Security and privacy

Introduction

At Privilege we are aware of the trust you place in us when you buy our products and our responsibility to protect your information. This notice describes who we are, why we need to collect your information and how we will use it. We will tell you who we share your information with and how we use it to improve the service we provide to our customers.

Privacy

Why we need your information

We need your information and that of others you name on the policy to give you quotations, and manage your insurance policy, including underwriting and claims handling. Your information comprises of all the details we hold about you and your transactions and includes information we obtain about you from third parties. We will only collect the information we need so that we can provide you with the service you expect from us.

How we will use your information and who we will share it with

Privilege insurance policies are underwritten by U K Insurance limited (UKI), who owns the brands Privilege, Direct Line, Churchill and Green Flag. When you give us your information, it will be used and shared within UKI for all of its own branded products. We will do that in order to provide you with the best possible products and service experience.

  • During the course of our dealings with you we may need to use your information to:
  • Assess financial and insurance risks
  • Prevent and detect crime including anti money laundering and financial sanctions
  • To comply with our legal and regulatory obligations,
  • Develop our products, services, systems and relationships with you,
  • Record your preferences in respect of products and services,
  • Recover any debt or if you have any outstanding debt from previous dealings with us we will only offer you a policy upon settlement of the full outstanding amount,
  • Review our records for signs of any previous fraudulent activity which may affect our ability to offer you cover.

In carrying out the actions above we may:

  • Use the information we hold in our system about you and that of others named on the policy (for example named drivers, joint policy holders)
  • Share the information with agencies that carry out certain activities on our behalf (for example marketing agencies or those who help us underwrite your policy)
  • Use and share your information with our approved suppliers where this is reasonably required to help deal with your claim or let you benefit from our replacement vehicle and policyholder services, including with our credit hire providers, replacement vehicle suppliers, vehicle repairers and legal advisors
  • Disclose some of your information and that of others named on the policyto other insurers, third party underwriters, reinsurers, credit reference, fraud prevention, regulators and law enforcement agencies and other companies that provide service to us or you.

We do not disclose your information to anyone outside the Group except where:

  • We have your permission,
  • We are required or permitted to do so by law,
  • We may transfer rights and obligations under this agreement.

Where we transfer your information

From time to time we may require services from suppliers that are based worldwide and your information will be shared with them for the purposes of providing that service. Where we engage these suppliers we require that they apply the same levels of protection, security and confidentiality we apply. However, such information may be accessed by law enforcement agencies and other authorities to prevent and detect crime and comply with legal obligations.

Sensitive Information

Some of the personal information we ask you for may be sensitive personal information, as defined by the Data Protection Act 1998 (such as information about health or criminal convictions). We will not use such sensitive personal data about you or others except for the specific purpose for which you provide it and to provide the services described in your policy documents.

Dealing with other people

It is our policy to deal with your spouse or partner who calls us on your behalf, provided they are named on the policy. Please tell us who they are when you take out your policy. If you would like someone else to deal with your policy on your behalf on a regular basis please let us know. In some exceptional cases we may also deal with other people who call on your behalf, with your consent. If at any time you would prefer us to deal only with you, please let us know.

Keeping you informed

From time to time we may contact you with special offers or suggest products which may be of interest to you. If you would like not to receive any of these updates you can ask us to stop at any time. You can do that by simply calling our customers services department or by writing to Data Protection Officer at, UKI, Churchill Court, Westmoreland Road, Bromley, BR1 1DP

From time to time we may need to change the way we use your information. Where we believe you may not reasonably expect such a change we will write to you. When we do so, you will have 60 days to object to the change but if we do not hear from you within that time you consent to that change.

Fraud Prevention and Anti-Money Laundering


Please take time to read the following as it contains important information relating to the details you have given or should give to us. You should show this notice to anyone whose data has been supplied to us in connection with your policy.

To prevent and detect fraud we may at any time:

Share information with other organisations and public bodies including the police although we only do so in compliance with the Data Protection Act 1998

Check and/or file details with fraud prevention agencies and databases and if we are given false or inaccurate information and we identify fraud, we will record this. We and other organisations may also use and search these agencies and databases from the UK and other countries to:

  • Help make decisions about the provision and administration of insurance, credit and related services for you and members of your household,
  • Trace debtors or beneficiaries, recover debt, prevent fraud, and to manage your accounts or insurance policies,
  • Check your identity to prevent money laundering, unless you provide us with other satisfactory proof of identity.

Law enforcement agencies may access and use this information.

We and other organisations may also access and use this information to prevent fraud and money laundering, for example when:

  • Checking applications for, and managing credit and other facilities and recovering debt,
  • Checking insurance proposals and claims,
  • Checking details of job applicants and employees.

We, and other organisations that may access and use information recorded by fraud prevention agencies, may do so from other countries.

We can provide the names and addresses of the agencies we use if you would like a copy of your information held by them. Please contact: Data Protection Officer at, UKI, Churchill Court, Westmoreland Road, Bromley, BR1 1DP quoting your reference. The agencies may charge a fee.

