By providing your personal information or the personal information
1.Our Privacy Principles
When we collect and use your personal information, we ensure we look after it properly and use it in accordance with our privacy principles set out below, keep it safe and will never sell it.
Our Privacy Principles
2. How do we collect your personal information?
Whilst there are a number of ways in which we collect your personal information, the two main ways we might collect personal information about you are from things you tell us yourself, and from things we ask other people or organisations to share with us. Things you tell us could include conversations we have on the phone, what you’ve written on an application form or if you post something on one of our forums. We might also collect information about you from other people and organisations, such as medical professionals and credit agencies. Please see below for a list of ways we collect your personal information:
We collect personal information directly from you:
We also collect your personal information from a number of different sources including:
o your family members where you may be incapacitated or unable to provide information relevant to your policy;
o medical professionals and hospitals;
o third parties such as companies who provide consumer classification for marketing purposes e.g. market segmentation data and;
o your Employer if you are part of an Employee Group Scheme
3. What personal information do we collect?
We might collect personal information, such as your contact details, information about your bank or credit cards. The information we collect depends on which product or service you’re interested in for example for medical insurance, we may ask you about you or your families' medical history. Please note, in certain
The information that we collect will depend on our relationship with you.
Where other people are named on your policy, we may ask you to provide the information below in relation to those people too, if this is relevant to your insurance.
As the data controller of your personal information, we may collect the following information about you:
o contact details such as name, email address, postal address and telephone number
o details of any other persons included on the policy where they are named on your policy and the relationship to you as
o lifestyle and social circumstances for example; your interests, such as whether you play a sport, your housing status and number of dependents
o identification information such as your date of birth, passport and driving licence
o financial information such as bank details, credit card details and information obtained as a result of our credit checks
o information relevant to your claim or your involvement in the matter giving rise to a claim
o details of bankruptcies and other financial sanctions such as HMRC investigations
o your marketing preferences
o details of your current or former physical or mental health
o details concerning sexual life or sexual orientation, for
o details regarding criminal offences, including alleged offences, criminal proceedings, outcomes and sentences (previous criminal convictions, bankruptcies and other financial sanctions such as County Court Judgements)
4. How do we use your personal information?
We mainly use your personal information to secure you with an insurance policy or benefits and to provide you with the right services based on your situation. So, if you have a problem, we make sure the right network of providers and specialists are in place and keep you safe from fraud. However,
there are a number of other reasons why we use your personal information;
please see below for a more detailed list of how we use your personal information.
We may process your personal information for a number of different purposes and these are set out in more detail in the below sub-sections. Under data protection laws we need a reason to use and process your personal information and this is called a legal ground. We have set out below the main
reasons why we process your personal information and the applicable circumstances when we will do so. When the personal information we process about you is classed as sensitive personal information (now known as ‘Special Categories’) (such as details about your health, sexual orientation or criminal offences) we must have an additional legal ground for such processing, or where appropriate, we apply a specific exemption for Insurance purposes.
legal claims or where we want to pursue any legal claims ourselves.
How does Medibroker use your information for Management Information purposes?
We use your personal information to help us understand our business and monitor our performance.
If you are a member of a group scheme, we may provide reports to your employer, or a parent company on the performance of the scheme and on the health of the workforce. The information we provide is anonymised which means you cannot be identified from the information.
How does Medibroker use your information for analytical purposes and to improve our products and services?
We may use your personal information for research and statistical analysis including general research into health-related areas and research about the services we provide. Where possible, we will anonymise such information. However, sometimes we may need to use your health information to do this and where we do, we will obtain your consent beforehand.
By analysing the information you provide we can tailor and improve our services to better suit our customer's needs.
How does Medibroker use your personal information to prevent, detect and investigate fraud?
To help keep premiums and costs down we work with insurers, healthcare providers, anti-fraud bodies and law enforcement agencies to protect ourselves and our clients
5. Who do we share your personal information with?
We might share your personal information with two types of organisation,
strictly confidential and will only be used for reasons that we’ve described.
Disclosures within our group
In order to provide our services
Disclosures to third parties
We may also disclose your personal information to other third parties where:
such as where there is a court order, statutory obligation or Financial Conduct Authority or Information Commissioners Office request; or
Some of the recipients set out above may be in countries outside of the EEA
Where we make a transfer of your personal information outside of the EEA we will take the required steps to ensure that your personal information is protected. Such steps may include placing the party we are transferring
Information to under contractual obligations to protect it to adequate standards.
