Privacy Notice

We've got your data covered

Explore the different sections of our Privacy Notice to learn more about how we use your personal information. We refer to individuals as "customers" or "you" in this notice.

Q1 Who are U K Insurance Limited?

We are U K Insurance Limited, but you might know us better as:

This privacy notice applies to personal information processed by U K Insurance Limited. It tells you how we collect and use personal information, your rights under data protection law, and how to contact us if you have any concerns about our management of personal information.

U K Insurance Limited is a company within Direct Line Group Plc and are a registered data controller Z648786. Click here to view all the companies in the same group as U K Insurance Limited.

Together, Motability Operations Limited and U K Insurance Limited have arranged to give protection for users of both the Motability Contract Hire Scheme, and the Family Fund Mobility Support Scheme similar to that which you would receive under a fully comprehensive motor insurance policy.

If you have any concerns about the way in which Motability Operations Limited use your personal information that are unrelated to your insurance cover, please direct any queries in writing to: Data Protection Officer, Motability Operations Limited, 22 Bishopsgate, 6th Floor, London EC2N 4BQ.

Green Flag Limited promotes and sells motorist-related products and services, including insurance. Green Flag Limited uses U K Business Solutions Limited (UKIBS) FCA regulatory permissions to introduce, sell, and administer breakdown insurance products.

U K Business Solutions Limited (UKIBS) acts as an introducer and intermediary, promoting and selling both regulated and non-regulated product. It is a company within Direct Line Group Plc.

Q2 What personal information do we collect about you?

We routinely collect, use and store the following types of personal information:

Type	Example
Contact	Name, Address, Telephone Number, Email address
Social and Economic	Marital Status, income and employment type
Financial	Payment card and banking details
Technical	Information about the devices and technology you use, including your IP address.
Behavioural	Information about how you interact with or use our product and services
Contractual	Information associated with the product or service we provide to you
Biometric	Information such as facial images from CCTV or voice transcripts from call recordings
Communications	Information contained in the letters, emails, texts or web chats you have with us
Preferences	This includes your marketing permissions, contact choices and any accessibility requirements such as large-print formats
Identifiers	Government identifiers such as Driving License
Special Category	Information revealing racial or ethnic origin, biometric data (where used for identification purposes), data concerning health
Criminal	Information relating to criminal offences, including alleged offences, criminal proceedings and previous criminal convictions, bankruptcies and other financial sanctions such as County Court Judgements.
Support Needs	Information which helps us to support our customers. For example, if you have specific needs, a health condition, or you're going through a difficult time
Telematics and Vehicle Information	Information from your vehicle's Telematics technology or onboard CPU. This may include data such as your location, speed, journey or information such as any impact or engine failures following an incident.
Geolocation	Information about your vehicle or device's location. For example, via your vehicle's onboard Geolocation or 'Connected Car' features

When we process sensitive information about you (see Special Category above) we require an additional legal basis under data protection law. We may use these types of personal information without your consent if it is necessary for a legal obligation, as part of the establishment or defence of a legal claim or reasons of substantial public interest including:

for insurance purposes including, arranging, underwriting and administering an insurance contract and managing a claim under an insurance contract
for the prevention, detection and reporting of fraud and other financial crime
safeguarding the economic well-being of vulnerable individuals where we identify additional support is required

Q3 How do we collect personal information?
×

Information you give us

Most of the personal information we process is given to us directly by you when you ask us to provide you with a quote, make a claim, submit an enquiry or otherwise interact with our product and services.
×
Information from our website, app and contact services

Technical information, including the type of device you're using, the IP address, browser and operating system being used to connect to the internet.

Conversations with our chat functionality.

Details about your visit to our website, for example we collect information about pages you visit and how you navigate the website. Refer to our Cookie Policy for more information.

Any other obtainable signal data from your telephone
×
Information from other individuals

Where you are named on a policy or a beneficiary of that policy, we may collect information about you from any named policyholder, nominee or other appointees

Where you are making a claim against our policyholder, they may provide information about you when they informed us about the incident

Witnesses to an incident may provide information to us if there is an investigation of a claim
×
Information from external sources (the list below is not exhaustive)

HM Treasury and other authorities in relation to regulatory issues e.g. where someone is subject to a financial sanction, they will appear on HM Treasury's asset freezing list.

