If's Privacy policy

Read about privacy in Nordic languages

     
    Denmark
     
    Finland
     
    Norway
     
    Sweden

Our privacy notice and your personal data

We handle personal data in accordance with governmental privacy regulations, other applicable law and this privacy notice. We regularly review this policy and place any updates on this web page.

We think privacy is very important

You trust us with a lot of information, when using our services or interacting with us. We use information to not only enable us to provide you services, but also to continuously improve and provide services tailored to your needs.

We protect your information

When we talk about personal data, it is any information directly or indirectly related to you.

We use our best effort to ensure your privacy with good information management and careful processing of personal data. We handle personal data in accordance with governmental privacy regulations, other applicable law and this privacy notice.

We regularly review this policy and place any updates on this web page.

We want to be transparent

We believe in being clear and open about how we collect and use data related to you. In the spirit of transparency, you will find detailed information in this privacy notice about how and when we use your personal data.

What kind of personal data do we collect?

Personal data that we collect is dependent on each individual relationship and/or the insurance product concerned.

Don't worry – we do not have all below listed information about you. Below you can find information categories and examples of information pieces to help you understand, what kind of data we collect:

General information

General information is collected to identify you as a customer, to serve you better in different channels, to communicate with you or to do different type of transactions such as pay out a claim to you (financial information).

Personal information

Name, contact information, family status, date of birth, employment and employer, marketing preferences.

Identification numbers issued by government

Social security number, driver’s or other license number.

Financial information and account details

Bank account number and account details, credit information and other financial information.

Insurance and claims information

Insurance and claims information is collected to create an insurance contract or to handle a claim. We could need for example property information for your house insurance contract and medical information to handle your personal injury.

Property information

Location, property qualities and constructions, age of the property, equipment and machinery, forest information, security and surveillance, occupants, photographs.

Vehicle information

Registration number, vehicle type and qualities, driving history, bonus information, photographs.

Travel information

Hotel bookings, plane tickets, information about trips and other events.

Accident and loss history in If

Prior loss history (insurers commonly share information about their previous dealings with policyholders and claimants).

Loss information from other insurers

Information from shared loss registers (GSR).

Information about activities or animals

Sport activities, extreme sports or competitive sports, dogs, horses or other animals.

Sensitive information

Medical information

Current or former medical condition, health status, injury or disability information, medical procedures performed, personal habits (i.e. alcohol or drugs), prescription information, pregnancy, imaging results.

Legal procedure, fraud and crime information

Information about legal procedures, frauds or crimes related to you, for example, as part of liability claims or as part of physical injuries handled due to a crime. We also collect data about Anti-money laundry investigated claims and insurance frauds. We also collect data to investigate unclear insurance cases.

Trade union membership

Information about being a member of a trade union, when your insurance solution (content, price) is depending on your membership.

Other

Telephone and video recordings

Recordings of telephone and video held with our representatives.

Interactions with us and customer contacts

E-mails, chats, online meetings, contact history, letters, information gathered during your visits on our webpage.

Social media information

Information posted on social media (i.e. customer feedback from Facebook) and made public.

Information from external sources

We may supplement information provided by you with external information sources, such as publicly available information, commercially available sources and information from our affiliates or business partners.

Where do we collect your data?

We collect data about you from different sources depending on your relationship with us.

Directly from you or policy holder

Example: We obtain data from you, when you interact with us through our contact channels (i.e. our homepage, phone, e-mail) and show interest in buying an insurance, buy an insurance or file a claim.

Use of services or websites and information published on social media

Example: We use  online identifiers (like cookies) when you use our services and use websites. These are important to optimize your online user experience and the services we offer you. Read more about the use of online identifiers  here.

Example: In cooperation with partners we might offer assistance on the road services to our motor insurance customers, and we collect data from such partners.

Directly from your employer, collective or other organization

Example: List of employees insured by a specific insurance policy or validation of your collective membership can be retrieved from your employer or your collective.

Directly from car partners, manufacturers, concessionaires or financial institutions

Example: We use information to administrate car manufacturers guarantee issues, present you offers tailored to your car and payment options.

