PRIVACY NOTICE

MGB Insurance Brokers Limited

Privacy Notice

 

MGB Insurance Brokers Limited (MGB) is an insurance broker whose main service is the arranging of insurance policies.  We also assist clients in the handling of claims made on those policies.

In order for us to arrange a policy we need to collect and process certain information about the policyholder and those covered by the policy. Similarly, in order to administer a claim we need to collect and process certain information about claimants and other parties involved in the claim.  The insurance lifecycle may involve the sharing of your personal data with other insurance market participants, some of which you may not have direct contact with.

MGB takes its responsibilities to protect your personal data very seriously.  This privacy notice helps you, and other parties involved, understand how we process the personal data we receive, sets out the legal basis and purpose behind our requirement to receive the information and identifies those that we share it with and why. You can find out more information about this below under ‘What information we collect about you’ and from the Insurance Market Core Uses Information Notice, issued by the Lloyd’s Market Association (LMA).

 

Data Controller

MGB is the Data Controller in respect of the personal data it receives in carrying out its contractual services on behalf of its clients.

Full contact details are shown below in the section headed ‘Contact details for enquiries about this privacy notice or matters regarding your rights’.

 

Rights of Individuals

Rights under existing data protection legislation will be extended with the introduction of the General Data Protection Regulation (GDPR) on 25 May 2018.  Under this new legislation, subject to certain conditions and limitations, individuals will have the right to:

  • withdraw consent; where you have provided consent to marketing or processing sensitive information

  • transfer your personal data to another Data Controller

  • have your personal data removed or deleted

  • have your personal data corrected if it is inaccurate

  • to restrict processing where your personal data is inaccurate or the processing is unlawful

  • to access your personal data and information around its processing

  • not be subject to automated decision making and profiling

  • object to direct marketing

Certain rights (erasure, restriction of processing, objecting to processing, removal of consent), if exercised, may prevent us administering a policy or claim and may lead to its termination. Regulatory and legal requirements may also prevent the exercising of some rights. We will advise you of this at the time of your request.  Other rights (access, rectification and portability) may only be exercised where they do not adversely impact the rights of others, are legitimate and can be effected without undue burden or cost.

 

What information do we collect?

Personal Data

Categories of data

Type of information processed

Where the data comes from

Who we disclose the data to

Purpose of processing

Lawful basis of processing

Individual Information 

Name, address, marital status, date and place of birth, nationality, employer, job title, employment history, family details and their relationship to you 

Insurance intermediaries or other insurance market participants

Your family

Your employer

Credit reference agencies

Other intermediaries or market participants, Insurers and Companies within the Insurer’s Group and their agents (e.g. auditors) 

 

Reinsurers

Our agents and brokers

Credit reference agencies

Sanction checking service providers

Auditors

Anti-fraud databases 

Ombudsman

Setting up as a client including possible fraud, sanctions, credit and anti- money laundering checks

Policy administration and complaint handling

Claims handling 

Marketing

Business continuity and disaster recovery

Effecting payments

Contract

Legal obligation

Legitimate interest

Consent

 

Policy Information 

Information about the quotes you receive and the policies you take out

Insurance intermediaries or other insurance market participants

Your family

Your employer.

Credit reference agencies

 

Other intermediaries or market participants, Insurers and Companies within the Insurer’s Group and their agents (e.g. auditors)

Reinsurers

Our agents and brokers

Credit reference agencies

Anti-fraud databases

Managing you as a client including communication, collecting any appropriate premium

Claims handling

Policy administration and complaint handling 

 

Contract

Legal obligation

Legitimate interest

Consent

Financial Information 

Premiums and claims paid on your policies

Bank account or payment card details

Income and other financial information

Insurance intermediaries or other insurance market participants

Your family

Your employer

Credit reference agencies

 

Other intermediaries or market participants, Insurers and Companies within the Insurer’s Group and their agents (e.g. auditors)

Reinsurers

Our professional advisers, agents, third party service providers, agents and brokers

Credit reference agencies

Anti-fraud databases

Other intermediaries or market participants

Credit reference agencies

Anti-fraud databases

Ombudsman

Collecting and returning any appropriate premium

Payment of claims and related expenses

Policy adminsitration and complaint handling

Contract

Legitimate interest

 

Statutory and anti- fraud information

Name, date of birth, address, credit history, credit score, sanctions and information from anti-fraud databases concerning you   

Insurance intermediaries or other insurance market participants

Your family

Your employer

Credit reference agencies

Anti-fraud databases, sanctions lists, court judgements and other agencies and professional bodies

 

Other intermediaries or market participants, Insurers and Companies within the Insurer’s Group and their agents (e.g. auditors)

Our professional advisers, agents, third party service providers, agents and brokers

Credit reference agencies

Anti-fraud databases

Auditors

Ombudsman

Regulators and law enforcement authorities

Setting you up as a client including possible fraud, sanctions, credit and anti- money laundering checks  

Contract

Legal obligation

 

Claim Information

Information about previous and current claims

Insurance intermediaries or other insurance market participants

Family and employers

Credit reference agencies

Anti-fraud databases, claimants, defendants, witnesses, experts including medical experts, loss adjustors, solicitors and claims handlers

Other intermediaries or market participants, Insurers and Companies within the Insurer’s Group and their agents (e.g. auditors)

Our professional advisers, agents, third party service providers, agents and brokers

Credit reference agencies

Anti-fraud databases

Managing insurance and claims

Claims handling

Administering regulatory and sanction checks

Administering complaints

Contract

Legal obligation

Compliance with a legal obligation

 

