision making and profiling where we have a legitimate interest or you have consented to this.

What happens if I fail to provide my personal information to you?

If you do not provide us with your personal information, we will not be able to provide you with a contract or assess future claims for the service you have requested.

How do you use my claims history?

Home insurance

Under the conditions of this policy you must tell us when you become aware of any incident that could give rise to a claim under this policy, whether or not it is your intention to claim.

When you tell us about an incident or claim, we may pass information to the Claims and Underwriting Exchange Register (CUE), where the data is controlled by the Motor Insurers’ Bureau (MIB), and other relevant databases.

We and other insurers may search these databases when you apply for insurance, in the event of any incident or claim or at time of renewal to validate your claims history or that of any other person or property likely to be involved in the policy or claim.

This helps to check information provided and prevent fraudulent claims.

Navigators & General and Travel insurance

When you tell us about an incident or claim we may pass information relating to it to the relevant database. We and other insurers may search these databases when you apply for insurance, in the event of any incident or claim, or at time of renewal to validate your claims history or that of any other person or property likely to be involved in the policy or claim.

This helps to check information provided and prevent fraudulent claims.

Motor insurance

Under the conditions of this policy you must tell us when you become aware of any incident that could give rise to a claim under this policy, whether or not it is your intention to claim.

Insurers pass information to the Claims and Underwriting Exchange Register (CUE) and the Motor Insurance Anti-Fraud and Theft Register (MIAFTR), where the data is controlled by the Motor Insurers’ Bureau (MIB), and other relevant databases.

We and other insurers may search these databases when you apply for insurance, in the event of any incident or claim or at time of renewal to validate your claims history or that of any other person or property likely to be involved in the policy or claim.

This helps to check information provided and prevent fraudulent claims.

Fraud prevention and detection

In order to prevent and detect fraud we may at any time:

  1. check your personal data against counter fraud systems;
  2. use your information to search against various publicly available and third party resources; use industry fraud tools including undertaking credit searches and to review your claims history;
  3. share information about you with other organisations including but not limited to the police, the Insurance Fraud Bureau (IFB), other insurers and other interested parties.

If you provide false or inaccurate information and fraud is identified, the matter will be investigated and appropriate action taken. This may result in your case being referred to the Insurance Fraud Enforcement Department (IFED) or other police forces and fraud prevention agencies. You may face fines or criminal prosecution. In addition, Zurich may register your name on the Insurance Fraud Register, an industry-wide fraud database.

Motor insurance database

Information relating to your insurance policy will be added to the Motor Insurance Database (MID) managed by the Motor Insurers’ Bureau (MIB). MID and the data stored on it may be used by certain statutory or authorised bodies including the police, the DVLA, the DVANI, the Insurance Fraud Bureau and other bodies permitted by law for purposes not limited to but including:

  • electronic licensing;
  • continuous insurance enforcement;
  • law enforcement (prevention, detection, apprehension and or prosecution of offenders);
  • the provision of government services or other services aimed at reducing the level and incidence of uninsured driving.

If a vehicle of yours is involved in a road traffic accident (either in the United Kingdom, the European Economic Area or certain other territories), insurers and/or or the MIB may search the MID to obtain relevant information.

Persons (including their appointed representatives) pursuing a claim in respect of a road traffic accident (including citizens of other countries) may also obtain relevant information which is held on the MID.

It is vital that the MID holds correct registration numbers for your vehicles. If incorrect details for any of your vehicles are shown on the MID you are at risk of having the relevant vehicle seized by the police. You can check that correct registration number details for your vehicles are shown on the MID at www.askmid.com.

Employers’ Liability Tracing Office (ELTO)

We are members of the Employers’ Liability Tracing Office (ELTO), an independent industry body who maintains a centralised database that helps those who have suffered injury or disease in the workplace to identify the relevant Employers’ Liability insurer quickly and efficiently.

It is important, for the services of ELTO to be fully effective, that you inform us of your ERN (Employer Reference Number also known as the Employer PAYE reference) and all subsidiary company names and their ERNs if applicable.

As members of ELTO we will forward details of your policy if it contains Employers’ Liability cover to ELTO together with details of any ERNs you have supplied to us.

Life Insurance

Who controls my personal information?

