The Data Protection Act requires us to manage personal information in line with the data protection principles. In particular, we need to process your personal information fairly and lawfully. We collect, hold and use your personal data, and you’re entitled to know how we intend to use any information you give us.
As employees, we're personally responsible for keeping your information confidential. We're all given training and education to remind us about our obligations. Our policies and procedures are also regularly audited and reviewed.
Any reference to ‘we', ‘us' or ‘our' means Guardian Financial Services Limited as an appointed representative of Scottish Friendly Assurance Society Limited.
Guardian Financial Services Limited is an appointed representative of Scottish Friendly Assurance Society Limited which is authorised by the Prudential Regulation Authority and regulated by the Financial Conduct Authority and Prudential Regulation Authority. Registered office: Scottish Friendly House, 16 Blythswood Square, Glasgow G2 4HJ. Registration number 110002.
Guardian Financial Services Limited is registered in England and Wales under number 11115769. Registered office: 11 Strand, London WC2N 5HR.
We'll hold your personal information securely in our systems so that we, either now or in the future, can manage your relationship with us.
How we receive and use this information depends on who you are. There are separate sections below for customers and their representatives.
As a customer, you need to give us your permission to use your information so that we can provide you with the product or service you want. This includes for example:
Your Financial Adviser will ask you for your permission.
Using and sharing this information helps us to understand your needs better and administer your policies in the efficient way you expect.
If you’re representing a customer, you may be a claimant, beneficiary, trustee or other individual. We’ll collect information that you provide, or that a Financial Adviser, customer or other party provides about you, in relation to an application, policy or claim for one of our products or services.
Customers and their representatives
Whether you’re a customer or their representative, we may use and share the personal information we hold about you for the following administrative activities:
And also for the following activities:
We may use your data for other purposes where you give your specific permission or, in very limited circumstances, when required by law or where permitted under the terms of the Data Protection Act.
We won't keep your personal information for longer than necessary for administering your policy, or for legal or regulatory requirements.
We'll treat your personal information as private and confidential, but may share it with each other and disclose it outside Guardian if:
We'll always make sure your information remains safe and secure.
So that we can provide you with services and carry out the activities described above, your data may be processed by the following organisations:
This list may be updated from time to time.
The government also requires us to screen applicants, policyholders and claimants to make sure we're complying with the international fight against terrorism and other criminal activities. Because of this we may need to disclose information to government bodies.
We may in the future wish to sell, transfer or merge part or all of our business or assets, or any associated rights or interests, or to acquire a business or enter into a merger with it. If so, we may disclose your personal information to a potential buyer, transferee, or merger partner or seller and their advisers so long as they agree to keep it confidential and to use it only to consider the possible transaction. If the transaction goes ahead, the buyer, transferee or merger partner may use or disclose your personal information in the same way as set out in this notice.
If you make a claim, we may put any information you give to us onto a register of claims and share it with other insurers to prevent fraudulent claims. A list of the participants is available on request. We may also disclose your information to our agents and other insurers to investigate or prevent fraud.
Sometimes, when you take out a joint policy, this may mean your personal data will be shared with the other applicant.
The Data Protection Act defines certain information as ‘sensitive' (racial or ethnic origin, political opinions, religious beliefs, trade union membership, physical or mental health, sexual life, criminal proceedings and offences). If you apply to us for insurance we may ask you for some ‘sensitive' details. We'll only use this information to provide the service you want and we'll ask for your explicit consent for this use either directly or through your Financial Adviser, which will normally be requested by referring you to this policy. As a customer, there may be times when you give us sensitive information. We may share it with other parts of the group and our subcontractors to keep your records up to date in line with these terms.
All countries in the European Economic Area (EEA), which includes the UK, have similar standards of legal protection for your personal information. We may administer your policies and provide other services from centres outside the EEA (such as the USA and India) that don't have a similar standard of data protection laws to the UK. If so, we'll require your personal information to be protected to at least UK standards.
We may process payments through other financial institutions such as banks and the worldwide payments system operated by the SWIFT organisation if, for example, you make a CHAPS payment or a foreign payment. Those external organisations may process and store your personal information abroad and may have to disclose it to foreign authorities to help them in their fight against crime and terrorism. If these are based outside the EEA, your personal information may not be protected to standards similar to those in the UK.
To comply with money laundering regulations, there are times when we need to confirm (or reconfirm) your name and address. We may share this information with other group companies.
We have systems that protect our customers and ourselves against fraud and other crime. Customer information can be used to prevent crime and trace those responsible. We'll share your personal information from your application with fraud prevention agencies. If we receive false or inaccurate information and identify fraud, we'll pass the details to these agencies. Law enforcement agencies may access and use this information. We and other organisations may also access and use this information to prevent fraud and money laundering, for example, when:
If you’d like details of the relevant fraud prevention agencies, please contact us on:
We and other organisations may access and use the information recorded by fraud prevention agencies.
We may ask you to provide physical forms of identity verification when you apply for a policy, and we may search credit reference agency files when we assess your application. The agency also gives us other details and information from the electoral register to verify your identity. The agency keeps a record of our search, whether or not your application proceeds. Our search isn't seen or used by lenders to assess your ability to get credit.
If you send us emails from your personal account, please remember that the information may not be secure and there's a risk that it could be intercepted. If we ask you to send us sensitive information we'll suggest an appropriate method to use. If you choose to send an ‘insecure' email, you should keep the amount of confidential information you include to a minimum.
We may monitor or record our phone calls and webchat sessions with you in case we need to check we've carried out your instructions correctly, to answer questions or resolve issues, for regulatory purposes, to help improve the quality of our service, and to help detect or prevent fraud or other crimes. We may also monitor conversations for training purposes.
We may research comments and opinions made public on social networking sites such as Twitter and Facebook to help us understand our customers better.
Under the Data Protection Act you have the right of access to your personal data. If anything is inaccurate or incorrect, please let us know and we'll fix it. For details on how to request a copy of your information, please contact us on:
We'll use your personal information to give you product details and offers that are more relevant to you. We may carry on doing this after your relationship with us ends.
We might contact you by mail, phone, email, or text message unless you've asked us not to. We may also display personalised messages when you use our internet and mobile services. You can change your preferences at any time by calling us or emailing us.
You can opt out of receiving this information at any time contacting us on:
Unless you've given us your consent, we won't give information about you to other companies to use for their marketing purposes.
Organisations must lodge a notification with their regulator describing what they process personal information for. The details are publicly available from the regulator's office and you can view ours at ico.org.uk/esdwebpages/search