Introduction
Beazley values its customers and is committed to protecting and respecting your privacy. This Data Privacy Notice explains how Beazley Plc and its affiliates (together “Beazley”, “we”, or “us”) use personal data that we collect or is provided to us by customers, brokers, coverholders, claimants, third party service providers (“TSPs”), complainants and job applicants. Please take the time to read and understand this Data Privacy Notice.
This Data Privacy Notice applies to the processing of your personal data by us:
We are a data controller in respect of your personal data for the purposes of applicable data protection laws, including the EU’s General Data Protection Regulation (“EU GDPR”) and national implementing legislation, the UK GDPR (the EU GDPR as transposed into the laws of the United Kingdom by virtue of the European Union (Withdrawal) Act 2018. We are responsible for ensuring that we use your personal data in compliance with data protection law.
Types of personal data we collect and process
We may collect and process different types of personal data, depending on the nature of the services involved. This includes but is not limited to:
Why we use your personal data
We collect your personal data to help us with advising on, arranging, underwriting or administering an insurance contract or administering a claim under an insurance contract. Specifically:
a. Advising on, arranging and underwriting your policy, including:
• understanding your insurance requirements to offer you a product that matches your needs and circumstances;
• understanding the nature of the risk to be covered by the policy, including risk modelling and statistical use;
• providing competitive and appropriate pricing;
• performing credit or money laundering checks or other checks required by law; and
• carrying out relevant fraud prevention procedures.
b. Administering your policy, including:
• managing any changes to your policy;
• providing and improving services under and associated with the insurance contract as appropriate; and
• maintaining contact with you, for issues relating to your policy and general customer contact.
c. Administering your claims, including:
• registering your claims;
• assessing your claims, including any liaison with third parties potentially involved in your claims, e.g. communications regarding health information;
• running due diligence checks e.g. credit or money laundering;
• managing investigations of fraudulent claims; and
• the defence of or prosecution of valid and legal claims.
d. Recruitment of current and former employees:
• for the purpose of processing an employment application;
• assessing your suitability for employment;
• carrying out assessments, tests or occupational profiles;
• providing or requesting employment references; and
• carrying out background screening checks.
e. Further reasons, including:
• ensuring we comply with any legal or regulatory obligations;
• testing our systems and processes where imitation data is unavailable. Testing which uses personal data will only by carried out in limited circumstances and only when appropriate safeguards and controls have been put in place;
• carrying out procedures to manage and respond to security incidents;
• perform the essential practice and process of underwriting;
• analysing our clients and the products they select;
• for reinsurance purposes;
• processing the enrolment and management of the share scheme;
• to audit our business;
• transferring books of business, company sales and reorganisations; and
• for marketing purposes.
Our legal bases for processing your personal data
We process personal data where necessary in order to:
• engage with you when you or someone acting on your behalf asks us for a quote and are considering entering into a contract;
• satisfy our obligations under a contract with you;
• comply with a legal or regulatory obligation, such as due diligence and reporting obligations, and responding to binding requests from regulators, law enforcement authorities or other government authorities;
• establish, exercise or defend our legal rights or for the purpose of legal proceedings;
• detect and prevent fraud, in relation to a substantial public interest;
• pursue our legitimate business interests (or the legitimate interests of one or more of our affiliates or a relevant third party), such as:
- providing clients with insurance services;
- making improvements to our services;
- ensuring we price our products appropriately;
- managing risk;
- ensuring we manage our business efficiently;
- carrying out audits; and
- maintaining accurate records.
Special category personal data that we collect about you
Special category personal data is data relating to: racial or ethnic origin, criminal activity or proceedings in certain countries, political opinions, religious beliefs, trade union membership, genetic data, biometric data, data concerning health or sex life or sexual orientation. Special category data is subject to specific protection or restriction under data protection laws.
We may process special category data when this is necessary to:
• advise, arrange, underwrite or administer an insurance policy or administer a claim under an insurance policy;
• protect, investigate, and defend legal claims; and
• exercise a right or comply with an obligation arising in connection with an insurance contract.
We will only process your special category personal data if permitted by law and only if one of the
following conditions is met:
• we have obtained your explicit consent;
• the processing is necessary for carrying out our obligations and specific rights in the field of employment law, social security or social protection law (including obligations in relation to health and safety and disability discrimination, occupational health, sickness absence, maternity leave, family emergency leave, paternity leave and parental leave);
• the processing is necessary to protect your health or safety in an emergency (or that of another person) where you are physically or legally incapable of giving consent;
• the data in question has been made public by you;
• the processing is necessary for the purpose of, or in connection with, any actual or prospective legal proceedings, for the purpose of obtaining legal advice or otherwise for the purposes of establishing, exercising or defending our legal rights;
• the processing is necessary for reasons of substantial public interest on the basis of local law;
• the processing is necessary for preventative or occupational medicine, for the assessment of your working capacity, medical diagnosis or pursuant to a contract with a health professional and subject to appropriate safeguarding measures; or
• the processing is otherwise permitted by applicable law.