This notice tells you how Zurich Assurance Ltd (“Zurich”), as data controller, will deal with your personal information. Where Zurich introduces you to a company outside the group, that company will tell you how your personal information will be used.

You can ask for further information about our use of your personal information or complain about its use in the first instance, by contacting our Data Protection Officer at:

Zurich Insurance Group
Tri-centre 1
Newbridge Square
Swindon
SN1 1HN

or by emailing the Data Protection Officer at GBZ.General.Data.Protection@uk.zurich.com.

What personal information will you collect about me?

We will collect and process the personal information that you give us by phone, e-mail, filling in forms, including on our website, and when you report a problem with our website. We also collect personal information from your appointed agent such as your trustee, broker, intermediary or financial adviser in order to provide you with the services you have requested and from other sources, such as credit reference agencies and other insurance companies, for verification purposes. We will also collect information you have volunteered to be in the public domain and other industry-wide sources.

We will only collect personal information that we require to fulfill our contractual or legal requirements unless you consent to provide additional information. The type of personal information we will collect includes; basic personal information (i.e. name, address and date of birth), occupation and financial details, health and family information, claims and convictions information and where you have requested other individuals be included in the arrangement, personal information about those individuals.

If you give us personal information on other individuals, this will be used to provide you with a quotation and/or contract of insurance and/or provision of financial services. You agree you have their permission to do so. Except where you are managing the contract on another's behalf, please ensure that the individual knows how their personal information will be used by Zurich. More information about this can be found in the ‘How do you use my personal information’ section.

How do you use my personal information?

We and our selected third parties will only collect and use your personal information

(i) where the processing is necessary in connection with providing you with a quotation and/or contract of insurance and/or provision of financial services that you have requested;

(ii) to meet our legal or regulatory obligations; or

(iii) for our "legitimate interests". It is in our legitimate interests to collect your personal information as it provides us with the information that we need to provide our services to you more effectively including providing you with information about our products and services. We will always ensure that we keep the amount of information collected and the extent of any processing to the absolute minimum to meet this legitimate interest. Examples of the purposes for which we will collect and use your personal information are:

  • to provide you with a quotation and/or contract of insurance;
  • to identify you when you contact us;
  • to deal with administration and assess claims;
  • to make and receive payments;
  • to obtain feedback on the service we provide to you;
  • to administer our site and for internal operations including troubleshooting, data analysis, testing, research, statistical and survey purposes;
  • for fraud prevention and detection purposes.

We will contact you to obtain consent prior to processing your personal information for any other purpose, including for the purposes of targeted marketing unless we already have consent to do so.

Who do you share my personal information with?

Where necessary, we will share the personal information you gave us for the purposes of providing you with the goods and services you requested with the types of organisations described below:

  • associated companies including reinsurers, suppliers and service providers;
  • introducers and professional advisers;
  • regulatory and legal bodies;
  • survey and research organisations;
  • credit reference agencies;
  • healthcare professionals, social and welfare organisations; and
  • other insurance companies.

Or, in order to meet our legal or regulatory requirements, with the types of organisations described below:

  • regulatory and legal bodies;
  • central government or local councils;
  • law enforcement bodies, including investigators;
  • credit reference agencies; and
  • other insurance companies.

How do you transfer my personal information to other countries?

Where we transfer your personal information to countries that are outside of the UK and the European Union (EU) we will ensure that it is protected and that the transfer is lawful. We will do this by ensuring that the personal information is given adequate safeguards by using 'standard contractual clauses' which have been adopted or approved by the UK and the EU, or other solutions that are in line with the requirements of European data protection laws.

A copy of our security measures for personal information transfers can be obtained from our Data Protection Officer at:

Zurich Insurance Group
Tri-centre 1
Newbridge Square
Swindon
SN1 1HN

or by emailing the Data Protection Officer at GBZ.General.Data.Protection@uk.zurich.com.

How long do you retain my personal information for?

We will retain and process your personal information for as long as necessary to meet the purposes for which it was originally collected. These periods of time are subject to legal, tax and regulatory requirements or to enable us to manage our business.

What are my data protection rights?

