Who is responsible for looking after your personal data?

TapTap Gadget Insurance is a trading name of Travel Insurance Facilities plc and is arranged and administered by Taurus Insurance Services Limited and underwritten by Amtrust Europe Limited. This privacy notice provides details about the information we collect about you, how we use it and how we protect it. It also provides information about your rights and choices that you have over your personal information.

Travel Insurance Facilities Plc is the controller of marketing data collected, when you sign up to receive a newsletter or consent to receiving marketing content which you have said, or we believe may be of interest to you.  We collect marketing data when you visit our website landing page and consent to receiving marketing material from us including newsletters. Please note that data collected as part of a quote or obtaining a policy is collected by Taurus Insurance Services, in this instance, Taurus Insurance Services will be the data controller and we recommend that you read their privacy policy.

What personal data do we collect?

Marketing data includes your contact details such as name, physical address, email and telephone number.

When you visit our websites, we use cookies. We ask that you provide consent for all cookies, which are not necessary. Please read our cookie policy for more detail.

Contact details:

Our full details are:
Full name of legal entity: Travel Insurance Facilities PLC
Title: Data Protection Officer
Email address: dpo@tifgroup.co.uk
Postal address: 1 Tower View, Kings Hill, West Malling, Kent, ME19 4UY

Tifgroup is registered as a data controller with the Information Commissioners Office, registration number Z5712152.

You have the right to make a complaint at any time to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk). We would, however, appreciate the chance to deal with your concerns before you approach the ICO so please contact us in the first instance.

Changes to the Privacy Notice and your duty to inform us of changes

We may change this page from time to time, to reflect how we are processing your data. If we make significant changes, we will make that clear on our website. This version of the privacy policy was last updated in June 2020 and historic Privacy Notices’ are archived and can be obtained by contacting us.

It is important that the personal data we hold about you is accurate and updated. Please keep us informed if your personal data changes during your relationship with us.

Third-Party Links

This website may include links to third-party websites, plug-ins and applications. Clicking on those links or enabling those connections may allow third parties to collect or share data about you. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy notice of every website you visit.

We use Google Analytics, to collect standard internet log information and details of visitor behaviour patterns. We do this to find out things such as the number of visitors to the various parts of the site. This information is only processed in a way which does not identify anyone. We do not make and do not allow Google to make, any attempt to find out the identities of those visiting our website. If we do want to collect personally identifiable information through our website, we will be upfront about this. We will make it clear when we collect personal information and will explain what we intend to do with it

Purpose
We use the marketing contact data that users provide directly to us for the purpose for which it was collected: to send requested content and to respond to marketing questions.  We also use marketing contact data to send notices for direct marketing of our products.

Legal Basis

We process marketing data based on consent given by individuals who opt-in. We may also process the marketing data for legitimate interest where for example we need to notify you of a change to our privacy policy or obtain feedback from you.

Share
We share marketing data within our family of companies which includes business trading names or companies we may from time to time acquire to be able to (with your consent) provide details of our products that may be of interest to you.  We may also share your contact data obtained for marketing purposes with third-party service providers whose tools we use for emailing and for obtaining customer surveys.

We may also share your data with fraud detection agencies and other third parties who operate and maintain fraud detection registers; The police and other third parties or law enforcement agencies, where reasonably necessary for the prevention or detection of crime along with our regulators.

We require all third parties to respect the security of your personal data and to treat it in accordance with the law. We do not allow our third-party service providers to use your personal data for their own purposes and only permit them to process your personal data for specified purposes and in accordance with our instructions.

Transfers
We may transfer personal data to, and process personal data in a country outside of the European Economic Area (EEA). If we do transfer your data outside of the EEA, we will make sure that it is protected in the same way as if it was being used in the EEA. In most cases, this will be by using an approved EU approved contractual clauses. We may also process your data in countries which have reached Adequacy Decisions with the European Commission or are part of the Privacy Shield in the US.

Whenever fraud prevention agencies transfer your personal data outside of the European Economic Area, they too will impose contractual obligations on the recipients of that data to protect your personal data to the standard required in the EEA. They also require the recipient to subscribe to ‘international frameworks’ intended to allow secure data sharing.

Retention
We retain marketing data for as long as is reasonable for the original purpose for which it was collected and for furthering our legitimate interest for direct marketing.  In general, we retain marketing data related to a customer for as long as they remain a customer or wish to receive the marketing material from us.  We also retain marketing data for prospects for a reasonable amount of time to determine if there is any interest or engagement.

In all cases, you are given the right to opt-out of receiving further marketing communications.  In that case, we will only retain the amount of information needed to be sure we do not contact you again for direct marketing purpose. You may tailor further communications from us by clicking on the unsubscribe button at the bottom of any material you receive from us, or by contacting us at the address above.

Data Subject Requests
You have the right to contact us at dpo@tifgroup.co.uk  or write to us at the address above to review, correct or delete any marketing data that you previously provided to us or that we collect about you.  We will respond to your request within regulatory timescales.