Privacy And Security Policy

Who we are

Brightside Insurance Services Ltd is an independent insurance broker, which is authorised and regulated by the Financial Conduct Authority. Our registered office is located at Brightside Park, Severn Bridge, Aust, Bristol, BS35 4BL.

Back to top

Introduction

Brightside is committed to respecting your privacy and protecting the personal information that you share with us. You can be assured any information you provide to us will be used strictly in accordance with the terms laid out in this policy and complies with Data Protection laws.

This privacy policy explains how we collect and use your details, the laws and regulations that apply, the systems and services we use and how we detect and prevent crime such as fraudulent applications and claims.

We will do our best to ensure that your details are accurate and kept up-to-date and we would ask you to assist us in doing so by letting us know of any changes to your personal information. Keeping us up to date with changes to your information is also a requirement of many insurance contracts.

You should show this policy to anyone whose personal information you provide to us. You must ensure that any such information you supply relating to anyone else is accurate and that you have obtained their consent to the use of their data for the purposes set out above.

If you do not pay for your insurance, you must show these details to the person who paid on your behalf.

Back to top

Data Protection Laws

Data protection laws means the Data Protection Act 1998, as amended from time to time and EU General Data Protection Regulation (GDPR), and any subsequent, similar or equivalent legislation relating to the protection of personal, including sensitive data.

Please see www.ico.org.uk for our entry in the Information Commissioner's register of data controllers. Our registration number is Z5268008.

Please note that under the Rehabilitation of Offenders Act 1974 you're not required to disclose to us any convictions regarded as spent. Take a look at www.gov.uk/government/publications/new-guidance-on-the-rehabilitation-of-offenders-act-1974 for more information.

It is also an offence under the Road Traffic Act to make any false statements or to withhold information for the purpose of obtaining a Certificate of Motor Insurance.

Back to top

Our commitment to you

We will treat all your personal information as private and confidential. Other than under the terms of this privacy policy we will not share any of your information with anyone else. We are required to disclose information in the following cases by law. These are:

  • Where we are legally forced to.
  • Where there is a duty to the public to disclose information.
  • Where you have given permission to disclose information.
  • Where we have to protect our interest, including but not restricted to legal advice in the event of litigation.
Back to top

Collecting information

All personal information is treated confidentially and is safely stored, with security systems preventing unauthorised access.

In order to assess, arrange and administer an insurance contract, provide you with the best prices and reduce fraud, we collect and share information from a variety of sources and methods as detailed within this policy. If we are unable to have your consent for this or you subsequently withdraw your consent, then we may not be able to offer you insurance products or credit.

It's important that you provide complete, accurate and up to date information prior to purchasing, throughout the lifetime and when you renew an insurance policy. If you don't, your policy may be cancelled, or treated as if it never existed, or your claim rejected or reduced.

We collect information about you when:

  • You visit our websites.
  • You call us to obtain a quote and buy insurance.
  • You make changes, cancel or renew your insurance policy.

We limit the collection of personal information to what we need to know to maintain the accuracy of our records, verify the identity and assess the financial standing of customers, assess and arrange credit, handle claims, deal with complaints, re-engage with you if we lose contact, assist us in providing a high standard of service, and to fulfil any legal and regulatory requirements.

We may collect, use, store and transfer different personal information about you which we have grouped together below:

  • Identity Data includes [first name, last name, username or similar identifier, marital status, title, date of birth and gender].
  • Contact Data includes [address, email address and telephone numbers].
  • Financial Data includes [bank account and payment card details].
  • Transaction Data includes [internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access this website, further information is provided within our Cookie Section].
  • Technical Data includes [internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access this website, further information is provided within our Cookie Section].
  • Profile Data includes [your username and password, purchases or orders made by you, your interests, preferences, feedback and survey responses].
  • Usage Data includes [information about how you use our website, products and services].
  • Marketing and Communications Data includes [your preferences in receiving marketing from us and our third parties and your communication preferences].
  • Claims Data includes [Date of Claim, Claim Status, Value of Claim, NCB affected].

We may also collect data which the Data Protection Act defines as sensitive, such as:

  • Medical history includes [Medical Condition, Medications].
  • Criminal convictions includes [the offence committed, the date of conviction].

