Privacy Notice
This privacy notice is issued by Altea trading as Mission Underwriting UK Ltd (“we”; “us” and “our”) and relates to our use of personal data (referred to as “data”) concerning living persons.
Do we process personal data?
- We may process data about the following categories of persons (collectively “Insurance Contacts”):
- Insured persons, insurance applicants and policyholders (“Insureds”);
- Beneficiaries and other persons named in the insurance policy (“Beneficiaries”);
- Persons filing a claim under an insurance policy (“Claimants”);
- Persons who serve as a witness in light of an insurance claim (“Witness”);
- And any other person who has had dealings with the Insured in respect of the Insured’s financial interest in their insurance policy.
Additionally, we may process data from the following categories of persons other than Insurance Contacts:
- Individuals working for one of our business partners (“Business Contacts”);
- Individuals who otherwise interact with us online or offline, for instance by visiting our offices or filing a general request for information via our website (“General Contacts”); and
- Individuals who use and visit our website (“Website Visitors”).
In each case, we respect your privacy rights and your rights as a data subject. We will manage and protect your data accordingly, whilst it is in our control, in accordance with all applicable data protection legislation and in accordance with this privacy notice.
Who is the Data Controller?
We are registered with the Information Commissioner’s Office in the UK, as a data controller, under the registration number of Z8883427. We can be contacted at the following address:
Mission Underwriting UK Ltd
One Fleet Place
London
EC4M 7WS
Who is the Data Protection Officer?
For enquiries relating to how your data is processed, you can contact us at the following address:
How will we use your data?
We will use data in the normal course of business to:
- Administer insurance policies.
- Underwrite insurance policies (including aggregating data with other similar data for actuarial purposes).
- Handle claims on insurance policies for Claimants.
- Deal with any complaints that you may have.
- Verify your identity.
- Confirm with third parties that you have received insurance cover.
- Provide you with risk management products and services from time to time
- [Where we have a legal basis to do so;] help us to identify and market products that may be of interest to you.
- Detect and prevent financial crime.
We may use your data, in the course of our business, for the prevention and detection of fraud. Where we suspect fraud, this may entail:
- Sharing your data with public bodies including the Police.
- Undertaking fraud searches.
- Checking your data against fraud prevention databases.
What is the purpose of data processing?
For persons who are Insurance Contacts; we require to process your data in order to arrange and administer a contract of insurance between the Insured and Accelerant Insurance Europe SA (“the Insurer”).
The legal basis for processing your data is as follows:
- Processing data is necessary for the arrangement of the insurance contract between the Insured and the Insurer; and the insurer’s performance of the insurance contract which you will be party to.
- Processing your data is necessary for our compliance with certain legal obligations (such as the detection and prevention of financial crime).
- Processing your data is necessary in pursuit of our and the Insurer’s legitimate interests in arranging the Insured’s insurance contract [and does not prejudice your rights].
How did we receive your data?
- If you are an Insured; we will have received your data from an insurance broker arranging insurance either on your behalf or on behalf of an Insurer.
- On occasion, we may also receive/collect your personal data directly from you, such as when you are a Website Visitor or where you are otherwise in direct contact with us. We may also receive your personal data from the following sources:
- Persons and companies you are affiliated with or related to including your family members, employer or representative;
- Credit reference agencies;
- Reinsurance companies and other third-party insurance companies with whom you have, had, are applying for, or have filed a claim under an insurance policy;
- Anti-fraud databases (such as Claims and Underwriting Exchange (CUE) and Motor Insurance Anti-Fraud Theft Register (MIAFTR) databases), sanctions lists, court judgements and other public databases;
- Government agencies (such as the Driver and Vehicle Licensing Agency and HM Revenue and Customs);
- Open electoral registers and other publicly available registers such as company registers; Supervisory, regulatory and other public authorities;
- In the event of a claim, third parties including the other party to the claim (claimant/defendant), witnesses, experts (including medical experts), loss adjustors, external counsel, and claims handlers;
- Service providers such as organisations operating our website; and
- Other public and non-public sources including information that is publicly available online.
What types of data do we process?
The data we process may include:
- Names
- Contact details
- Professional details (occupation; trade, business or profession)
- Financial details
- Identification details
- Special categories of personal data (where permitted under applicable law).
- In the case of Website Visitors; IP addresses (for data other than personal data; see our cookie policy).
