About this Privacy Notice

International Breakdown T/A National Breakdown takes your data privacy seriously. In order to provide you with our services we collect and use personal data which means that we are a ‘Data Controller’ and we are responsible for complying with Data Protection Laws and the UK General Data Protection Regulations (UK GDPR) which apply in your country of residence.

We specialise in Nationwide Roadside Rescue and Recovery for businesses and individuals and offer GAP Insurance for Business Fleets.  We collect and process information about you in order to arrange cover to process claims. Your information is also used for business purposes such as fraud prevention and detection and financial management. This may involve sharing your information with third parties such as vehicle recover operators, insurers, credit reference agencies, service providers, professional advisors, our regulators, police and government agencies or fraud prevention agencies. 

In this Privacy Notice, we want to inform you what information we collect, how we use it and what rights individuals have in relation to the collection and processing of their personal data.

If you are providing personal data of another individual to us, you must tell them you are providing their information to us and show them a copy of this notice.

Our Contact Details

If you have any questions in respect of this Privacy Notice or how we manage your personal data, please contact:

Data Protection Officer, National Breakdown, Trust House, New Augustus Street. Bradford. BD1 5LL.  Email: cs@nationalbreakdown.com or phone on 01274 288488

Why Do We Collect Your Information?

Where we collect and process personal data, we identify both the purpose and legal basis for doing so.  The legal bases which are:

Consent – where we have consent from the individual to the processing of his or her personal data for one or more specific purpose.

Contract – where the processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract.

Legal Obligation – The processing is necessary for compliance with a legal obligation to which we are subject.

Vital Interests – Where the processing is necessary in order to protect the vital interests of the data subject or another natural person.

Public Interest – Where the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.

Legitimate Interests - Where the processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal date, in particular where the data subject is a child.

 

Our Processing of Your Personal Information

The information we collect and our lawful basis for processing it will depend on the type of service we provide for you.  Please review the section which is most applicable to our relationship with you.

 

  • Prospective, New or Existing Customers or parties covered under a Policy we have arranged.
  • Insurers and Brokers
  • Service Providers including Vehicle Recovery Operators
  • Potential Employees

What Personal Data Do We Collect?

 A -New, Prospective or Existing Customers or parties covered under an Insurance Policy we have arranged

Where you have arranged an insurance policy and / or entered into a contract for our services, we can collect, store or use the following types of personal data which is regularly reviewed throughout the lifespan of your relationship with us:

  • General contact details such as, Name, Address, email address, Telephone number
  • Business Activities of the person whose personal information we are processing.
  • Details of previous insurance arrangements including claims history.
  • Details of your demands and needs in relation to insurance.
  • Full details of your insurance risks where cover has been arranged by us.
  • Details of other insurance risks not managed by us.
  • Sanctions information.
  • Details of policies purchased and Services provided to you.
  • Financial Details – such as credit history or payment or bank details
  • Information obtained through our use of cookies (please see our Cookie Policy)
  • Your marketing preferences

Special Categories of Personal Data that we collect: New or Existing Customers or parties covered under an Insurance Policy we have arranged

  • Details relating to disabilities to establish effects on delivering assistance where it is relevant to the cover being arranged.
  • Information relating to criminal sanctions (including offences and alleged offences and any caution, court sentence or criminal conviction), which can be established directly from you or as a result of carrying out sanctions checks.
  • Information relating to any professional disciplinary action you have been the subject of where it is relevant to the policy being arranged.
  • The following special category information offered by you in the course of your discussions with us relating to race, ethnicity, religious or philosophical beliefs, political opinions, trade union memberships or data concerning your sex life or sexual orientation. We will only process such information to the extent necessary in the connection with a claim or where in connection with legal proceedings.  Any further processing will only be with your explicit consent.

How we collect your information: In most cases, we collect your data directly from you.  We collect data and process it when you

  • Complete an online ‘contact us’ form.
  • Speak to us on the telephone to discuss or use our services.
  • Email or write to us to enquire about or use our services.
  • View our website via your browsers cookies (see our Cookie Policy)

 Or Indirectly

We also receive your data indirectly from the following sources:

  • Social media sites and platforms
  • Public sources – demographic data, Market Research, Local Directories

Purpose

Lawful Basis

Lawful Basis for Any Special Category of Information

To understand your insurance requirements, needs to offer terms as part of an ongoing contract of service with you

The processing is necessary for the performance of our ongoing contract with you.