We will not use data regarded as sensitive data except for the specific purpose of arranging and administering an insurance policy. You may object to Brightside processing your information, however, Brightside will not be able to provide insurance, or comply with your request to object where Brightside have compelling legitimate grounds, or the processing is for the establishment, exercise or defence of legal claims.

Back to top

How we get information

When you visit our websites, technical information about the device and operating system used to access the site is recorded. Further detail regarding this technical information is explained in our Cookie section. We use this information to give us a better understanding of how you use and interact with our websites.

This information is stored and used for aggregated and statistical reporting and informs changes on how to improve your experience with us.

To provide you with best experience we may also use publically accessible sources such as the DVLA and postcode lookups to help populate some of the forms needed in the application process.

We also analyse the data we collect within quotes and applications to inform automated decision making, detect trends, including market research and profiling for the detection of fraud, determining pricing and credit options.

Back to top

Cookies

We use cookies to be able to distinguish you from other users of our sites. We use a number of different cookies to make the websites work and remember the choices you make.

Cookies are small, often encrypted text files placed on your computer by our websites or sometimes by emails. They are used by our web developers and digital team to provide us with useful information so you can use our site more efficiently and save you time by not having to re-enter your details each time you visit. They also make sure you receive the most relevant information from us.

Persistent cookies - These cookies stay on your computer until they are removed manually or automatically.

Session cookies - These cookies remain on your computer until you close your browser, when they are automatically deleted.

Essential cookies are technical cookies that are required for the operation of our sites. Without essential cookies our web site can't operate properly. Essential cookies include, for example, cookies that enable you to log into secure areas.

Performance cookies allow us to recognise and count the number of visitors to our web site and to see how visitors move around our pages. This helps us to improve the way our web site works by enabling us to tailor our site to the way visitors use them. The information we collect from performance cookies is aggregated which means that we cannot identify you from it.

Due to their core role of enhancing/enabling usability or site processes, disabling cookies may prevent you from getting the most out of our sites. You can refuse cookies by activating the relevant setting on your browser. However, if you do so you may not be able to access all or parts of our sites. If you carry on using our sites and do not change your browser settings we will assume you consent to us using cookies as described above.

Back to top

Sharing your information

As we are an insurance broker we will collect and process your personal information and share it with insurers or providers of services. To provide you with a wide range of products and services we work closely with many insurers and services.

When we use these providers for your insurance and finance needs, we will endeavour to ensure that we have their agreement to collect and process your data on terms equivalent to those in this privacy policy and to use the information we provide only for the purpose(s) we provide it to them for.

Examples of who we need to share your data with are:

  • Insurers that provide insurance policies.
  • Independent contractors we engage from time to time to ensure we meet and exceed industry standards.
  • Regulatory, governmental or other supervisory body to which we have to provide or give access.
  • Credit reference agencies, credit providers and debt collection agencies.
  • Motor insurance, claims and underwriting databases.
  • Anti-Fraud, theft and vehicle registers.

If the products we offer require us to transfer your personal data to an insurer outside of the European Economic Area, we will impose contractual obligations to protect your personal data to the same standard required in the European Economic Area. We will also endeavour to choose insurers that subscribe to 'international frameworks' intended to enable secure data sharing between countries.

A full list of insurers we work with can be found here.

Back to top

Credit searching and references

Our insurers and credit providers need to have the necessary facts to assess your insurance risk, verify your identity, to help prevent fraud and to provide you with their best premium and payment options. Credit searching, scoring and referencing are methods that insurers and credit providers use to verify your information. By applying for a quotation, you agree to these uses of your information.

Public and personal data from a variety of sources, including a credit reference agency and other organisations are used at quotation and renewal and in certain circumstances where policy amendments are requested. The credit referencing agencies record our enquiries but your credit standing will not be affected.

This search will appear on your credit report and will be visible to other credit providers. It will be clear that this is a quotation rather than a credit application by you to pay by monthly instalments.

Where automatic credit scoring computations are used, acceptance or rejection of your application will not depend the credit scoring process alone.

Back to top

Anti-fraud registers

When dealing with your request for insurance, anti-fraud registers may be searched. We use a number of anti-fraud methods both at and after application including SIRA, a comprehensive fraud prevention and detection solution from Synectics Solutions. We will also pass details to the Claims and Underwriting Exchange Register and the Motor Insurance Anti-Fraud and Theft Register, to check the information provided and prevent fraudulent claims. MIB is the data controller for the Claims and Underwriting Exchange (CUE) and Motor Insurance Anti-Fraud Theft Register (MIAFTR) databases.

