We are aware of the expectations and obligations set out in the General Data Protection Regulation (GDPR) implemented on 25th May 2018, and as a result we have had a dedicated team and an external consultant working on ensuring that we absolutely meet all of these.
Much of the regulation is based on the existing Data Protection Act, with additions to certain areas such as data subject rights, accountability, and the specific obligations of controllers and processors.
We have taken the opportunity to review and amend where required our existing internal processes, including policies, documentation for Policyholders and corporate customers, and working practices.
With the many different strands included in the GDPR, from security, retention, privacy notes and marketing, there are naturally elements currently being worked on to further enhance some of the ways we work. And as part of our commitment to delivering absolute transparency, we shall keep you informed of all and any changes we’ve made in due course.
Our ultimate objective has, and always will be, to ensure that your data (whether belonging to you, or an employee) remains secure, in the very safest of hands, and protected, and rest assured that we will continue to operate in accordance with GDPR.
If you have any queries or specific questions you’d like to ask, please do get in touch with us via