We protect your privacy and take the handling of your personal data very seriously. We process your personal data in accordance with the General Data Protection Regulation (GDPR) and the Data Protection Act as well as other applicable legislation and government regulations. This data protection policy describes how we collect, use, store, share personal data and your rights and how you can exercise it.
how we collect, use, store, share personal data and your rights and how you can exercise it.
We mainly process personal data to enter into, administer and fulfill insurance contracts.
When you contact Brookfield and use our services, you accept our data protection policy and agree that we use electronic communication channels to communicate with you.
Brookfield Underwriting AB, org.nr 556799-5351, Postal address: Box 5775, SE-114 87 Stockholm (Brookfield) is the data controller for the processing of your personal data.
Offer, purchase and renewal of insurance contracts: Brookfield processes personal data in connection with offers or purchases of insurance, or when renewing the insurance contract. This is because the processing of the personal data is required to be able to enter into and fulfill the agreement on insurance with you (contractual obligation).
Brookfield processes your personal data to manage our relationship with you. All our customers are registered in an electronic customer register. We communicate with you regarding changes in insured property, changes to terms and conditions, changes to our electronic services and to provide other important information. We process personal data when invoicing and performing the agreement we have entered into with you. This is because the processing of the personal data is required to fulfil the contract with you (contractual obligation).
What personal data we collect depends on what insurance you have with us or which you have applied for.
The personal data collected may include, among others:
General identification and contact details: name, e-mail address, telephone number, address, gender, date of birth, education and employment, and the relationship with the policyholder, insured or injured party.
Other identification numbers assigned by authorities: personal identity numbers and vehicle registration numbers.
Financial and account details: bank, account number and invoice address.
Information required for insurance or requests for insurance, such as: adresses and identification details of insured property, claims history, ownership relationship as well as details of other insurance policies that you have.
Below we describe your rights, how they apply and when you can use them.
Right of access and rectification: you have the right to request confirmation of whether we process your personal data and a copy of the personal data that is being processed. When you believe that the personal data we hold about you is not correct or incomplete, you have the right to request that these be corrected or updated.
Right to erasure: you have the right to request that your personal data be deleted if the data is no longer necessary for the purpose for which it is collected or if the processing of the personal data is not carried out in accordance with the applicable law. There may be legal obligations that prevent Brookfield from immediately deleting certain data. In this case, we will block the personal data that we are obliged to save so that it cannot be used for any other purpose.
Right of limitation: you have the right to have the processing of your personal data limited if
– you consider that the personal data we process about you is not correct while we investigate whether the information is correct,
– the processing of the personal data is illegal but you object to the deletion of your personal data and instead request that a restriction on its use take place,
– you have objected to the processing of your personal data, then you can request that our processing be restricted while we investigate whether we have the right to continue with our processing.
Right of objection: you have the right to object to such processing of your personal data that we carry out on the legal basis of legitimate interest. We have the right to continue our processing of your personal data, despite your objection, if we can show that there are legitimate reasons that outweigh your interest in the processing not taking place. You have an unconditional right to object to the processing of your personal data in direct marketing.
If you have a complaint about our personal data processing, you can contact our Data Protection Officer who will investigate the matter by emailing firstname.lastname@example.org. You also have the possibility to lodge a complaint with the Swedish Privacy Protection Authority (www.imy.se).