MGB Insurance Brokers
Privacy Notice
Oxford Insurance Brokers, trading as MGB Insurance Brokers ("MGB) is an insurance broker whose main service is the arranging of insurance policies. We also assist clients in the handling of claims made on those policies.
In order for us to arrange a policy we need to collect and process certain information about the policyholder and those covered by the policy. Similarly, in order to administer a claim we need to collect and process certain information about claimants and other parties involved in the claim. The insurance lifecycle may involve the sharing of your personal data with other companies within MGB's group and with other market participants, some of which you may not have direct contact with
MGB takes its responsibilities to protect your personal data very seriously. This privacy notice helps you, and other parties involved, understand how we process the personal data we receive, sets out the legal basis and purpose behind our requirement to receive the information and identifies those that we share it with and why. You can find out more information about this below under ‘What information we collect about you’ and from the Insurance Market Core Uses Information Notice, issued by the Lloyd’s Market Association (LMA).
Data Controller
MGB is the Data Controller in respect of the personal data it receives in carrying out its contractual services on behalf of its clients.
Full contact details are shown below in the section headed ‘Contact details for enquiries about this privacy notice or matters regarding your rights’.
Rights of Individuals
Under data protection legislation, subject to certain conditions and limitations, individuals will have the right to:
withdraw consent; where you have provided consent to marketing or processing sensitive information
transfer your personal data to another Data Controller
have your personal data removed or deleted
have your personal data corrected if it is inaccurate
to restrict processing where your personal data is inaccurate or the processing is unlawful
to access your personal data and information around its processing
not be subject to automated decision making and profiling
object to direct marketing
Certain rights (erasure, restriction of processing, objecting to processing, removal of consent), if exercised, may prevent us administering a policy or claim and may lead to its termination. Regulatory and legal requirements may also prevent the exercising of some rights. We will advise you of this at the time of your request. Other rights (access, rectification and portability) may only be exercised where they do not adversely impact the rights of others, are legitimate and can be effected without undue burden or cost.
What information do we collect?
Personal Information
Categories of data | Type of information processed | Where the data comes from | Who we disclose the data to | Purpose of processing | Lawful basis of processing |
Individual Information | Name, address, marital status, date and place of birth, nationality, employer, job title, employment history, family details and their relationship to you | Insurance intermediaries or other insurance market participants
Your employer
Credit reference agencies | Other intermediaries or market participants, Insurers and Companies within the Insurer’s Group and their agents (e.g. auditors)
Reinsurers
Our agents and brokers
Credit reference agencies
Sanction checking service providers
Auditors
Anti-fraud databases
Ombudsman | Setting up as a client including possible fraud, sanctions, credit and anti- money laundering checks
Policy administration and complaint handling
Claims handling
Marketing
Business continuity and disaster recovery
Effecting payments |
|
Policy Information | Information about the quotes you receive and the policies you take out | Insurance intermediaries or other insurance market participants
Your family
Your employer.
Credit reference agencies | Other intermediaries or market participants, Insurers and Companies within the Insurer’s Group and their agents (e.g. auditors)
Reinsurers
Our agents and brokers
Credit reference agencies
Anti-fraud databases | Managing you as a client including communication, collecting any appropriate premium
Claims handling
Policy administration and complaint handling | Contract
Legal obligation
Legitimate interest
Consent |
Financial Information | Premiums and claims paid on your policies
Bank account or payment card details
Income and other financial information | Insurance intermediaries or other insurance market participants
Your family
Your employer
Credit reference agencies | Other intermediaries or market participants, Insurers and Companies within the Insurer’s Group and their agents (e.g. auditors)
Reinsurers
Our professional advisers, agents, third party service providers, agents and brokers
Credit reference agencies
Anti-fraud databases
Other intermediaries or market participants
Credit reference agencies
Anti-fraud databases
Ombudsman | Collecting and returning any appropriate premium
Payment of claims and related expenses
Policy adminsitration and complaint handling | Contract
Legitimate interest |
Statutory and anti- fraud information | Name, date of birth, address, credit history, credit score, sanctions and information from anti-fraud databases concerning you | Insurance intermediaries or other insurance market participants
Your family
Your employer
Credit reference agencies
Anti-fraud databases, sanctions lists, court judgements and other agencies and professional bodies | Other intermediaries or market participants, Insurers and Companies within the Insurer’s Group and their agents (e.g. auditors)
Our professional advisers, agents, third party service providers, agents and brokers
Credit reference agencies
Anti-fraud databases | Auditors
Ombudsman
Regulators and law enforcement authorities
Setting you up as a client including possible fraud, sanctions, credit and anti- money laundering checks | Contract
Legal obligation |
Claim Information | Information about previous and current claims | Insurance intermediaries or other insurance market participants
Family and employers
Credit reference agencies
Anti-fraud databases, claimants, defendants, witnesses, experts including medical experts, loss adjustors, solicitors and claims handlers | Other intermediaries or market participants, Insurers and Companies within the Insurer’s Group and their agents (e.g. auditors)
Our professional advisers, agents, third party service providers, agents and brokers
Credit reference agencies
Anti-fraud databases | Managing insurance and claims
Claims handling
Administering regulatory and sanction checks
Administering complaints | Contract
Legal obligation
Compliance with a legal obligation |
Special Categories of Data
