1. Who we are
3. Data Protection Laws
4. Our commitment to you
5. Collecting information
6. How we get information
8. Sharing your information
9. Credit searching and references
10. Anti-fraud registers
11. Information security
12. Payment security
13. Motor Insurance Database (MID)
14. Links to other websites
15. Contact and consent
16. How long we keep information
17. How to access your information
19. Governing Law
Brightside is committed to respecting your privacy and protecting the personal information that you share with us. You can be assured any information you provide to us will be used strictly in accordance with the terms laid out in this policy and complies with Data Protection laws.
We will do our best to ensure that your details are accurate and kept up-to-date and we would ask you to assist us in doing so by letting us know of any changes to your personal information. Keeping us up to date with changes to your information is also a requirement of many insurance contracts.
You should show this policy to anyone whose personal information you provide to us. You must ensure that any such information you supply relating to anyone else is accurate and that you have obtained their consent to the use of their data for the purposes set out above.
If you do not pay for your insurance, you must show these details to the person who paid on your behalf.
Data protection laws means the Data Protection Act 1998, as amended from time to time and EU General Data Protection Regulation (GDPR), and any subsequent, similar or equivalent legislation relating to the protection of personal, including sensitive data.
Please see www.ico.org.uk for our entry in the Information Commissioner's register of data controllers. Our registration number is Z5268008.
Please note that under the Rehabilitation of Offenders Act 1974 you’re not required to disclose to us any convictions regarded as spent. Take a look at www.gov.uk/government/publications/new-guidance-on-the-rehabilitation-of-offenders-act-1974 for more information
It is also an offence under the Road Traffic Act to make any false statements or to withhold information for the purpose of obtaining a Certificate of Motor Insurance.
• Where we are legally forced to
• Where there is a duty to the public to disclose information
• Where you have given permission to disclose information
• Where we have to protect our interest, including but not restricted to legal advice in the event of litigation.
All personal information is treated confidentially and is safely stored, with security systems preventing unauthorised access.
In order to assess, arrange and administer an insurance contract, provide you with the best prices and reduce fraud, we collect and share information from a variety of sources and methods as detailed within this policy. If we are unable to have your consent for this or you subsequently withdraw your consent, then we may not be able to offer you insurance products or credit.
It's important that you provide complete, accurate and up to date information prior to purchasing, throughout the lifetime and when you renew an insurance policy. If you don’t, your policy may be cancelled, or treated as if it never existed, or your claim rejected or reduced.
We collect information about you when:
• You visit our websites
• You call us to obtain a quote and buy insurance
• You make changes, cancel or renew your insurance policy
We limit the collection of personal information to what we need to know to maintain the accuracy of our records, verify the identity and assess the financial standing of customers, assess and arrange credit, handle claims, deal with complaints, re-engage with you if we lose contact, assist us in providing a high standard of service, and to fulfil any legal and regulatory requirements.
We may collect, use, store and transfer different personal information about you which we have grouped together below:
• Identity Data includes [first name, last name, username or similar identifier, marital status, title, date of birth and gender].
• Contact Data includes [address, email address and telephone numbers].
• Financial Data includes [bank account and payment card details].
• Transaction Data includes [details about payments to and from you and other details of products and services you have purchased from us].
• Technical Data includes [internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access this website, further information is provided within our Cookie Section].
• Profile Data includes [your username and password, purchases or orders made by you, your interests, preferences, feedback and survey responses].
• Usage Data includes [information about how you use our website, products and services].
• Marketing and Communications Data includes [your preferences in receiving marketing from us and our third parties and your communication preferences].
• Claims Data includes [Date of Claim, Claim Status, Value of Claim, NCB affected]
We may also collect data which the Data Protection Act defines as sensitive, such as;
• Medical history includes [Medical Condition, Medications]
• Criminal convictions includes [the offence committed, the date of conviction].
We will not use data regarded as sensitive data except for the specific purpose of arranging and administering an insurance policy. You may object to Brightside processing your information, however, Brightside will not be able to provide insurance, or comply with your request to object where Brightside have compelling legitimate grounds, or the processing is for the establishment, exercise or defence of legal claims.
When you visit our websites, technical information about the device and operating system used to access the site is recorded. Further detail regarding this technical information is explained in our Cookie section. We use this information to give us a better understanding of how you use and interact with our websites.
This information is stored and used for aggregated and statistical reporting and informs changes on how to improve your experience with us.
To provide you with best experience we may also use publically accessible sources such as the DVLA and postcode lookups to help populate some of the forms needed in the application process.
