We use your Personal Data for providing and improving our service to you, as a Member of the Jersey Mutual Insurance Society.
When engaging with Jersey Mutual, we collect certain personally identifiable information (“Personal Data”) which is necessary, relevant and suitable for the purpose you are providing it for. Some of this information is aggregated or encrypted and does not identify you personally, but provides us with information about how you use and engage with those services.
Personally, identifiable information may include, but is not limited to:
- Certain specific details about you;
- Postal Address;
- Email Address;
- Telephone Numbers;
- Banking, credit/debit card details;
- Marital Status;
- Claims history;
- Asset/home Ownership;
If you supply Personal Data on behalf of someone else, you confirm that the other person has appointed you to act on their behalf and has given you consent to do so.
We only use your Personal Data for the purpose for which it has been collected for, and in particular for the following reasons:
- To understand your needs and provide you with a better experience;
- To share with the employees of this service to help with enquiries and respond to your correspondence;
- Used for statistical analysis for management purposes in order to administer, market or improve our service to you;
- Internal record keeping and administrative purposes to ensure we operate our business in an efficient and effective manner;
- Performance of the Insurance contract between you and us;
- Advance our legitimate interests as an Insurance provider, such as to provide you with the most suitable policy, website experience, along with administrative, fraud prevention and detection and legal purposes; To give an appropriate assessment of the risk you’re hoping to have insured. We evaluate the risk and assess how much coverage may be available from our bespoke policies available to you;
- To give you advice and guidance throughout your time as a Member;
- To service your policy and administer any claims;
- For fraud and financial crime prevention and detection, and for legal purposes where we may need to use your information to investigate or respond to legal disputes, regulatory investigations or for compliance purposes;
- When you call us, we record calls for quality control and training purposes. How long we keep recordings depends on our retention policy, unless we have a legitimate interest to keep recordings longer (as reasonably necessary for fraud detection and financial crime investigation purposes);
- We may also use the audio product of the calls to:
- Ensure that we have correctly followed your instructions
- Resolve any queries, issues or disputes
- Help us understand how we could improve customer service
- Where we need to service your policy and handle a claim against it, we will use Society Directors and independent loss adjusters;
- Where required by law, we will share your information with third parties such as law enforcement agencies and regulatory bodies. Failing to do so could result in fines or sanctions for Jersey Mutual;
- We will share your information with third party IT providers who support us in hosting, transferring, processing, testing and problem resolving. We may also share information with third party audit companies providing expertise and assurance over our processes and controls;
- To provide details of your property insurance policy to your lender pursuant to a contractual relationship or otherwise, upon proper request by your lender;
You will always have the option not to receive marketing communications from us and we will only contact you if you have given us your consent to do so. You can withdraw your consent or object at any time by contacting us at email@example.com, or in relation to marketing messages you receive, by using the unsubscribe option included in those messages.
We will never sell or rent your Personal Data to any third parties.
You have the right, at any time, to ask for a copy, transfer, update or correct any information we hold about you. If you wish to do this, please contact us at firstname.lastname@example.org.
Your Personal Data is retained for as long as necessary to fulfil the purposes of the services we provide to you.
The only exceptions to the periods mentioned above are where:
- The governing law requires us to hold your Personal Data for a longer period, or delete it sooner.
- You exercise your right to have the Personal Data erased (where it applies) and we do not need to hold it in connection with any of the reasons permitted or required under governing law.
You have the ‘right to be forgotten’.
If you would like us at any time to delete your Personal Data we will gladly do so, simply email us at email@example.com. We will delete all the Personal Data we hold about you and anything else that is associated with you. However, please note that if you use any of our services which require you to provide Personal Data, deleting our records may mean that you will need to resubmit it to continue using such services.
Cookies are files with a small amount of data, which may include an anonymous unique identifier. They are sent to your browser from a website and stored on your computer’s hard drive.
Cookies help us understand how you use our websites, view our products and respond to our advertising. Information is retained and used to note your interest in our products and to improve customer experience.
- Statistical analysis
- Understanding user behaviour
- Administering the service
- To tailor the information presented to a user based on their preferences, and to improve user experience.
We may employ third party companies and individuals to facilitate our services to you, as described above. These third parties have access to your Personal Data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.
The security of your Personal Data is important to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure.
We have put in place various security procedures as set out in this policy. For example, our security and privacy policies are periodically reviewed and enhanced as necessary and only authorised personnel have access to user information. We use SSL to encrypt data input before it is submitted, and our database is hosted in a secure data centre.
While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.
If the Service is breached, we will notify all affected users within 72 hours of becoming aware of the breach, where feasible. A breach means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, Personal Data. A breach can include:
- Access by an unauthorised third party
- Deliberate or accidental action (or inaction) by a controller or processor
- Sending Personal Data to an incorrect recipient
- Computing devices containing personal data being lost or stolen
- Alteration of Personal Data without permission
- Loss of availability of Personal Data.
Jersey Mutual Insurance Society
74 Halkett Place
If you have any specific data protection concerns or complaint, you can address it to our Data Protection Manager, Sarah Troy on firstname.lastname@example.org
If you are unhappy, you have the right to lodge a complaint with the Office of the Information Commissioner. The contact details for the Information Commissioner’s Office, are below:
The Office of the Information Commissioner
5 Castle Street,
Tel: +44 (0)1534 716530
Published: 8th March 2018. Updated: 20th August 2019