6. How long do we keep records for?
7. Your Rights
You can ask us to do various things with your personal information. For example, at any time you can ask us for a copy of your personal information, ask us to correct mistakes, change the way we use your information, or even delete it. We’ll either do what you’ve
please see below:
You have the following rights in relation to our use of your personal information.
The right to access your personal information:
You are entitled to a copy of the personal information we hold about you and certain details of how we use it. There will not usually be a charge for dealing with these requests. Your personal information will usually be provided to you in writing, unless otherwise requested, or where you have made the request by electronic means, in which case the information will be provided to you by electronic means where possible.
The right to rectification:
We take reasonable steps to ensure that the personal information we hold about you is accurate and complete. However, if you do not believe this is the case, please contact us by using the details shown in your documentation and
you can ask us to update or amend it.
The right to erasure:
In certain circumstances, you have the right to ask us to erase your personal information, for example where the personal information we collected is no longer necessary for the original purpose or where you withdraw your consent. However, this will need to be balanced against other factors, for
and why we have collected it, there may be some legal and regulatory obligations which mean we cannot comply with your request.
In certain circumstances, you are entitled to ask us to stop using your personal information, for example where you think that the personal information we hold about you may be inaccurate or where you think that we no longer need to process your personal information.
Right to data portability:
In certain circumstances, you have the right to ask that we transfer any personal information that you have provided to us to another third party of your choice. Once transferred, the other party will be responsible for looking after your personal information.
Right to object to direct marketing:
You can ask us to stop sending you marketing messages at any time. Please see the Marketing section for more information.
Right not to be subject to automated-decision making:
Some of our decisions may be made automatically by inputting
your personal information into a system or computer and the decision is calculated using certain automatic processes rather than our employees/agents making those decisions.
You have a right not to be subject to automated decision-making in the circumstances described above and where automated decision-making used in the assessment of your application or fraud prevention, you can contact us to request that any declined decision is reconsidered.
If you want to opt out of automatic decision-making, let us know, although in some circumstances it may mean we can’t offer you a quote or policy as some automated decisions are necessary to provide your insurance policy.
The right to withdraw consent:
For certain uses of your personal information, we will ask for your consent. Where we do this, you have the right to withdraw your consent to further use of your personal information. Please note in some cases we may not be able to process your insurance if you withdraw your consent.
The right to lodge a complaint:
You have a right to complain to the ICO at any time if you object to the way in which we use your personal information.
More information can be found on the Information Commissioner’s Office
You can make any of the requests set out above using the contact details
provided to you in your policy documentation.
Please note that in some cases we may not be able to comply with your request for reasons such as our own obligations to comply with other legal or
regulatory requirements. However, we will always respond to any request you make and if we can't comply with your request, we will tell you why. In some circumstances exercising some of these rights will mean we are unable to continue providing you with cover under your insurance policy and may
conditions set out what will happen in the event your policy is cancelled.
You’re in control of how we use your information for marketing.
To keep you informed
We may share information between the April Group to inform you of other products and services that may be of interest to you or members of your
family, but we will only do this where you have provided your consent.
You can always change your mind by contacting us using the details shown in your documentation and telling us you no longer wish to be contacted.
From time to time we may run specific marketing campaigns through social
media and digital advertising that you may see which are based on general demographics and interests. Individual personal information is not used for these campaigns. If you do not want to see any campaigns then you will need to adjust your preferences within social media settings and your cookie browser settings.
Please note that we may retain any data provided to us on our websites for a limited period, even if you do not complete your quote. The information may be used to
9. Contact Details of the Data Protection Officer
If you wish to contact the Data Protection Officer the details are below:
The Data Protection Officer:
April Medibroker Ltd
Almondsbury Business Centre
10. Medibroker Company Details
Wherever the name “Medibroker” is used on the Website, this means April Medibroker Ltd a public company limited by shares incorporated in England and Wales with company number 3673450 and whose registered office is at April House, Almondsbury Business Centre, Bradley Stoke, Bristol, BS32 4QH, who is authorised and regulation by the Financial Conduct Authority, registered number 304773
11. Medibroker’s data privacy declaration
Your personal information can help us give you a better, more personalised service. Looking
Medibroker’s mission is to help you, our customers, live your lives with more peace of mind by protecting your family, your property and your lifestyle against risks. Doing so involves the collection of data so that we understand the nature of these risks that we cover for you, and that we may provide you with the right products and services to meet your needs. It also allows us to enhance your experience through tailor-made protection, more relevant information and