It is necessary for an insurance purpose

To provide documentation and assist with any ongoing claims made under an insurance policy we have arranged

The processing is necessary for the performance of our ongoing contract with you.

It is necessary for an Insurance Purpose

To assist with any renewals, mid-term adjustments of your insurance policy or cancellations.

The processing is necessary for the performance of our ongoing contract with you.

It is necessary for an Insurance Purpose

To hold you on our records as a client including carrying out annual credit, fraud, sanctions and anti-money laundering checks

We have a legal or regulatory obligation

 

The prevention of fraud is in the substantial public interest.

To comply with our legal or regulatory obligations (such as our requirements to report to the FCA)

We have a legal or regulatory obligation

It is necessary to establish and exercise our legal rights.

To communicate with you, respond to your queries and notify you about changes to our service

It is in our Legitimate Interests to use your personal information to keep you informed about any changes that may affect you

It is necessary for an insurance purpose

 

For Electronic Marketing of similar services to existing customers including invitations to renew cover

It is in our legitimate interests to use your personal information for marketing purposes where the services being marketed are relevant to you.

 

For electronic Marketing of services to new customers

We rely on Consent for direct electronic marketing to individuals

 

For Direct Marketing to Businesses

It is in our Legitimate Interests to market our services to other businesses which can include personal business email addresses

 

Managing our Business operations such as maintaining accounting records, analysing financial results, complying with internal audit requirements and receiving professional advice (e.g. tax or legal advice)

It is in our Legitimate Interests to manage and improve our business operations and activities.

 

 B- Insurers, Brokers, Specialist Claims Experts, Service Providers including Vehicle Recovery Operators

Where we work with you as a specialist claims expert, we can collect, store or use the following types of personal data:

  • General contact details such as, Name, Address, email address, Telephone number
  • Information about your business, job title and role

How we collect your information: In most cases, we collect your data directly from you.  We collect data and process it when you

  • Speak to us on the telephone to discuss and existing contract or use our service.
  • Email or write to us to enquire about and existing contract or use our services.
  • View our website via your browsers cookies (see our Cookie Policy)

Or Indirectly

We also receive your data indirectly from the following sources:

  • Social Media Sites or Platforms
  • Public sources – demographic data, Market Research, Local Directories

Purpose

Lawful Basis

To assist in any claims made under an insurance policy we have arranged

It is in our legitimate interests to assist clients in any claims which have been made under an insurance policy we have arranged

Prevention, detection and investigating and prosecuting fraud.  This can include sharing personal data information with third parties including the police, and other insurance and financial providers

It is in our Legitimate Interests to ensure that we take all necessary steps to prevent fraud.

Managing our Business operations such as maintaining accounting records, analysing financial results, complying with internal audit requirements and receiving professional advice (e.g. tax or legal advice)

It is in our Legitimate Interests to manage and improve our business operations and activities.

  C- Potential Employees

Where you provide us with information (e.g. a CV) in relation to potential recruitment at International Breakdown T/A National Breakdown, we will collect, hold and process the following personal data:

  • General contact details such as, Name, Address, email address, Telephone number
  • General Identity Information such as Driving Licence Number, National Insurance Number
  • Employment History
  • Education History
  • Salary and Benefits History

Special Categories of Personal Data that we can collect: Trade Union Memberships, health or disability information in relation to requirements of an employment contract.

How we collect your information: In most cases, we collect your data directly from you.  We collect data and process it when you

  • Send us a CV.
  • Complete an application form.
  • Provide information during an Interview.
  • Email or write to us in relation to potential employment.
  • Telephone us to enquire about potential employment.

Or Indirectly

We also receive your data indirectly from the following sources:

  • Social Media Sites or platforms
  • Recruitment Agencies
  • Public sources – demographic data, Market Research, Local Directories

Purpose

Lawful Basis

Lawful Basis for Any Special Category of Information

To hold your information during a recruitment process

The processing is necessary to consider entering into a Contract.

 

This is necessary to consider any requirements in relation to employment

To contact potential candidates during a recruitment process

It is required in the process of considering entering into a contract of employment.

 

 Who Do We Share Your Information With?

