Privacy Policy
Our privacy policy updated for GDPR
Introduction
This notice provides you with information concerning our collection and use of personal data. If you have any queries regarding this statement, please do not hesitate to contact us.Legal basis
We collect, control and process your personal information because this is necessary to provide you with information, answer any queries you may have and for the provision of our services to you. Contractual necessity is therefore the lawful basis for collecting, controlling and processing your personal details and those of your employees and service providers other than sensitive personal data for which we require individual consent. We do not normally request or process any sensitive personal data. Sensitive personal data:- Racial or ethnic origin
- Political opinions
- Religious or philosophical beliefs
- Trade union membership
- Genetic data
- Biometric data
- Data concerning health
- Data concerning sex life or sexual orientation
What data we collect & what do we do with it
Completing our initial enquiry form. If you contact us via the enquiry form on our website your data will be protected by a secure socket layer. This site is hosted at Hosting UK. For more information about how Hosting UK processes data, please see Hosting UK’s privacy policy (https://hostinguk.net/privacy-policy). If you enter details into our enquiry form these will be transmitted to us via email and temporarily stored on a Microsoft Hosted Exchange. Your email will also be processed on Office 365 in order for it to reach mobile devices. What we will do with your enquiry Once we have responded to your enquiry your data will be transferred to our local encrypted server located in the UK. Where communications are ongoing we will store your contact details on internal content management systems. Working with us We collect and use information about you, which will include personal data in order for us to advise you and make arrangements for you. In order to communicate with you about our services we will require your contact details including personal email addresses. Your name and email and information relating to the work we undertake for you will be processed and stored. All telephone calls are recorded and monitored for training and quality control purposes.Sharing your data
In order to fulfill our obligations under any contract for services we will need to share your data with third party Data Controllers and Data Processors. Data Controllers This will include- Product & service providers in relation to insurances and consumer credit.
- Our compliance monitoring services.
- The Financial Conduct Authority.
- The Financial Ombudsman Service.
- Any other regulators where so required.
- Solicitors and Loss Adjusters in the event of insurance claim being made by or against you. These Data Controllers may be acting either on your behalf or by a third party making a claim against.
- Credit reference agencies. You should be aware that any Credit check we undertake may leave a footprint on your credit history.
- Secure file sharing
- Data backup
- Communications
- Claims Management
- Marketing
- Record keeping
- Regulatory compliance
- Credit broking
| Processor | Type of processing & data |
| Google Analytics | We use google analytics to monitor the performance of our web site |
| Dropbox | We use Dropbox to securely share files and documents that contain or may contain personal data pertinent to the work we undertake for clients and for our staff. |
| Mailchimp. | We use MailChimp in order to efficiently send email updates to you as part of our ongoing services. Your name and email address are stored to facilitate this. |
| Back office system | We use ‘The Agency Manager (TAM)’ & CSR24 supplied by Applied Systems Ltd to manage your insurances |
| Call recording system | TIM (Tri Line) to record all telephone conversations |
| Consumer Credit | We use the ‘i-Prompt’ portal provided by Close Brothers Premium Finance or the portal operated by Premium Credit Ltd to manage any Consumer Credit we may have arranged in respect of your insurances. |
| Off site Data Back-ups | We back-up the data our our In-house servers to secure servers operated by Vapour Media Ltd. This is to prevent the loss of data in the event of a Data Protection incident affecting our In-house servers and to enable us to maintain continuity of service to our customers with minimal disruption. This contract is managed by Pure Techology Ltd on our behalf. |
| Banking Arrangements | We use the ‘Bankline’portal provided by our Bankers National Westminster Bank Ltd to manage our electronic banking facilities. |
| Sanctions List Checks | We are required to confirm that our customers are not on the Sanctions List maintained by HM Treasury and other overseas authorities. We use SanctionsSearch provided by Professional Office Ltd to undertake these checks both on initial appointment and on an ongoing basis whilst we act on your behalf. |
| Secure e-mail | Mimecast and RPost We use these to communicate securely with you. |
| CSR24 | We use a secure online portal for clients to view and download their confidential documents. |
| ClickSend | We use an email to SMS system to contact our clients on their mobile devices. |
| Claims Control | We use this to manage and monitor the progress of claims that we handle on behalf of our customers. |
| Call Pro | We use this to manage and monitor our markeying contacts with prospective clients. |