1 Privacy Statement
1.1 Claim Easy Ltd trading as Claim Eazy (“Claim Eazy”, “us”, “we”, and the “Firm”) respect your right to privacy. At Claim Eazy, we look after your personal information carefully. We adhere strictly to the requirements of UK data protection law and, in accordance with current law, we are registered on the public register of data controllers which is looked after by the Information Commissioner.
1.2 This Privacy Notice tells you who we are, how we collect, share and use information which identifies you (“personal data”) and how you can exercise your privacy rights. This Privacy Notices applies to personal information that we collect through our website at www.claimeazy.com/ (“Website”), but also to other personal information that you may provide to us when we provide you with our services.
1.3 Please do take a moment to read this Privacy notice. While dealing with us, we will ask you to provide us with detailed personal information relating to your existing circumstances, your financial situation and, in some cases, your health and family health history (“personal data”). This Privacy Notice is important as it allows us to explain to you what we will need to do with your personal data, and the various rights you have in relation to this personal data.
1.4 If you have any questions or concerns about our use of your personal information, then please contact us using the contact details provided at the bottom of this Privacy Notice.
Content of this Privacy Notice
2. What do we mean by “Personal Data”?
2.1 Personal Data means any information that describes or relates to your personal circumstances. Your Personal Data may identify you directly, for example your name, address, date or birth, National Insurance number. Your Personal Data may also identify you indirectly, for example, your employment situation, your physical and mental health history, or any other information that could be associated with your cultural or social identity.
2.2 In the context of providing you with assistance in relation to your mis-sold Payment Protection Insurance (PPI) Policy or mis-sold Packaged Bank Account requirements (PBA) claim(s) your Personal Data may include:
- Title, names, date of birth, gender, nationality, civil/marital status, contact details, addresses, and documents that are necessary to verify your identity
- Employment details or employment history
- Bank account details, loans and credit agreement details or personal credit history
3. How Claim Eazy will deal with your Personal Data
To perform that contract, and to arrange the services you require, we have the right to use your Personal Data for the purposes detailed below:
- Pre-Submission checks with the Bank/Lender specified to determine the validity of the PPI or PBA claim(s)
- Submission, pursuit, and resolution of a mis-sale claim if determined to be valid
- Regular contact with you to update you on your account and about related services you may be interested in
3.2 We have the right to use your Personal Data, provided it is in our legitimate business interest to do so and your rights are not affected, either during initial discussions with you or when the contract between us has come to an end for whatever reason. For example, we may need to respond to requests from mortgage lenders, insurance providers, and our Compliance Service Provider relating to the advice we have given to you, or to contact you to seek feedback on the service you received.
3.3 On occasion, we will use your Personal data for contractual responsibilities we may owe our regulator, the Claims Management Regulator, or for wider compliance with any legal or regulatory obligation to which we might be subject. In such circumstances, we would be processing your Personal Data to meet a legal, compliance or other regulatory obligation to which we are subject to.
4. How Claim Eazy will deal with your Special Data
4.1 Where you ask us to assist you with your mis-sold Payment Protection Insurance (PPI) Policy or mis-sold Packaged Bank Account (PBA) claim(s), we may ask you information about your ethnic origin, your health, and medical history (“Special Data”).
4.2 We will record and use your Special Data to illustrate to the seller of the Payment Protection Insurance (PPI) Policy or mis-sold Packaged Bank Account that the product may not meet your needs and to provide you with advice/guidance regarding the suitability of any product that may be available to you.
4.3 We will use Special Data in the same way as your Personal Data generally, as set out in this Privacy Notice.
4.4 Information on Special Data must be capable of being exchanged freely between claims management companies such as our Firm, and Banks/Lenders, to enable your claim to fully illustrate your eligibility or ineligibility for the alleged mis-sold product the claim requires.
5. How does Claim Eazy collect your Personal Data?
5.1 We will collect and record your Personal Data from a variety of sources, but mainly directly from you. You will usually provide information during our initial contact or conversations with you to establish your circumstances and needs and preferences in relation to mis-sold Payment Protection Insurance (PPI) Policy or mis-sold Packaged Bank Account (PBA) claim(s). You will provide information to us verbally and in writing, including email.