From time to time we may share your personal information with third parties for the various purposes set out above.  These are:

  • Insurers with whom we are obtaining quotations or placing cover.
  • Insurers or Brokers who also act for you.
  • Industry bodies, Accountants, Regulators or Auditors
  • Payment Services Providers
  • Service Providers such as Vehicle Recover Operators
  • Software Providers (I.T. Suppliers, Insurance Software providers, Cloud Services)
  • Lawyers, Specialist Claims Experts
  • Fraud detection Agencies
  • Police and Law Enforcement agencies where reasonably necessary for the prevention or detection of crime
  • Debt Collection Agencies
  • Credit Reference Agencies
  • Selected Third Parties in connection with the sale, transfer or disposal of our business.

Direct Marketing - We may send you details of similar services to those you have enquired about or purchased from us previously including renewal invitations.   You can opt out of receiving this information from us at any time by contacting us at the above address or clicking ‘unsubscribe’ on any messages you may receive.

We will never share or sell your information to any other party for marketing purposes.

International data transfers - Some recipients of your personal data can be located outside your country or have offices in countries where data protection laws may provide a different level of protection than the laws in your country.  Where this is the case, we make sure that additional safeguards are in place such as ensuring that those countries have a decision of adequacy under the UK GDPR or have included standard contract clauses in their terms to support the protection of your data.

Automated decision-making or Profiling  - We can use automated means to make decisions about your insurance / cover.  We consider the information provided to determine whether your application for cover can be accepted and the premium.  All of such decisions are however reviewed by us and you can request that the decision be made by an individual decision maker.

How Long Do We Keep Personal Data For?

We will retain personal data in accordance with legal and regulatory requirements and for no longer than is necessary to fulfil the purposes set out in this privacy policy.  We maintain and review a detailed retention policy and schedule which documents how long we will hold different types of data.  The time period will depend on the purpose for which we collected the information and is never on an indefinite basis.  Subsequently, we will delete your personal data in accordance with our data retention and deletion policy or take steps to properly render the data anonymous, unless we are legally obliged to keep your personal data longer (e.g. for tax, accounting or auditing purposes).

The following details the criteria used to establish the retention period set out within our policy.

Where it is still necessary for the provision of our Services- This includes the duration of any contract for services we have with you and for a period of 12 months after the end of any contract with a view to maintaining and improving the performance of our products, keeping our systems secure, and maintaining appropriate business and financial records. Most of our retention periods are determined on the basis of this general rule only where we are not required to retain the data for longer.

Where required by Statutory, contractual or other similar obligations-Corresponding storage obligations may arise, for example, from laws or regulation, for example depending on the type of insurance policy we arranged for you.  It may also be necessary to store personal data with regard to pending or future legal disputes. Personal data contained in contracts, notifications and business letters may be subject to statutory storage obligations depending on national law.

Your Rights As A Data Subject 

As a data subject, you have rights in relation to your personal data.  These are:

The Right to Access – You have the right to request details of personal information held or processed and to copies of this data.  We do not usually charge for this service.

The Right to Rectification – You have the right to request that any information be corrected that you believe is inaccurate or to complete any information that you believe is incomplete.

The Right to Erasure – You have the right to request that we erase your personal information under certain conditions.

The Right to Restrict Processing – You have the right to request that we restrict the processing of your personal data under certain circumstances.

The Right to Object to Processing – You have the right to object to our processing of your data, under certain conditions.

The Right to Data Portability – You have the right to request that we transfer the data that we have collected to another organisation or directly to you, under certain conditions.

As previously detailed, you also have the Right to Withdraw Consent where you have previously provided this at any time. 

To exercise any of these rights or wish to make a complaint to us in respect of those rights, please contact us using the details at the beginning of this notice.    

You also have the right to complain to the Supervisory Authority.  Where you wish to report a complaint or feel that we have not addressed your concern in a satisfactory manner, you may contact the Information Commissioner’s Office at:

Information Commissioners Office, Wycliffe House. Water Lane. Wilmslow. Cheshire. SK9 5AF. Helpline: 0303 123 1113

Contractual Obligations and Consequences - In some circumstances, the provision of personal data is partly required by law (for example, tax regulations, legal obligations) or can also result from contractual provisions such as payment details.  This means that it may sometimes be necessary to conclude or fulfil a contract, that the personal data be provided.  In those circumstances where the data is not provided or where certain rights are exercised below, (Erasure, Object) there is a possible consequence that the contract could not be fulfilled or concluded and may be cancelled. 

