To arrange insurance cover and handle insurance claims, Mercari Risk Management and other participants in the insurance industry are required to use and share Personal Data. For an overview of how and why the insurance industry is required to use and share Personal Data please see the website of a UK insurance industry association, or the Lloyd’s Market Association (the LMA Notice). Mercari Risk Management’s use of Personal Data is consistent with the LMA Notice.
During the insurance lifecycle Mercari Risk Management will receive Personal Data relating to potential or actual policyholders, beneficiaries under a policy, their family members, claimants and other parties involved in a claim. Therefore references to “individuals” in this notice include any living person from the preceding list, whose Personal Data Mercari Risk Management receives in connection with the services it provides under its engagements with its clients. This notice sets out Mercari Risk Management’s uses of this Personal Data and the disclosures it makes to other insurance market participants and other third parties.
IDENTITY OF CONTROLLER AND CONTACT DETAILS
Mercari Risk Management Ltd., (or We) of 3 Church Cottage, Main Road, Dibden, Hampshire SO45 5TE is the controller in respect of the Personal Data it receives in connection with the services provided under the relevant engagement with its client.
PERSONAL INFORMATION THAT WE PROCESS
We collect and process the following Personal Data:
Individual details – name, address (and proof of address), other contact details (e.g. email and telephone details), gender, marital status, family details, date and place of birth, employer, job title and employment history, relationship to the policyholder, insured, beneficiary or claimant;
Identification details – identification numbers issued by government bodies or agencies (e.g. depending on the country you are in, social security or national insurance number, passport number, ID number, tax identification number, driver’s licence number);
Financial information – payment card number, bank account number and account details, income and other financial information;
Insured risk – information about the insured risk, which contains Personal Data and may include, only to the extent relevant to the risk being insured:
• Health data – current or former physical or mental medical conditions, health status, injury or disability information, medical procedures performed, elevant personal habits (e.g. smoking or consumption of alcohol), prescription information, medical history;
• Criminal records data – criminal convictions, including driving offences; and
Other special categories of Personal Data – racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data, data concerning an individual’s sex life or sexual orientation;
Policy information – information about the quotes individuals receive and the policies they obtain.
Credit and anti-fraud data – credit history and credit score, information about fraud convictions, allegations of crimes and sanctions details received from various anti-fraud and sanctions databases, or regulators or law enforcement agencies;
Previous claims – information about previous claims, which may include health data, criminal records data and other special categories of Personal Data (as described in the Insured Risk definition above);
Current claims – information about current claims, which may include health data, criminal records data and other special categories of Personal Data (as described in the Insured Risk definition above);
Marketing data – whether or not the individual has consented to receive marketing from us and/or from third parties; and
Website and communication usage – details of your visits to our websites and information collected through cookies and other tracking technologies, including, but not limited to, your IP address and domain name, your browser version and operating system, traffic data, location data, web logs and other communication data, and the resources that you access. Where we collect such information directly from individuals, we will inform them of whether the information is required and the consequences of not providing it on the relevant form.
SOURCES OF PERSONAL DATA
We collect and receive Personal Data from various sources, including (depending on the service provided and country you are in):
• Individuals and their family members, online or by telephone, or in written correspondence;
• Individuals’ employers or trade or professional associations of which they are a member;