Directly from car partner, other insurer, police or other public institute

Example: in collision between cars the customer insured at If can be liable for the collision and we receive information from another insurer that If is responsible for the personal injury of their customer. In collision cases we might receive contact details for the injured from another insurer, police report of the collision from the police, car repairment information from repairshop and medical information about the injury from healthcare provider.

Registers maintained by authorities, credit companies, insurers or other external parties

Example: We verify information about your car from public registers.

How do we use your personal data?

We use personal data in almost everything we do as that enables us to provide the best service possible. Here you can read about different ways of us using personal data.

Selling and administration of insurances

We need information to provide you insurances, to define your specific risks and to determine insurability of the risk. We use this information to give a pricing based on your risk, to determine right type of insured amounts and to tailor your coverage to suit your needs. Also we use this information for administration and to provide service in relation to your insurance.

Handling insurance claims

We use personal data to handle insurance claims, or any other claim.

Managing your relationship with you

We use personal data to identify you as a customer, to communicate with you and to send you relevant messages about our services.

Reinsurance

We can in limited cases make a reinsurance for certain risks and use personal data to reinsure those risks or file a claim to the reinsurer.

Providing services through partners

We also use your personal data to provide additional If’s partner’s services in relation to your insurance.

Developing

We use personal data, i.e. telephone recordings, to develop our business and products, to carry out market research and analysis, including satisfaction surveys.

Marketing

We collect and analyze personal data, such as your web behavior or location, to send insurance offers and other messages that you might find useful. If you are our customer, you might receive  insurance offers that we assume are relevant and useful for you. At the same time, we try to avoid sending or displaying irrelevant messages. We never sell personal data to third parties.

 When we use personal data to determine personal features, for analysis or to predict expected behavior, it is called profiling. If you do not want us to handle your personal data or do profiling, for direct marketing purposes, please notify us. You will still receive information related to any insurances, as we are obliged to give you that;

Investigating and anti-money laundering

We use personal data to prevent, detect and investigate crime, including fraud and anti-money laundering, and to analyze and manage other commercial risks.

Reporting to public authorities

We use personal data to comply with applicable laws and regulatory obligations, and respond to requests from the public and governmental authorities.

Making statistics

We use your personal data to create statistics based on e.g. location of property.

Legal grounds for using personal data

Depending on the purpose and nature of information, your personal data is processed lawfully based on one of these legal grounds:

  • Processing is necessary either for conclusion or for performance of an insurance contract. For instance, information about the insured property and your belongings, risk related information, provided prior contract is concluded, as well as any information provided during the claims handling process is processed lawfully based on this legal ground
  • You as an individual have given us consent to process your data, such as that pertaining to health claims. You have rights to withdraw such consent for further processing at any time. However, such withdrawal may affect validity of your insurance coverage and your availability to use our services
  • Processing is necessary for the purposes of legitimate interest of us or other third parties, and your privacy is sufficiently safeguarded. Processing based on this ground takes place when we process your data to prevent fraud or to send to you as our customer direct marketing offers or to maintain security of our IT systems; or when it is necessary to cooperate with our partners
  • Processing is necessary to protect your or another person's vital interest. An example would be for travel insurance in case of accident, when we exchange information with hospitals to proceed with necessary medical manipulations
  • Processing is necessary for compliance with a legal obligation to which the controller is subject. For instance, we are required to submit data about your Compulsory Motor Third Party Liability insurance to the Motor Insurance Bureau.

Automated decision-making and profiling

Automated decision-making and profiling means that we can make decisions with no manual interference. It can mean automatic pricing in our sales system based on the information inserted to the system or it can be automatically paying out a webclaim based on the information given by you as you fill in our webclaims form. In this way, we can offer our customers better and smoother service. We inform our customers about fully automated decision-making in advance, if those automated decisions can affect you significantly.

Insurance claims handling

We use automated decision-making in our claims handling process as part of our webclaims service and other claims handling. Automated decision are based on the information given to us, and can be used to i.e. automatically calculate right amount of compensation. You cannot object to such automated decision making, however, you can contact us and ask as to review the claim’s decision.

