Privacy information | Foyer Assurances

PRIVACY STATEMENT:

General information

Privacy is a core concern of Foyer Group. We undertake to protect and process your personal data in strict compliance with regulations and with complete transparency.
This privacy statement will give you confidence when you visit our website www.foyer.lu and use the services offered there.

Whose personal data is processed?

The personal data of the following can be processed by Foyer Group:

  • All  individual customers,
  • All other natural persons involved in processing linked to a transaction as representatives, partners, suppliers, administrators, employees, legal representatives or any other guarantor or contact person.

This statement does not concern legal entities.

What data is covered by this statement?

All information directly or indirectly relating to an identified or identifiable natural person.

This particularly concerns in the context of your relations with Foyer Group:

  • Identification data, surname, first name, home address, email address, telephone number, etc.
  • Data necessary for the standard conclusion of insurance policies taken out: value of your real estate, salary, etc.
  • Data concerning personal characteristics such as age, sex, lifestyle, consumption, leisure
  • Financial data
  • Location data (GPS, journey) in respect of specific insurance policies
  • Driving data in order to calculate a score applied to an insurance premium for a specific product

In accordance with regulations, we do not collect special categories of personal data as covered by Article 9 of EU Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data unless in the framework of the exceptions in point 2a concerning the consent of the person and the exception in point 2g relating to the pursuit of the public interest. Unless for specific legal grounds, or a legal exception, this data includes information relating to health-related questions that are required by the data controllers for pre-contractual or contractual purposes, or for the settlement of bodily injury claims by the data controllers in the pursuit of public interest.

Why do we need to process your personal data?

We undertake only to process the data required for the intended purposes of the process (minimisation and proportionality of the data).
More generally, we will use your personal data:

  • In connection with the pre-contractual steps taken by Foyer Group
  • In the context of contractual performance, the management of insurance contracts and claims
  • In the framework of our compliance with the legal and regulatory provisions to which we are bound and subject
  • In connection with data processing for which we have obtained your explicit consent
  • In connection with data processing linked to the preservation of legitimate interests such as the prevention of and fight against fraud, money laundering, and terrorism, the preparation of studies and models, the development, innovation and improvement of our products and services in line with insurance industry practices, and the training of our employees or improvement of our services by recording telephone conversations
  • To manage our customer service
  • To manage commercial relations
  • To manage disputes and recover debts
  • To handle complaints
  • To manage commercial prospecting based
    • on  the legitimate interests of the data controllers, by informing you of products and services that are similar or complementary to the range of requirements for which a business relationship exists, and for any information not of a business nature (e.g. preventing risks relating to the contractual relationship); you will be able to object, simply and directly to such use in accordance with the conditions set out under point 10 of the General Data Protection Policy*.
    • additionally, on your consent to receive personalised offers and information and/or to be informed of new products, tax benefits and current news relating to insurance; you may, at any time, withdraw your consent to receive direct marketing in accordance with the conditions set out under point 10 on exercising your rights.

We may use decision support systems not exclusively based on automated processing for one or more of the aforementioned purposes.

Sharing personal data with Foyer agencies

FOYER shares personal data with its network of agencies and subcontractors in compliance with the provisions of professional secrecy pursuant to article 300 of the Law of 7 December 2015 on the insurance sector and obligations relating to the sub-contracting of personal data processing set out in article 28 of the GDPR.


Passing data to third parties

The Group may pass your personal data onto its service providers, suppliers and brokers when managing insurance policies.

As an insurer, the Group may, under certain circumstances, communicate some personal data to other insurers, reinsurers, insurance or reinsurance brokers or other intermediaries and agents, lawyers, experts/technical advisers, repairers, medical advisers, auditors, IT service providers, business partners, and government and mediation authorities located in the Grand Duchy of Luxembourg or abroad.

Your data may also be passed on to public or regulatory authorities or courts.

Your data may be saved on cloud servers managed by a third-party host in connection with particular products in accordance with the general or specific terms and conditions of the products concerned. You are informed of this transfer when taking out this product, for which you have accepted the terms and conditions.

The transmission of data for commercial purposes is based on prior consent.

The Group may transfer your personal data outside the European Union subject to ensuring, before the transfer, that the entities outside the European Union offer an adequate level of protection, in accordance with European legislation.

The Group may also transfer your personal data to third parties if it considers that such a transfer is required for technical reasons (for example, hosting services provided by a third party and performance of the policy) or to protect its legal interests. The Group may communicate your personal data if the law requires it to do so, or if it considers in all good faith that such disclosure is reasonably necessary to comply with a legal procedure (for example, a mandate, subpoena or any other court judgement), or to protect the rights, assets, or personal security of the Group, our clients or the public.

Security

Foyer Group implements all appropriate technical and organisational measures to ensure a level of security suited to the risk posed by the processing concerned.

Retention period

We keep your personal data:

  • For as long as needed for the purpose for which the data was collected or for which it was used for additional processing
  • As long as required to comply with applicable legal obligations
  • As long as required to comply with legal prescription periods.

Right of access, deletion, correction, objection, limitation and portability

As a data subject,

You have the right to access your data as well as information about the purpose of the processing for which your data is collected, the categories of data concerned, the recipients of your data and their retention period.

  • You have the right to correct, delete or block your personal data if they are incorrect, incomplete or processed for purposes not provided for by the pre-contractual, contractual or legal measures or those granted by you.
  • You have the right to object, except for legitimate and compelling reasons.
  • You have the right to limit or restrict the processing of your personal data under the conditions provided by the regulations.
  • You have the right to the portability of your personal data, that is to say the provision of personal data about you stored in a structured format (as of 25 May 2018 under the terms and conditions defined).

You have the option to withdraw your consent at any time by modifying your personal preferences in your account or completing our form available on our site.

 

COMPLAINT PROCEDURE

You have the right to access, change, correct, delete, limit as well as obtain and reuse your personal data and to oppose the processing of your personal data within the legal limits.

To exercise your rights,

  • you can complete the form available on our website attached to a copy of your identity card by email to the following address contact@foyer.lu
  • alternatively,  send us a complaint by post to the Customer Service or directly to the Data Protection Office, Foyer Group, 12 rue Léon Laval, L-3372 Leudelange. Postal address: L-2986 Luxembourg.

Form for claiming rights to your personal data

In order to correctly identify your complaint and to be able to respond to it as accurately as possible, please send us your complete, dated and signed application accompanied by a copy of your identity card. You can lodge a complaint with the supervisory authority: The National Data Protection Authority (CNPD) 15, Boulevard du Jazz, L-4370 Belvaux.

*General Policy relating to the Protection of Personal Data: Foyer Group

View information regarding cookies