We are a controller of your data. This means we determine the purpose for which we use your personal information and the way in which it is used. We have partnerships with a number of insurers and other introducers.
When you take out an insurance policy then a third party insurer or ‘underwriter’ will also be a controller of your data.
We have appointed a Data Protection Officer who is responsible for the way we handle personal data. If you wish to know more or get in touch, you can do so by using the details in the “How to contact us about your requests or concerns” section below.
In order to provide you with our services, we collect, process and hold only the personal data we need.
What information we collect about you will vary depending on the service involved and your personal circumstances, but includes:
*This could include highly sensitive information also known as “Special Category” personal data or criminal offence information. We always minimise the use of such data and will only use your more sensitive types of data when absolutely necessary.
Our website may include links to and from the websites of our partner networks, advertisers, and affiliates, or to social media platforms. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for them. You should check how an organisation processes data before you submit any personal data to their websites.
We collect information about:
If you provide personal information to us about other individuals you should:
We may obtain personal information in a number of different ways:
*if someone acting on your behalf provides us with information, we’ll always record what’s been provided and who gave it to us.
**Our product and application contains public sector information licensed under the Open Government Licence v3.0. For further information in relation to the full terms of Open Government Licence please refer to URL: http://www.nationalarchives.gov.uk/doc/open-government-licence/version/3/
We collect and use your information so we can arrange and administer your general insurance products and to operate our business. We only collect personal information which is necessary and will only use that information when it is appropriate to do so.
UK data protection law requires that we have a reason to process your personal information. The most likely reasons we will collect and use personal information are:
Providing services which relate to a quote and/or insurance policy as part of a contractual relationship, including:
When we assess an application we use computer systems to make what are known as “automated decisions”. More information on this can be found below in the section “When do we use your personal information to make automated decisions about you?” Use of your personal information is a necessary part of assessing your application, providing you with a quote and offering you insurance. Without this information we will be unable to provide you with cover.
Where our business interests mean it is reasonable and justifiable for us to do so (known as a legitimate interest), including:
Where we have your permission to do so:
Where there is a legal requirement to share personal information:
Our approach to using particularly sensitive types of personal information such as criminal offence and special category information):
We will always minimise the use of this type of information.
We take the privacy and security of personal data very seriously. We will only ever share your personal data in a manner consistent with UK data protection law. To give you peace of mind Dayinsure will never sell your data.
As part of operating our business we may share your personal data with the following:
UK data law includes standards of data protection designed to keep your personal information safe.
We always seek to keep your personal information within the UK. If we do need to transfer, store or use personal information we hold outside of the UK, we will either confirm that the location your information is being processed is one the UK Government has determined equates to the UK’s own standards (known as “adequacy”), or we will put in place additional protections to make sure it remains suitably secure and compliant with UK law. This means your information should keep a similar level of protection at all times.
Please contact us if you want further information on the countries to which we may transfer personal data and the specific mechanism used by us when transferring your personal data outside of the UK.
We have in place a Data Retention Policy which governs how long different types of personal information should be retained by us. The policy is reviewed on a regular basis to ensure that it follows current legal and regulatory requirements.
It is important that you are aware that retention periods vary depending upon the circumstances of an individual matter, but in general our retention periods for customer facing documentation can be set out as follows:
|Information type||Retention Period|
|Quotation Only (no insurance policy purchased)||3 Years|
|Purchased Policy Information||7 Years|
|Information relating to claims||7 Years (longer in exceptional circumstances)|
|Customer Account Information||1 Year (after last consent was obtained)|
We may, along with our trusted partners (Aviva and companies within the Abacai Group), provide you with marketing offers on products and services. When we do, we will always give you the opportunity to ‘opt out’ of direct marketing when you request an online quote, purchase a product online or receive any email, text or other direct marketing communication.
Although requesting this will mean we stop all communications promoting products or services, we will of course continue to send you service related communications where necessary.
We use computers to make automated decisions about you. This means our systems use automatic processes rather than being made by our employees. This is known as ‘automated decision-making’.
