Kemter Insurance Agencies, Sub-Agencies and Consultants Ltd is the controller of the information collected or provided directly.
We respect your concerns about the privacy of personal information you provide to us. We also believe it is important to inform you about how we will use your personal data. As a data controller we collect, use, share and retain the personal information you provide and inform you about your choices regarding use, access and correction of your personal information. We are committed to ensuring that any personal data we receive is protected and handled in accordance with applicable data protection laws.
For the purposes of this Privacy Notice, references to “Company”, “we”, “us” or “our” shall refer to Kemter Insurance Agencies, Sub-Agencies and Consultants Ltd.
Who we are
Kemter Insurance Agencies, Sub-Agencies and Consultants Ltd is an authorised Lloyd’s Coverholder, Regulated and licenced by the Ministry of Finance, Superintendent of Insurance in Cyprus, Insurance Companies Control Service, Licence Nos. F.O.E. 159.
We also act as intermediaries of other insurance companies and brokers.
What personal information we process about you
The personal data collected can include some or all of the following:
- Identity and contact data such as name, surname, date of birth, identification number, telephone number, address, email address, occupation, nationality, photos
- Financial data which may be required to provide you with insurance cover
- Sensitive data such as medical information required to process submitted claims
Why we collect your personal information and the lawful basis for processing
- To take any steps, at your request, prior to entering into a contract with the Company (i.e. quotation),
- For the execution/performance of a contract we have entered into with you (i.e. insurance policy),
- For handling any claims or complaints submitted by you,
- To meet the company’s legal obligations,
- When we have received your consent to do so
Who we are sharing your data with
Our Underwriters, service providers, agents and/ or brokers, government and law enforcement agencies and or/ any further person co – operating with us, may receive personal data held by us.
Such service providers and/or any of the aforementioned people co- operating with us have already entered into binding agreements with us which include such provisions aiming to preserve confidentiality and data protection in compliance with the Data Protection Act and the GDPR Regulations.
How long we keep your data
We will retain your personal information for as long as is reasonably necessary to fulfil the relevant purpose set out in this Privacy Notice. The retention period will primarily be determined by the relevant legal and regulatory obligations and/or duration of our business relationship with you, your employer or another associated party. We maintain and update regularly our data retention policy with a detailed retention schedule. We will securely delete or erase your personal information if there is no valid business reason for retaining your data. In exceptional circumstances, we may retain your personal information for longer periods of time if we reasonably believe there is a prospect of litigation, in the event of any complaints or there is another valid business reason the data will be needed in the future.
You have certain rights as an individual which you can exercise in relation to the information we hold about you. If you make a request to exercise any of your rights we reserve the right to ask you for a proof of your identity. We aim to acknowledge your request as soon as possible and will address your query within one month from your request.
You have the following rights:
The right to access
You are entitled to a confirmation whether we are processing your data, a copy of your data, and information about purposes of processing, who do we disclose it to, whether we transfer it abroad and how we protect it, how long we keep it for, what rights you have, where we got your data from and how you can make a complaint.
The right to rectification
If you believe the personal information we hold about you is inaccurate or incomplete you can request for it to be rectified.
The right to erasure
If you withdraw your consent, terminate a contract with us or you believe the personal information is no longer necessary for the purposes for which it was collected, you may request your data to be deleted. However, this will need to be balanced against other factors, for example there may be certain regulatory obligations which mean we cannot comply with your request.
The right to restriction of processing
You can ask us to restrict (i.e. keep but not use) your personal data, but only where:
- Its accuracy is contested, to allow us to verify its accuracy; or
- The processing is unlawful, but you do not want it erased; or
- It is no longer needed for the purposes for which it was collected, but we still need it to establish, exercise or defend legal claims; or
- You have exercised the right to object, and verification of overriding grounds is pending.
We can continue to use your personal data following a request for restriction, where we have your consent; to establish, exercise or defend legal claims; or to protect the rights of another natural or legal person.
The right to object
You have the right to object at any time to processing of your personal data where processing is necessary for the performance of a task carried out in the public interest, or in the exercise of an official authority vested in the controller. You may also object where the processing is necessary for the purposes of the legitimate interests, except where such interests are overridden by your interests or fundamental rights and freedoms, in particular where you are a child.
Contact details of the Data Protection Officer
If you have any questions relating to data protection that you believe we will be able to answer, please contact our Data Protection Officer:
Data Protection Officer
82 Athinon Street,
Akinita I. Mitropolis
Block B, Office 112
For the enforcement of your right to complain, contact the Office of the Commissioner for Data Protection via email at: www.dataprotection.gov.cy