Credit Reference Agencies e.g. credit searches that are made when we produce a quotation for a new policy or at renewal. Please see section Credit Reference Agencies for more information

Price Comparison Websites

Claims and Underwriting Exchange and databases such No Claims Discount e.g. to validate your claim history

MyLicence database to validate driving licence information held by the DVLA.

Financial crime and fraud prevention agencies including law enforcement or government agencies to prevent or detect fraud or provide details to us about criminal convictions or offences. Please see Safeguarding us and you for more information

Insurance industry bodies, including the Association of British Insurers and the Motor Insurance Bureau;

Publicly available information and sources such as electoral roll , Vehicle MOT and taxation status, vehicle keeper history

Social media and other published information
×
Information from our partners (where applicable)

Where your policy has been arranged through one of our partners then we will exchange information to provide and service your insurance policy. UK Insurance Limited underwrite insurance products for a number of well-known brands. We have individual relationships with these companies and your information is only ever shared with the one you contact us through.

Motability Operations Limited which provides information about you to help us manage and underwrite the Motability Contract Hire Scheme and the Family Fund Mobility Support Scheme.

Q4 How do we use your personal information?

Requesting a quote for a product or service

When you request us to provide you with a quote for one of our insurance policies, we use information in the following ways:

Purpose	Lawful basis
To create and send you details of the quote	Contractual Necessity
To decide what the risk might be in selling you the policy. We may use automated decision making to make this assessment and you can learn more about this in 'Automated Decisions and Artificial Intelligence'	Contractual Necessity
Provide you with a premium for that policy and any special terms that may apply to it. We may use a computer or other programme to automatically make this assessment and you can learn more about this in 'Automated Decisions and Artificial Intelligence'	Contractual Necessity
To contact you about a completed or partially completed quote	Legitimate Interest
To do what we are required to by law in compliance with a regulatory or statutory obligation	Legal obligation
To help prevent and detect crime. See Safeguarding us and you for more information on how we use personal information for the prevention of fraud and financial crime.	Legitimate Interests
To help improve our products, services, and systems, we gather and analyse your feedback to identify areas where we can enhance functionality, reliability, and ease of use. This allows us to deliver you a better sales experience in the future	Legitimate Interest
To inform you about discounts and/or promotions regarding our products or services. See Keeping in touch for more information on how we use personal information for direct marketing.	Consent or Legitimate Interest

Administration and Management

We'll use your information to provide insurance services. This includes beneficiaries of the Motability Scheme and also where the policy has been arranged through one of our partners:

Purpose	Lawful basis
To send you information such as policy documents, as well as helpful information relating to the product you hold with us. If you are a Motability customer, we will send you documentation relating to the insurance benefits under the scheme.	Contractual necessity and/or Legitimate Interest
To monitor the payment of instalments if you pay your premium in this way and recover missing payments where these are owed to us	Legitimate interest
To determine eligibility to be covered by the Motability Scheme, and any special terms that may apply to you or permitted drivers. We may use automated decision making to make this assessment and you can learn more about this in 'Automated Decisions and Artificial Intelligence'	Contractual necessity
To contact you about your policy such as for billing or renewal	Contractual Necessity
To help make sure you are being treated fairly (e.g. to assist our regulators or suppliers where we have a legal duty to do so) or to help identify if it is necessary for us to make adjustments in our service to support and meet the needs of vulnerable customers	Legal Obligation
To manage and respond to queries or feedback you have about our products and/or services	Contractual Necessity
To deal with complaints	Legal obligation
To do what we are required to by law in compliance with a regulatory or statutory obligation	Legal obligation
To help improve our products, services, and systems, we gather and use technology to analyse your feedback to identify areas where we can enhance functionality, reliability, and ease of use	Legitimate Interest
To review our internal process and ensure our people provide a high level of customer services e.g. recording our calls for training and administration purposes	Legitimate Interest
To help prevent and detect crime. See Safeguarding us and you for more information on how we use personal information for prevention of fraud and financial crime.	Legitimate Interest
To inform you about discount and/or promotions regarding our products or services. See Keeping in touch for more information on how we use personal information for marketing. *This does not apply to Direct Line Motability	Consent or Legitimate Interest
To record and analyse data about the driving behaviour of you and anyone who drives your car where you have a telematics device or app as part of your policy. See Telematics for more information on how we use personal information for these types of policies. *This does not apply to Direct Line Motability	Contractual Necessity

Telematics

The telematics product will record and analyse data about the driving behaviour of you and anyone who drives your car. If you have a telematics app then all of your journey data will be collected and retained by the app, whether you are a driver or passenger. Passenger journeys can be excluded from your driving scores by tagging your journey.

