We believe your private information should be exactly that, private. In order to give you the best service possible, we do need to collect some personal information about you and this policy explains what we need and why we need it.
The GDPR provides the following rights for individuals:
Fleet Claims Administration Limited, trading as FCLG, is registered with the Information Commissioners Office and our registration number is Z7028998.
Because we offer many different services, we are required to collect different types of information depending on which service you use, some services require less information, others require a little more but rest assured, we would never request it unless we really need it.
If you do not provide the information required to administer your account then we will not be able to provide you with the service required.
If a child is involved in your claim then we may need to collect some details about them from their legal guardian. The details required would be minimal and would only be collected with the consent of their legal guardian.
Information security is really important to us, that’s why we are ISO 27001:2013 certified. Your information is stored on in-house and cloud based servers which are regularly backed-up, protected by a market leading anti-virus tool and regularly patched to address emerging vulnerabilities. In-house servers are located in a secure, restricted area and only the necessary people have access in order to maintain them.
We have a comprehensive Information Security Management System (ISMS) framework in place which is regularly audited and monitored.
If you are using our fleet management services then we may need to pass your contact details over to an approved repairer to organise and discuss repairs to your vehicle. If you would rather we didn’t pass these details on then it will become your responsibility to contact the repairer yourself which may delay the time it takes to get your claim resolved, we respect your wishes though so if you would prefer to opt out, just speak to one of our claims handlers and they’ll be happy to advise you of the next steps.
We may be required to share information in regards to your claim and this may include sharing some information with the third parties, insurers and legal representatives involved in your claim.
From time to time we may be required to share some information with the DVLA, Solicitors and the Police – we would never give more information than what is required or requested.
If we feel that we need to share your information with anyone else regarding your claim with us, we will contact you first to discuss this and request permission to share.
We will not share your information with any third parties for the purposes of direct marketing.
We utilise some IT systems and they may store data outside of the EEA, for any suppliers who this applies to, we ensure that due diligence is completed and where required, measures will be put in place to further enhance the security of your data.
Your information will be used to provide you with an efficient and easy to use service and we will never use your information for anything but the job in hand. Fleet Claims processes data on behalf of clients (your employer/vehicle provider) and this means that some information regarding claims history will be reported back to them upon request. Further details of what is done with this information will need to be requested from them directly.
It is your right to know what information is stored about you, by us, at any time. All you have to do is make a subject access request and we will aim to respond in 14 working days, some requests may take longer but no longer than one month.
In most cases, subject access requests are free, however, Fleet Claims Administration does reserve the right to request a small fee or refuse the request, should it be manifestly unfounded or excessive.
There are some exemptions which means you may not always receive all of the information we process, this will usually be because some data may include information about another individual. In these cases, we may be able to send edited versions which do not contain any personal information about others, however, this will be assessed at the time taking both your rights and the other individuals rights in to consideration.
You can make a subject access request by telephone, in writing or by emailing compliance@FCLG.co.uk Please note, all subject access requests are responded to, where possible, electronically, if you wish to receive the information in a different format then you will need to make this clear at the time of request.
If you would like further information regarding how to make a subject access request, your rights and ours, please visit https://ico.org.uk/your-data-matters/your-right-of-access/
If you believe any of the information we are holding is out of date please let us know and we will ensure it is updated.
Should you wish to have your data held by us erased, your reason for this must meet one of the following grounds:
If we are able to process your request, if applicable, your driving history letter will be issued as part of the deletion process. Once you receive this letter you should keep it safe because we will be unable to reissue another once the deletion has been completed.
For some clients, we provide a licence validation service. This system uses automatic decision making using information provided directly from the DVLA and in line with your employer/vehicle providers insurance requirements. These checks are completed on behalf of the vehicle provider (our client) and form part of a contractual requirement between the driver of the vehicle and vehicle provider. You do have the right to question how the decision was made, If you have any queries regarding this, please contact us using the details below.
We use some third party IT service providers and due diligence is completed prior to use to ensure that they are GDPR compliant and their data security is up to standard.
We are unlikely to need to send any other data outside of the EEA, however, should this change, appropriate technical and organisational methods will be put in place to ensure your data remains secure, this notice will also be updated to reflect such changes.
We do not provide services directly to children or proactively collect their personal information. However, we are sometimes given information about children while handling a claim. The information in the relevant parts of this notice applies to children as well as adults. We have made every effort to make this policy as clear as possible to ensure anybody over the age of 13 can read and understand it.
Our web platform utilises SagePay who are audited annually under the Payment Card Industry Data Security Standard (PCI DSS) and is a fully approved Level 1 payment services provider, this is the highest level of compliance. This is extended to any card payments you make through our client portal. Fleet Claims have many PCI-DSS policies including a strict Clear Desk Policy to ensure that personal information is not collected or retained.
The length of time we keep your personal data depends on what it is and whether we have an ongoing business need to retain it. In most cases your data will be securely disposed of after 7 years however, if there is a legitimate purpose then we may need to store it for longer. If you would like to know how long we are likely to need to store your data, please email compliance@FCLG.co.uk
All paper based files are securely shredded using a third party confidential waste disposal company
Access to some content on our website may be allowed (under a written agreement between you or your employer and Fleet Claims) and will require a username and/or password. Failure to provide personal information may prevent you from accessing website pages or features containing confidential information, products, services, or promotional offers. By accessing and using our protected and secured web site(s), you agree to maintain the confidentiality of the username and password you selected to access such site(s) and consent to our Terms of Use. In order to protect your data, you should not share your login details with anybody.
This website uses "cookies". A cookie is a small data file that a website can transfer to a your device to keep records of the visits to such site. A cookie contains information such as your username and password that helps us recognise the pages you have visited and improve future visits, but the only personal information a cookie can contain is the information that you provide yourself.
A cookie cannot read data on your device or read cookie files created by other sites. Information stored in cookies may be encrypted. We do not store your credit card number in cookies.
If you prefer not to accept a cookie, you can set your web browser (e.g. Microsoft Internet Explorer, Chrome etc) to warn you before accepting cookies or you can refuse all cookies by turning them off in your web browser.
Access to some of our secured web site(s) may require the use of cookies, which you must enable only cookies that get sent back to the originating server. Otherwise, you can still access most of the features on our web site even without accepting a cookie.
The Driving Licence Secure Zone areas of the website use session cookies for your security. These cookies are used to authenticate you as a user and prevent unauthorised access.
The Driver Licence Validation System also uses session cookies, again for your own security; these cookies expire when you close your browser. None of the cookies used on this site are intrusive and only hold data which you have provided when completing a form on this website
This website may provide links to other third party websites. Even if the third party is affiliated with us through a business partnership or otherwise, we will not be held responsible for the privacy policies, practices or the content of such external links. These links are provided to you for convenience purposes only and you access them at your own risk, we encourage you to read the privacy notices on the other websites you visit.
If you require copies of our certifications or have any compliance related requests, we would be happy to answer any questions. Please email compliance@FCLG.co.uk with your request.
For any further information you can contact FCLG in the following ways:
FCLGTel: 01869 247788
Email: info@FCLG.co.uk
To view a copy of our Complaints Handling Policy, please click here.
Our Integrated Policy Statement is designed to ensure that:
The Managing Director and Compliance Officer are responsible for implementing, promoting and supporting this policy.
This will be achieved by:
Here you will find details of certifications we have & regulators we are authorised by.
FCLG are authorised and regulated by the Financial Conduct Authority (registration number 707356)
FCLG are registered with the Information Commissioners Office (registration number Z7028998)
FCLG are PCI DSS validated with Security Metrics
