Insurance privacy notice - Privacy notices

What personal information do we collect?
  • your name, address and contact details, including email address and telephone number
  • national insurance number (for employer liability claims)
  • date of birth (if under 18)
  • disability/additional needs (if personal injury claim)
  • employment information (for employer liability/personal injury claims) from our HR and Payroll teams
  • health records (for employer liability/personal injury claims)
  • vehicle or property details (if relevant to the claim)
  • any other information the insurance claimant volunteers while making the claim We collect this information in a variety of ways. For example, data is collected through application forms and correspondence with you. Information is also obtained from other council departments such as HR or Payroll.
Why do we process personal data?
We have a legal obligation to insure ourselves in some instances such as employment liability. In other instances, where there is no legal obligation to insure, we have a legitimate interest processing this information for insurance purposes.
Who has access to your personal data?

Where necessary your information may be shared with the parties set out below for the purposes stated above.

  • Our insurance company, depending on the claim made this could be Ashdale Engineering, Protector Insurance, or Zurich Municipal
  • Solicitors acting on our behalf
  • Your solicitors
  • Your insurance company
  • National Fraud Initiative (NFI)
  • and/or Courts We require all third parties to respect the security of your personal data and to treat it in accordance with the law.

We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions and data protection laws. They are also obliged to implement appropriate technical and organisational measures to ensure the security of data. We will not transfer your data to countries outside the European Economic Area.

How do we protect personal data?
We take the security of your data seriously. The organisation has internal policies and controls in place to try to ensure that your data is not lost, accidentally destroyed, misused or disclosed, and is not accessed except by its employees in the performance of their duties. Data will only be processed by members of staff authorised by us for this purpose. Access to our systems is limited to members of the finance team whose job role requires access to the personal data.
How long do we keep your personal data?

Information is destroyed 6 years after a is claim closed except for claims in respect of minors. Claims on behalf of minors will be kept until their 25th birthday to ensure the obligations/entitlements are concluded 7 years after their 18th birthday.

Your rights

As a data subject, you have a number of rights, including access to your data. A request for access can be made via our website or by sending an email to foi@runnymede.gov.uk

Data Protection Subject Access Request(SAR) | Introduction – Runnymede Borough Council

To find out more about your rights please see the ‘Your Rights’ section of our main privacy statement

If you believe that Runnymede Borough Council has not complied with your data protection rights, you should initially try to resolve it with the relevant department.

If you are unable to resolve the issue to your satisfaction contact our Data Protection Officer (DPO) who will investigate. If you remain dissatisfied with the outcome of the DPO’s review you can make a complaint to the Information Commissioner. You can find out further information on making a complaint to the Information Commissioner on their website Information Commissioner's Office (ICO)