Fortegra Europe Insurance Company Limited (C 8403) of The Reed Centre, Blue Harbour, Ta’ Xbiex Marina, Ta’ Xbiex, XBX1027, Malta (“We/Us/Our”) is the data controller in relation to personal information which We hold about You (“Personal Data”). Any queries relating to data protection matters may be addressed to Our Data Protection Officer at The Data Protection Officer, The Reed Centre, Blue Harbour, Ta’ Xbiex Marina, Ta’ Xbiex, XBX1027, Malta or at dpofficer@Fortegra.eu.
By means of this Data Protection Notice We would like to provide You with information as to how and why We process Your Personal Data as defined by the Data Protection Act, 2001 and the General Data Protection Regulations (GDPR) (Regulation (EU) 2016/679).
Information We hold about You
As data controllers, We may collect, store and use the following categories of Personal Data:
Processing of Personal Data, referred to as “special categories” revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person's sex life or sexual orientation shall be prohibited, unless You has given explicit consent to the processing of those Personal Data for one or more specified purposes.
How We will process information about You
We process Your Personal Data as may be necessary in order to provide You with the particular insurance product or service that You request of Us and to administer the same. We process such data for the purpose of providing You with quotations, underwriting, risk assessment, claims handling and any other purpose for which We may be obliged or authorised to process such data by or under any law, statutory and/or contractual requirement, including that of preventing, detecting or suppressing insurance fraud. For these same purposes, We may need to transfer Your Personal Data to third parties including but not limited to service providers (insurance companies and agents), surveyors, repairers, loss adjusters, investigators, credit reference agencies, bank and insurance associations. Such third parties may be local or foreign and may form part of an international organisation or a group of companies.
If You fail to provide Personal Data
We remind You that You are required to provide Personal Data since failure to provide such data may result in Us not being able to provide a suitable insurance product or service. Furthermore, You are requested to notify Us immediately if there is any material change in risk or change in any other personal information provided, to ensure that information held by Us is accurate at all times.
How We use particularly sensitive Personal Data
Special categories of Personal Data require higher levels of protection. We need to have further justification for collecting, storing and using this type of Personal Data. We may process special categories of Personal Data in the following circumstances:
We will not use Personal Data for any other purpose which is incompatible with the purposes described in this Notice, unless such use is required or authorised by Law, authorised by You or is in Your own vital interest (such as in the case of medical emergency).
Transfer of Personal Data outside Malta
The transfer of Personal Data outside of the European Economic Area (EEA) is prohibited unless one or more of the following specified safeguards, or exceptions, apply:
We will take appropriate measures to protect Personal Data and sensitive Personal Data, which are consistent with the applicable privacy and data security Law and regulations, including requiring third party service providers to use appropriate measures to protect the confidentiality and security of Personal Data and sensitive Personal Data.
Data integrity and retention
We will take reasonable steps to ensure that Personal Data and sensitive Personal Data processed by Us, is reliable for its intended use and is accurate and complete for carrying out the purposes described in this Notice. We will retain Personal Data and sensitive Personal Data for the period necessary to fulfil the purposes outlined in this Notice, unless a longer retention period is required or permitted by Law.
In the case of a Personal Data breach, the Data Protection Officer shall without undue delay and, where feasible, not later than 72 hours after having become aware of it, notify the Personal Data breach to the competent supervisory authority, namely the Office of the Data Protection Commissioner and the data subject, unless the Personal Data breach is unlikely to result in a risk to the rights and freedoms of natural persons. Where the notification to the supervisory authority is not made within 72 hours, it shall be accompanied by reasons for the delay.
We also remind You of Your rights in line with data protection laws and regulations, which are as follows:
Any such requests must be signed by you and sent to Us in writing (The Data Protection Officer, The Reed Centre, Blue Harbour, Ta’ Xbiex Marina, Ta’ Xbiex, XBX1027, Malta) or in email (dpofficer@Fortegra.eu).
You may also lodge a complaint with the supervisory authority, the Office of the Information and Data Protection Commissioner, Floor 2, Airways House, Triq Il-Kbira, Sliema SLM 1549 Malta, if You are not satisfied with our data protection processes.
By using our services, You consent to Us processing Your Personal Data for the purposes as described in this Notice, unless You otherwise inform Us in writing. Kindly note this Data Protection Notice can also be downloaded from our company website www.fortegra.eu
Should You require any further information, please do not hesitate to contact Us.