5.2 We may also obtain some information from third parties, for example, credit checks, information from your employer, and searches of information in the public domain such as the voters roll. If we use technology solutions to assist in the collection of your Personal Data, for example software that can verify your credit status, we will only do this if we have consent from you for us or our nominated processor to access your information in this manner. With regards to electronic ID checks we would not require your consent but will inform you of how such software operates and the purpose for which it is used.
6. What happens to your Personal Data when it is disclosed to us?
6.1 In the course of handling your Personal Data, we will:
- Record and store your Personal Data in our paper files, mobile devices, and on our computer systems (websites, email, hard drives, servers and cloud facilities). This information can only be accessed by employees and consultants within our Firm and only when it is necessary to provide our service to you and to perform any administration tasks associated with or incidental to that service
- Submit your Personal Data to Banks/Lenders, both in paper form and on-line via a secure portal. The provision of this information to a third party is essential in allowing us to progress any enquiry or application made on your behalf and to deal with any additional questions or administrative issues that lenders and providers may raise.
- Use your Personal Data for the purposes of responding to any queries you may have in relation to any mis-sold Payment Protection Insurance (PPI) Policy or mis-sold Packaged Bank Account (PBA) claim(s) you may take out, or to inform you of any developments in relation to those products and/or polices of which we might become aware
7. How will Claim Eazy share your Personal Data?
7.1 From time to time Your Personal Data will be shared with:
- Third parties who we believe will be able to assist us with your enquiry or application, or who are able to support your needs as identified. These third parties will include but may not be Ltd to, our Compliance Advisers, product specialists, and providers of legal services.
In each case, your Personal Data will only be shared for the purposes set out in this customer privacy notice, i.e. to progress your mis-sold Payment Protection Insurance (PPI) Policy or mis-sold Packaged Bank Account (PBA) claim enquiry and to provide you with our professional services.
7.2 Please note that this sharing of your Personal Data does not entitle such third parties to send you marketing or promotional messages. It is shared to ensure we can adequately fulfil our responsibilities to you, and as otherwise set out in this Privacy Notice.
7.3 We may transfer personal data to countries outside of the UK and/or EEA. Specifically, data processors based in South Africa. If data is transferred outside of the EEA, we will put in place Standard Contractual Clauses with the Data Controller or Data Processor which contractually obliges them to protect your information to the same standard required by the General Data Protection Regulation and Data Protection Act 2018 post 31 December 2020.
8. Your Personal Data Security and Retention
8.1 Your privacy is important to us and we will keep your Personal Data secure in accordance with our legal responsibilities. We will take reasonable steps to safeguard your Personal Data against it being accessed unlawfully or maliciously by a third party.
8.2 We also expect you to take reasonable steps to safeguard your own privacy when transferring information to us, such as not sending confidential information over unprotected email, ensuring email attachments are password protected or encrypted and only using secure methods of postage when original documentation is being sent to us.
8.3 Your Personal Data will be retained by us either electronically or in paper format for a minimum of six years, or in instances whereby we have legal right to such information we will retain records indefinitely.
9. Your rights in relation to your Personal Data
9.1 You can:
- request copies of your Personal Data that is under our control
- ask us to further explain how we use your Personal Data
- ask us to correct, delete or require us to restrict or stop using your Personal Data (details as to the extent to which we can do this will be provided at the time of any such request)
- ask us to send an electronic copy of your Personal Data to another organisation should you wish
- change the basis of any consent you may have provided to enable us to market to you in the future (including withdrawing any consent in its entirety)
10. How to Contact Us
10.1 If you have any questions or comments about this Privacy Notice or wish to make contact to exercise any of your rights set out within please contact:
Claim Easy Ltd
Atlantic Business Centre
10.2 If we feel we have a legal right not to deal with your request, or to action it in different way to how you have requested, we will inform you of this at the time.
10.3 You should also contact us as soon as possible on you becoming aware of any unauthorised disclosure of your Personal Data, so that we may investigate and fulfil our own regulatory obligations.
10.4 If you have any concerns or complaints as to how we have handled your Personal Data you may lodge a complaint with the UK's data protection regulator, the ICO, who can be contacted through their website at https://ico.org.uk/global/contact-us/ or by writing to Information Commissioner's Office, Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF.