How can I manage my data and delete my cache according to the GDPR requirements?
Why do we collect your data
We collect personal information when you use our website properties including XCover.com and RentalCover.com for legal and regulatory purposes. We also collect and process your personal information according to legitimate business interest provisions, namely that we contact, promote and ultimately protect – through insurance and insurance-related products such as guarantees and warranties – customers, partners, customers of partners and firms that are similar to our partners.
We are legally obliged to pass your information to your insurer, whose details and licences are listed in your policy. This is for regulatory, compliance and claims handling reasons.
How do we look after your data
However you can clear all the cookies we use at any time by following the instructions below, tailored for your browser:
We take a duty of care when it comes to your personal data. This is why we will never share it with external marketing services.
Users of RentalCover.com and XCover.com can manage their personal data on rentalcover.com/account and xcover.com/account. For others, to change your data settings visit your personal data settings page that is linked from marketing emails sent by covergenius.com.
Cover Genius, is compliant with local privacy and data security regulations and European GDPR regulations in all the countries they operate in.
How long do we store your data for
We have a regulatory obligation to retain information such as policies purchased or claims submitted for our legal records for 7 years to fulfill regulatory obligations in line with Conduct Authority (FCA) UK and Her Majesty’s Revenue and Customs (HMRC). This information cannot be deleted. We also retain this information for other jurisdictions based on the statutory requirements of the country where the policy was sold. Please email us for further information.
You have the right to lodge a complaint with your national Data Protection Authority (DPA), such as the Information Commissioner’s Office in the UK or another privacy regulator.