It will capture and send your specific location, direction, current speed; duration of journey; braking and cornering amongst other factors to our telematics suppliers' server and we will use the information to understand road type, speed and other conditions relating to your journey.

We and our technology and analytics suppliers will collect and use the data gathered by the telematics product to:

Purpose	Lawful basis
To assess your driving score to determine the risk you pose as a driver. This will influence the insurance premium you pay.	Contractual necessity
To help us to understand safe driving behaviours, which we will use to develop underwriting of our motor insurance policies	Legitimate Interests
To help to determine or corroborate the circumstances of a claim, loss or theft	Contractual necessity
To tailor your premium at renewal	Contractual necessity
To contact you regarding Telematics participation or send instructions of when you need to return the telematics product. These communications may come for our technology or analytics supplier.	Contractual necessity
Road and vehicle usage including for road safety issues, real time traffic flow, environmental impacts such as idle time at junctions, journey times, distances and speeds, and the analysis of junctions and the risk they represent	Legitimate Interests
Driving behaviour analysis and profiling including determining what constitutes safe and dangerous driving and the typical behaviours of various segments of the UK population	Legitimate Interests
Analysis of the causes of, and forces involved in, collisions and other road incidents; and Researching and refining techniques for analysing motor vehicle telematics data	Legitimate Interests
To do what we are required to by law in compliance with a regulatory or statutory obligation	Legal obligation

Claim Fulfilment

We'll use your information to deal with any claims that you make:

Purpose	Lawful basis
To collect and log the details of your claim of loss when you notify us	Contractual necessity
To contact you to offer our services to repair your vehicle/property and contain costs	Legitimate interest
To contact you about your claim such as to collect further details or evidence	Contractual Necessity
To make a payment or settlement to you in the event of total loss	Contractual Necessity
To manage and assess information about the claim	Contractual Necessity
To review and respond to queries or feedback you have about your claim	Contractual Necessity
To deal with complaints	Legal obligation
To do what we are required to by law in compliance with a regulatory or statutory obligation	Legal obligation
To help improve our products, services, and systems, we gather and analyse your feedback to identify areas where we can enhance functionality, reliability, and ease of use.	Legitimate Interest
To review our internal process and ensure our people provide a high level of customer services e.g. recording our calls for training and administration purposes	Legitimate interest
To assist where your or another person's life or health is in danger and obtaining your permission is not possible (e.g. arranging emergency medical treatment in a remote location).	Vital Interests
To help prevent and detect crime. See Safeguarding us and you for more information on how we use personal information for the prevention of fraud and financial crime.	Legitimate Interests

Cancellation

We set out the reasons below for which we will continue to use personal information when:

You don't renew your policy
We cancel it during the policy year
You leave the Motability scheme

Purpose	Lawful basis
To manage any ongoing claims such as to contact you to request evidence or to make a settlement.	Contractual necessity
To manage and respond to queries or feedback you have about any claims, cancelled policy or other products and services	Legitimate interest
To deal with complaints	Legal obligation
To help improve our products, services, and systems, we gather and analyse your feedback to identify areas where we can enhance functionality, reliability, and ease of use.	Legitimate Interest
To recover any money that is owed to us	Legitimate interest
To do what we are required to by law in compliance with a regulatory or statutory obligation	Legal obligation
To analyse and price insurance policies personal information is necessary to assess individual risk factors. For example, age, health, lifestyle, and occupation, can help determine the likelihood of a claim being made.	Legitimate interest
To help prevent and detect crime. See Safeguarding us and you for more information on how we use personal information for the prevention of fraud and financial crime.	Legitimate interests
To let you know about discount and/or promotions regarding our products or services which may be of interest to you. See Keeping in touch for more information on how we use personal information for marketing. *This does not apply to Direct Line Motability	Consent or Legitimate Interest

