We are a data controller. This means we decide the purpose for which we use your personal information and how it is used. We have partnerships with a number of insurers and other introducers.
When you take out an insurance policy, a third-party insurer or ‘underwriter’ will also be a data controller.
We have appointed a Data Protection Officer who is responsible for the way we handle personal data. If you wish to know more or get in touch, you can do so by using the details in the “How to contact us about your requests or concerns” section below.
To provide you with our services, we collect, process and hold only the personal data we need.
What information we collect about you will depend on the service involved and your personal circumstances, but includes:
*This could include highly sensitive information also known as ‘special category’ personal data or criminal-offence information. We always minimise the use of such data. We’ll only use your more sensitive types of data when absolutely necessary.
Our website may include links to and from the websites of our partner networks, advertisers, and affiliates, or to social-media platforms. If you follow a link to any of these websites, please note they have their own privacy policies and we do not accept any responsibility or liability for them. You should check how an organisation processes data before you submit any personal data to its website.
We collect information about:
If you provide personal information to us about other individuals, you should:
We may obtain personal information in various ways:
*If someone acting on your behalf gives us information, we’ll always record who gave it and what it said.
**Our product and application contains public-sector information licensed under the Open Government Licence v3.0. For further information about the full terms of the Open Government Licence, please refer to URL: http://www.nationalarchives.gov.uk/doc/open-government-licence/version/3/
We collect and use your information so we can arrange and administer your general insurance products and to operate our business. We only collect personal information that is necessary. We’ll only use that information when it is appropriate to do so.
UK data protection law requires that we have a reason to process your personal information. The most likely reasons for us to collect and use personal information are as follows.
Providing services that relate to a quote and/or insurance policy as part of a contractual relationship, including:
Making automated decisions:
When we assess an application we use computer systems to make what are known as ‘automated decisions’. You can find more information on this below in the section “When do we use your personal information to make automated decisions about you?”. We need to use your personal information to assess your application, give you a quote and offer you insurance. Without it, we’ll be unable to provide you with cover.
If our business interests mean it is reasonable and justifiable for us to do so (known as a legitimate interest), including:
If we have your permission to do so, for example:
If there is a legal requirement to share personal information:
This is our approach to using particularly sensitive types of personal information such as criminal offence and special category information):
We’ll always minimise the use of this type of information.
We take the privacy and security of personal data very seriously. Well only ever share your personal data in ways consistent with UK data protection law. To give you peace of mind, Dayinsure will never sell your data.
As part of operating our business, we may share your personal data with the following:
UK data law includes standards of data protection designed to keep your personal information safe.
We always seek to keep your personal information within the UK. If we do need to transfer, store or use personal information we hold outside the UK, we will either confirm that the location your information is being processed is one that the UK Government has decided equates to the UK’s own standards (known as ‘adequacy’), or
we will put in place additional protections to make sure it remains suitably secure and compliant with UK law.
This means your information should keep a similar level of protection at all times.
Please contact us if you want further information on the countries to which we may transfer personal data and the specific mechanism we use when transferring your personal data outside the UK.
We have in place a Data Retention Policy that governs how long we should keep different types of personal information. We regularly review the policy to ensure it follows current legal and regulatory requirements.
It is important that you are aware that retention periods vary depending on the circumstances of an individual matter, but in general our retention periods for customer-facing documents are as follows:
|Quotation only (no insurance policy purchased)
|Purchased policy Information
|Information about claims
|7 Years (longer in exceptional circumstances)
|Customer account Information
|1 Year (after last consent was obtained)
We may, along with our trusted partners (Aviva and companies in the Abacai Group), we may provide you with marketing offers on products and services. When we do so, we’ll always give you the opportunity to opt out of direct marketing when you request an online quote, buy a product online or receive any email, text or other direct marketing communication.
In addition, you can always ask us to stop contacting you about products and services directly. You can do this:
• by getting in touch through the channels identified in your product documents, or
Although requesting this will mean we stop all communications promoting products or services, we will of course continue to send you service-related communications when necessary.
