+971 4 323 1111
Book a Meeting

Privacy Notice

Nexus group of companies

Privacy Notice

Individuals have rights concerning the handling of their personal information. During the course of our business activities, we collect, store, and process personal information. This notice explains how the various entities that form part of the Nexus group of companies (Nexus) manage and protect personal information.

What personal information do we collect?

We collect and process personal information given to us by phone, e-mail, filling in forms, including on our website, and if a problem is reported through our website. We may also collect information from insurance companies, in order to provide you with our services. We may collect personal information for verification purposes, from government authorised electronic verification service providers. We will also collect information which individuals volunteered to be in the public domain and other industry-wide sources.

For corporate savings plans or group insurance policies we may also collect personal information from: employers or the corporate savings plan holder, or group insurance policy holder (if different to an individual’s employer).

The type of personal information we will collect includes basic personal information (i.e. name, address, email address, telephone number, date and place of birth, gender, marital status, nationality, country of residence, and photographic identification); employment and financial details; and where we receive a request that other individuals be included in the arrangement, personal information about those individuals. We may also record the content of telephone calls for quality and training purposes. Where required, we may also collect sensitive information such as medical and health details to allow us to transfer the complete information to the insurance provider.

If we are provided with personal information on other individuals in order to provide a quotation for insurance or to facilitate the setting up of a contract of insurance and/or provision of related services it is understood that in doing so all necessary permissions and consents have been received, and, where necessary, all affected persons have been informed about the content of our Privacy Notice.

Nexus protects the privacy of its clients by:

  • Collecting information fairly and only collecting information that is required to provide insurance related services
  • Explaining why we are collecting personal information and how we will be using it
  • Using personal information only for our business operations and to comply with the law
  • Sharing personal information only with companies and organisations that will keep it secure
  • Not sending personal information abroad without ensuring its security
  • Ensuring that all individual rights can be exercised under the applicable Data Protection legislation

How do we use personal information?

We will collect and use personal information in the following manner (i) where the processing is necessary in connection with providing a quotation and/or facilitating a contract of insurance and/or provision of related services that have been requested; and (ii) to meet our legal or regulatory obligations. A non-exhaustive list of examples of our contractual and legal purposes for which we will collect and use personal information are:

  • To provide a quotation and/or provide brokerage services in relation to a contract of insurance
  • To identify individuals that contact us
  • To broker business relationships with insurance companies
  • To provide financial advice regarding policies
  • To communicate with policyholders or their appointed representatives in respect of insurance broker services
  • For fraud prevention and detection purposes
  • To comply with applicable legal and regulatory requirements such as anti-money laundering, countering the financing of terrorism, countering proliferation financing, financial sanctions, tax or regulatory reporting. This includes complying with requests to provide data including personal information to our regulators [Central Bank of the United Arab Emirates (“CB UAE”), Dubai Financial Services Authority (“DFSA”), Central Bank of Bahrain (“CBB”), Qatar Financial Centre Regulatory Authority (“QFCRA”), The Insurance Regulatory Unit (IRU Kuwait) and the Central Bank of Jordan (CBJ). Such data sharing could be in respect of individual insurance policies, group insurance policies and corporate savings plans and may include personal information of relevant parties of the above policies and plans (such as policy owners, claimants, lives insured and beneficiaries (and employees of such policy owners, claimants and beneficiaries as the case may be). This data sharing may include requests for historic as well as current data.

We will always ensure that we keep the amount of information collected for legitimate interest purposes and the extent of any use to the absolute minimum.

Who do we share personal information with?

Where necessary, we will share the personal information provided to us for the purposes of providing insurance product related services and any related services requested with the types of recipients described below:

  • Nexus group of companies or any of its affiliated companies
  • Involved insurance company/ies
  • The employer or the corporate savings plan holder, or group insurance policy holder (if different to the employer) or their appointed agent, such as a Trustee
  • Auditors
  • Other insurance companies in line with industry regulatory standards

Or, in order to meet our legal or regulatory requirements, with the types of organisations described below:

  • Regulatory and legal bodies, including requests made by our regulators for supervisory purposes, where we must share data whether on an adhoc or regular and daily basis to remain compliant to our regulatory obligations
  • Government or tax authorities
  • Law enforcement bodies, including investigators

The personal information provided will only be available to those people with a legitimate need to see it. For example, only those people involved in the management of complaints will be able to see the sensitive information gathered and only for that purpose.

How do we transfer personal information to other countries?

We may transfer, store, process and/or deal with your Personal Data outside the country of negotiation for one or more of the purposes including as permitted under the applicable Data Protection Laws. We implement appropriate technical and organisational measures to ensure that any Processing of your Personal Data is undertaken securely and in compliance with the applicable Data Protection Laws. We will, wherever necessary, ensure that suitable safeguards are in place before we transfer your Personal Data outside the country of negotiation which do not have adequate protection as determined under the applicable Data Protection Laws, for example by signing specific contractual clauses to maintain adequate protection with such entities. In doing so, we will comply with the applicable Data Protection Laws.

For how long do we keep personal data?

We will retain and process personal information for as long as necessary to meet the purposes for which it was originally collected. These periods of time are subject to legal, tax and regulatory requirements or to enable us to manage our business.

What happens if you fail to provide accurate personal information to us?

If we are not provided with required personal information, we will not be able to provide advice regarding an insurance product, policy coverage or advice regarding possible claims for the services that have been requested.

Security of Personal Information

Nexus takes the security of personal information seriously and implements appropriate technical and organisational measures to protect it. While we strive to protect your personal information, it is important to note that no data transmission over the internet can be guaranteed to be 100% secure. Consequently, we cannot guarantee or warrant the security of any information you transmit to us, and you do so at your own risk.

What data protection rights do individuals have?

All individuals have the following rights under data protection laws, namely:

  • To access their personal data (by way of a subject access request)
  • To have personal data rectified if it is inaccurate or incomplete
  • In certain circumstances, to have personal data deleted or removed
  • In certain circumstances, to restrict the processing of personal data
  • A right of data portability, namely to obtain and reuse personal data for related purposes across different services
  • To object to the processing of personal data
  • Not to be subject to automated decision making (including profiling), where it produces a legal effect or a similarly significant effect on an individual
  • To claim compensation for damages caused by a breach of data protection legislation

If we are processing personal information with consent, consent may be withdrawn at any time (the withdrawal of consent shall not affect the lawfulness of processing based on consent before its withdrawal).

These rights may be exercised by contacting our Data Protection Officer. In order to protect privacy, individuals will be asked to provide suitable proof of identification before we can process rights-related requests.

Data Protection Contact

[email protected]
Data Protection Officer, Nexus Insurance Brokers LLC,
Office 402, 4th Floor, Emaar Square,
Downtown, Dubai, UAE.

Address
Contact Details
Quick Links
Connect with Us
BOOK A MEETING
Speak to a member of our team today for expert advice.