Third Party Claims and Witnesses

We process information about individuals associated with third-party claims, witnesses, or those involved in incidents with our policyholders:

Purpose	Lawful basis
To provide you with services as part of your claim against our policyholder, such as repairing your vehicle, arranging medical support or updating you with the progress of your claim.	Legitimate interest
To manage and respond to queries or feedback you have	Legitimate interest
To record an account of an incident that you witnessed	Legitimate interest
To make a payment to you	Legitimate interest
To deal with complaints	Legal obligation
To investigate, manage and settle insurance claims that are made against an insurance policy that we have underwritten	Contractual necessity
To do what we are required to by law in compliance with a regulatory or statutory obligation	Legal obligation
To help improve our products, services, and systems, we gather and analyse your feedback to identify areas where we can enhance functionality, reliability, and ease of use.	Legitimate Interest
To help prevent and detect crime. See Safeguarding us and you for more information on how we use personal information for the prevention of fraud and financial crime.	Legitimate Interests

Keeping in touch

From time to time, we may send you direct marketing regarding any of our products, discounts, offers and services where we believe you will have an interest in the communications. These updates will come from brands and companies in the Direct Line Group.

These communications will be sent and displayed to you based on your preferences:

With your consent we will send your direct marketing via email, text messages or display this information to you in your social media channels or web browser.
We will contact you by phone or post to let you know about our products and services unless you've told us you'd prefer we didn't contact you in this way.
If you are a business customer then we will contact you by email but you can let us know at anytime if you want to stop receiving these communications.

You can let us know at any time if you no longer wish to receive marketing messages. The simplest way to do this is to click on the unsubscribe link on emails or respond using the return address on the envelope. You can also contact our Data Rights Team, please see 'Contact us' for more information.

We will keep a note of your earlier marketing preferences for six years. If you have chosen not to receive marketing, we will not contact you unless you tell us you have changed your mind.

Making our communications relevant to you

We process your personal information to evaluate the effectiveness of our advertising and help us provide more relevant offers and information across a variety of marketing channels including online advertising and social media sites such as Facebook. In certain circumstances we use publicly available or licensed sources of information to enhance the personal data we hold about individuals or groups or individuals.

We analyse our customer database and external data sources to understand who customers are and how they interact with us. In doing this, we can improve our communications by identifying new audiences, ensuring our communications are relevant to you and allow us to be more efficient and cost-effective with our resources.

To help us recognise how recipients interact with our email communications and enhance their display on various devices, we employ a widely recognised method of embedding an image pixel within our emails to collect information about when you open the email such as your IP address, your browser or email client type. If you don't want us to use tracking pixels, you can use your email settings so that images are not automatically displayed.

We also provide you with a personalised online experience by giving you marketing based on your interactions with us and analysis of your customer behaviour on our websites, such as your purchase and browsing history. Learn more about our use of cookies and similar technologies in our Cookie Policy.

Safeguarding us and you

We employ various measures to ensure the security and integrity of our products and services, which includes the use of your personal data to detect and prevent fraud and other financial crime. We continuously review and update our fraud prevention measures to adapt to evolving threats and regulatory requirements. This includes investing in advanced technologies and training our staff to stay vigilant against fraudulent activities to protect us and you.

Identification Verification	We use personal data provided to verify your identity to ensure that only authorised individuals access our services and prevent fraudulent attempts to use someone else's identity. We will often use external sources to do this such as Credit Reference Agencies or fraud databases like CIFAS
Transaction monitoring	We monitor transactions and activities associated with your insurance policy to detect any unusual patterns or suspicious behaviour that may indicate fraudulent activity. This may include analysing the frequency and nature of claims, changes to policy details, or payment irregularities. For example, if multiple claims are reported within a short period for the same type of incident, it may trigger a review process to review the legitimacy of the claims
Profiling	We employ data analysis techniques to identify potential fraud risks by comparing datasets including your personal information and historical claim data. This helps us detect anomalies and patterns indicative of fraudulent behaviour. For example, by reviewing claim patterns and comparing them against industry benchmarks, we can identify unusual trends that may suggest fraudulent activity, such as a sudden increase in the frequency or severity of claims.
Claim Validation	We will use open source searching techniques, including the review of publicly-available Social Media, online forums, local and national news and public records, in order to validate the circumstances of any claim presented to us.