You have a number of rights under the data protection laws, namely:

  • to access your data (by way of a subject access request);
  • to have your data rectified if it is inaccurate or incomplete;
  • in certain circumstances, to have your data deleted or removed;
  • in certain circumstances, to restrict the processing of your data;
  • a right of data portability, namely to obtain and reuse your data for your own purposes across different services;
  • to object to direct marketing;
  • not to be subject to automated decision making (including profiling), where it produces a legal effect or a similarly significant effect on you;
  • to claim compensation for damages caused by a breach of the data protection legislation.
  • if we are processing your personal information with your consent, you have the right to withdraw your consent at any time.

We will, for the purposes of providing you with a contract of insurance, processing claims, reinsurance and targeted marketing, process your personal information by means of automated decision making and profiling where we have a legitimate interest or you have consented to this.

What happens if I fail to provide my personal information to you?

If you do not provide us with your personal information, we will not be able to provide you with a contract or assess future claims for the service you have requested.

Pensions and Investments

Who controls my personal information?

This notice tells you how Sterling will deal with your personal information. Sterling is a trading name of Zurich Assurance Ltd and also refers to Sterling ISA Managers Ltd. Both companies are part of the Zurich Group. Where Sterling introduce you to a company outside the Zurich Group, that company will tell you how your data will be used. Sterling will remain a data controller for administration and marketing purposes.

You can ask for further information about our use of your personal information or complain about its use in the first instance, by contacting our Data Protection Officer at:

Zurich Insurance Group
Tri-centre 1
Newbridge Square
Swindon
SN1 1HN

or by emailing the Data Protection Officer at GBZ.General.Data.Protection@uk.zurich.com.

If you have any concerns regarding our processing of your personal information, or are not satisfied with our handling of any request by you in relation to your rights, you also have the right to make a complaint to the Information Commissioner's Office. Their address is: First Contact Team, Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, SK9 5AF.

What personal information will you collect about me?

We will collect and process the personal information that you give us by phone, e-mail, filling in forms, including on our website, and when you report a problem with our website. We also collect personal information from your appointed agent such as your trustee, broker, intermediary or financial adviser in order to provide you with the services you have requested and from other sources, such as credit reference agencies and other insurance companies, for verification purposes. We will also collect information you have volunteered to be in the public domain and other industry-wide sources.

We will only collect personal information that we require to fulfill our contractual or legal requirements unless you consent to provide additional information. The type of personal information we will collect includes; basic personal information (i.e. name, address and date of birth), occupation and financial details, health and family information, claims and convictions information and where you have requested other individuals be included in the arrangement, personal information about those individuals.

If you give us personal information on other individuals, this will be used to provide you with a quotation and/or contract of insurance and/or provision of financial services. You agree you have their permission to do so. Except where you are managing the contract on another's behalf, please ensure that the individual knows how their personal information will be used by Zurich. More information about this can be found in the ‘How do you use my personal information’ section.

How do you use my personal information?

We and our selected third parties will only collect and use your personal information (i) where the processing is necessary in connection with providing you with a quotation and/or contract of insurance and/or provision of financial services that you have requested; (ii) to meet our legal or regulatory obligations; or (iii) for our "legitimate interests". It is in our legitimate interests to collect your personal information as it provides us with the information that we need to provide our services to you more effectively including providing you with information about our products and services. We will always ensure that we keep the amount of information collected and the extent of any processing to the absolute minimum to meet this legitimate interest. Examples of the purposes for which we will collect and use your personal information are:

  • to provide you with a quotation and/or contract of insurance;
  • to identify you when you contact us;
  • to deal with administration and assess claims;
  • to make and receive payments;
  • to obtain feedback on the service we provide to you;
  • to administer our site and for internal operations including troubleshooting, data analysis, testing, research, statistical and survey purposes;
  • for fraud prevention and detection purposes.

We will contact you to obtain consent prior to processing your personal information for any other purpose, including for the purposes of targeted marketing unless we already have consent to do so.

Who do you share my personal information with?

Where necessary, we will share the personal information you gave us for the purposes of providing you with the goods and services you requested with the types of organisations described below:

  • associated companies including reinsurers, suppliers and service providers;
  • introducers and professional advisers;
  • regulatory and legal bodies;
  • survey and research organisations;
  • credit reference agencies;
  • healthcare professionals, social and welfare organisations; and
  • other insurance companies

Or, in order to meet our legal or regulatory requirements, with the types of organisations described below:

  • regulatory and legal bodies;
  • central government or local councils;
  • law enforcement bodies, including investigators;
  • credit reference agencies; and
  • other insurance companies

How do you use my personal information for websites and email communications?

