1. Introduction
This Privacy Notice (“Notice”) explains how Insurers Fraud Bureau “IFB” and its affiliated companies and subsidiaries collects and uses personal data in connection with this website. Throughout this Notice Insurers Fraud Bureau may be referred to as “we”, “us”, “our” or “IFB”.
Insurers Fraud Bureau is the data controller responsible for the personal data collected about you in connection with this website.
2. Information we collect about you
The personal data we collect and use in connection with this website may include:
- Contact details, such as your name, email address or telephone number,
- Other personal details, such as your employer details date of birth and vehicle registration number;
- Details of suspected or proven offences
- Technical information, such as information about your device IP address, browser configuration, geolocation and other technical information about how you interact with specific pages on our website.
3. How we collect your information
- We may collect personal data from you directly when you interact with or use our website or where you choose to correspond with us in connection with our products and services.
- You are required to provide any personal data we reasonably require to enable us to meet our obligations in connection with the services we provide to you, including any statutory or contractual obligations. Where you are unable to provide us with personal data we reasonably require to meet our obligations, we may be unable to offer services to you and we may have to terminate any existing services with immediate effect.
- Where you provide personal data about other third-party individuals, such as your spouse, civil partner, children, dependants or emergency contacts, where appropriate, you should direct these individuals to this Notice to ensure they understand how we collect and use their personal data.
- In addition to collecting personal data from you directly, we may also collect information about you from other third parties, such as insurers. This information may be sourced prior to or whilst we are making arrangements to provide the services to you.
4. How we use your information
The personal data we collect in connection with this website is used for the following purposes:
- To offer and administer the services we provide to you, including administering our customer records and notifying you of changes and updates to our services;
- To investigate, administer and settle insurance claims;
- To prevent, detect and investigate fraud or other criminal conduct;
- To analyse and determine the level of engagement with our website and whether the communications that we send to customers are relevant, e.g. we may analyse your browsing behaviours and whether or not you open the communications that we send you;
- To comply with our legal obligations;
- To carry out our obligations arising from any contracts entered into between you and us and to provide you with the information, products and services that you request from us;
- To provide you with information about other goods and services we offer that are similar to those that you have already enquired about;
- To improve this website to ensure that content is presented in the most effective manner for you and for your computer;
- As part of our efforts to keep this website safe and secure;
- The facilitation of the sharing of Fraud related information;
- The prevention and/or detection and/or investigation of crime (including, the crime of insurance fraud);
- The apprehension and/or prosecution of offenders (including, without limitation, in respect of insurance fraud);
- The assessment or collection of any tax or duty or of any imposition of a similar nature;
- The management of the risk of Fraud by Members and the repudiation of insurance application and claims;
- The protection of Insurers and non-fraudulent insurance policy holders; and
- The facilitation of the consistent identification, classification, benchmarking, measurement and reporting of fraud across the insurance industry (including to the NFIB) in a non-discriminatory manner only and in accordance with all applicable Legislation.
5. Legal bases for processing your information
We rely on the following legal bases to collect and use your personal data.
- To pursue our legitimate interests or a third party's legitimate interests to provide the services in the most appropriate way. This means that we will process and share your personal data to carry out some ancillary activities in connection with the services you have requested, such as performing identity and due diligence checks, monitoring communications for training and quality purposes, identity verification, claims investigation and administration, fraud and crime prevention, research and management information to identify trends and to assist resource allocation, business administration and debt administration and recovery of losses from liable parties.
- To fulfil our obligations in connection with any contract that we may have with you or take appropriate steps prior to entering into a contract with you. This means that we will process and share your personal data to provide any services you have requested and fulfil our contractual obligations, including responding to any prospective enquiries that you make about our services.
We rely on the following condition to process data relating to suspected or proven offences.
- To prevent and detect fraud.
6. Who we share your information with
We generally share the personal data we collect on our website with the following recipients:
- Subsidiary companies within the group, where necessary to provide or administer our services;
- Third party service providers and partners that process personal data on our behalf, where necessary to provide or administer our services. These processing operations will be carried out under our strict instructions and control;
- Insurance market participants, such as insurers;
- Legal advisors and claims investigators, where necessary to exercise, investigate or defend legal claims, insurance claims or other similar claims;
- Law enforcement bodies and other authorities, e.g. where necessary for the prevention and detection of crime or the apprehension or prosecution of offenders;
- Successors of our business, where our business is sold to, acquired by or merged with another organisation, in whole or in part;
- Other third parties, e.g. where necessary to comply with our legal obligations, at the request of a public authority conducting an investigation, to obtain legal advice or where we believe in good faith the law requires us to disclose information. This includes disclosure to third party managed databases of insurance claims used to help prevent fraud, and regulatory bodies for the purposes of monitoring and/or enforcing IFB's compliance with any regulatory rules/codes;
- Analytics and search engine providers that assist us in the improvement and optimisation of this website; and
- A third party we are under a duty to disclose or share your personal data with in order to comply with any legal obligation, or in order to enforce or apply our Terms of Use and other agreements; or to protect the rights, property, or safety of IFB, its Group, our members or others. This includes exchanging information with other companies and organisations for the purposes of fraud prevention and detection protection.
7. Accuracy of your information
We rely on the availability of accurate personal data to enable us to provide the services to you and operate our business. You should therefore notify us of any changes to your personal data that may affect the proper management and administration of the services we provide to you.
