Privacy Policy & GDPR

Intesa Communications Ltd are committed to protecting you and your family's personal information

This Privacy Policy relates to our use of any personal information we obtain or collect from you via the following services:

• The Intesa Communications Ltd website
• Any conversation between Intesa Communications Ltd and you via the telephone
• 3rd party data suppliers

(It also relates to our use of any personal information we collect through other means, such as email, in person or other third-party sources).

Who are Intesa Communications Ltd

Intesa Leicester Limited is a tele-marketing company and our permitted business is to introduce new customers to various brands and partners as well as arrange suitable home or business services for consumer needs.

Company

This Privacy Policy is issued by Intesa Communications Ltd acting in compliance with the General Data Protection Regulation and Data Protection Act 2018. Our ICO Registration number is: ZB235028.

Intesa Communications Ltd is registered and operates in the United Kingdom. (Registered company no. – 11786036). The company address is 20-22 Wenlock Road, London, N1 7GU. Further company information about Intesa Communications Ltd can be found at Companies House.

Our Approach to Privacy

The privacy and security of your personal information is very important to us. We want to assure you that your information will be properly managed and protected whilst in our hands.

How We Source Consumer Data

In order to introduce and arrange suitable home or business services for consumers we make initial telephone contact using consent or legitimate interest data we have procured from authorised 3rd parties acting on our behalf.

This may consist of:

Name, Address, contact number, policy/service name, policy renewal date, existing supplier, existing monthly/yearly premium and date of consent or initial contact

Additionally, we may use our own prospect data or prospect data from our sister company Solution Insurance Services Ltd which we have established marketing consent with by means of legitimate interest.

Our Lawful Basis For Processing Your Data

Intesa Communications Ltd is a marketing company and the data we collect/receive is for marketing purposes. Under the GDPR there are 2 identified reasons for processing your data which are:

Consent – you have opted into a specific channel of communication (telephone, email, SMS, postal) from Intesa Communications Ltd in a positive manner. At the point of opting in you will have been given Intesa Communications Ltd's specific company brand to confirm who will be calling you. As such Intesa Communications Ltd will not need to TPS screen your data.

Legitimate Interest - Data may be processed in pursuance of legitimate interests. This includes using your data for telephone, email, SMS, postal marketing for Intesa Communications Ltd in relation to products or services which we believe may be of interest to you based upon information which you have provided us. This is based on you the consumer having carried out a positive action to agree to marketing by a specific channel of communication (telephone, email, SMS, postal)

The Information We Collect & How We Collect It

Intesa Communications Ltd may collect personal information when contacting you seeking agreement to give you an insurance quote or to arrange a policy. This will be conducted by the following:

• Requesting or obtaining a quote
• Purchasing a product from one of our partners
• Using our website
• Telephoning, texting, writing by post or email

In the event you have left your details in our contact form, we may also, from time to time, contact you via post, telephone or email regarding our products and services we think may be of interest to you.

This information may include:

• Basic personal details such as your name, address, e-mail address, telephone number, date of birth or age, gender, marital status
• Additional information about your lifestyle and insurance requirements, such as details of your home and your household
• Information about your other products, policies, such as claims history, quotes history, payment history, claims data
• Sensitive personal information such as disclosures about previous unspent criminal convictions. We will always be clear to explain when and why we need this information and the purposes for which we will use it and will obtain your explicit consent to use sensitive personal information
• Information about your employment
• Your marketing preferences

How We Use Information to Help You

We may use information we have collected to administer quotes and policies for the following purposes:

• To improve your experience by reducing the number of questions we need to ask you
• To assess your application for a product, service or quote
• To understand your risk so as to offer you our best price
• To verify your identity and carry out anti-fraud checks
• To provide you with premium and payment options
• To check that you can afford a credit agreement
• To administer your policy including updating you on and delivering our services. Please see below for more information

Sales / Service Administration:

• Deal with complaints
• Provide you with tailored offers
• We may use your information for training purposes, to improve our services and their delivery, for example by recording telephone calls

How We Share Your Information Outside of Intesa Communications Ltd

If you request a quote from Intesa Communications Ltd or purchase a product or service, your personal information may be passed to our sister brands Intesa Leicester Ltd, Broadband Genius or Energy Whizz in relation to products or services which we believe may be of interest. This is based on positive action to agree to marketing by a specific channel of Intesa Leicester Ltd, Broadband Genius or Energy Whizz.

Your information may also be disclosed when we believe in good faith that the disclosure is:

• required by law
• to protect the safety of our employees, the public or our property
• required to comply with a judicial proceeding, court order or legal process
• in the event of a merger, asset sale, or other related transaction
• for the prevention or detection of crime (including fraud)
• We may share your information with regulatory bodies in the UK or if applicable, overseas, as well as with other insurance companies (directly or via shared databases) to prevent and detect fraud

Data Transfer & Consent

Your information will not be transferred by Intesa Communications Ltd to any country outside of the United Kingdom for any reason. All processing, storage, administration or any other use stated in this policy will take place in the United Kingdom for the express purpose of providing you with one of our products.

The purposes and processing associated with your information will comply with all applicable data protection regulations, including the UK Data Protection Act, and with our obligation to adequately protect and secure your personal information security.

We are committed to protecting the confidentiality and security of the information that you provide to us and we put in place appropriate technical, physical and organisational security measures to protect against any unauthorised access or damage to, or disclosure or loss of, your information.