When you visit one of our websites we may collect information from you such as your email address or IP address. This helps us to track unique visits and monitor patterns of customer website traffic, such as who visits and why they visit.

We use cookies and/or pixel tags on some pages of our website. A cookie is a small text file sent to your computer. A pixel tag is an invisible tag placed on certain pages of our website but not on your computer. Pixel tags usually work together with cookies to assist us to provide you with a more tailored service. This allows us to monitor and improve our email communications and website. Useful information about cookies, including how to remove them, can be found on our websites.

How do you transfer my personal information to other countries?

Where we transfer your personal information to countries that are outside of the UK and the European Union (EU) we will ensure that it is protected and that the transfer is lawful. We will do this by ensuring that the personal information is given adequate safeguards by using 'standard contractual clauses' which have been adopted or approved by the UK and the EU, or other solutions that are in line with the requirements of European data protection laws.

A copy of our security measures for personal information transfers can be obtained from our Data Protection Officer at:

Zurich Insurance Group
Tri-centre 1
Newbridge Square
Swindon
SN1 1HN

or by emailing the Data Protection Officer at GBZ.General.Data.Protection@uk.zurich.com.

How long do you retain my personal information for?

We will retain and process your personal information for as long as necessary to meet the purposes for which it was originally collected. These periods of time are subject to legal, tax and regulatory requirements or to enable us to manage our business.

What are my data protection rights?

You have a number of rights under the data protection laws, namely:

  • to access your data (by way of a subject access request);
  • to have your data rectified if it is inaccurate or incomplete;
  • in certain circumstances, to have your data deleted or removed;
  • in certain circumstances, to restrict the processing of your data;
  • a right of data portability, namely to obtain and reuse your data for your own purposes across different services;
  • to object to direct marketing;
  • not to be subject to automated decision making (including profiling), where it produces a legal effect or a similarly significant effect on you;
  • to claim compensation for damages caused by a breach of the data protection legislation;
  • if we are processing your personal information with your consent, you have the right to withdraw your consent at any time.

We will, for the purposes of providing you with a contract of insurance, processing claims, reinsurance and targeted marketing, process your personal information by means of automated decision making and profiling where we have a legitimate interest or you have consented to this.

What happens if I fail to provide my personal information to you?

If you do not provide us with your personal information, we will not be able to provide you with a contract or assess future claims for the service you have requested.

Business, Charity and Public Sector

Who controls your personal information

This notice tells you how Zurich Insurance plc (‘Zurich’), as data controller, will deal with your personal information. Where Zurich introduces you to a company outside the group, that company will tell you how your personal information will be used.

You can ask for further information about our use of your personal information or complain about its use in the first instance, by contacting our Data Protection Officer at: Zurich Insurance Group, Tri- centre 1, Newbridge Square, Swindon, SN1 1HN or by emailing the Data Protection Officer at GBZ.General.Data.Protection@uk.zurich.com.

If you have any concerns regarding our processing of your personal information, or are not satisfied with our handling of any request by you in relation to your rights, you also have the right to make a complaint to the Information Commissioner's Office. Their address is: First Contact Team, Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, SK9 5AF.

What personal information we collect about you

We will collect and process the personal information that you give us by phone, e-mail, filling in forms, including on our website, and when you report a problem with our website. We also collect personal information from your appointed agent such as your trustee, broker, intermediary or financial adviser in order to provide you with the services you have requested and from other sources, such as credit reference agencies and other insurance companies, for verification purposes. We will also collect information you have volunteered to be in the public domain and other industry- wide sources.

We will only collect personal information that we require to fulfil our contractual or legal requirements unless you consent to provide additional information. The type of personal information we will collect includes; basic personal information (i.e. name, address and date of birth), occupation and financial details, health and family information, claims and convictions information and where you have requested other individuals be included in the arrangement, personal information about those individuals.

If you give us personal information on other individuals, this will be used to provide you with a quotation and/or contract of insurance and/or provision of financial services. You agree you have their permission to do so. Except where you are managing the contract on another's behalf, please ensure that the individual knows how their personal information will be used by Zurich. More information about this can be found in the ‘How we use your personal information’ section.

