Hiscox Privacy Statement
EFFECTIVE DATE: December 8, 2015
Welcome! Hiscox Inc. (d/b/a Hiscox Insurance Agency in CA) and its affiliates are a leading specialist insurer that targets specific types of insurance in which we develop expertise, often focusing on areas other insurers find too complex to insure. Hiscox Inc. and its affiliates are collectively referred to in this privacy statement as “Hiscox”, “we”, “us” or “our”.
We wrote this privacy statement to help you understand what information we collect, how we use it, what choices you have and other important information. Although some of the concepts below are a bit technical, we tried our best to explain things in a straightforward and transparent way. If you have any questions or comments about this privacy statement or the ways in which Hiscox uses the information we collect, please do not hesitate to contact us using the information provided in the “CONTACT US” section at the bottom of this privacy statement.
SCOPE OF OUR PRIVACY STATEMENT
WHEN THIS PRIVACY STATEMENT APPLIES
This privacy statement applies to information collected through Hiscox.com, Hiscoxbroker.com, Encouragecourage.com and any other websites, mobile apps or other online products and services that display or link to this privacy statement (collectively, “online environments”).
WHEN THIS PRIVACY STATEMENT DOES NOT APPLY
This privacy statement does not apply to:
- Websites, mobile apps or other products and services that have their own privacy statement or policy;
- Websites, mobile apps or other products and services that do not display or link to this privacy statement;
- Information submitted to us on applications and forms available for download on our online environments; and
- Information collected offline.
If you have any questions as to whether this privacy statement applies to you, please do not hesitate to contact us using the information provided in the “CONTACT US” section at the bottom of this privacy statement.
INFORMATION WE COLLECT
We collect information in a few different ways: (i) information you submit or give us permission to obtain; (ii) technical information collected automatically; and (iii) information provided by our partners. Each of these ways is discussed below.
INFORMATION YOU SUBMIT OR GIVE US PERMISSION TO OBTAIN
We collect information from you when you choose to provide it to us through our online environments. For example, if you:
- Request a quote or create an account to save quotes, you may provide us with your name, postal address, email address, telephone number, business name and information, existing or past insurance coverage, and other information relevant to your request;
- Manage or request changes to your policy, you may provide us with your name, policy number, email address, phone number, the change requested, and any additional information your provide;
- Request support or submit an inquiry, you may provide us with information such as your name, contact information, the subject of your inquiry, message content and any other information you choose to provide;
- Sign up to receive information about our products and services, you may provide us with information such as your name, contact information, the product or service you are interested in and any other information you choose to provide; or
- Respond to surveys, you may provide us with your survey responses, contact information and any other information required to complete the survey.
We also collect information from you when you give us permission to access it. For example, if you access our online environments through your desktop, tablet or mobile device browser, you may give us access to location data.
TECHNICAL INFORMATION COLLECTED AUTOMATICALLY
Some of the types of technical information collected automatically when visiting our online environments include:
- Log Data. When you use our online environments, our servers automatically record information (“log data”), including information that your browser or mobile device sends whenever you visit or use our online environments. This log data may include your Internet Protocol address, the address of the web pages you visited that had Hiscox features, browser type and settings, the date and time of your request, how you used our online environments and cookie data;
- Device Information. In addition to log data, we may also collect information about the device you are using to access our online environments, including what type of device it is, what operating system you are using, device settings, unique device identifiers and crash data. Whether we collect some or all of this information often depends on what type of device you are using and its settings. For example, different types of information are available depending on whether you are using a Mac or a PC, or an iPhone or an Android phone. To learn more about what information your device makes available to us, please also check the policies of your device manufacturer or software provider.
INFORMATION PROVIDED BY OUR PARTNERS
Our advertising vendors and other partners may share with us the information they collect. For example:
- Our advertising vendors may share information with us regarding our ads on websites or apps where such ads run to measure and improve those ads, including a list of criteria to use in targeting ads;
- We may obtain information such as business name, business owners, address, email address and telephone numbers from other commercially available sources such as data aggregators, marketing list providers, and other public databases, to provide us with information on prospects who might be interested in Hiscox products and services.
