By using the website, you consent to the collection and use of your personal information in the manner set out in this notice.
The website may, from time to time, contain links to and from the websites of our partner networks, advertisers and affiliates. If you follow a link to any of these websites, please note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to these websites.asd
The purpose of this Privacy Notice is:
To assure you that we recognise and fully respect the privacy and personal data of our clients and company representatives; and To explain what personal information we collect and how we ensure its best protection.
Who we are
Genistar Limited is a Financial Conduct Authority regulated provider of Financial Planning Solutions, Life and Serious Illness Insurance and General Insurance. Genistar Limited is a company registered in England and Wales with company number 6315485. The registered office is at:
Harestone Valley Road
Genistar Limited is a Data Controller and is committed to protecting your personal information. We have created this Privacy Notice to let you know what information we collect when you use our services, why we collect this information and how we manage this information. It is our policy to respect the confidentiality of personal information and the privacy of individuals.
What information does Genistar collect?
We will only collect personal data which is necessary to provide you with the services required. Personal information that we collect will include your name, contact details (phone numbers, email address and residential address), your date of birth, occupation, credit card or billing information, data about the pages you visit and your other activity on our site, as well as any other personal information relating to you that you supply to us.
Except where stated otherwise, at the time of personal information being submitted, it is only processed for the purposes for which you have submitted it to us.
This list is not definitive and could change if our business, legal or regulatory needs change
In order to deliver our services to clients and to ensure we do this in a compliant way, under the authorisation of our regulator, we must collect some personal information from our clients, potential clients, visitors to our website and service providers or suppliers in order to get the best range of services available to you and your needs.
If you give us information on behalf of someone else, you are confirming that you have given them the information about Genistar Limited, and that they have agreed and given consent for us to use their information in the way our business operates.
We are collecting, recording and storing your personal data to help us process your application and offer you the opportunity of being a part of Genistar. Should you choose to become a client in addition to a Genistar Company Representative, we will add to the initial data provided to build up a picture of your circumstances and aspirations to provide you with a long term financial and lifestyle plan. In order to help us offer you potential relevant financial protection or general insurance solutions and to invite you to ask us for assistance in accessing related financial well-being products and services about which you wish to have more information.
With your consent we will share your personal information to our third-party providers prior to approval of the application in order to get the best range of services offered to you for your needs.
To investigate or settle enquiries or disputes
We may need to use personal information collected from you to investigate issues and/or settle disputes with you as it is in both of our legitimate interests to ensure that issues and/or disputes get investigated and resolved as quickly and efficiently as possible.
To comply with applicable law, court order, other judicial process, or the requirements of any applicable regulatory authorities We may need to use your personal information to comply with applicable law, court order or other judicial process, or the requirements of any applicable regulatory authority. We do this not only to comply with our legal obligations but because it may also be in our legitimate interest to do so.
Personal Information and Rights
The information about any rights that are be available to you in relation to the personal information we hold about you is set out below.
If you ask us, we will confirm whether we are processing your personal information and, if so, provide you with a copy of that personal information (along with certain other details). If you require additional copies, we may need to charge a reasonable administration fee.
If the personal information we hold about you is inaccurate or incomplete, you are entitled to have it rectified. If we have shared your personal information with others, we will let them know about the rectification where possible. If you ask us, where possible and lawful to do so, we will also tell you who we have shared your personal information with so that you can contact them directly.
You can ask us to delete or remove your personal information in certain circumstances such as where we no longer need it or you withdraw your consent (where applicable) provided that we have no legal obligation to retain that data. Such request will be subject to any retention limits we are required to comply with in accordance with applicable laws and regulations and subject to section ‘How do we store personal information and for how long’. If we have shared your personal information with others, we will let them know about the erasure where possible. If you ask us, where possible and lawful to do so, we will also tell you who we have shared your personal information with so that you can contact them directly.
You can ask us to ‘block’ or suppress the processing of your personal information in certain circumstances such as where you contest the accuracy of that personal information or object to us processing it. It will not stop us from storing your personal information though. We will tell you before we lift any restriction. If we have shared your personal information with others, we will let them know about the restriction where possible. If you ask us, where possible and lawful to do so, we will also tell you who we have shared your personal information with so that you can contact them directly.
Under the General Data Protection Regulation (679/2016), you have the right, in certain circumstances, to obtain personal information you have provided us with (in a structured, commonly used and machine-readable format) and to reuse it elsewhere or ask us to transfer this to a third party of your choice. There is no fee required for this information.
You can ask us to stop processing your personal information, and we will do so, if we are:
Relying on our own or someone else’s legitimate interests to process your personal information except if we can demonstrate compelling legal grounds for the processing;
Processing your personal information for direct marketing; or
Processing your personal information for research unless such processing is necessary for the performance of a task carried out in the public interest.
Automated decision-making and profiling
If we have made a decision about you based solely on an automated process (e.g. through automatic profiling) that affects your ability to use the services or has another significant effect on you, you can ask to not to be subject to such a decision unless we can demonstrate to you that such a decision is necessary for entering into, or the performance of, a contract between you and us. Even where a decision is necessary for entering into or performing a contract, you may contest the decision and require human intervention.
We recognise that transparency is an ongoing responsibility so we will keep this privacy statement under regular review.
We take the security of all the data we hold very seriously. We adhere to internationally recognised security standards and our information security management system relating to client confidential data is independently certified as complying with the requirements of ISO/IEC 27001: 2013 Information Security. We have a framework of policies, procedures and training in place covering data protection, confidentiality and security and regularly review the appropriateness of the measures we have in place to keep the data we hold secure.
We seek to protect the safety of all your personal information by implementing appropriate technical and organisational measures. Where we use third parties to process personal information, we require them to ensure the safety of your information. We use appropriate security measures on our own systems, but the internet is not a secure medium and we cannot guarantee the security of information transmitted via the internet.
Any personal information that you voluntarily post on a public area of our site, such as a bulletin board or discussion forum, or an interactive area requiring registration and/or subscription, may be collected and used by others. Please be careful what personal information you disclose in this way. You understand that we cannot control the actions of other users.
We hope that you will never need to, but if you do want to complain about our use of personal data, please send an email with the details of your complaint to Compliance@genistar.net. We will look into and respond to any complaints we receive within the necessary time frame.
You also have the right to lodge a complaint with the Information Commissioner’s Office (ICO) (the UK General Data Protection Regulator). For further information on your rights and how to complain to the ICO, please refer to the ICO website. https://ico.org.uk/