How we use your personal information

We and our selected third parties will only collect and use your personal information (i) where the processing is necessary in connection with providing you with a quotation and/or contract of insurance and/or provision of financial services that you have requested; (ii) to meet our legal or regulatory obligations; or (iii) for our "legitimate interests". It is in our legitimate interests to collect your personal information as it provides us with the information that we need to provide our services to you more effectively including providing you with information about our products and services.
We will always ensure that we keep the amount of information collected and the extent of any processing to the absolute minimum to meet this legitimate interest. Examples of the purposes for which we will collect and use your personal information are:

  • to provide you with a quotation and/or contract of insurance;
  • to identify you when you contact us;
  • to deal with administration and assess claims;
  • to make and receive payments;
  • to obtain feedback on the service we provide to you;
  • to administer our site and for internal operations including troubleshooting, data analysis, testing, research, statistical and survey purposes;
  • for fraud prevention and detection purposes.

We will contact you to obtain consent prior to processing your personal information for any other purpose, including for the purposes of targeted marketing unless we already have consent to do so.

Who we share your personal information with

Where necessary, we will share the personal information you gave us for the purposes of providing you with the goods and services you requested with the types of organisations described below:

  • associated companies including reinsurers, suppliers and service providers;
  • introducers and professional advisers;
  • regulatory and legal bodies;
  • survey and research organisations;
  • credit reference agencies;
  • healthcare professionals, social and welfare organisations; and
  • other insurance companies

Or, in order to meet our legal or regulatory requirements, with the types of organisations described below:

  • regulatory and legal bodies;
  • central government or local councils;
  • law enforcement bodies, including investigators;
  • credit reference agencies; and
  • other insurance companies

How we use your personal information for websites and email communications

When you visit one of our websites we may collect information from you such as your email address or IP address. This helps us to track unique visits and monitor patterns of customer website traffic, such as who visits and why they visit.

We use cookies and/or pixel tags on some pages of our website. A cookie is a small text file sent to your computer. A pixel tag is an invisible tag placed on certain pages of our website but not on your computer. Pixel tags usually work together with cookies to assist us to provide you with a more tailored service. This allows us to monitor and improve our email communications and website.
Useful information about cookies, including how to remove them, can be found on our websites.

How we transfer your personal information to other countries

Where we transfer your personal information to countries that are outside of the UK and the European Union (EU) we will ensure that it is protected and that the transfer is lawful. We will do this by ensuring that the personal information is given adequate safeguards by using 'standard contractual clauses' which have been adopted or approved by the UK and the EU, or other solutions that are in line with the requirements of European data protection laws.

A copy of our security measures for personal information transfers can be obtained from our Data Protection Officer at: Zurich Insurance Group, Tri-centre 1, Newbridge Square, Swindon, SN1 1HN, or by emailing the Data Protection Officer at GBZ.General.Data.Protection@uk.zurich.com.

How long we keep your personal information for

We will retain and process your personal information for as long as necessary to meet the purposes for which it was originally collected. These periods of time are subject to legal, tax and regulatory requirements or to enable us to manage our business.

Your data protection rights

You have a number of rights under the data protection laws, namely:

  • to access your data (by way of a subject access request);
  • to have your data rectified if it is inaccurate or incomplete;
  • in certain circumstances, to have your data deleted or removed;
  • in certain circumstances, to restrict the processing of your data;
  • a right of data portability, namely to obtain and reuse your data for your own purposes across different services;
  • to object to direct marketing;
  • not to be subject to automated decision making (including profiling), where it produces a legal effect or a similarly significant effect on you;
  • to claim compensation for damages caused by a breach of the data protection legislation.
  • if we are processing your personal information with your consent, you have the right to withdraw your consent at any time.

We will, for the purposes of providing you with a contract of insurance, processing claims, reinsurance and targeted marketing, process your personal information by means of automated decision making and profiling where we have a legitimate interest or you have consented to this.


What happens if you fail to provide your personal information to us

If you do not provide us with your personal information, we will not be able to provide you with a contract or assess future claims for the service you have requested.

Fraud prevention and detection

In order to prevent and detect fraud we may at any time:

  • check your personal data against counter fraud systems
  • use your information to search against various publicly available and third party resources
  • use industry fraud tools including undertaking credit searches and to review your claims history
  • share information about you with other organisations including but not limited to the police, the Insurance Fraud Bureau (IFB), other insurers and other interested parties.

