YOUR PRIVACY AND SECURITY

This Privacy Statement will help you understand how we collect, use and protect your personal information when you interact with us. Please take a few moments to read the sections below and learn how we may use your personal information. You should also show this notice to anyone else who may be insured to drive under your policy. You acknowledge that by providing your personal information to us, you consent in its processing in accordance with this Privacy Statement.

Gladiator is a trading name of Able Insurance Services Ltd (Able). Able is part of the Admiral Group plc (No 1 Langdon Road, Swansea Waterfront, Swansea, SA1 8AG, FSA Registration 311649)

General
We will use your information for:

• Processing your quotes
• Administering your policy including claims handling
• Fraud prevention and detection
• Credit scoring or other automated decision-making systems
• Administering debt recoveries
• Verifying your identity when required
• Undertaking market research
• Keeping you informed about promotions and new developments.

Marketing
Able will also use your information for marketing purposes:

• Contacting you by telephone after your quote; in many circumstances by speaking to you directly, we may be able to offer you a more competitive price
• Keeping you informed of products and services, including but not limited to car insurance (e.g. other automotive or financial products, or other carefully selected offers which we believe may interest you), from us and other companies.

If you do not want your personal information to be used this way, please write to the Marketing Department, Gladiator, No 1 Langdon Road, Swansea Waterfront, Swansea, SA1 8AG who will ensure that your information is not used for these purposes.

Policy changes
For your benefit and in order to ensure an efficient administrative process, we may discuss with and take instruction to change your policy from these people:

• you, your spouse or partner, your parents, and drivers already named on the policy.

Find more information about the types of changes which can be made this way in your policy booklet. If you do not want us to do this, then please write to the The Quality Executive, Gladiator, No 1 Langdon Road, Swansea Waterfront, Swansea, SA1 8AG.

At renewal
In order to offer you continuous cover on your policy, Gladiator may arrange for your policy to be automatically renewed. You should be aware that we can only guarantee automatic renewal when:

• You have made us aware of any changes to your policy details
• The credit/ debit card details have not changed
• The credit/ debit card holder has given their explicit consent to his or her card being charged at renewal.

Unless we hear to the contrary, Gladiator is entitled to assume at renewal that your details have not changed and you have the consent of the card holder.

If you wish to make changes to your policy then, unless you inform us otherwise, Gladiator will charge the payment details (card or bank account) held on record for any additional amount due.

You may inform us of any changes or opt out of automatic renewal at any time by contacting our Customer Service department.

We may also contact you with a reminder that your insurance is due for renewal.

Disclosure
We may disclose information about you and your policy:

• To companies within the Admiral Group (For the purposes of this Privacy Statement, "Admiral Group" means Admiral Group plc and any company or entity in which Admiral Group plc owns more than 15% of the issued share capital. Companies in the Admiral Group shall include, without limitation, EUI Limited, Admiral Syndicate Management Ltd, Admiral Syndicate Ltd, Admiral Insurance Company Ltd, Admiral Insurance (Gibraltar) Ltd, Inspop.com Ltd, Able Insurance Services Ltd and any other company that is incorporated within the Admiral Group at any time in the future)
• In the event that we undergo re-organisation or are sold to a third party, in which case you agree that any personal information we hold about you may be transferred to that re-organised entity or third party
• Where it is necessary to deliver the products and services bought by you. For example, we may disclose your personal information to a credit card company to validate your credit card details and obtain payment. It may also be necessary for us to pass your personal information to the organisation from whom you have ordered any products or services other than your Able insurance product, such as a travel insurance or a personal accident cover provider, etc. At all times, Able will remain the Data Controller unless we inform you otherwise
• We may also be obliged to disclose your personal information to meet any legal or regulatory requirements in accordance with the law.

Personal
We will collect your personal information when:

• You ask for a quote
• You purchase our products and services
• You make customer enquiries
• You register for information or other services
• You respond to communications or surveys
• When providing information about others who may be insured you confirm that you have the consent of these individuals to supply their personal information.