Who we share personal data with
To allow us to meet our obligations and effectively provide our services to you, it may be necessary to pass your personal data onto external parties. These external parties may include:
• credit reference agencies;
• anti-fraud databases;
• claims handlers;
• legal professionals;
• loss adjustors;
• external parties involved in the claim;
• private investigators;
• the police and law enforcement;
• external parties involved in the investigation, defence or prosecution of claims;
• other insurers (under court order or to prevent and detect fraud);
• regulators and relevant supervisory authorities;
• companies that are part of the Beazley group;
• our TSPs, suppliers and sub-contractors for the performance of any contract we have with them.
Your data will be shared securely, and only when absolutely necessary. It will never be sold to external parties or organisations for marketing purposes.
International data transfers
As Beazley is a global insurer, we may transfer or share your data with [our affiliates or other thirdparties] who are located outside the European Economic Area (“EEA”) or the United Kingdom (“UK”) for our operational procedures, including countries that may not offer an equivalent level of protection to that applicable within the EEA or the UK. Personal data may also be processed by staff operating outside the EEA or UK who are working for us, our affiliates or one of our suppliers. We will always take steps to ensure your data is treated and transferred securely with appropriate safeguards and controls in place, in accordance with applicable data protection laws. Where personal data is transferred outside of the EEA or the UK (as applicable), we will ensure that the transfer is subject to appropriate safeguards or is otherwise permitted under applicable data protection law. For example, the country or jurisdiction to which the personal data is transferred may be approved by the data protection authority of that country or jurisdiction as offering an adequate level of protection for your personal data or the recipient may have agreed to model contractual clauses approved by the data protection authority of the country or jurisdiction that oblige them to protect the personal data.
You can obtain more details of the protection given to your personal data when it is transferred outside the EEA or the UK (as applicable), including a copy of any model contractual clauses entered into with recipients of your personal data, by contacting Beazley using the details set out under “Contacting us” below.
Ongoing storage and use of your personal data
We will not keep personal data for longer than necessary for the purpose for which it is processed. It will be retained in accordance with our Records Management Policy. Applicable laws and regulations may require us to keep records for specific periods of time, subject to certain exceptions. We may also need to keep records in order to administer the insurance relationship, to fulfil our contractual or statutory obligations or to resolve queries or disputes which may arise.
Your data subject rights
You have a number of legal rights in relation to the personal data that Beazley holds about you. Depending on your location, these rights may include the right to:
• obtain information regarding the processing of your personal data and to access the personal data that Beazley holds about you;
• in some circumstances, receive some personal data in a structured, commonly used and machine-readable format and the right to request that Beazley transmits that data to a third party where this is technically feasible. Please note that this right only applies to personal data which you have provided to Beazley;
• withdraw your consent to Beazley’s processing of your personal data. Please note, however, that we may still be entitled to process your personal data if we have another legitimate reason (other than consent) for doing so;
• request that Beazley rectifies your personal data if it is inaccurate or incomplete;
• request the erasure of your personal data in certain circumstances. Please note that there may be circumstances where you ask Beazley to erase your personal data but Beazley is legally entitled to retain it;
• request that Beazley restricts, or the right to object to the use of your personal data in certain circumstances. Again, there may be circumstances where you object to, or ask Beazley to restrict, its processing of your personal data but Beazley is legally entitled to continue processing your personal data or to refuse that request; and
• lodge a complaint with the data protection regulator (details of which are provided below) if you think that any of your rights have been infringed by Beazley.
Contacting us
If you would like further information on the collection, use, disclosure, transfer or processing of your personal data or the exercise of any of the rights listed above, please address questions (stating your request and contact details) to the contact details provided below.
The Data Protection Officer
Beazley Plc
22 Bishopsgate
London
EC2N 4BQ
Email: DPO@beazley.com
You can find out more information about your rights by contacting a relevant supervisory authority, such as the UK’s Information Commissioner’s Office, or by searching its website. Further details on this can be found on the following websites:
UK https://ico.org.uk/
Ireland https://dataprotection.ie/
France https://www.cnil.fr/fr
Germany https://www.bfdi.bund.de/
Spain https://www.aegpd.es/
Insurance Industry and Data Processing
Further details of how the insurance industry uses and processes data can be found in the Lloyds website via the core uses information notice. Please note that this is a third party website and Beazley is not responsible for the content.
https://www.londonmarketgroup.co.uk/gdpr
Automated decision making
In some cases we use an automated decision making and profiling process to generate a quote to provide you with an insurance service; this process will only use the information which you have provided to us and will make an overall assessment of your application. This assessment will consider the level of risk involved and if applicable, generate a quote for the insurance service. The automated decision making process is regularly tested to ensure it remains fair, effective and unbiased.
