Data Protection Notice

Fortegra Insurance UK Limited, 20 Fenchurch Street, 5th Floor, London, England, EC3M 3BY (“We/Us/Our”) is the data controller in relation to personal information which We hold about You (“Personal Data”). Any queries relating to data protection matters may be addressed to Our Data Protection Officer at The Data Protection Officer, Fortegra Insurance UK Limited, 20 Fenchurch Street, 5th Floor, London, England, EC3M 3BY or via e-mail to dpofficer@fortegra.onmicrosoft.com or on data subject access page.

By means of this Data Protection Notice, We would like to provide You with information as to how and why We process Your Personal Data as defined by the Data Protection Act 2018 (DPA 2018) and the EU General Data Protection Regulation as it forms part of retained EU law in the UK (UK GDPR).

Information We hold about You

As data controllers, We may collect, store and use the following categories of Personal Data:

  • individual details which include name, address (and proof of address), other contact details (e.g. e-mail and telephone details), gender, marital status, family details, date and place of birth, employer, job title and employment history, relationship to the policyholder, insured, beneficiary or claimant;
  • identification details which include identification numbers issued by government bodies or agencies (e.g. depending on the country You are in, social security or national insurance number, passport number, ID number, tax identification number, driver’s licence number);
  • financial information which include payment card number, bank account number and account details, income and other financial information;
  • policy information which include information about the quotes individuals receive and the policies they obtain; previous/ current claims which include information about both previous and current claims, which may include criminal records data and other special categories of Personal Data.

There is a sub-set of Personal Data, referred to as “special categories of personal data” revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person's sex life or sexual orientation.

We do not process special categories of personal data unless You have given explicit consent to the processing of those Personal Data for one or more specified purposes.

How We will process information about You

We process Your Personal Data as may be necessary in order to:

  • Provide You with the particular insurance product or service that You request of Us and to administer the same. We process such data for the purpose of providing You with quotations, underwriting, risk assessment, claims handling, policy administration and to discharge or obligations under the contract.
  • Comply with legal or regulatory obligations and any other purpose for which We may be obliged or authorised to process Your Personal Data by or under any law, statutory and/or contractual requirement, including that of preventing, detecting or suppressing insurance fraud.

For these same purposes, We may need to transfer Your Personal Data to third parties including but not limited to service providers (insurance companies and agents), surveyors, repairers, loss adjusters, investigators, credit reference agencies, bank and insurance associations. Such third parties may be local or foreign and may form part of an international organisation or a group of companies.

How We use particularly sensitive Personal Data

Special categories of Personal Data require higher levels of protection. We need to have further justification for collecting, storing and using this type of Personal Data. We may process special categories of Personal Data in the following circumstances:

  • in limited circumstances, with Your explicit written consent;
  • where We need to carry out Our legal obligations;
  • where it is needed in the public interest;
  • where it is needed to assess Your working capacity on health grounds, subject to appropriate confidentiality safeguards;
  • where it is needed in relation to the exercise or defence of legal claims.

We will not use Personal Data for any other purpose which is incompatible with the purposes described in this Notice, unless such use is required or authorised by Law, authorised by You or is in Your own vital interest (such as in the case of medical emergency).

Transfer of Personal Data

We use shared group resources to ensure efficiency, consequentially, Your Personal Data maybe be transferred to or may be accessible by colleagues in other parts of the Fortegra Group or third-party organisations that We engage with.

Where We transfer Your Personal Data outside of the UK or the European Economic Area (EEA) we have put in safeguards to ensure the security of your data and, upon request, can provide more information about the safeguards that We have put in place.

Security

We will take appropriate measures to protect Personal Data and special categories of Personal Data, which are consistent with the DPA 2018 and UK GDPR, including requiring third party service providers to use appropriate measures to protect the confidentiality and security of Personal Data and special categories of Personal Data.

Data integrity and retention

We will take reasonable steps to ensure that Personal Data and special categories of Personal Data processed by Us, is accurate and complete for carrying out the purposes described in this Notice. We will retain Personal Data and special categories of Personal Data for the period necessary to fulfil the purposes outlined in this Notice, unless a longer retention period is required by applicable Law or regulation.

Breach reporting

In the case of a Personal Data breach, the Data Protection Officer shall without undue delay and, where feasible, not later than 72 hours after having become aware of it, notify the Personal Data breach to the competent supervisory authority, namely the Information Commissioner’s Office and the data subject, unless the Personal Data breach is unlikely to result in a risk to the rights and freedoms of natural persons. Where the notification to the supervisory authority is not made within 72 hours, it shall be accompanied by reasons for the delay.

Your rights

We also remind You of Your rights in line with data protection laws and regulations, which are as follows:

  • Right to information, on the type of data requested, the reasons for and how We process Your Personal Data;
  • Right of access, which is Your right to obtain from Us confirmation as to whether Personal Data concerning You is being processed, where and for what purpose. Furthermore, upon Your request, We shall provide You with a copy of Your Personal Data, free of charge, in a structured, commonly used, electronic and machine-readable format, to ensure data transparency and data portability. We acknowledge that You have the right to transmit this data to any other party;
  • Right to object to the processing of Your Personal Data and to direct marketing;
  • Right of rectification/ correction of the Personal Data concerning You;
  • Right to be forgotten, that is Your right to have Your Personal Data erased, no longer processed, cease further dissemination of the data, and potentially have third parties halt processing of the data where the Personal Data is no longer relevant to the purposes for which the information was originally collected and processed. You can withdraw Your consent or object to the processing of Personal Data concerning You, or where the processing of Your Personal Data does not comply with the DPA 2018 and/or UK GDPR.
  • Right to withdraw consent, to processing Your Personal Data;
  • Right to restrict, the processing of Your Personal Data;
  • Right to portability, that is Your right to receive a copy of Your Personal Data in a commonly used machine-readable format, and to request to have the data transferred to any other parties;
  • Right to object to automated decision-making, including profiling which is the processing of Personal Data for the purpose of evaluating personal aspects in order to make predictions about You based on a series of statistical deductions.

Any such requests must be signed by You and sent to Us in writing (The Data Protection Officer, Fortegra Insurance UK Limited, 20 Fenchurch Street, 5th Floor, London, England, EC3M 3BY) or via e-mail to dpofficer@fortegra.onmicrosoft.com or on data subject access page.

You may also lodge a complaint with the supervisory authority, the Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF. They may be reached via email here: casework@ico.org.uk, if You are not satisfied with Our data protection processes.

By using our services, You consent to Us processing Your Personal Data for the purposes as described in this Notice, unless You otherwise inform Us in writing. Kindly note this Data Protection Notice can also be downloaded from our company website www.fortegra.eu

Should You require any further information, please do not hesitate to contact Us.

BUSINESS ENQUIRIES

To enquire about working with Fortegra in Europe, please click on the link below

Contact Us
Fortegra-logo-bw

A Tiptree Company (NASDAQ: TIPT)

Connect with Fortegra

Twitter Linked In

QUICK LINKS

COMPANY OVERVIEW

Fortegra Europe Insurance Company P.L.C. (Malta company registration number C 84703), with its registered office at Office 13, SOHO Office The Strand, Fawwara Building, Triq l-Imsida, Gzira, GZR 1401, Malta, is authorised under the Insurance Business Act 1998 of the Laws of Malta to carry out general insurance business and is regulated by the Malta Financial Services Authority of Triq l-Imdina, Zone 1, Central Business District, Birkirkara, CBD 1010, Malta

©2025 Fortegra. All Rights Reserved

Privacy NoticesTerms of UseSolvency and Financial Condition ReportPublication of Complaints