 

 

Special Categories of Data

Categories of data

Type of information processed

Source of the data 

Who we disclose the data to

Purpose of processing

Lawful basis of processing

Individual Information 

Health information and medical reports  

Insurance intermediaries or other insurance market participants

Your family

Your employer

Credit reference agencies

Anti-fraud databases, sanctions lists, court judgements, other government agencies and professional bodies

 

Other intermediaries or market participants, Insurers and Companies within the Insurer’s Group and their agents (e.g. auditors)

Our professional advisers, agents, third party service providers, agents and brokers

Credit reference agencies

Anti-fraud databases

Auditors

Ombudsman

 

 

 

 

 

 

 

 

 

 

 

 

Setting you up or managing you as a client

Claims handling

Policy administration and complaint handling

Legal Obligation

Consent

Legitimate interest

Categories of data

Type of information processed

Source of the data 

Who we disclose the data to

Purpose of processing

Lawful basis of processing

Statutory and anti- fraud information

Criminal records and convictions

 

Insurance intermediaries or other insurance market participants

Your family

Your employer

Credit reference agencies

 

Other intermediaries or market participants, Insurers and Companies within the Insurer’s Group and their agents (e.g. auditors)

Our professional advisers, agents, third party service providers, agents and brokers

Credit reference agencies

Anti-fraud databases

Auditors

Ombudsman

Regulators and law enforcement authorities

 

Setting you up as a client including possible fraud, sanctions, credit and anti- money laundering checks  

Contract

Legal Obligation


Use of Consent

In order to arrange insurance cover and administer insurance claims, in certain circumstances we may need to process special categories of personal data, such as medical records and criminal convictions.  To do this we require your consent.  This consent may not have been given to us directly but may have been given through another party.

This consent allows us to share the information with insurers, intermediaries and reinsurers that need to process the information in order to undertake their role in the insurance market.

Where you are providing us with information about a person other than yourself, you agree to notify them of our use of their personal data and to obtain such consent for us.

Individuals may withdraw their consent to such processing at any time by contacting MGB using the contact details shown below in the section headed ‘Contact details for enquiries about this privacy notice or matters regarding your rights’. However, doing so may prevent MGB from continuing to provide the services to the relevant client. In addition, if an individual withdraws consent to an insurer’s or reinsurer’s processing of their special categories of personal data and criminal records data, it may not be possible for the insurance cover to continue.

 

How we protect your information 

Your privacy is important to us and MGB has in place a number of controls to prevent unauthorised or unlawful processing or the accidental loss, destruction or damage of your information.  These controls cover both electronic and procedural techniques and include firewalls, encryption, virus and malware protection, regular system testing and staff training.

Those organisations we share personal data must follow strict security and organisational procedures in the processing, storage, destruction and disclosure of your information

 

Data retention

Your personal data will only be kept for as long as it is necessary for the purpose it was collected for.  Retention periods are based on business considerations and any legal or regulatory requirements.

 

Transfer of personal data outside the EEA

Insurers and reinsurers can be UK or EU based and they can have Group companies worldwide. The insurers and reinsurers are responsible for complying with the EU GDPR or equivalent.

We will not transfer personal data to any other recipients in other countries that do not provide an adequate level of data protection.  Personal data may be disclosed to intermediaries, insurers, reinsurers, surveyors, lawyers, claims and risk assessors, auditors, bankers, regulators, ombudsman, Lloyd’s, transaction processors and those support contractors that maintain internal operating systems, some of whom may be outside the EEA. Further details can be obtained by contacting us. 

 

Contact details for enquiries about this privacy notice or matters regarding your rights

If you have any questions or comments relating to this privacy notice or MGB’s data protection policies generally, or if you wish to exercise any of your rights under the GDPR legislation, please address them to:

Data Privacy Section

MGB Insurance Brokers Limited

Queen Elizabeth House

4 St Dunstan’s Hill

London

EC3R 8AD

 

Email: dataprivacy@mgbib.com

 

Complaints

If you are unhappy with any response or have a complaint in relation to your data privacy please refer this matter to the Information Commissioner’s Office at

Wycliffe House

Water Lane

Wilmslow

Cheshire

SK9 5AF 

 

Telephone:0303 123 1113

Website:www.ico.org.uk

 

Cookies policy

Cookies are information packets sent by web servers to web browsers, and stored by the web browsers. The information is then sent back to the server each time the browser requests a page from the server. This enables a web server to identify and track web browsers. There are two main kinds of cookies: session cookies and persistent cookies. Session cookies are deleted from your computer when you close your browser, whereas persistent cookies remain stored on your computer until deleted, or until they reach their expiry date.

Cookies on our website
We only use session cookies for the purpose of effecting transactions through our website, all cookies utilised during the transaction process are deleted from your computer when you close your browser.

Refusing cookies
Most browsers allow you to refuse to accept cookies. Blocking cookies will have a negative impact upon the usability of some websites. Blocking cookies from our site will prevent you from being able to process transactions, and the site will not work as intended.

 

Links to other websites

Our website may contain links to other third party websites. If you follow a link to any of those third party websites, please note that they have their own privacy policies and that we do not accept any responsibility or liability for their policies or processing of your personal information. Please check these policies before you submit any personal information to such third party websites.

 

Changes to this privacy notice

This Privacy Notice is subject to change at any time. If we make changes to this privacy notice, we will publish the revised privacy notice on our website and we will update the date it was last changed. It was last changed on 23 May 2018.