Automated Decisions and Artificial Intelligence

We use artificial intelligence (AI) to enhance our business operations, to inform our communications and customer journeys, improve our product and services and in our pricing decisions

In some of these instances we will use this technology to make automated decisions. Automated decisions can affect the products, services or features we may offer you now or in the future, or the price we charge for them:

Artificial Intelligence - *

Automated Decision - **

		Artificial Intelligence	Automated Decision	*	**
Requesting a quote for a product or service	We use an automated underwriting engine that takes account of the information you provide on your quote and this will have an impact in terms of the level of premium or product that we offer to you. We include all of the information available to us to decide whether to offer insurance, the premium, any special terms and also whether we can offer the option to pay monthly.
Identify Verification	This helps us to check that you are who you say you are and to prevent others from imitating you.
Selling other products or services	This helps us decide which of our products and services to tell you about.
Risk Assessment	We conduct modelling for risk assessment purposes to make decisions about you, such as your likelihood to claim. Where we can, we will always use data in anonymised form.
Fraud Detection	To assess the probability that your application or claim may be fraudulent
Improve our product and services	We may use your personal information in modelling to make decisions about how we improve and develop our products and services such as our claims journey, or our pricing and underwriting, or to better understand how our prospective customers make decisions about which policy is the optimal policy.
Claim settlement	We may use models to review documents and issue automated offers for a specific claim which meet certain criteria.

Q5 Who do we share personal information with?

Who do we share your information with?