Use of cookies
Cookies are small text files that are placed on your computer by websites that you visit. They are widely used in order to make websites work, or work more efficiently, as well as to provide information to the owners of the site.
We use cookies on our websites so that we can track how users navigate through our sites, and in order to enable us to evaluate and improve our sites. We use this information to compile statistical data on the use of our websites, but the information obtained is used on an anonymous, aggregated basis and you cannot be identified from this. Cookies cannot look into your computer and obtain information about you or your family or read any material kept on your hard drive and cookies cannot be used to identify who you are.
You are not obliged to accept a cookie that we send to you and you can in fact modify your browser so that it will not accept cookies. However, if you select this setting you may be unable to access certain parts of our site. For more information about cookies including how to set your internet browser to reject cookies please follow the instructions below:
• Internet Explorer: Tools button > Internet options > Privacy > Settings > Advanced.
• Mozilla Firefox: Menu button > Options > Privacy & Security > History > Use custom settings for history.
• Google Chrome: More button > Settings > Advanced > Privacy and security > Content settings > Cookies.
• Apple Safari: Preferences > Privacy.
The table below explains the cookies we use and why:
|
Cookie |
Name |
Purpose |
More information |
|
Cookie WebTrends |
Name WT_FPB, WT_PBC |
Purpose These cookies are used to collect information about how visitors use our site. We use the information to compile reports and to help us improve the site. The cookies collect information in an anonymous form, including the number of visitors to the site, where visitors have come to the site from and the pages they visited. |
More information |
|
Cookie Google Analytics |
Name _utma, _utmb, _utmz, _utmc |
Purpose These cookies are used to collect information about how visitors use our site. We use the information to compile reports and to help us improve the site. The cookies collect information in an anonymous form, including the number of visitors to the site, where visitors have come to the site from and the pages they visited. |
More information |
|
Cookie Windows Internet Information Services |
Name cs(cookie) |
Purpose These cookies are used to collect information about how visitors use our site. The cookies collect information in an anonymous form, including the number of visitors to the site, where visitors have come to the site from and the pages they visited. |
More information |
|
Cookie .Net or ASPX cookie when users log into the Lawyers and A&E risk management sites |
Name IGXSessionState |
Purpose These cookies are used to track whether a user has logged in to the risk management site. If the cookie exists, access to the site is allowed. If the cookie does not exist, the user will receive the login screen. |
More information |
Web analytics
In order to develop our site in line with our customers' needs, Beazley keeps a track on which pages on our website are visited most frequently and how long visitors spend on our site. We use this information to help improve the site.
We never gather other information from your disk or computer. We collect a copy of the data held by the cookie for inclusion in any analysis. We use full SSL protocols when collecting visitor information on secure pages; this ensures that the site's security is not compromised. We encrypt all transmitted visitor information (even from non-secure pages), so no-one else can read the information we gather.
We use Google Analytics, a web analytics service provided by Google, Inc. and WebTrends to analyze website traffic. Google Analytics and WebTrends set a cookie in order to evaluate your use of this site. Google and WebTrends store the information collected by the cookie on servers in the United States, European Union Member States and other countries. Google and WebTrends may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google's and WebTrends' behalf. Google and WebTrends will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. Google and WebTrends will not associate your IP address with any other data held by Google or WebTrends. Beazley use Google Analytics and WebTrends to optimise this site and improve the service we provide to our visitors.
More information about how to reject or delete this cookie may be found here:
http://www.google.com/intl/en/privacypolicy.html
http://webtrends.com/privacy-policy/
YouTube cookies
We embed videos from our official YouTube channel using YouTube's privacy-enhanced mode. This mode may set cookies on your computer once you click on the YouTube video player, but YouTube will not store personally-identifiable cookie information for playbacks of embedded videos using the privacy-enhanced mode. To find out more please visit YouTube's embedding videos information page.
Search engine
The search engine on our website is designed to be powerful and easy to use . The search is made possible by a piece of hardware (a search 'appliance') supplied by Autonomy that is plugged into our server and continuously indexes the content on our site. All search requests are handled by the appliance and the information is not passed on to any third party, including Autonomy.
Website surveys
From time to time, we may invite our Site visitors to participate in an online survey about our online services. Participation is entirely optional and any information we collect is only used to improve the products and services we offer to our visitors. We may collect your name, company and email address.
Changes to this Data Privacy Notice
If we change this Data Privacy Notice in any way, we will post these changes on this page. You are responsible for checking this Data Privacy Notice whenever you access the Site.
Last updated 12 May 2025