Cookies & similar technologies - When you visit our Website, we use cookies and similar technologies to provide you with a better, faster and safer user experience or to show you personalised advertising. Cookies are small text files that are automatically created by your browser and stored on your device when you visit or use the Website.   For full details please see our separate Cookie Policy.

How We Keep Your Personal Data Secure

We protect your personal data through technical and organisational security measures to minimise risks associated with data loss, misuse, unauthorised access and unauthorised disclosure and alteration.

We store your data in in files within secure software platforms, Cloud Service Providers and use firewalls, antivirus, malware protection and encryption.  We also have operational policies and procedures in place to support data protection  These include access controls, password security requirements, remote working and clear desk restrictions. 

Changes To Our Privacy Notice

All businesses and their operations change from time to time.  International Breakdown T/A National Breakdown consider and embed data privacy prior to making any such changes.  We keep our Privacy Notice under regular review to ensure that any changes are captured, and you are kept informed. 

This Privacy Notice was last updated on 28th May 2021.

 

 

About This Policy

 

This Policy explains what cookies are and how we use them.  It includes details of the types of Cookies we set, the information we collect when using them and how that information is used. 

You can learn more about who we are, how you can contact us and how we process personal data in our Privacy Policy

 

Cookie Policy

What Are Cookies?

Cookies are small text files which are stored on your browser when you visit a website.  They can often serve crucial functions and help us to keep our website secure and to function properly which helps us to provide you with a better experience.  They can also help us to analyse how the website performs, what works and where we can make improvements.

How we use Cookies? - We use both Strictly Necessary and Analytics cookies.  These are used to understand how the website performs, how you interact with it, and helps us to provide you with a better, faster and improved experience. 

Social Media and External Links – where you click on any external links or find is via social media platforms, we also have no control over those websites and the cookies they set, so please bear in mind that you should set your preferences in line with their own policies and cookie controls separately.

How to Manage Cookies – When you visit our site you will be asked if you want to accept cookies.  You can continue to use the site without accepting these and any non-necessary cookies will not load onto your browser. 

No matter what cookie control is in place, or if you simply change your mind you can also adjust your own browser to delete or block cookies from any site you visit.  To learn more about how to manage your browser cookie settings please see www.allaboutcookies.org

What cookies do we set?

Necessary Cookies- We use necessary functional cookies which are needed for security and for the website to function.  They do not collect your personal data.  These are automatically enabled when you visit the site, however you can still remove these cookies via your browser, however disabling these will affect the functionality of the site.

Analytics Cookies- We use Analytics cookies to help us to understand how the number of visitors to our website and how they interact with it, for example which pages are visited and for how long.  These help us to continually improve our website and services.  The data is reported anonymously without any personal data included.  We use Google Tag Manager and Google Analytics cookies.  You can find out more about their privacy information here:

https://policies.google.com/technologies/partner-sites

 Below is a list of the cookies set by our website:

Necessary Cookies

 

 

 

 

PHPSESSID

This is a security cookie which prevents cross site request forgery

Session

First

At the end of session

Analytics Cookies

 

 

 

 

_gat_gtag_UA_

These cookies are used by Google Analytics to throttle the request rate to limit the collection of data on high traffic sites.

Persistent

First

1 Hour

_gid

This cookie is used by Google Analytics to used to store information of how visitors use a website and helps in creating an analytics report of how the website is doing. The data collected including the number visitors, the source where they have come from, and the pages visited.

Persistent

First

1 Day

_ga

This cookie is used by Google Analytics and is used to calculate visitor, session, campaign data and keep track of site usage for the site's analytics report. The cookies store information anonymously and assigns a randomly generated number to identify unique visitors.

Persistent

First

2 Years

Targeting /Advertising

 

 

 

 

_gcl_au

This cookie is used by Google Tag Manager to store and track conversations

Persistent

First

3 Months

IDE

This cookie is set by Doubleclick to display targeted advertising across websites

Persistent

Third

18 months

Test_cookie

This cookie is set by Doubleclick to display targeted advertising across websites

Persistent

Third

18 Months

 

Use of cookies can change over time or when a new service or function is added to our website.  To ensure that this policy remains up to date, we regularly carry out ‘cookie audits’ and update our list of cookies accordingly. 

This policy was last updated on 28th May 2021