We also analyse the data we collect within quotes and applications to inform automated decision making, detect trends, including market research and profiling for the detection of fraud, determining pricing and credit options.
Cookies are small, often encrypted text files placed on your computer by our websites or sometimes by emails. They are used by our web developers and digital team to provide us with useful information so you can use our site more efficiently and save you time by not having to re-enter your details each time you visit. They also make sure you receive the most relevant information from us.
Persistent cookies - These cookies stay on your computer until they are removed manually or automatically.
Session cookies - These cookies remain on your computer until you close your browser, when they are automatically deleted.
Essential cookies are technical cookies that are required for the operation of our sites. Without essential cookies our web site can't operate properly. Essential cookies include, for example, cookies that enable you to log into secure areas.
Performance cookies allow us to recognise and count the number of visitors to our web site and to see how visitors move around our pages. This helps us to improve the way our web site works by enabling us to tailor our site to the way visitors use them. The information we collect from performance cookies is aggregated which means that we cannot identify you from it.
As we are an insurance broker we will collect and process your personal information and share it with insurers or providers of services. To provide you with a wide range of products and services we work closely with many insurers and services.
Examples of who we need to share your data with are:
• Insurers that provide insurance policies
• Independent contractors we engage from time to time to ensure we meet and exceed industry standards.
• Regulatory, governmental or other supervisory body to which we have to provide or give access.
• Credit reference agencies, credit providers and debt collection agencies
• Motor insurance, claims and underwriting databases
• Anti-Fraud, theft and vehicle registers
If the products we offer require us to transfer your personal data to an insurer outside of the European Economic Area, we will impose contractual obligations to protect your personal data to the same standard required in the European Economic Area. We will also endeavour to choose insurers that subscribe to 'international frameworks' intended to enable secure data sharing between countries.
A full list of insurers we work with can be found here.
Our insurers and credit providers need to have the necessary facts to assess your insurance risk, verify your identity, to help prevent fraud and to provide you with their best premium and payment options. Credit searching, scoring and referencing are methods that insurers and credit providers use to verify your information. By applying for a quotation, you agree to these uses of your information.
Public and personal data from a variety of sources, including a credit reference agency and other organisations are used at quotation and renewal and in certain circumstances where policy amendments are requested. The credit referencing agencies record our enquiries but your credit standing will not be affected.
This search will appear on your credit report and will be visible to other credit providers. It will be clear that this is a quotation rather than a credit application by you to pay by monthly instalments.
Where automatic credit scoring computations are used, acceptance or rejection of your application will not depend the credit scoring process alone.
When dealing with your request for insurance, anti-fraud registers may be searched. We use a number of anti-fraud methods both at and after application including SIRA, a comprehensive fraud prevention and detection solution from Synectics Solutions. We will also pass details to the Claims and Underwriting Exchange Register and the Motor Insurance Anti-Fraud and Theft Register, to check the information provided and prevent fraudulent claims. MIB is the data controller for the Claims and Underwriting Exchange (CUE) and Motor Insurance Anti-Fraud Theft Register (MIAFTR) databases.
Under the conditions of your policy, you must inform the insurer of any incident (such as an accident or a theft) which may, or may not, give rise to a claim. When you inform us of an incident, we’ll pass the information relating to it to the registers.
If we identify a discrepancy on the aforementioned registers which does not correspond to the information you have provided, we will apply the correct information to your policy and process this change as a mid-term adjustment. Where applicable, an additional premium will be charged by your insurer. If the correct information is unacceptable to your insurer, cover may be cancelled or voided (which means to treat as if the policy never existed).
We may detect and prevent fraudulent claims and/or activities by undertaking searches against your (or any person included on the proposal) Drivers Licence Number (DLN) against details held by the DVLA to confirm your licence status, entitlement and restriction information and endorsement/ conviction data. This helps insurer’s check information to prevent fraud and reduce incidences of negligent misrepresentation and non-disclosure. A search of the DLN with the DVLA should not show a footprint against your (or another relevant person included on the proposal) driving licence.
How we protect your personal information from misuse and abuse is of great importance to us. We regularly review our technical and physical security procedures to protect your personal data from unauthorised access.
The Brightside website uses secure socket layer (SSL) encryption technology to encrypt sensitive information such as your financial information. When you request a quote from us, we will process the data on a secure server.
When you purchase a policy, with your consent, your card and bank account details will be stored, safely in accordance with industry standards.
If you do not want your credit/debit card being used for this purpose you may contact our customer services team at any time to make alternative payment arrangements.