- We may also obtain additional information about our existing customers (this is known as “data appending”). This information may include name, demographic information, contact information, interests, and publicly-observed data, such as from social media and shopping behavior; and
- We may receive information about customers when we acquire part or all of other companies.
We may also combine the information we collect through one or more of our online environments with information we collect through other online environments. We may also combine information collected through our online environments with information collected through our offline environments, as well as with information provided by our partners. We use this consolidated information to help us improve our online environments, products and services, communicate information to you, enhance our marketing and research activities and engage in any other uses described in the “HOW WE USE THE INFORMATION WE COLLECT” section below.
HOW WE USE THE INFORMATION WE COLLECT
We use the information we collect to provide our products and services to you, improve our products and services, develop new products and services and protect ourselves and our customers.
If you request a quote from us, the information we collect will be used to generate the quote, allow you to create an account to save quotes, and provide you with information about other relevant products and services.
If you manage or request changes to your policy, the information we collect will be used to update your policy and provide you with information about other relevant products and services;
If you make a purchase through our online environments and authorize us to use your credit or debit card information, we will use this information to charge you as authorized. In these situations, we may also save your payment information and contact information so that you can use them the next time you want to order something from us.
If you register or open an account with us, the information we collect may be used to maintain your account, provide you with access to some features of our online environments or offer you the benefits and privileges that typically come along with account registration.
We also use the information we collect for other legitimate business purposes, such as to:
- Send you advertisements, notices and other information regarding our products and services, including notifying you about special promotions;
- Respond to your inquiries or support requests;
- Invite you to participate in surveys regarding our products or services;
- Furnish and maintain our online environments; and
- Secure our networks and online environments.
We may also use the information we collect to offer you customized content, including to:
- Recognize new or past visitors to our online environments;
- Remember your personal preferences;
- Show you more relevant and meaningful advertisements;
- Better understand the interests of our customers and visitors to our online environments; and
- Conduct research and analyze the use of our online environments, products, services and advertisements.
Some of our applications and mobile-optimized online environments may have location-based features. To deliver these features, we may access and use location data provided by your mobile device if you give us permission. For example, we may offer features that allow you to find the nearest broker. Location information will be collected solely to deliver the requested feature, and it will not be further retained or stored by us.
Finally, in certain limited circumstances, we may be called upon to release the information we collect in response to a court order, subpoena, search warrant, law or regulation. We plan to cooperate in responding to such requests, taking appropriate measures to ensure that the requester understands the potentially-sensitive nature of the information they may receive. We also reserve the right to cooperate with law enforcement authorities in investigating and prosecuting customers who violate our rules or engage in behavior that is illegal or harmful to others or their property.
We use common tools, such as cookies and similar technologies (discussed in the “TECHNICAL INFORMATION COLLECTED AUTOMATICALLY” section above), to collect information about your use of our online environments for purposes of enhancing your online experience and delivering more meaningful advertisements. Like many companies, we may also utilize third party advertising vendors and other partners to collect this information.
One way in which we deliver more meaningful advertisements is through a common form of online advertising known as “retargeting” or “remarketing.” Retargeting works by serving ads on one site based on consumer’s online activities on a different site. For example, if you visit pages on our online environments, you may later see advertisements for Hiscox products and services when you visit third party websites. To do this, Hiscox or our advertising vendors may use a device ID, cookie or similar technology placed by us or the advertising vendor when you visit our online environments or third party websites or apps. The placing of these cookies or other technologies on your device may enable you to be identified across multiple websites and you should consult the privacy policies of our advertising vendors to understand how they collect and use your data.
Your ability to control the use of tracking tools, such as cookies, and opt-out of retargeting activities is described in the “CHOICES YOU HAVE ABOUT YOUR INFORMATION” section below.
