Who are we?
Commercial and General Ltd (company number 03994456) is the data controller in relation to the processing of the personal information that you provide to us when you use our Services. Its registered address is Unit MCAG02 Building A, Ground Floor, Room 2 Marvan Court, 1 Waldegrave Road, Teddington, TW11 8LZ
If you have any queries relating to our use of your personal information, or any other related data protection questions, please contact our Customer Services Team at [email protected].
In some circumstances, group companies may be used to perform some data processing functions on behalf of Commercial and General Ltd, but this will not provide any group companies with authorisation to use your data outside of these specific functions.
We collect personal information that you give to us when using our Services via any of the Sites, for example, we may collect your name, address, date of birth, email address or telephone number as well as some details relevant to the products you are enquiring about. This might be, for example, to obtain an insurance quote, to buy a product, or enter a competition.
When providing our Service to you, we may also store information about how you use our Sites, for example, the pages viewed, the website from which you came to visit our Sites, changes you make to information you supply to us, details of the quotes you request and your transactions, together with details of your financial information, for example, bank account or payment details. We make sure that we have appropriate security measures to protect your information (see section 11 “How secure is our site and what steps do we take to keep you safe?” below). We will periodically review your personal information to ensure that we do not keep it for longer than is permitted by law see section 14 below which details how long we keep your personal information for.
It is your responsibility to check and ensure that all information and data you provide on the Sites is correct, complete, accurate and not misleading and that you disclose all relevant facts.
When providing our Services to you we do not need to collect or process personal information which data protection legislation defines as sensitive personal information, such as medical history or criminal convictions.
We do not knowingly collect or store any personal information about children under the age of 16. If you are aged under 16 please get your parent or guardian’s permission before you provide any personal information to us.
To ensure the Services we provide continue to meet your needs, we may ask you for feedback on your experience of using the Sites. Any feedback you provide will only be used as part of our programme of continuous improvement and will not be published on the Sites.
We may use your personal information:
We will store the personal information you provide and may use it to pre-populate fields on the Sites and to make it easier for you to use the Sites when making return visits (for example, when you visit our renewal sites).
We may monitor or record your calls, emails, SMS or other communications but we will do so in accordance with data protection legislation and other applicable law. Monitoring or recording will always be for business purposes, such as for quality control and training (e.g. where you call our customer service helpline), to prevent unauthorised use of our telecommunication systems and Sites, to ensure effective systems operation, to meet any legal obligation and/or to prevent or detect crime.
We will only collect and use your personal information (as described in section 4) in accordance with data protection laws. Our grounds for processing your personal information are as follows:
You have a right to object to our use of your personal information for these legitimate interests, including where we may use your personal information to create a profile to inform customer demographics. If you raise an objection, we will stop processing your personal information unless very exceptional circumstances apply, in which case we will let you know why we are continuing to process your personal information. Please contact our Customer Services Team at [email protected] if you wish to exercise this right.
When you use any of our Services, we may disclose your personal information to the following parties:
We use a number of third-parties to process personal data on our behalf. These third-parties have been carefully chosen and all of them comply with the legislation set out in section 1. All third parties based in the USA are EU-US Privacy Shield Compliant.
A cookie is a very small text file placed on your computer or device. Cookies help us to:
Commercial and General does not feature third-party advertising on any of its websites and there are no third-party cookies deployed for this purpose.Commercial and General does use Display Advertising, using Google Analytics which permits advertisements and remarketing to be served on third-party websites across the internet relating to a search made on any of the Sites. The Sites and third parties, including Google, use first-party cookies and third-party cookies to inform, optimise and serve such advertisements. You can opt-out of, or customise, these advertisements using the Google Ads Preferences Manager.
The security of your personal data is very important to us and our Sites use HTTPS to help keep information about you secure. Security during the transfer is called the Secure Sockets Layer (SSL) and Transport Layer Security (TLS).SSL Certificates are small data files that digitally bind a cryptographic key to an organization’s details. When installed on a web server, it activates the padlock and the https protocol and allows secure connections from a web server to a browser. Typically, SSL is used to secure credit card transactions, data transfer and logins, and more recently is becoming the norm when securing browsing of social media sites.However, no data transmission over the internet can be guaranteed to be totally secure. Certain information, for example, your credit card details and personal details, are encrypted to minimise the risk of interception during transit.You may complete a registration process when you sign up to use parts of the Sites or Mobile Applications. This may include the creation of a username, password and/or other identification information. Any such details should be kept confidential by you and should not be disclosed to or shared with anyone. Where you do disclose any of these details, you are solely responsible for all activities undertaken on the Sites where they are used.We do our best to keep the information you disclose to us secure. However, we can’t guarantee or warrant the security of any information which you send to us, and you do so at your own risk. By using our sites, you accept the inherent risks of providing information online and will not hold us responsible for any breach of security.It might sometimes be necessary for us to transfer your personal information outside of the European Economic Area (EEA) to locations that may not provide the same level of protection as the UK. However, we will only transfer your personal information out of the EEA if we have put in place appropriate safeguards and protections as stated under UK law for example by the use of a data-transfer agreement incorporating certain standard model protection clauses.
Any electronic marketing communications we send you will include clear and concise instructions to follow should you wish to unsubscribe at any time. You may also amend your marketing preferences by contacting [email protected]. Should you no longer wish to be contacted by us, you can advise us at any time by contacting our Customer Services team on +44 (0) 203 740 4431 – lines are open 08:00 to 20:00 on Monday to Friday and 09:00 to 18:00 Saturday and Sunday or by sending an email to [email protected] you no longer wish to be contacted by providers for marketing purposes, please follow the instructions in their marketing communications, or consult their privacy policies for further information about unsubscribing.
You have certain rights under existing data protection legislation including:
If you are not satisfied with the way any complaint you make in relation to your personal information is handled by us then you may be able to refer your complaint to the relevant data protection regulator which in the UK is the Information Commissioner’s Office.
Last updated August 2022