Under the conditions of your policy, you must inform the insurer of any incident (such as an accident or a theft) which may, or may not, give rise to a claim. When you inform us of an incident, we'll pass the information relating to it to the registers.

If we identify a discrepancy on the aforementioned registers which does not correspond to the information you have provided, we will apply the correct information to your policy and process this change as a mid-term adjustment. Where applicable, an additional premium will be charged by your insurer. If the correct information is unacceptable to your insurer, cover may be cancelled or voided (which means to treat as if the policy never existed).

We may detect and prevent fraudulent claims and/or activities by undertaking searches against your (or any person included on the proposal) Drivers Licence Number (DLN) against details held by the DVLA to confirm your licence status, entitlement and restriction information and endorsement/ conviction data. This helps insurer's check information to prevent fraud and reduce incidences of negligent misrepresentation and non-disclosure. A search of the DLN with the DVLA should not show a footprint against your (or another relevant person included on the proposal) driving licence.

Back to top

Information security

How we protect your personal information from misuse and abuse is of great importance to us. We regularly review our technical and physical security procedures to protect your personal data from unauthorised access.

The Brightside website uses secure socket layer (SSL) encryption technology to encrypt sensitive information such as your financial information. When you request a quote from us, we will process the data on a secure server.

Back to top

Payment security

When you purchase a policy, with your consent, your card and bank account details will be stored, safely in accordance with industry standards.

If you do not want your credit/debit card being used for this purpose you may contact our customer services team at any time to make alternative payment arrangements.

Back to top

Motor Insurance Database (MID)

Information relating to your motor insurance policy will be added to the Motor Insurance Database (“MID”) managed by the Motor Insurers Bureau (“MIB”). MID and the data stored on it may be used by certain statutory and/or authorised bodies including the Police, the DVLA, the DVA, the Insurance Fraud Bureau and other bodies permitted by law for purposes not limited to but including:

  1. Electronic Licensing
  2. Continuous Insurance Enforcement
  3. Law enforcement (prevention, detection, apprehension and/or prosecution of offenders)
  4. The provision of government services and/or services aimed at reducing the level and incidence of uninsured driving.

If you are involved in a road traffic incident (either in the UK, the EEA or certain other territories), insurers and/or the MIB may search the MID to obtain relevant information.

Persons (including his or her appointed representatives) pursuing a claim in respect of a road traffic incident (including citizens of other countries) may also obtain relevant information which is held on the MID.

It is vital that the MID holds your correct registration number. If it is incorrectly shown on the MID you are at risk of having your vehicle seized by the Police. You can check that your correct registration number details are shown on the MID at www.askmid.com.

Back to top

How long do we keep your information?

Any information we hold about you, whether on our computer system or on paper files, will be treated as private and confidential. We only keep your information as long as we need to, and in any circumstances, no longer than 50 years.

Back to top

How to access your information

Under the Data Protection laws you have the right to access personal information held about you by Brightside Insurance Services Ltd.

If you would like a copy of the personal information we hold about you, or if you have any questions or queries in respect of confidentiality, data protection or a need to change or delete information please contact Brightside.

You should also contact us if you have concerns about the information we hold on you or how we have handled it.

To contact Brightside about any of the above you can either email: subjectaccessrequest@Brightsidegroup.co.uk with SAR in the subject, or write to, SAR, Brightside Park, Severn Bridge, Aust, Bristol, BS35 4BL. We will take reasonable steps to confirm your identity before providing you with details of any personal information we may hold about you.

If you still have any concerns about how we have handled your information or for more information on the Data Protection Act you can visit the Information Commissioner's Office website https://ico.org.uk/for-the-public/ or call them on 0303 123 1113 (local rate) or 01625 545 745 if you prefer to use a national rate number.

You can also email: casework@ico.org.uk (please include your telephone number) or write to the Information Commissioner's Office at Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF.

Back to top

Governing Law

This Privacy Policy is governed by the laws of England and Wales and subject to the exclusive jurisdiction of the English Courts.

Back to top