When we assess your insurance application we will use an automated decision to apply our pricing and business acceptance rules. This decision will determine both whether we can provide a quotation and, if so, at what price. The information you provide to us about yourself and about other relevant individuals will be used to make this decision.
As part of our assessment we will use information sourced from third party companies such as credit reference agencies. This assessment will involve driving licence checks and the review of relevant information including verification of residence at the address provided, historic payment behaviour on financial products, prior insolvency and any relevant past county court judgements. For more information please see the section in this notice on Our Use of Credit Reference Agencies.
You have a right to not be subjected to automated decision-making without human intervention, however you should be aware that some of the automated decisions we make are a necessity of providing you with an insurance quotation and objecting to their use may result in us being unable to offer you a policy. For more information on your right to human intervention please see our section on Your Information Rights.
To assess applications and amendments we undertake checks with credit reference agencies. The personal information you have provided to us will be shared with them so that they can provide us with information about you relevant to your application. This is what is commonly referred to as a “credit check”.
Dayinsure only performs a soft credit search, which may be recorded on your personal credit report so that there is a transparent record of which companies have been viewing your credit history. This type of search will not affect your ability to apply for credit. You can get a copy of your credit report at any time from a credit referencing company. Please note: Not every soft credit search will result in a visible ‘footprint’ being left on your report.
For further information about the ways credit reference agencies use and share personal information go to https://www.experian.co.uk/legal/crain/
You have a number of rights when it comes to your personal information. We want to make it as easy as possible for you to understand what these rights are:
|Right to access||Right to rectify*||Right to erase*|
|You have the right to request a copy of the information we hold about you. This is usually free of charge and is known as a ‘Data Subject Access Request’.||If you believe that any personal information held about you is incorrect and/or incomplete you have the right to ask us to correct that information.||In certain situations, you have the right to ask us to delete personal information that we hold about you.|
|Right to restrict*||Right to object*||Right to data portability|
|You have the right to restrict us from processing your personal information any further or from deleting it.||You have the right to ask us to stop processing your personal information. For example, when we’re using it for direct marketing or if you believe that our processing of your information is causing you harm.||In limited circumstances you have the right to request us to transmit your data directly to another organisation. All such requests are reviewed on a case-by-case basis to determine if they are feasible.|
|Right to human intervention||Right to withdraw consent||Right to complain|
|You have the right to request that a fully automated decision which used your personal information is reviewed by a person employed by Dayinsure.||You have the right to withdraw your consent to Dayinsure processing your information. Please note this can result in the cancellation of your policy.
Withdrawing your consent will not affect any use we have made of the information before this date.
|You have a right to complain to the Information Commissioner’s Office (ICO) if you feel there is a problem with the way Dayinsure is handling your data.
The ICO will usually ask that you try and resolve issues in relation to our handling of your information with us directly before referring your complaint to them.
*Whether or not we meet a rights request depends on us balancing your request against other factors such as legal and regulatory requirements, the purpose of a contract between us and you or if there is a compelling legitimate ground not to. However if we are not going to meet your request in part or in full we will always advise you of our decision to not do so.
If you wish to make a data rights request please email firstname.lastname@example.org, we will acknowledge your request and prepare a response within one month.
More information on the ICO’s approach to complaints can be found at www.ico.org.uk/concerns. Making a complaint will not affect the other legal rights or remedies that you have.
If you wish to exercise an information right or have a complaint about how we gather, keep or use your information, you can get in touch with us:
By post: Dayinsure.com Ltd, Mara House, Nantwich Road, Tarporley CW6 9UY
ICO registered Data Protection Officer: Alexander Peters
Tel: 0333 005 0944*
*Important information: For our joint protection, telephone calls may be recorded and/or monitored and will be saved for a minimum of five years. Calls to 0800 numbers from UK landlines and mobiles are free. The cost of calls to 03 prefixed numbers are charged at national call rates (charges may vary dependent on your network provider) and are usually included in inclusive minute plans from landlines and mobiles.