Information relating to your motor insurance policy will be added to the Motor Insurance Database (“MID”) managed by the Motor Insurers Bureau (“MIB”). MID and the data stored on it may be used by certain statutory and/or authorised bodies including the Police, the DVLA, the DVA, the Insurance Fraud Bureau and other bodies permitted by law for purposes not limited to but including:
i) Electronic Licensing
ii) Continuous Insurance Enforcement
iii) Law enforcement (prevention, detection, apprehension and/or prosecution of offenders)
iv) The provision of government services and/or services aimed at reducing the level and incidence of uninsured driving.
If you are involved in a road traffic incident (either in the UK, the EEA or certain other territories), insurers and/or the MIB may search the MID to obtain relevant information.
Persons (including his or her appointed representatives) pursuing a claim in respect of a road traffic incident (including citizens of other countries) may also obtain relevant information which is held on the MID.
It is vital that the MID holds your correct registration number. If it is incorrectly shown on the MID you are at risk of having your vehicle seized by the Police. You can check that your correct registration number details are shown on the MID at www.askmid.com.
Our website may contain links to other websites of interest. However, once you have used these links to leave our site, you should note that we do not have any control over other websites. Therefore, we cannot be responsible for the protection and privacy of any information which you provide whilst visiting such sites and such sites are not governed by this privacy statement. You should exercise caution and look at the privacy statement applicable to the website in question. Please be advised that we do not represent either the third party or you, if you enter into a transaction on the third party site.
We gather several consents from you throughout your quote. You choose the consents you give. So that you know what these are, we’ve listed them below;
• We’re always looking to offer our customers great products at great prices. We’ll only do this when we have your consent.
• We work with great partners who can give you special offers and discounts. We’ll only do this when we have your consent.
• Our intention is to renew your policy automatically, meaning you can enjoy another 12 months of insurance without having to lift a finger. We’ll write to you in good time before the end of your policy to confirm this and we’ll use your existing payment details to collect any payments.
• We’d like to be able to automatically collect payments from the existing payment details we have for you. This means you will benefit from the fact that we will be able to quickly and simply refund any outstanding money to your account and take payment for any chargeable adjustments you make to your policy or collect any outstanding balances to ensure you aren’t left without insurance. Don’t worry, we won’t take any money without telling you first.
You can change these consents at any time. Simply contact us by phone, post or email. You can find our contact page here.
Any information we hold about you, whether on our computer system or on paper files, will be treated as private and confidential. We only keep your information as long as we need to, and in any circumstances, no longer than 50 years.
Under the Data Protection laws you have the right to access personal information held about you by Brightside Insurance Services Ltd.
If you would like a copy of the personal information we hold about you, or if you have any questions or queries in respect of confidentiality, data protection or a need to change or delete information please contact Brightside.
You should also contact us if you have concerns about the information we hold on you or how we have handled it.
To contact Brightside about any of the above you can either email: subjectaccessrequest@Brightsidegroup.co.uk with SAR in the subject, or write to, SAR, Brightside Park, Severn Bridge, Aust, Bristol, BS35 4BL. We will take reasonable steps to confirm your identity before providing you with details of any personal information we may hold about you.
If you still have any concerns about how we have handled your information or for more information on the Data Protection Act you can visit the Information Commissioner's Office website https://ico.org.uk/for-the-public/ or call them on 0303 123 1113 (local rate) or 01625 545 745 if you prefer to use a national rate number.
You can also email: firstname.lastname@example.org (please include your telephone number) or write to the Information Commissioner's Office at Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF.
Access to our website ('Site') and our rights in it:
We are the owner of all copyright, design rights, database rights and all other intellectual property rights in the content of this Site unless otherwise stated.
You are permitted to access and use this site for personal, non-commercial use only. You may not access or use this site for any commercial purposes or otherwise exploit, extract, publish, distribute, or reproduce any part of this site for any commercial purpose.
We will take very seriously any access to or interference with this site with intent to deny, corrupt or damage or otherwise interfere with service from the Site or for other commercial purposes. We will monitor any such use and will take whatever action necessary to protect against such activities. By using this site, you agree that damages may not be an adequate remedy for any breach of these terms or infringement of any of our rights by you and you accordingly agree that we are entitled to any and all of the following remedies: injunction; specific performance; orders to deliver up infringing copies or materials and any other legal or equitable relief for any threatened or actual breach and/or infringement. You further agree that no proof of special damages is necessary for us to obtain any such remedies.