We use computers to make automated decisions about you, meaning that some decisions are not made by our employees. This is known as ‘automated decision-making’.
When we assess your insurance application, we’ll use an automated decision to apply our pricing and business-acceptance rules. This will decide whether we can provide a quotation and, if so, at what price. We’ll use the information you give us about yourself and about other relevant individuals to make this decision.
As part of our assessment, we’ll use information sourced from third-party companies such as credit reference agencies. This assessment will involve driving-licence checks and the review of relevant information including verification of residence at the address provided, historic payment behaviour on financial products, prior insolvency and any relevant county court judgements. For more information, please see section in this notice on Our Use of Credit Reference Agencies.
You have a right to not be subjected to automated decision-making without human intervention. However, you should be aware that some of the automated decisions we make are needed to give you an insurance quotation. Objecting to their use may result in us being unable to offer you a policy. For more information on your right to human intervention, please see section on Your Information Rights.
To assess applications and amendments, we make checks with credit reference agencies. We’ll share with them the personal information you have given us so they can provide us with information about you relevant to your application. This is what is commonly called a ‘credit check’.
Dayinsure only performs a soft credit search, which may be recorded on your personal credit report so that there is a transparent record of which companies have been viewing your credit history. This type of search does not affect your ability to apply for credit. You can get a copy of your credit report at any time from a credit referencing company. Please note: not every soft credit search will result in a visible ‘footprint’ being left on your report.
For further information about the ways credit reference agencies use and share personal information, go to https://www.experian.co.uk/legal/crain/
You have a number of rights when it comes to your personal information. We want to make it as easy as possible for you to understand what these rights are:
|Right to access
|Right to rectify*
|Right to erase*
|You have the right to request a copy of the information we hold about you. This is usually free of charge and is called a data subject access request.
|If you believe that any personal information held about you is incorrect or incomplete, you have the right to ask us to correct it.
|In certain situations, you have the right to ask us to delete personal information we hold about you.
|Right to restrict*
|Right to object*
|Right to data portability
|You have the right to restrict us from processing your personal information any further or from deleting it.
|You have the right to ask us to stop processing your personal information – for example, when we’re using it for direct marketing or if you believe our processing of your information is causing you harm.
|In limited circumstances, you have the right to request us to transmit your data directly to another organisation. We review all such requests on a case-by-case basis to see if they are feasible.
|Right to human intervention
|Right to withdraw consent
|Right to complain
|You have the right to request that a fully automated decision that used your personal information is reviewed by a person employed by Dayinsure.
|You have the right to withdraw your consent to Dayinsure processing your information. Please note this can result in your policy being cancelled. Withdrawing your consent does not affect any use we have made of the information before this date.
|You have a right to complain to the Information Commissioner’s Office (ICO) if you feel there is a problem with the way Dayinsure is handling your data.
The ICO will usually ask you to try to resolve your concerns with us directly before you refer your complaint to them.
*Whether or not we meet a rights request depends on us balancing your request against other factors such as legal and regulatory requirements, the purpose of a contract between us and you, or if there is a compelling legitimate ground not to. However, if we are not going to meet your request in part or in full, we’ll always inform you of our decision to not do so.
If you wish to make a data rights request, please email firstname.lastname@example.org. We’ll acknowledge your request and prepare a response within one month.
More information on the ICO’s approach to complaints can be found at www.ico.org.uk/concerns. Making a complaint does not affect your other legal rights or remedies.
If you wish to exercise an information right or have a complaint about how we gather, keep or use your information, you can contact us:
By post: Dayinsure.com Ltd, Mara House, Nantwich Road, Tarporley CW6 9UY
ICO registered Data Protection Officer: Alexander Peters
Tel: 0333 005 0944*
For our joint protection, telephone calls may be recorded and/or monitored and will be saved for at least five years. Calls to 0800 numbers from UK landlines and mobiles are free. The cost of calls to 03 prefixed numbers are charged at national call rates (charges may vary, depending on your network provider). They are usually included in inclusive minute plans from landlines and mobiles.