Other companies within Direct Line Group	We may share your personal information with third parties and other companies within our group of companies for the purposes we describe in 'How we use your personal information'. A list of our group companies can be found at https://www.u-k-insurance.co.uk/group-companies.html.
Bank Account and Payment Card Information	We use a specialist payment processor for securely managing transactions and payments and always ensure that financial details are handled securely under Payment Card Industry (PCI) Data Security Standards
Financial Crime and Fraud prevention agencies and databases such as CIFAS, Synectics, Transunion and ENI	Fraud prevention agencies will process personal information to assist our prevention of fraud and money laundering, and to verify your identity. They may also process your personal information to prevent fraud and money laundering by other people. If we or a fraud prevention agency determine that you pose a fraud or money laundering risk, we may refuse to provide the services and/or financing you have requested. A record of this risk will be retained by the fraud prevention agencies and may result in others refusing to provide services or financing to you. If you have any questions about this, please contact the appropriate fraud prevention agency.
Regulatory Bodies	We may need to share personal information with regulatory or public bodies to meet our regulatory and legal obligations. This includes the Prudential Regulation Authority, Financial Conduct Authority, Information Commissioners Office and the Financial Ombudsman Service
Motor Insurance Bureau	We'll will share your personal information with the Motor Insurance Database (MID), which is managed by the Motor Insurers' Bureau (MIB). For example, if you're involved in a road traffic accident then we and/or the MIB may search the MID to obtain relevant information. Please see Motor Insurance Bureau for more information
Advertising Partners	We partner with advertising companies, including social media sites, addressable TV providers and third-party websites, to display adverts about our products and services. Our Advertising Partners enable us to identify and engage with the right target audience, to create and distribute personalised content across platforms and services. For example, addressable TV providers allow us to customise the adverts displayed to individual households while they are watching the same programme. They use techniques like device recognition and interactions with social media content to tailor ads, but they don't target individuals by name. In most cases, cookies and similar technologies such as device fingerprinting are used to target this type of advertising. To learn more and manage their use, refer to our cookie policy. We may share personal information, e.g., an encrypted email address or device id, with our Advertising partners. The purpose is to show relevant ads to you on third party websites and apps. To do this, your data is matched with the database of the Advertising partner. If a match is found, you will receive relevant promotional content in your feed or search engine. If no match is found your data is securely destroyed. Your personal data is handled in a secure manner using a technique called hashing. This ensures your data is scrambled in a manner that makes it unreadable to anyone other than the recipient.
Lexis Nexis Risk Solutions	We share information concerning your request for a quote and your insurance policy with LexisNexis Risk Solutions who help us to check your identity and evaluate your insurance risk. LexisNexis Risk Solutions Limited does this by collecting data about you from public sources (such as the electoral register and insolvency service) and private sources (such as other insurers). More information on LexisNexis Risk Solutions Limited and how it collects and processes your data, your right to object and your other data protection rights is available here at https://risk.lexisnexis.com/group/processing-notices/insurance-services
Driver and Vehicle Licensing Agency (DVLA)	If you share yours or a named drivers Driving Licence Number (DLN) as part of your application for motor insurance, when adding a new driver or during renewal then the number is used to do an automated check with the DVLA driver database to retrieve the licence status, licence entitlement, relevant restriction information and any endorsement and conviction details.
Claims and Underwriting Exchange and other industry databases	We will share claim, incident details including dates, costs, fault status, any impact to no claim discount (NCD) and if any personal injury has occurred. The information we share will be accessible by other insurers.
Other insurance companies, reinsurers and third parties	We may share personal information to help settle any insurance claim or to verify that the information you have provided is correct (e.g we will check the amount of No Claims Discount you have told us with your previous insurer). Or where required or appropriate in connection with a proposed or actual sale, merger, acquisition, reorganisation, business transfer, financial arrangement, asset disposal or other corporate or financial transaction relating to our business and/or assets held by our business. Where such data is shared with a third party in connection with these transactions, it is done so under duties of confidentiality.
Joint Account Holders	Where insurance products are affiliated to a joint account personal information will be visible to both account holders; this will include details such as your name and address.
My Account	Where you are using a shared email address (e.g an email address which you and other individuals have access to) to manage your online account then some information about you and your products, quotes or other services will be visible to other profile users using the same email address. You can change the email address associated with your online account at any time.
Representatives and/or Nominees	In some circumstances we may share information with a representative who calls us on your behalf such as a spouse/partner such as where they are named on the agreement, or you have provided permission to speak with them.
Credit Reference Agencies	We will share personal information about you or anyone on the policy to credit reference agencies (CRAs). This help us verify your identity, and to determine the price of your insurance and your payment options when you take out a quote and at renewal of your insurance policy. Please see Credit Reference Agencies for more information
Law enforcement and Government agencies	We and fraud prevention agencies may permit law enforcement or government agencies to access and use your personal information, if they request it.
Flood Re	The Flood Re scheme helps homeowners get insurance in flood risk areas. If your property is eligible, we'll send your property details to the scheme.
Market Research and Consumer feedback Agencies	We may share personal information with these companies who will conduct market research and business analysis on our behalf
Medical or other health services	In order to manage personal injury claims we may receive relevant medical and treatment reports. These reports may need to be shared with other medical experts or treatment providers. This includes medical information or reports about you, witnesses, minors or pets.
Brand and Service Partners	Where your policy has been arranged through one of our brand partners then we will exchange information to provide and service your insurance policy. We collaborate with third-party companies to offer and supply roadside assistance services to their customers. For example, as part of a packaged bank account.
Motability Operations Limited and their third-party providers	We will provide personal information you update us about, such as your address, or permitted drivers, and claims history. This enables them to improve and provide services to you, which include keeping their records up to date, helping process applications you make and identify products that may be of interest to you. We will also share personal information with Motability Operations Limited third-party providers to enable them to provide their services to you such as roadside assistance. For further details on Motability Operations Limited third-party providers please see their privacy notice at motability.co.uk

Transfers of personal data outside the UK

We may send your personal information overseas to any part of the world to administer your insurance policy or insurance claim. The protections given to your personal information in other parts of the world may not be as strong as in the UK. Where possible, we will put in place agreements with the people we send your personal information to, to require them to treat your personal information with the same protections that we apply ourselves.

Our agreements may include standard terms called Standard Contractual Clauses or International Data Transfer Agreements (IDTAs) approved by the UK Information Commissioner's Office or may require the other party to be signed up to government standards that are recognised as providing the right level of protection. But it is possible that regardless of what is set out in the agreement this would not stop a government in any part of the world from accessing your personal information, as they can often have power to overrule any agreements we make, for purposes such as crime prevention and national security.

In some cases, we might need to share information to carry out the services we have promised to carry out, for example if you require urgent assistance abroad. In such an urgent situation we may not always have the time to put in place the type of agreement we would normally want to; however, we will ensure that if such a transfer is required that it complies with the standards required by data protection legislation.