If you provide false or inaccurate information and fraud is identified, the matter will be investigated and appropriate action taken. This may result in your case being referred to the Insurance Fraud Enforcement Department (IFED) or other police forces and fraud prevention agencies. You may face fines or criminal prosecution. In addition, Zurich may register your name on the Insurance Fraud Register, an industry-wide fraud database.

Claims history

We may pass information relating to claims or potential claims to the Claims and Underwriting Exchange Register (CUE) and the Motor Insurance Anti-Fraud and Theft Register (MIAFTR), where the data is controlled by the Motor Insurers’ Bureau, and other relevant databases.

We and other insurers may search these databases when you apply for insurance, when claims or potential claims are notified to us or at time of renewal to validate your claims history or that of any other person or property likely to be involved in the policy or claim.

This helps to check information provided and prevent fraudulent claims.

Employers’ Liability Tracing Office (ELTO)

We are members of the Employers’ Liability Tracing Office (ELTO), an independent industry body who maintains a centralised database that helps those who have suffered injury or disease in the workplace to identify the relevant Employers’ Liability insurer quickly and efficiently.

It is important, for the services of ELTO to be fully effective, that you inform us of your ERN (Employer Reference Number also known as the Employer PAYE reference) and all subsidiary company names and their ERNs if applicable.

As members of ELTO we will forward details of your policy if it contains Employers’ Liability cover to ELTO together with details of any ERNs you have supplied to us.

Motor Insurance Database

Information relating to your insurance policy will be added to the Motor Insurance Database (MID) managed by the Motor Insurers’ Bureau (MIB). MID and the data stored on it may be used by certain statutory or authorised bodies including the police, the DVLA, the DVANI, the Insurance Fraud Bureau and other bodies permitted by law for purposes not limited to but including:

  • electronic licensing;
  • continuous insurance enforcement;
  • law enforcement (prevention, detection, apprehension and or prosecution of offenders);
  • the provision of government services or other services aimed at reducing the level and incidence of uninsured driving.

If a vehicle of yours is involved in a road traffic accident (either in the United Kingdom, the EEA or certain other territories), insurers and/or or the MIB may search the MID to obtain relevant information.

Persons (including their appointed representatives) pursuing a claim in respect of a road traffic accident (including citizens of other countries) may also obtain relevant information which is held on the MID.

It is vital that the MID holds correct registration numbers for your vehicles. If incorrect details for any of your vehicles are shown on the MID you are at risk of having the relevant vehicle seized by the police. You can check that correct registration number details for your vehicles are shown on the MID at www.askmid.com

Engineering Inspection

Who controls your personal information

This notice tells you how Zurich Management Services Ltd ( Zurich), as data controller, will deal with your personal information. Where Zurich introduces you to a company outside the group, that company will tell you how your personal information will be used.

You can ask for further information about our use of your personal information or complain about its use in the first instance, by contacting our Data Protection Officer at: Zurich Insurance Group, Tri-centre 1, Newbridge Square, Swindon, SN1 1HN or by emailing the Data Protection Officer at GBZ.General.Data.Protection@uk.zurich.com.

If you have any concerns regarding our processing of your personal information, or are not satisfied with our handling of any request by you in relation to your rights, you also have the right to make a complaint to the Information Commissioner's Office. Their address is: First Contact Team, Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, SK9 5AF.

What personal information we collect about you

We will collect and process the personal information that you give us by phone, e-mail, filling in forms, including on our website, and when you report a problem with our website. We also collect personal information from your appointed agent such as your trustee, broker, intermediary or financial adviser in order to provide you with the services you have requested We will also collect information you have volunteered to be in the public domain and other industry-wide sources.

We will only collect personal information that we require to fulfil our contractual or legal requirements unless you consent to provide additional information. The type of personal information we will collect includes; basic personal information i.e. name, address and date of birth, national insurance number, contact details, occupation and where you have requested other individuals be included in the arrangement, personal information about those individuals.

If you give us personal information on other individuals, this will be used to provide you with a quotation and/or the services you have requested. You agree you have their permission to do so. Except where you are managing the contract on another's behalf, please ensure that the individual knows how their personal information will be used by Zurich. More information about this can be found in the ‘How we use my personal information’ section.