You should also be aware that communications over the internet, such as e-mails, are not secure unless they have been encrypted. Our websites may contain links to other third party websites. These other websites will be subject to their own privacy policies which may differ from this Privacy Policy. You should carefully read the privacy policies of these websites before submitting any personal information.

How Long Will We Keep Your Data For?

We will only keep your personal details for as long as is necessary or as long as you want. The law does not put a time limit on the amount of time we should hold your personal details for but as long as you are happy to hear from us we may continue to contact you. You can withdraw your consent to us at any time. If you require further information on our data retention policies, please email: help@intesacommunications.co.uk

Where We Store Your Personal Data?

The data that we collect from you is stored at a secure destination and is processed by our staff or staff working for one of our partner suppliers. All information you provide to us is stored on secure servers.

By submitting your personal data for our use, you agree to the storing, processing and transfer of the data in accordance with this privacy policy. We will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this privacy policy.

Managing Your Marketing Preferences

We may: provide you with updates and offers for our products and services via marketing tailored to you, by direct marketing (e.g. phone, e-mail, text, post); and use information we hold about you from Intesa Communications Ltd to help us identify, tailor and package our products and services, determine pricing and offer discounts that may be of interest to you.

We will always give you the opportunity to 'opt out' of direct marketing when you complete a registration with us, purchase a product or service online or receive any email, text or other direct marketing communication.

You can change your marketing preferences at any other time by contacting us on the details given below in the 'Update your information or change your marketing preferences' section.

We will not use sensitive personal details (such as any criminal issues) in order to provide you with marketing, discounts or pricing unless you have given your explicit consent to allow us to use this information for these purposes.

Update Your Information or Change Your Marketing Preferences

Please let us know if your information changes as it is important that the information, we hold about you is accurate and up to date. You can ask us to update or correct your personal information or opt out of Intesa Communications Ltd use of your information for direct marketing purposes by contacting us using any of the following methods:

• By Post
• By Phone
• By Email

All contact details for the above are referenced at the end in the 'Contact' section

Data Subject Rights

In accordance with regulations there are a number of fundamental rights that you as data subjects have. These are:

Right to be informed

Individuals have the right to be informed about the collection and use of their personal data. This is a key transparency requirement under the GDPR. Therefore, if we collect data from you it is our responsibility to clearly advise you for what purpose we intend to use or process your data for in accordance with this privacy policy.

Right to access

The right of access, commonly referred to as subject access, gives individuals the right to obtain a copy of their personal data as well as other supplementary information we hold. It helps individuals to understand how and why we are using their data, and check we are doing it lawfully. To do this, simply write to us at the address below in the contact section. We will take all reasonable steps to confirm your identity before providing you with details of any personal information we may hold about you.

Right to rectification

Individuals have the right to have inaccurate personal data rectified. An individual may also be able to have incomplete personal data completed – although this will depend on the purposes for the processing. This may involve providing a supplementary statement to the incomplete data.

Right to withdraw consent

Individuals reserve the right to remove consent previously granted to use their personal data if they no longer wish to be contacted or the circumstances of this initial consent have changed. This is also known as the 'right to be forgotten' or the 'right to be erased'. Whilst this request will be actioned immediately it can be overridden by subsequent consent being granted by that individual to collect and use their data in the future.

Right to restrict processing

Individuals have the right to restrict the processing of their personal data in certain circumstances. This means that you can limit the way that we use your data. This is an alternative to requesting the withdrawal of consent for your data.

Right to data portability

The right to data portability gives individuals the right to receive personal data they have provided to a controller in a structured, commonly used and machine-readable format. It also gives them the right to request that a controller transmits this data directly to another controller. Such as another business if you were switching service providers with Insurance companies, banks or mobile phone companies etc.

Right to object

Individuals have the right to object to the processing of their personal data at any time. This effectively allows you to stop or prevent us from processing their personal data. An objection may be in relation to all of the personal data we hold about you or only to certain information. It may also only relate to a particular purpose we are processing the data for.

Rights in relation to automated decision making and profiling

Automated individual decision-making is a decision made by automated means without any human involvement. Examples of this include:

• an online decision to award a loan; and
• a recruitment aptitude test which uses pre-programmed algorithms and criteria.

Automated individual decision-making does not have to involve profiling, although it often will do. You have the right to request the removal of this process or question and challenge the methodology behind it. However, Intesa Communications Ltd and LIS do not under any circumstances conduct any automated decision making and profiling processes.

Changes To This Privacy Policy

We may amend this Privacy Policy from time to time for example, to keep it up to date or to comply with legal requirements. You should regularly check this Privacy Policy for updates. If there will be any significant changes made to the use of your personal information in a manner different from that stated at the time of collection, we will notify you by posting a notice on our Website.

Complaints

If you have a grievance or complaint concerning how your data has been collected, stored, used and managed or if a request concerning your data has not been followed up on you can you can raise this with Rikesh Patel our data officer by emailing him at help@intesacommunications.co.uk.

If having followed the above process you feel your complaint has not been dealt with satisfactorily you have the right to escalate this to the regulatory body which is the Information Commissioners Office. The contact details for them are as follows: Wycliffe House, Water Lane, Wilmslow, SK9 5AF. Tel: 0303 123 1113. Web: https://ico.org.uk/concerns

Contact