Privacy policy

Pogona Insurance Data Privacy Statement

General Introduction

Pogona Insurance BV (hereafter: Pogona Insurance) respects your privacy and commits to process your personal data in accordance with the Algemene Verordening Gegevensbescherming (“AVG”) or the General Data Protection Regulation (“GDPR”). In this Data Privacy Statement we explain how we process your personal data and why. We also inform you about your rights and how you can communicate with us about this.

This Data Privacy Statement is applicable for the processing of the personal data which are provided by or obtained from our customers, employees and other third parties. This statement is also applicable for the processing of personal and/or other data of anyone who visits and/or uses the website(s) of Pogona Insurance, including information provided by filling forms on the website.

Scope of Processing Activities

Why does Pogona Insurance process your personal data?

1. To enter into a relationship with us.

In case you would like to take out insurance or want to use another service from us, than we need your personal data. We are required to establish if it is allowed to accept you as a client or that we can provide you an insurance contract. We can use third parties’ information in this process, like the Sanctions list. We need to obtain a true copy of your ID Document as part of the onboarding process.

2. For executing your cover request, damage payments and to maintain our relationship.

In case you request us to execute your cover request, damage payments or execute any other transaction, than we need your name and other required information which we can share with the beneficiary and the intermediating institution(s). We can, as part of monitoring our client contact processes or for evidencing, tape telephone conversations.

3. To protect your and our interests.

In order to safeguard the financial industry, we process personal data. To avoid or investigate (potential) fraud cases for example. We can maintain or use certain incident registers, and use public sources. We can share personal data with third parties engaging in the prevention of (cyber)crime. We will only do so if we have agreed upfront that these parties will be bound to rules to safeguard the use of your personal data.

4. For marketing or promotion purposes.

We can use your personal data for these purposes to be better equipped to serve you. You will always have the option to opt out from this. We can use the data obtained via our website to provide you with more relevant information or commercials. We can use the data also for conducting analyses, including benchmark analyses. By doing so, we will be able to improve our services.

5. To facilitate interactions with suppliers and customers.

For employees of Pogona Insurance their personal data is shared for instance as part of the Pogona Insurance Signature list in order to validate representation on behalf of Pogona Insurance.

6. To meet our legal obligations.

Based on (international) rules and regulations we need to continuously update our client files. The laws on prevention of money laundering (Wwft), but also the law on having ethical and controlled business operations (Wft) oblige us to assess for example certain (unusual) transaction patterns, to perform analyses when certain thresholds are met, or to identify an Ultimate Beneficiary Owner of legal entities. Based on legal obligations we must provide certain (analyzed) data to governmental institutions, tax authorities or supervisors. Based on our Duty of Care we could also be required to process your personal data.

7. To meet (legal) archiving requirements.

We can use your personal data for legal cases, historical or statistical purposes, while your personal data remains in our possession during this timeframe.

It is always up to you to decide which personal data you share with us. In case you decide not to share certain information with us (anymore), than we might not be able anymore to serve you with our products and services.

Does Pogona Insurance process sensitive personal data as “special” categories of personal data?

Special categories of personal data contain data that is revealing e.g. health, racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership. Only in a specific cases we would process sensitive personal data. For example if you take out car-insurance and the insurance company wants to know if you have a criminal history 8 years prior to the start date of the insurance or questions about your health for your personal accident insurance. Criminal records can be processed by your insurance company based on the use of incident registers. The purpose of these registers is to protect the interest of the customers and/or organizations, e.g. for fraud identification. Children´s (minors) data will only be collected in case a savings account in their name will be opened. We will only do so once we have received authorization from the person(s) holding parental responsibility of the child.

All other personal data included in this category will only be processed after we have received your specific consent or instruction thereto, in case of a legal obligation thereto on our side, or if you have made the specific data already public yourself.

Is my personal data safe with Pogona Insurance?

The safety of your personal data is paramount to us. We treat data collected from customers with utmost care by taking all the necessary technical and administrative measures. Apart from general IT controls to ensure confidentiality, integrity and availability of information, Pogona Insurance has designed its work processes with emphasis on ‘need to know’ basis. That means that only the required part of customer information is available to a designated employee to carry out its job.

Our contact person for your questions about data protection

For any question concerning your personal data and your rights thereunder, you can contact our Data Protection Officer (DPO) at the following address:

How will Pogona Insurance handle my personal data?

We will keep your personal data not longer than legally required for the purpose for which the data has been obtained by us. Access to your personal data is limited to those staff members only who need to have access to them based on their function/role.

Data sharing with third parties

In certain cases Pogona Insurance uses third parties for tasks/activities where they will be processing your personal data. Pogona Insurance uses for example an external printing company for the printed client statements or mailings. We are allowed to use these third parties only if the use of your personal data fits the purpose for which that data was provided. This third party must demonstrate to us upfront and during our relationship with them, that it has taken the necessary measures to safeguard sufficient security. Also a data processing agreement has to be signed between Pogona Insurance and the third party.

Pogona Insurance will not sell or otherwise make your personal data available to third parties.

Can I see which personal data Pogona Insurance is processing from me?

Yes, you can ask us to provide you with an overview of your personal data that is processed by us. You can send us a request hereto via post or by sending us an email.

Can I request a rectification or deletion of my personal data with Pogona Insurance?

Yes, in case you are of the opinion that the data that we process from you is incorrectly administrated in our system(s), is being processed incorrectly, or if you want us to delete the data that we process from you, you can ask us for rectification or deletion. You can send us a request hereto via post or by sending us an email.

If I have a complaint, remark or suggestion, what can I do?

Please contact us either via a letter or by sending us an email:

If you have any complaint on the handling of a complaint or your personal data related requests by Pogona Insurance BV, you may also contact:

Stichting Klachteninstituut Financiële Dienstverlening (KiFiD)
(Financial Ombuds organisation)
Postbus 93257
2509 AG Den Haag
Tel: 070-333 8 999

Autoriteit Persoonsgegevens (Data Protection Authority)
Postbus 93374