Insurance sales process

We use automated decision-making in our insurance sales process as part of our webshop and other channels. Automated decisions are based on the information given to us, and our systems then automatically calculate the price based on information such as vehicle model, claims history, age, region or other factors. This is mandatory when buying insurance; When buying insurance, you cannot object to such automated decision making. If you have any questions regarding your offer you can contact us.

Direct marketing

Profiling means predicting your expected behavior based on information about you. In marketing, we use profiles to send communication that we believe is most relevant to you and avoid sending or displaying irrelevant communication. You have the right to object to profiling related direct marketing.

Data storing and security

We ensure your privacy with good information management and careful processing of personal data. We keep your personal data as long as necessary, to fulfil the purposes outlined in this privacy notice unless a longer retention period is required or permitted by law.

The retention period of your personal data is dependent on the law for the particular type of potential claim, accounting law requirements and other factors. If holding your personal data is not mandatory for us, you can request us to delete the data. Unnecessary or irrelevant personal data is deleted or made anonymous.

We always take appropriate technical, physical, legal and organizational measures, which are consistent with applicable privacy and data security laws. Any service providers acting as data processors are selected carefully and are required to use appropriate measures to protect the confidentiality and security of your personal data.

Sharing your personal data with others

As an insurance company, we are obliged by law to maintain secrecy about personal customer information, and other personal data. We can disclose personal data to others, but only when we are allowed to do so by law or by your prior consent. Use of suppliers that we control with data processing agreements is not regarded as disclosure.

Depending on the insurance product concerned and nature of the information, your personal data can be disclosed to:

Bank or leasing company

If relevant institution is indicated as a beneficiary in the policy – the information about the status of the policy and possible claim can be shared.

To intermediary

(agent, tied agent or broker) who has mediated the insurance contract – the information about the policy and the claim; it is only shared in extent that it is necessary for performance of the contract.

Claims partner

Such as repair shop or constructor, in case of the claim – information about validity of the policy as well as claims information can be shared in extent that it is necessary to handle the claim.

Motor insurance bureau

We register information about concluded compulsory motor third party liability insurance policies and reported traffic accident claims.

Medical institution and doctor

In case of health claim, health evaluation or personal injury we may share your information with health centers or doctors.

Other insurers

We provide information to other insurers in claims handling in case it is necessary to handle the claim.

Governmental institutions

We may be required to share your personal data with other governmental institutions or third parties, if that is required based on the law or to fulfil the contract.

Service partners

We may share your data with our service partners to provide you additional services such as help in a claims situation or to provide you an additional service.

International transfer of your data

Your personal data is primarily stored within territory of European Union and European Economic Area. Due to the global nature of our business and to technological solutions, for the purposes set out above, in certain cases we may transfer personal data to parties located in other countries.

For example, we may transfer personal data to a data processor providing online cloud services located in United States. Any such transfer is performed according to the applicable privacy rules for such international data transfers.

Customer rights and accessing your information

We want to be transparent regarding the information we hold about you and we want to make sure it is accurately updated.  As a private customer you can access your own information at Mypages and in case you need more information, you have the right to request a copy of the personal information we have about you by e-mailing (registerutdrag@if.se) or sending a letter to If Skadeförsäkring AB, Rekisterutdrag, 106 80 Stockholm. We always identify our customers before enabling access to their information.

You may ask us to correct or remove information you think is inaccurate. You may also ask us to delete information about you if there is no legal basis for further processing. Please note that some information may be exempt from access, correction, deletion rights in accordance with applicable laws. Upon your request, a copy of your personal data can also be transmitted directly to another company, if it is technically feasible.

Please see more about your rights as a customer from your country's Data Privacy Notice

Who to contact

If you have any questions concerning our handling of your personal data you may contact her and her team on DPO@if.se.

We are your data controller and you can write to us:
If Skadeförsäkring AB, registration number 516401-8102
Address: 106 80 Stockholm, Sweden