WHEN WE SHARE YOUR INFORMATION & OUR RELATIONSHIP TO THIRD PARTIES
We may use third parties to perform a variety of functions on our behalf. We may also use third parties to analyze data collected through our online environments. We will not disclose your personally identifying information to anyone other than our employees and those third parties with whom we have a business relationship. If we allow a third party vendor to have access to your personally identifying information, we will not authorize them to take it or use it for any purpose that is not consistent with this privacy statement.
We will not sell or disclose any personally identifying information collected from you to an unrelated third party without your express permission, except as explained in this privacy statement.
- Cookies and Similar Technologies. As discussed above, we may partner with third party advertising vendors to manage our advertising on other websites and apps. Our advertising vendors may use a device ID, cookie or similar technology to collect information about your activities on our online environments to provide you retargeted ads on other websites and apps. If you do not want this information used for the purpose of serving you retargeted ads, you can opt out here or here. Please note that opting out of receiving retargeted ads will not prevent you from being served advertisements generally.
- Vendors and Suppliers. We have relationships with different vendors and suppliers who help us design and maintain our online environments, systems and computer security, respond to consumer inquiries, fulfill orders, analyze our data, create special promotions and engage in any other information uses described in this privacy statement.
- Legal Requests and Preventing Harm. If we believe that disclosure of information is reasonably necessary to comply with a law, regulation or legal request; to protect the safety, rights, or property of the public, any person, or Hiscox; or to detect, prevent, or otherwise address fraud, security or technical issues.
- Change of Ownership or Control. We may engage in a merger, acquisition, bankruptcy, dissolution, reorganization, or similar transaction or proceeding that involves the transfer of the information described in this privacy statement.
OTHER IMPORTANT INFORMATION ABOUT OUR RELATIONSHIP WITH THIRD PARTIES
- Social Media Plugins. Our online environments may use social media plugins (for example, the Facebook, Twitter or LinkedIn buttons) to enable you to visit pages on these social media sites or to easily share information with others. When you visit our online environments, the operator of the social plugin can place a cookie on your device, enabling that operator to recognize individuals who have previously visited our online environments. If you are logged into the social media website (for example, Facebook, Twitter, Google+) while browsing on our online environments, the social plugins allow that social media website to receive information that you have visited our online environments. We do not control any of the content from the social media plugins. For more information about social plugins from other social media websites you should refer to those sites’ privacy and data sharing statements.
CHOICES YOU HAVE ABOUT YOUR INFORMATION
You may always limit the amount and type of information that we collect from you by choosing not to enter or provide any information requested from you on our online environments (for example, quotes and support requests can be made through our call center agents). However, some of our products and services can only be provided to you if you provide us with requested information. Some of the products and services offered through our online environments may ask whether you wish to opt out or opt into our contact lists for offers, promotions and additional products and services that may be of interest to you.
You can opt out of marketing emails we may send to you by following the “unsubscribe” instructions provided in such emails. If you opt out of our marketing emails, we may still send you transactional and relationship emails, such as emails about your orders and account.
You may also be provided with preference questions or preference boxes allowing you to indicate that you do not want our online environments to use tracking technologies, such as cookies, to “remember” the information collected on return visits, such as user IDs or mailing addresses. In addition, you may be able to control the use of tracking tools and limit retargeting activities as follows:
- Controlling Tracking Tools. Most web browsers have an option for turning off the cookie feature, which will prevent your browser from accepting new cookies, as well as (depending on the sophistication of your browser software) allowing you to decide on acceptance of each new cookie in a variety of ways. For more information about cookies and how to refuse them, visit here and here. To control flash cookies, which we may use on certain online environments from time to time, you can go here (note, this separate link is provided because flash cookies cannot be controlled through your browser settings).