The type of personal information we may collect could include:

• Name and address, date of birth and gender
• Telephone numbers and email address
• Credit/ debit card details
• Lifestyle and other information
• We may also collect information defined as "sensitive data" within the Data Protection Act 1998. This includes:
• Medical history
• Claims history
• Criminal convictions etc.

By accepting your policy with us you agree to our collecting such information. We are unable to offer you any insurance product unless you provide explicit consent for the collection and use of such sensitive data as defined in the Act.

We may also monitor or record calls, emails, text messages or other communications in accordance with UK law, and in particular for:

• Business purposes such as quality control and training
• Processing necessary for entering into or performance of a contract
• Prevention of unauthorised use of our telecommunication systems and websites
• Ensuring effective systems operation
• Meeting any legal obligation
• Protecting your vital interests
• Prevention or detection of crime
• For the legitimate interests of the data controller.

Please visit www.dataprotection.gov.uk or www.dti.gov.uk for further information.

All personal information will be held in the strictest confidence and used only for the purposes for which we collect it. If you would like us to remove any personal information from our records, then please write to us at our Customer Services Department, No 1 Langdon Road, Swansea Waterfront, Swansea, SA1 8AG. We will make all reasonable efforts to delete your information from our files if it is deemed appropriate.

Non-personal information collected online
You can visit our website without disclosing any personal information, although we may use cookies to collect non-personal information about your browsing. ("Cookies" are small pieces of information sent by a web server to a web browser which enable the server to collect information. Find out more at www.cookiecentral.com).

We use cookies for a number of purposes, including:

• Simplifying logging on for users
• Ensuring the security of registered users
• Enabling traffic monitoring.

You don't need to allow your browser to accept personal cookies, you must have session cookies enabled if you wish to quote online or access any areas reserved for registered users. Session cookies do not hold personal information. Without them, we are unable to provide you with a quote.

If you have any queries regarding cookies and our use of them, please contact the Information Security Officer on 029 2043 4252.

Please be aware that our website will contain links to other websites. We accept no responsibility or liability for the content of these websites. If you choose to visit another website via our website, you will need to contact them separately to have your personal information deleted from any list they might hold.

We will endeavour to treat your personal information as private and confidential. Other than under the terms of this Statement, we will not disclose any of your information to anyone.

We would like to bring to your attention to our obligations to disclose information in the following four exceptional cases permitted by law, and the other situations set out below. These are:

• Where we are legally compelled to do so
• Where there is a duty to the public to disclose
• Where disclosure is required to protect our interest
• Where disclosure is made at your request or with your consent.

Also, from time to time we will employ agents and subcontractors to process your personal information on our behalf. The same duty of confidentiality and security will apply to them and all processing will be carried out under our instruction.

If you make a complaint about the service we have provided, we may be obliged to forward details about your complaint, including your personal information, to the relevant ombudsman. You can be assured that they are similarly obliged to adhere to the Data Protection Act and keep your personal information strictly confidential.

In the unfortunate event that you have to make a claim then we will need to disclose information with any other party involved in that claim. This may include:

• Third parties involved with the claim, their insurer, solicitor or representative
• Medical teams, the police or other investigators.

If necessary we may also have to investigate your claims and conviction history in the course of administering the claim. You can be assured that we will keep such investigations strictly confidential.

Insurers pass information to the Claims Underwriting and Exchange Register, run by Insurance Database Services (IDS) and the Motor Insurance Anti-Fraud and Theft Register, run by the Association of British Insurers (ABI). This helps insurers check information and prevent fraudulent claims. When we deal with your request for insurance we may search these registers. Under the conditions of your policy, you must tell us about any incident (such as an accident or theft) which may give rise to a claim. When you tell us about an incident we will pass information to the Registers.