Will we use automatic decision-making or profiling?
We use a variety of technologies in calculating risk and insurance premiums and to compare insurance risks against industry averages and patterns. This is considered profiling and/or automated decision-making and is necessary to enter into a contract with you – to confirm that the premium amount reflects and adequately matches the associated risk – and/or is authorised under applicable law. As a result of these profiling activities, you may be offered a different insurance policy and/or premium, or even be refused insurance. You have certain rights in relation to automated decision-making in some circumstances (see below).
Profiling may also be used by brokers acting on our behalf to assess information relating to you, to identify and have a good understanding of fraud patterns. Where special categories of personal data are relevant, (such as medical history or past criminal convictions) for certain types of insurance, such special categories of personal data may also be used for profiling. However, in this case we ask for your prior explicit consent (unless we can rely on a basis in applicable law to process this data for profiling purposes).
Will third parties receive your data? What are their interests?
We share your personal data with other entities within our Group. Employees only have access to and process data where such access and processing is necessary for such employees to perform the tasks and responsibilities allocated to them; with suitable organisational and technical measures being put in place to safeguard this.
We also share your personal data with the following categories of third parties:
- Our service providers (e.g. IT vendors supporting our information security and technology, external counsel and other legal advisors, consultants, auditors, website and data hosting providers, marketing agencies, accountants, etc.);
- Governmental authorities including our supervisory regulatory authorities and law enforcement agencies;
- Business Contacts;
- Contractors, brokers or financial institutions; and
- Other third parties (i) upon your request; (ii) to protect and defend our rights and properties; (iii) to detect and/or prevent fraud or money laundering (including Claims and Underwriting Exchange (CUE) and Motor Insurance anti-fraud theft registers; (iv) in the event of a sale, merger or reorganisation of our assets or other restructuring; and/or (v) where we are, or believe in good faith that we are, under a legal obligation to share your data.
How long will we keep your data?
Your data will be retained only for as long as is necessary for us to effectively administer your policy of insurance. This means that your data will be retained until claims under your policy are barred; or as long as is necessary to defend against legal claims; or for as long as is required by law; whichever period is the longest.
What are Your rights to the data?
As a data subject, you have rights with respect to the processing of your personal data under our control as follows:
Access
You may ask us what personal data we process and request copies of such personal data. This is limited to personal data only and does not include commercial data such as underwriting data.
Rectification
You may ask us to rectify or update personal data that is inaccurate or incomplete.
Erasure
You may ask us to delete your personal data in certain instances (for example, where the data is no longer necessary for the purpose for which it was originally collected or processed; or there is no longer a legitimate interest for us to process the data).
Restriction of processing
Under certain circumstances (such as when you question the accuracy of the personal data we hold on you or the lawfulness of its processing) you may request us to stop processing such data until your request is resolved.
Data portability
In certain cases, you may ask us to send an electronic copy of your personal data directly to you or to another organisation.
Object
You may object to any processing of your personal data, including profiling, based on the ground of legitimate interest.
Withdraw consent
In circumstances where our processing of your data is based on consent, you may at any time withdraw your consent, however this will not affect any processing we did before withdrawal (this right only applies where consent was the basis of processing your data in the first instance).
Automated Decision-Making
You have rights where you are subject to a decision based wholly on automated processing (including profiling) which produces legal or similarly significant effects on you. This includes the right to obtain human intervention, to express your point of view and contest the decision.
Each of the rights set out above is subject to applicable privacy legislation and is not absolute.
In order to exercise the above listed rights, please contact our Data Protection Officer.
Can a complaint be made?
If you have any complaints about how we process your data, please first contact the Data Protection Officer, at the address provided above.
You also have the right to make a complaint to the Information Commissioner’s Office. The Information Commissioner’s Office can be contacted via its website https://ico.org.uk/concerns/ or -
Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire
SK9 5AF
Tel: 0303 123 1113
International Transfers
[We will transfer your data to third parties based outside the UK and European Economic Area. This is necessary for the purposes of administering out business and underwriting and claims processing purposes. These parties are also required to safeguard your personal data and use appropriate data security measures and are restricted from any further sharing of your data with other third parties without our prior authorisation, or unless as required by law.
Please contact our Data Protection Officer for details of the countries and types of organisations your personal data is transferred to and for information about the safeguards used to protect your data.]
Date updated [16/01/24]