- Opting-Out of Retargeting Activities. The Self-Regulatory Program for Online Behavioral Advertising program provides customers with the ability to opt-out of having their online behavior recorded and used for advertising purposes. To opt out of having your online behavior collected for advertising purposes and receiving behavioral advertisements from our advertising partners, including retargeting advertisements, click here or here. Choices you make are both browser and device-specific. Also, certain versions of the iOS operating system permit you to “Limit Ad Tracking” in the system settings, and certain versions of the Android operating system allow you to “Opt out of Interest-Based Ads” in the system settings.
DO-NOT-TRACK SIGNALS AND SIMILAR MECHANISMS
Some web browsers may transmit “do-not-track” signals to websites with which the browser communicates. As of the Effective Date of this privacy statement, an industry standard has not yet been established on how to respond to these signals. Therefore, we do not currently respond to these signals, but we may reassess our response approach once a standard is established.
HOW YOU CAN ACCESS AND CORRECT YOUR INFORMATION
You can access, change or remove information previously provided to us upon request by contacting our Legal Department at [email protected] or by writing to us at Hiscox Inc., 520 Madison Avenue, 32nd Floor, New York, NY 10022. For record keeping and compliance purposes, we will retain certain information collected from you in conjunction with commercial transactions.
HOW WE SECURE YOUR INFORMATION
We have instituted physical, technical and procedural safeguards to store and maintain information we collect in a secure environment. For example, when any confidential information is transmitted over public infrastructure it is encrypted. You may also be required to use a password to access certain pages on our online environments where certain types of your information can be changed or deleted. It is therefore important for you to protect against unauthorized access to your password and to your device. You take full responsibility for maintaining the complexity and confidentiality of your password. While we have implemented safeguards, you should be aware that Internet security technology rapidly changes. We cannot guarantee that the safeguards we employ today can protect your information from the threats of tomorrow. You should also be aware that despite our efforts, factors beyond our control may result in disclosure of information. Accordingly, we are not in a position to guarantee that your information will be secure under all circumstances.
OUR POLICY ON CHILDREN’S INFORMATION
We do not knowingly collect or use any information from children (we define “children” as minors younger than 13) on our online environments. We do not knowingly allow children to order our products or services, communicate with us or use any of our online environments. If you are a parent and become aware that your child has provided us with information, please contact us using one of the methods specified below, and we will work with you to address this issue.
YOUR CALIFORNIA PRIVACY RIGHTS
Information collected from you may be shared among and between the Hiscox affiliates, some of which do not share the Hiscox name, for their own direct marketing purposes. If you would like to learn more about the types of information we share and who we share it with, please do not hesitate to contact us using the information provided in the “CONTACT US” section at the bottom of this privacy statement.
Our online environments are designed for and targeted to U.S. audiences and are governed by and operated in accordance with the laws of the U.S. While users from countries other than the U.S. may access our online environments, we make no representation that such environments are operated in accordance with the laws or regulations of, or governed by, other nations.
Please be aware that by accessing our online environments, or providing us with information, you understand and agree that:
- Information collected from you may be transferred to and stored on servers located outside your jurisdiction;
- To the extent you are a resident of a country other than the United States, you consent to the transfer of such information to the United States for our use in accordance with this privacy statement; and
- This privacy statement, and the collection and use of information pursuant to this privacy statement, shall be governed by and construed in accordance with the laws of the United States, without giving effect to any principles of conflicts of law.
Providing us with information or continuing to use our online environments indicates that you are agreeing to the collection, use, disclosure, management and storage of information collected from you as described in this privacy statement.
CHANGES TO THIS PRIVACY STATEMENT
We reserve the right to amend this privacy statement without prior notice to reflect technological advancements, legal and regulatory changes and good business practices. If we change our privacy practices, a new privacy statement will reflect those changes and the effective date of the revised privacy statement will be set forth at the top of this privacy statement.
If you have any questions or comments about this privacy statement or the ways in which we use information subject to this statement, please do not hesitate to contact us by:
- E-mailing us at [email protected]; or
- Writing to us at Hiscox Inc., 520 Madison Avenue, 32nd Floor, New York, NY 10022.