8. Overseas transfers of your information
Although we are established in the UK, sometimes it may be necessary to transfer your personal data to other countries outside the UK or European Economic Area. Where we do so we will ensure that suitable safeguards are in place to protect the rights conferred to you under the applicable data protection laws. For example, where necessary we will put in place contractual agreements approved by the UK or European data protection authorities to ensure an adequate level of protection for the personal data.
9. Retention of your information
We retain appropriate records of your personal data to comply with our legal obligations. These records are retained for 5 years following the end of the customer relationship.
10. Your information rights
You have the following rights in relation to the personal data we hold about you.
- The right to access and inspect your personal data or be provided with a permanent copy of the information we hold about you.
- The right to request inaccurate personal data about you is rectified, particularly if it is factually inaccurate.
- The right to request your personal data is erased in certain circumstances, e.g. if it is no longer necessary for us to retain the information.
- The right to object to the use of your personal data, particularly where you feel there are no longer sufficient grounds for us to continue processing the information or we rely on the legitimate interests lawful basis to carry out the processing.
- The right to request the restriction of your personal data from further processing, e.g. where the personal data is inaccurate and you request the restriction of the information until it is corrected.
- The right to request that some aspects of your personal data be provided to you or a third party of your choice in electronic form to enable its reuse.
- The right to refuse direct marketing communications or ask to stop sending you direct marketing communications.
- The right to withdraw your consent, where you have previously given your consent for us to collect and process your personal data.
- The right to object to a decision which is based solely on automated processing and which creates legal or other significant effects.
- The right to complain to the data protection supervisory authority if you have concerns about the way we collect and use your personal data.
Please note that some of the rights described above may be limited in certain circumstances, such as where exemptions or legal obligations apply or there is an overriding legitimate interest in continuing to process the personal data. If we are unable to fulfil a request from you to exercise one of the above rights, we will contact you to explain the reason for our refusal. If you wish to exercise your rights or have concerns about the way we collect and process your personal data please contact us at: dsar@mib.org.uk.
11. Cookies
We use cookies on our websites. Cookies are small data files sent from a website to your web browser. They are stored in your web browser’s cache and allow a website or a third party to recognise your browser or mobile device. We collect information about you automatically when you visit our website by using cookies and other tracking technology. For more information about cookies, and other tracking technology including how to turn them off, please see our Cookie Notice
12. Service complaints
If you wish to make a complaint or enquire about any aspect of the services we provide, please contact us at:
Customer Services
Insurance Fraud Bureau
Linford Wood House
6-12 Capital Drive
Milton Keynes
MK14 6XT
email: feedback@mib.org.uk
13. Data protection complaints
If you wish to make a complaint about the way we use your personal data you should contact us in the first instance at:
Data Protection Officer
Motor Insurers Bureau
Linford Wood House
6-12 Capital Drive
Milton Keynes
MK14 6XT
email: privacy@mib.org.uk
If you are not satisfied with the way we have handled your data protection complaint you may refer your complaint to the UK data protection supervisory authority at:
Information Commissioner's Office
Wycliffe House,
Water Lane,
Wilmslow,
SK9 5AF
Website: www.ico.org.uk
14. Changes to this notice
We will update this Notice from time to time to ensure it continues to reflect the way we collect and use your personal data. Any changes to this Notice will be posted here and notified to you via email and such changes will become effective as soon as they are posted. You should therefore periodically review this notice to ensure you understand how we collect and use your personal data.
Cookies Policy
The following policy explains how the IFR website use cookies to provide you with an optimised user experience.
Cookies are small files that are placed on your computer or smart phones device by websites that you visit. They are widely used in order to make websites work, or work more efficiently, as well as to provide information to the website owners.
Essential cookies. These are cookies that are fundamentally required for operation of this Website. We use Umbraco CMS system cookies to prevent Cross-site scripting attacks.
Optional cookies. These are used for analytics and performance that allow us to recognise and count the number of visitors and to see how visitors move around websites.
What is a cookie
A cookie is a small text file that is stored by your browser (e.g. Internet Explorer or Safari) on your device (e.g. computer or phone). They enable websites to store user information such as preferences and settings. Cookies basically allow websites to remember users and their preferred settings for that particular site, enabling the site to respond accordingly.
The IFR website use the following cookies:
Anonymous analytics cookies can tell us whether or not you have visited the site before. Every time a user visits our website, web analytics software provided by a third party generates a cookie.
Your browser will let us know if you have these cookies or not, if you do not we will generate new ones. This allows us to track individual unique users and how often they are visiting IFR website.
- These cookies cannot be used to identify individuals unless they are signed in to the IFR website. If the user is not signed in then the cookies are used for statistical purposes only. If you are signed in we will know the details supplied for this purpose such as username and email address.
- Registration cookies signal to us whether the user is signed in or not, once registered with the IFR website.
- We use these cookies to determine which account you are signed in with and which services you are allowed access to. It also allows us to link comments and posts with the correct username.
As long as you have not selected 'keep me signed in' the cookies will be deleted when you logout, close your browser or shut down your computer.
Removing Cookies
The IFR website will not use cookies to collect personally identifiable information about you. However you may wish to restrict or block the cookies set by us and this can be done through your browser settings.
Alternatively, you may wish to visit www.aboutcookies.org which contains comprehensive information on browsers (as above), how to delete cookies from your computer and more general information. For information on how to do this on the browser of your mobile phone you will need to refer to your handset manual.
Please be aware that restricting cookies may impact on the functionality of the IFR website.
The IFR website uses a number of suppliers who also set cookies on our behalf in order to deliver the services that they are providing.