Your policy details will be added to the Motor Insurance Database (MID), run by the Motor Insurers' Information Centre (MIIC). MID data may be used by the DVLA and the DVLNI for Electronic Vehicle Licensing and by the police for establishing whether a driver's use of a vehicle is likely to be covered by a motor insurance policy and/ or for preventing and detecting crime. If you are involved in an accident (in the UK or abroad), other UK insurers, the Motor Insurers' Bureau and MIIC may search the MID to obtain policy information. Persons pursuing a claim in respect of a road traffic accident (including citizens of other countries) may also obtain information which is held on the MID. Find out more at www.miic.org.uk.

We make searches about you at credit reference agencies who will supply us with information, including the Electoral Register and credit information. The agencies will record details of the search whether or not your application proceeds. The searches will not be seen or used by lenders to assess your ability to obtain credit. We may use scoring methods to assess this application and to verify your identity. Credit searches and other information which is provided to us and/ or the credit reference agencies, about you and those with whom you are linked financially, may be used by EUI Limited and other companies if you, or other members of your household, apply for other facilities including insurance applications and claims. This information may also be used for debt tracing and the prevention of money laundering as well as the management of your account. Alternatively, we may ask you to provide physical forms of identification.

In order to prevent and detect fraud we may at any time:

• Share information about you with our other Group companies and other insurers or financial institutions
• Pass your details to Insurance Hunter, a central insurance application and claims checking system whereby it may be checked against information held and shared with other insurers
• Check your details with fraud prevention agencies and if you give us false or inaccurate information and we suspect fraud, we will record this
• We and other organisations may search these records to help make decisions about credit and credit related services for you and members of your household.

On our websites we protect any information you have given us by providing you with a User ID and password. We also use industry standard secure sockets layer (SSL) 128 bit encryption technology to encrypt sensitive information.

The User ID and password helps us to protect your personal information. You may need a User ID and password to access your personal information on our website. You must keep this password safe and must not disclose it to anyone. We will accept no responsibility or liability if a third party obtains and users your User ID and password. You must tell us immediately if you have lost your Use ID or password, or if you believe a third party may have obtained it. Please also tell us if you would like us to change your User ID or password for any reason.

When you ask for a quote from us, we will process the data on a secure server. Microsoft Internet Explorer and Netscape Navigator will confirm that you are in a secure area by displaying an unbroken key or lock in the bottom right hand corner of your browser window.

Some organisations have a security feature called a firewall to protect their computer systems. These firewalls may prevent you from connecting to our secure server to get a quote. If you are at work and cannot connect to our site, please speak to your IT administrator to learn more.

Please be aware that communications over the Internet, such as emails or webmails, are not secure unless they have been encrypted.

Your communications may route through a number of countries before being delivered - this is the nature of the Internet. We cannot accept responsibility for any unauthorised access or loss of personal information that is beyond our control.

It may be necessary to transfer your personal information to other Group companies or service providers located outside of the European Economic Area. The data protection and other laws of these countries may not be as comprehensive as those in the UK or the EEA – in these instances we will take steps to ensure that your privacy rights are respected.

You can write to us at any time to obtain details of the personal information that we may hold about you. Please write to the Data Protection Officer, EUI Limited, Capital Tower, Greyfriars Road, Cardiff, CF10 3AZ. Please provide your name, address and policy number and tell us what information you would like.

We will take all reasonable steps to confirm your identity before providing you with details of any personal information we may hold about you. Please provide two forms of identification such as a copy of a driving licence, passport, or document containing your signature, and a copy of a recent utitily bill that confirms your address.

In accordance with the Data Protection Act 1998, we are entitled to charge £10 to cover the administration costs. Please make cheques payable to "Able Insurance Services Ltd."

We reserve the right to amend or modify this Privacy Statement at any time and in response to changes in applicable law.

The Data Controller is Able Insurance Services Ltd (registered number 311649). Gladiator is a trading name of Able Insurance Services Ltd. At all times Able Insurance Services Ltd will remain the ultimate data controller. In this Privacy Statement "we," "us" and "our" means Able Insurance Services.

If you have any enquiry about our data protection and privacy practices, please write to the Data Protection Officer as above.