Runnymede Law is committed to protecting and respecting your privacy in accordance with the current Data Protection Legislation (“Legislation”).
How we collect information about you
We will collect information about you as a necessary part of providing our services to you. Without such information, we may be unable to act for you. We will ask for some information directly from you, and we may also monitor or record calls, emails, SMS messages or other communications in accordance with UK law. We may also collect information on you when:
You ask your insurer to pass your details to us;
You instruct us to provide you with our services;
You use our website;
You make client enquiries;
You register for information or other services;
You respond to communications or surveys; or
We require additional information from you for validation purposes.
We will collect sensitive information about you when:
We talk to you about your claim;
We receive medical reports or records as part of your claim;
We undertake industry required searches regarding your claims history.
What type of information do we collect about you?
The personal information we collect about you may include:
Your name and address, date of birth and gender;
Your telephone numbers and email address;
Your IP address;
Information on the pages you visit on our website; and
Details of your claim including any losses you have incurred.
Examples of sensitive personal data we may collect include:
Your medical history;
Information in relation to previous criminal convictions; and
Your previous claims history.
How we use your personal data
We will need to provide information to AmTrust International Limited, your general insurer and/or your insurance broker to help them to administer your policy of insurance, to manage their business and to enable them to monitor the service provided by us.
We use the information you provide primarily for the provision of legal services to you and for related purposes including:
• Updating and enhancing client records
• Analysis to help us manage our practice
• Statutory returns
• Legal and regulatory compliance
Sensitive personal data
Some of the personal information, such as information relating to health or criminal convictions, may be required by us in order to provide our legal services to you. Such data will only be used for the specific purposes set out in our notice.
Disclosure of your personal data
As part of assessing and advising you on your legal claim and conducting any court or tribunal proceedings on your behalf we may share your information with the following recipients:
• Experts (for the purposes of obtaining evidence to support your claim)
• Courts and tribunals
• Mediators and/or Arbitrators
• Investigation agents
• Authorised third party providers in the event of a business continuity incident
We may also give such information to others who perform services for us, such as typing or photocopying. Our practice may be audited or checked by our accountants or our regulator, or by other organisations. All such third parties are required to maintain confidentiality in relation to your files.
There are certain circumstances where we process your personal data for our legitimate business interests. We do this for commercial reasons, and to improve our service to our clients. In order for us to process your date, we will always balance our interests against your own to ensure that the processing is fair. The following processes rely on legitimate interests:
The processing of data of people closely associated with our clients’ cases, including those relating to witnesses, children and protected parties;
Call recording for training and monitoring purposes;
Telephony routing and voicemail recording for training and monitoring purposes;
Fraud detection and prevention; an
Internally auditing our processes to maintain our high standards.
International Transfers of Data
We do not normally copy such information to anyone outside the European Economic Area (“EEA”), however we may do so however when the particular circumstances of your matter so require. Where we transfer your personal data outside of the EEA, we will ensure that it is treated securely and in accordance with the Legislation.
You have the right to ask us not to process your data for marketing purposes, to see a copy of the personal information we hold about you, to have your data deleted (subject to certain exemptions), to have any inaccurate or misleading data corrected or deleted, to restrict the processing of your data, to ask us to provide a copy of your data to any controller and to lodge a complaint with the local data protection authority.
Your data will not be retained for longer than is necessary, and will be managed in accordance with our data retention policy. In most cases the retention period will be for a period of ten (10) years following the completion of our business relationship with you, unless we are required to retain the data for a longer period due to business, legal or regulatory requirements.
If you have any questions concerning our use of your personal data, please contact The Data Protection Officer, AmTrust International - please see website for full address details.
Data Protection in Respect of Money Laundering Checks
Any personal data we receive from you for the purposes of our money laundering checks will be processed only for the purposes of preventing money laundering and terrorist financing, or as otherwise permitted by law or with your express consent.
You consent to us retaining such data for longer than the five year statutory period, unless you tell us otherwise.
Data Protection – Your Obligations
If you send us personal data about anyone other than yourself you will ensure you have any appropriate consents and notices in place to enable you to transfer that personal data to us, and so that we may use it for the purposes for which you provide it to us.
If you have any further questions, please contact our Compliance Officer for Legal Practice at:
Runnymede Law Limited
33 St. Mary Axe