Categories of data | Type of information processed | Source of the data | Who we disclose the data to | Purpose of processing | Lawful basis of processing |
Individual Information | Health information and medical reports | Insurance intermediaries or other insurance market participants
Your family
Your employer
Credit reference agencies
Anti-fraud databases, sanctions lists, court judgements, other government agencies and professional bodies | Other intermediaries or market participants, Insurers and Companies within the Insurer’s Group and their agents (e.g. auditors)
Our professional advisers, agents, third party service providers, agents and brokers
Credit reference agencies
Anti-fraud databases
Auditors
Ombudsman | Setting you up or managing you as a client
Claims handling
Policy administration and complaint handling | Legal Obligation
Consent
Legitimate interest |
Categories of data | Type of information processed | Source of the data | Who we disclose the data to | Purpose of processing | Lawful basis of processing |
Statutory and anti- fraud information | Criminal records and convictions | Insurance intermediaries or other insurance market participants
Your family
Your employer
Credit reference agencies | Other intermediaries or market participants, Insurers and Companies within the Insurer’s Group and their agents (e.g. auditors)
Our professional advisers, agents, third party service providers, agents and brokers
Credit reference agencies
Anti-fraud databases
Auditors
Ombudsman
Regulators and law enforcement authorities | Setting you up as a client including possible fraud, sanctions, credit and anti- money laundering checks | Contract
Legal Obligation |
Use of Consent
In order to arrange insurance cover and administer insurance claims, in certain circumstances we may need to process special categories of personal data, such as medical records and criminal convictions. To do this we require your consent. This consent may not have been given to us directly but may have been given through another party.
This consent allows us to share the information with insurers, intermediaries and reinsurers that need to process the information in order to undertake their role in the insurance market.
Where you are providing us with information about a person other than yourself, you agree to notify them of our use of their personal data and to obtain such consent for us.
Individuals may withdraw their consent to such processing at any time by contacting MGB using the contact details shown below in the section headed ‘Contact details for enquiries about this privacy notice or matters regarding your rights’. However, doing so may prevent MGB from continuing to provide the services to the relevant client. In addition, if an individual withdraws consent to an insurer’s or reinsurer’s processing of their special categories of personal data and criminal records data, it may not be possible for the insurance cover to continue.
How we protect your information
Your privacy is important to us and MGB has in place a number of controls to prevent unauthorised or unlawful processing or the accidental loss, destruction or damage of your information. These controls cover both electronic and procedural techniques and include firewalls, encryption, virus and malware protection, regular system testing and staff training.
Those organisations we share personal data must follow strict security and organisational procedures in the processing, storage, destruction and disclosure of your information
Data retention
Your personal data will only be kept for as long as it is necessary for the purpose it was collected for. Retention periods are based on business considerations and any legal or regulatory requirements.
Transfer of personal data outside the EEA
Insurers and reinsurers can be UK or EU based and they can have Group companies worldwide. The insurers and reinsurers are responsible for complying with the EU GDPR or equivalent.
We will not transfer personal data to any other recipients in other countries that do not provide an adequate level of data protection. Personal data may be disclosed to intermediaries, insurers, reinsurers, surveyors, lawyers, claims and risk assessors, auditors, bankers, regulators, ombudsman, Lloyd’s, transaction processors and those support contractors that maintain internal operating systems, some of whom may be outside the EEA. Further details can be obtained by contacting us.
Contact details for enquiries about this privacy notice or matters regarding your rights
If you have any questions or comments relating to this privacy notice or MGB’s data protection policies generally, or if you wish to exercise any of your rights under the GDPR legislation, please address them to:
Data Protection
MGB Insurance Brokers
6 Bevis Marks
London
EC3A 7BR
Email: dataprivacy@mgbib.com
Complaints
If you are unhappy with any response or have a complaint in relation to your data privacy please refer this matter to the Information Commissioner’s Office at
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF
Telephone: 0303 123 1113
Website: www.ico.org.uk
Cookies policy
Cookies are information packets sent by web servers to web browsers, and stored by the web browsers. The information is then sent back to the server each time the browser requests a page from the server. This enables a web server to identify and track web browsers. There are two main kinds of cookies: session cookies and persistent cookies. Session cookies are deleted from your computer when you close your browser, whereas persistent cookies remain stored on your computer until deleted, or until they reach their expiry date.
Cookies on our website
We only use session cookies for the purpose of effecting transactions through our website, all cookies utilised during the transaction process are deleted from your computer when you close your browser.
Refusing cookies
Most browsers allow you to refuse to accept cookies. Blocking cookies will have a negative impact upon the usability of some websites. Blocking cookies from our site will prevent you from being able to process transactions, and the site will not work as intended.
Links to other websites
Our website may contain links to other third party websites. If you follow a link to any of those third party websites, please note that they have their own privacy policies and that we do not accept any responsibility or liability for their policies or processing of your personal information. Please check these policies before you submit any personal information to such third party websites.
Changes to this privacy notice
This Privacy Notice is subject to change at any time. If we make changes to this privacy notice, we will publish the revised privacy notice on our website and we will update the date it was last changed. It was last changed on 31 Janaury 2020.