Financial Sanctions

We will use information about you and that of others named on your policy to ensure compliance with financial sanctions in effect in the UK and internationally. This will include the checking of your information against the HM Treasury list of financial sanctions targets as well as other publically available sanctions lists. Your information and that of others named on policy may be shared with HM Treasury and other international regulators where appropriate. You may also be contacted in order to provide further details in order to ensure compliance with Financial Sanctions requirements.

Credit Reference Agencies

We carry out credit searches to evaluate insurance risks.
Depending on your credit agreement with us, if you choose to pay your premiums by instalment, we will exchange your information with credit reference agencies to reflect your credit application, both at new business and any subsequent renewals and this will be visible to other credit providers. Failure by you or anyone who pays your premium on your behalf to keep up your monthly payments will be reflected in your credit score.

Access to your information

You have the right to see the information we hold about you. This is called Subject Access Request. If you would like a copy of your information, please write to:Data Access Team at, UKI, Churchill Court, Westmoreland Road, Bromley, BR1 1DP quoting your reference. A fee may be payable.

Motor Insurance Database

Information relating to your policy will be added to the Motor Insurance Database (MID) managed by the Motor Insurers’ Bureau (MIB). The MID and the data stored on it may be used by certain statutory and/or authorised bodies including the Police, the DVLA, the DVANI, the Insurance Fraud Bureau and other bodies permitted by law for purposes not limited to but including:

  • Electronic Licensing (Tax Discs),
  • Continuous Insurance Enforcement,
  • Law enforcement (prevention, detection, apprehension and/or prosecution of offenders),
  • The provision of government services and/or other services aimed at reducing the level and incidence of uninsured driving.

If you are involved in a road traffic accident (either in the UK, the EEA or certain other territories), insurers and/or the MIB may search the MID to obtain relevant information.

Persons (including his or her appointed representatives) pursuing a claim in respect of a road traffic accident (including citizens of other countries) may also obtain relevant information which is held on the MID.

It is vital that the MID holds your correct registration number. It is our responsibility to update your policy to the MID. We fully comply with the agreements in place with the MIB to update your details within seven days; however it is important that you check your policy documents ensuring that the registration number is recorded correctly.

If it is incorrectly shown on the MID you are at risk of having your car seized by the Police. You can check that your correct registration number is shown on the MID at www.askMID.com.

If the registration number is not shown correctly on your policy documents, or you cannot find your car on the MID, please contact us immediately.

Data Storage Security

Any personal information saved is held safely on our mainframe computer, with security systems preventing unauthorised access and we always ensure it is treated confidentially.

We take security very seriously and we use one of the strongest available security systems to protect your communications with us. Whenever you fill in an online form, such as a request for a quote, it is automatically protected using something called a Secure Socket Layer (SSL) between your computer and ours. SSL works in the following ways:

It prevents impersonation - you can tell that you are using a genuine SSL site by the padlock symbol at the bottom of the screen. Clicking on either the padlock or the image below will reveal our Registration Certificate that is issued by Verisign, a leading Internet security company.

It encrypts data - as soon as your computer has recognised our computer they encrypt all information that is passed between them. Data encryption means that no one else can read or change your information as it travels over the Internet.

It prevents scrambling - SSL uses a Message Authentication Code (MAC) to prevent anyone tampering with our Internet site. Your computer will always check this code before it takes a message from us. This means that if anyone tried to interfere with a message, your computer would not recognise the code and would alert you.

We are aware that there are two minor problems with Microsoft Internet Explorer. Neither problem has any effect on the actual security in force on the Site, but may make it appear to you as if it is not fully secure.

Internet Explorer 4: The padlock symbol does not always appear at the bottom when it should. A full description of this error, number Q154621, is at http://www.support.microsoft.com/support/kb/articles/Q154/6/21.asp.

Internet Explorer 5: If you click on the padlock symbol to view the security certificate the following message may be displayed: "This certificate has failed to verify for all of its intended purposes". The other details of the certificate shown are correct. A full description of this error, number Q233479, is at http://www.support.microsoft.com/support/kb/articles/Q233/4/79.asp.

Log In Security

We would like to remind you to keep any log in details and passwords you have secure at all times. Security details should only be entered on our secure website. We may use e-mail to direct you to a secure log in page on our Site or, where consent is given, to inform you of other products, but we will never ask you to reveal or send your security details to us via email.

Please be on your guard for suspicious e-mails. If you do receive an email asking you to submit account or security details (such as a credit card number, password or PIN number) or if you are suspicious in any way of any communication you are asked to provide over the internet in connection with Privilege please contact us by phone on 0345 246 0787 if your call relates to Financial Services or on 0208 313 5861 if it relates to an insurance product.

Call monitoring and recording

We record telephone calls for monitoring and training purposes and to assist us in preventing and detecting fraud.

Further information

You are entitled on payment of a fee of £10 to receive a copy of the personal information we hold about you. If you would like more information about the personal information we hold about you please contact the Data Protection Officer. The address details are set out in the "What we do with your information" section of the terms and conditions for each particular product.

If you require further information about the contents of this privacy policy please write to the Data Protection Officer, Churchill Court, Westmoreland Road, Bromley, BR1 1DP.