How we use your personal information

We and our selected third parties will only collect and use your personal information (i) where the processing is necessary in connection with providing you with a quotation and/or the services you have requested; (ii) to meet our legal or regulatory obligations; or (iii) for our "legitimate interests". It is in our legitimate interests to collect personal information as it provides us with the information that we need to provide our services to you more effectively including providing you with information about our products and services. We will always ensure that we keep the amount of information collected and the extent of any processing to the absolute minimum to meet this legitimate interest. Examples of the purposes for which we will collect and use your personal information are:

1. to provide you with a quotation and/or contract of insurance;
2. to identify you when you contact us;
3. to deal with administration and provide you with necessary documentation
4. to make and receive payments;
5. to obtain feedback on the service we provide to you;
6. to administer our site and for internal operations including troubleshooting, data analysis, testing, research, statistical and survey purposes;
7. for fraud prevention and detection purposes.

Who we share your personal information with

Where necessary, we will share the personal information you gave us for the purposes of providing you with the goods and services you requested with the types of organisations described below:
- associated companies including, suppliers and service providers;
- professional advisers;
- regulatory and legal bodies; and
- credit management organisations
Or, in order to meet our legal or regulatory requirements, with the types of organisations described below:
- regulatory and legal bodies;
- central government or local councils; and
- law enforcement bodies, including investigators;

How we use your personal information for websites and email communications

When you visit one of our websites we may collect information from you such as your email address or IP address. This helps us to track unique visits and monitor patterns of customer website traffic, such as who visits and why they visit.

We use cookies and/or pixel tags on some pages of our website. A cookie is a small text file sent to your computer. A pixel tag is an invisible tag placed on certain pages of our website but not on your computer. Pixel tags usually work together with cookies to assist us to provide you with a more tailored service. This allows us to monitor and improve our email communications and website. Useful information about cookies, including how to remove them, can be found on our websites.

How we transfer your personal information to other countries

Where we transfer your personal information to countries that are outside of the UK and the European Union (EU) we will ensure that it is protected and that the transfer is lawful. We will do this by ensuring that the personal information is given adequate safeguards by using 'standard contractual clauses' which have been adopted or approved by the UK and the EU, or other solutions that are in line with the requirements of European data protection laws.

A copy of our security measures for personal information transfers can be obtained from our Data Protection Officer at: Zurich Insurance Group, Tri-centre 1, Newbridge Square, Swindon, SN1 1HN, or by emailing the Data Protection Officer at GBZ.General.Data.Protection@uk.zurich.com.

How long we keep your personal information for

We will retain and process your personal information for as long as necessary to meet the purposes for which it was originally collected. These periods of time are subject to legal, tax and regulatory requirements or to enable us to manage our business.

Your data protection rights

You have a number of rights under the data protection laws, namely:
- to access your data (by way of a subject access request);
- to have your data rectified if it is inaccurate or incomplete;
- in certain circumstances, to have your data deleted or removed;
- in certain circumstances, to restrict the processing of your data;
- a right of data portability, namely to obtain and reuse your data for your own purposes across different services;
- to object to direct marketing;
- not to be subject to automated decision making (including profiling), where it produces a legal effect or a similarly significant effect on you;
- to claim compensation for damages caused by a breach of the data protection legislation.
- if we are processing your personal information with your consent, you have the right to withdraw your consent at any time.

We will, for the purposes of providing you with a contract of insurance, processing claims, reinsurance and targeted marketing, process your personal information by means of automated decision making and profiling where we have a legitimate interest or you have consented to this.

What happens if you fail to provide your personal information to us

If you do not provide us with your personal information, we will not be able to provide you with a contract or assess future claims for the service you have requested.

Fraud Prevention and Detection

In order to prevent and detect fraud we may at any time:
a)   check your personal data against counter fraud systems;
b)   use your information to search against various publicly available and third party resources; use industry fraud tools including undertaking credit searches;
c)   share information about you with other organisations including but not limited to the police and other interested parties.

If you provide false or inaccurate information and fraud is identified, the matter will be investigated and appropriate action taken. This may result in your case being referred to the Insurance Fraud Enforcement Department (IFED) or other police forces and fraud prevention agencies. You may face fines or criminal prosecution. In addition, Zurich may register your name on the Insurance Fraud Register, an industry-wide fraud database.