Your Right to Privacy
At UnitedHealthcare Insurance dac (trading as United Healthcare Global) we respect your rights to privacy and the protection of your personal data. The purpose of this privacy notice is to explain how we routinely collect and use personal data about individuals, including applicants and members “you’’ for the provision of our products and services and what rights you have in relation to your personal information.
UnitedHealthcare Global is the primary data controller for processing your personal information. Throughout this document references to ‘’we’’, ‘’us’’ ‘’our’’ or ‘’the company’’ refer to United Healthcare Insurance dac and its subsidiaries and affiliated companies.
Different types of information we collect about you
To allow us to provide our products and services and to run our business we collect and process various categories of personal information about you. We will hold:
- Data to identify you and your dependents (spouse/partner/family), including your contact information;
- Your date of birth;
- Your postal and assignment address;
- Your email address;
- Your contact telephone number (landline & mobile);
- Your employment details;
- Your work & visa details; or as may be required or permitted by law or required for the purposes of any regulatory audit to which the Company may be subject from time to time.
- Your nationality & passport number;
- Your gender;
- Your marital status;
- Information which you have consented to us using in relation to your health & medical information; and
- Your banking details
How we collect your personal data
We do this in a few ways including:
- Information provided by an insurance broker or your employer during the application process for a health insurance plan;
- Health information collected directly from you during the application process for a health insurance plan; and
- Information collected directly from you when you notify us of a claim.
How we use your personal information
We will use your personal information:
- To consider an application for a health insurance plan purchased on your behalf by your employer;
- If a policy is accepted we will use your personal information to administer your policy;
- To process a claim and assist you in the event of a medical emergency;
- To develop reports, including anonymising your personal information, and conducting analysis on our operations; and
- To evaluate the risk of potential fraud.
Our legal basis for processing your personal information
We use, and share, your data where:
- The use is necessary for the performance of the contract that has been entered into by your employer;
- You have explicitly consented to the processing of your health information data (you may withdraw your consent at any time); and
- It may be required or permitted by law or required for the purposes of any regulatory audit to which the Company may be subject from time to time.
Implications of not providing your personal data and or withdrawing consent
If you do not provide personal information or withdraw consent we may not be able to cover you on a health insurance plan or continue to administer your policy, including processing claims.
Sharing your information
When providing our services to you, we may share your information with authorised:
- Insurance brokers and other insurers who work with us to help manage the underwriting process and administer our policies;
- Third party administrators who work with us to help manage the underwriting process, administer our policies and help us manage the claims process;
- Service providers who provide us with support services;
- Assistance providers who can help provide you with assistance in the event of a claim or medical emergency;
- Medical providers who will assist you in the event of a claim or medical emergency;
- Limited members of personnel within the company;
- UHG Group companies;
- Third parties in connection with any sale or transaction involving all or a portion of the business, and
- Statutory and regulatory bodies.
Transferring outside the European Economic Area (EEA)
In some cases these personnel and authorised third-party vendors may be located outside of the EEA, including in countries that may not provide the same level of data protection as your home country. We will always take appropriate steps to ensure that such personnel and third-party vendors are bound to duties of confidentiality and we have implemented measures such as standard data protection contractual clauses to ensure that any transferred Personal Data, remains protected and secure. A copy of these clauses can be obtained by contacting us at the address listed below in the ‘’how to contact us section’’.
How long we hold your data
We will retain your personal information only for so long as reasonably necessary for the purposes set out above, in accordance with applicable laws.
You have certain enhanced rights in relation to how we use your information and the manner in which we process it. This includes:
- A right to access to your personal information;
- A right to request us to correct inaccurate information or update incomplete information;
- A right to request that we restrict processing of your information in certain circumstances;
- A right to object to us processing your personal information for our legitimate business interests or direct marketing purposes;
- A right to have your information deleted or our use of your data restricted in certain circumstances. We may be unable to comply with a data deletion request where doing so would place us in breach of our obligations under applicable laws, regulation or codes of practice. However, in some circumstances, you may be able to request that your data be blocked from further processing;
- A right to data portability (i.e. obtain a transferable copy of your information we hold to another provider) in certain circumstances; and
- A right to withdraw consent at any time where processing is based on consent.
If you wish to exercise any of your data rights, you can contact us at email@example.com. If we are unable to deal with your request fully within a calendar month (due to the complexity or number of requests) we may extend this period by a further two calendar months and shall explain the reason why.
If you have a complaint or concern about how we use your personal data, please contact us in the first instance firstname.lastname@example.org and we will attempt to resolve as soon as possible. You also have the right to complain to the Data Protection Commission or another supervisory authority at any time.
We maintain reasonable security measures to safeguard Personal Data from loss, interference, misuse, unauthorised access, disclosure, alteration or destruction. We are committed to ensuring your information is secure with us and the Third Parties who act on our behalf.
How to contact us
If you have any questions about how we use your information, you can contact us at email@example.com. In addition you can contact our Data Protection Officer at any time at firstname.lastname@example.org
We reserve the right in its sole discretion to amend this privacy statement at any time, you should regularly check this privacy statement for any amendments.
Dated: 25 May 2018