Motor Insurance Bureau

We work in partnership with the Motor Insurers' Bureau (MIB) and associated not-for-profit companies who provide several services on behalf of the insurance industry.

At every stage of your insurance journey, the MIB will be processing your personal information and more details about this can be found via their website: mib.org.uk.

Set out below are brief details of the sorts of activity the MIB undertake:

Checking your driving licence number against the DVLA driver database to obtain driving licence data (including driving conviction data) to help calculate your insurance quote and prevent fraud
Checking your 'No Claims Bonus' entitlement and claims history
Prevent, detect and investigate fraud and other crime, including, by carrying out fraud checks
Maintaining databases of:

Insured vehicles (Motor Insurance & Policy Data or Motor Insurance Database)
Vehicles which are stolen or not legally permitted on the road (Vehicle Salvage & Theft Data or MIAFTR)
Motor, personal injury and home claims (CUE)
Employers' Liability Insurance Policies (Employers' Liability Database)

Managing insurance claims relating to untraced and uninsured drivers in the UK and abroad
Working with law enforcement to prevent uninsured vehicles being used on the roads
Supporting insurance claims processes

Q6 How long do we keep personal information?

Legal and operational requirements determine how long we retain your information. We keep your information for no longer than is necessary for the purposes it was collected for. We have adopted a data retention policy that sets out the different periods we retain personal information for in respect of these relevant purposes.

As a general rule, we will keep it for 6 years from the end of your relationship with us, as it is likely that we will need the information for regulatory reasons, fraud prevention, or to defend a claim. For example, should you wish to bring some form of legal action relating to your relationship with us, this would generally need to be done within 6 years from the end of that relationship.

In some cases where there is a valid reason to retain the data, it will be necessary for us to hold your information past the specified retention periods listed. For example, where a claim has involved a minor.

We will also retain data in an anonymous form for statistical and analytical purposes, for example, to assess risk of flood damage occurring and have our own legitimate interests in retaining your data for a period beyond your policy lifecycle. These include defence of any late or delayed claims and improving our products and pricing.

Q7 Understanding your rights

We want to make sure you are aware of your rights in relation to the personal information we process about you and importantly how you can exercise your rights. We have described these and the circumstances in which they apply in the table below.

Data Subject Right	Description
Access	You have a right to request a copy of the personal information we hold about you.
Rectification	You have the right to ask us to correct information that is inaccurate or incomplete.
Erasure	You have the right to ask us to delete personal information about you. We are not required to erase information if we still need it for the purposes for which it was collected or processed or where we have other legal grounds for processing your information.
Objection	You have the right to tell us you no longer agree to, that you object to, or that you wish to restrict us using information about you and ask us to stop.
Portability	You have the right to obtain and reuse the information that you have provided to us for your own purposes across different services. You may ask for this information to be provided directly to you or directly to another organisation. We will provide the information in a machine-readable format so that another organisation's software can understand that information. This applies where we have requested your permission to process your personal information, or you have provided us with information for the purposes of entering into a contract with us.
Automated Decision Making	To ask to review an automated decision made about you. See 'Automated Decisions and Artificial Intelligence' for more information
Restriction	Where possible, we will restrict the processing your personal information if you have raised an objection or erasure request in relation the processing of your personal information whilst we review your query.

If you wish to exercise any of these rights, then our Data Rights Team may be contacted in writing at: U K Insurance Limited, Churchill Court, Westmoreland Road, Bromley BR1 1DP by email at: Data.Rights.Requests@directlinegroup.co.uk or via this form https://www.u-k-insurance.co.uk/data-rights-request.html

Q8 Contact Us

If you have any questions about this Policy or how we use your personal information generally, then our Data Rights Team will be happy to help. Please see section 'Understanding your Rights' for their details.

If you have any concerns about the way in which we are using your personal information, please contact our Data Protection Officer in the first instance at U K Insurance Limited, Churchill Court, Westmoreland Road, Bromley, BR1 1DP or alternatively by email at DataProtection@directlinegroup.co.uk and we will endeavour to resolve your concern.

However, you do also have the right to complain about how we treat your personal information to the Information Commissioner's Office ("ICO").

The ICO can be contacted at:

ICO website: https://ico.org.uk/global/contact-us/

ICO telephone: 0303 123 1113

ICO textphone: 01625 545860