Privacy Policy
Drive Smart Insurance is a trading name of Sabre Insurance Company Limited.
Sabre Insurance Company Limited (“Sabre“) is committed to ensuring your privacy is protected. This Privacy Policy sets out details of the information that we may collect from you and how we may use that information, whether through this website, over the phone or in any other form of communication. Please take your time to read this Privacy Policy carefully.
Our website may contain links to other third party websites. If you follow a link to any of those third party websites, please note that they have their own privacy policies and that we do not accept any responsibility or liability for their policies or processing of your personal information. Please check these policies before you submit any personal information to such third party websites.
In this Privacy Policy references to “we” or “us” or “Sabre” are to Sabre Insurance Company Limited.
Sabre Insurance is a successful UK based insurer selling motor insurance primarily through brokers but also directly to the public through the Insure 2 Drive, Go Girl and Drive Smart brands.
Sabre Insurance Company Limited is authorised and regulated by the Financial Conduct Authority and Prudential Regulation Authority.
Registered offices are at Sabre House, 150 South Street, Dorking, Surrey RH4 2YY and the Company registration number is 2387080. VAT registration number is 793 7283 81.
For more information about Sabre and our history, please click here.
We are the data controller of any personal information that has been provided to us. This means that we are responsible for complying with data protection laws. This Privacy Policy describes what personal information we may collect from you, why we use your personal information and more generally the practices we maintain and ways in which we use your personal information.
We have a data protection officer to oversee our handling of personal information. If you have any questions about how we collect, store or use your personal information, you may contact our data protection officer using the details set out at section 13.
2. Who do we collect personal information about?
We collect and hold personal information about:
3. When do we collect personal information?
We collect personal information:
4. What personal information do we collect and use?
The personal information that we collect will depend on your relationship with us. We will collect different information depending on whether you are a policyholder, named driver or other covered party or beneficiary under a policy, website user, claimant, witness, expert, representative or other third party.
Please note, in certain circumstances we may request and/or receive “sensitive” or “special categories” of personal information about you. For example we may need access to health records for the purposes of providing you with a policy or processing claims, or details of any unspent criminal convictions for the purposes of preventing, detecting and investigating fraud.
If you provide personal information to us about other individuals you agree to inform the individual about the content of this Privacy Policy. Please click on the relevant section below for detailed information regarding the types of personal information we are likely to collect and use about you.
Personal Information
Sensitive Personal Information
5. How do we collect your personal information?
We collect personal information from a number of different sources including:
6. What are the purposes for which your personal information is used?
We may process your information for a number of different purposes and under data protection laws we need a reason for doing so. We have set out below the reasons why we process your information and the applicable circumstances when we will process your personal information.
Our provision and administering of your insurance contract
We may use your personal information for this purpose when:
We also process the information for our own legitimate business purposes
We may use your personal information for this purpose when:
Sometimes we have a legal or regulatory obligation to use your personal information
We may use your personal information for this purpose when:
Occasionally we need to use your information to establish, exercise or defend our legal rights
We may use your personal information for this purpose when:
Sometimes we need to use your personal information for reasons of substantial public interest
We may use your personal information and your sensitive, criminal convictions or special categories of personal data for this purpose when:
Special category and criminal conviction data
Data Protection Legislation allows for the processing of special category and criminal conviction data for an insurance purpose, this includes:
We may use your personal information for this purpose when:
7. Who do we share your personal information with?
From time to time, we may share your personal information [with the other companies in our group] and with third parties. We will keep your personal information confidential and only share it with the third parties listed below for the purposes explained in section 6. We have trusted relationships with these carefully selected third parties and all third parties are bound by contract to maintain the security of your personal information and to use it only as permitted by us. If you would like further information regarding the disclosures of your personal information, please see section 13 below for our contact details.
Disclosures within our group
In order to provide our services your personal information is shared with other companies in the Sabre Group. Your personal information might be shared for our general business administration purposes or for the prevention and detection of fraud.
Disclosures to third parties
We also disclose your information to the third parties listed below for the purposes described in this Privacy Policy. This might include:
We may also disclose your personal information to other third parties where:
What is our approach to sending personal information overseas?
Personal information that we collect may be shared with an organisation located outside of the EEA. It may also be processed by us or by one of our suppliers outside of the EEA. When these circumstances apply, we will always take measures to ensure your data is protected:
With the exception of a legal or regulatory requirement, your data will only be transferred outside of the EEA when we are satisfied the country is recognised as having an adequate level of data protection or there is another arrangement in place to offer protection of your data.
If you wish to learn more regarding the safeguards we have put in place, please contact us using the details set out in section 13.
8. Automated decision making and telematics data
Automated decisions
We may use information about you which has been provided to us by you or a third party or aggregated data of others who match your risk profile to make decisions about you using computerised technology for analysis, assessment and profiling.
We use algorithms to check detail such as claims, credit history, fraud, the area you are using the vehicle in and the vehicle you would like to insure with us.
This enables us to accurately assess the risk and the appropriate premium to charge you in an efficient manner when requesting insurance quotes via the internet, if we agree to offer you a quote, the decision may be made without any human intervention.
We may also use automated decision making:
Automated processing may result in legal or similar decisions for you, those decisions are necessary for entering into, or performance of, our insurance contract. However, you have the right to challenge the decision and if you wish to do this please contact dpo@sabre.co.uk
Use of telematics data
Telematics data which may have been collected from your vehicle or your device will be used to assess yours and other users driving behaviour and adjust your premium accordingly. You should show this Privacy Policy to any named driver on your insurance Policy so they are aware that their driving will be monitored. We and our appointed providers will process this data securely.
From the date of installation and registration we will use the telematics device to capture data from your vehicle. An electronic data feed will translate the location from the device to provide information, such as road type, road surface,and speed limit of the road driven on at any specific time. It may also record acceleration, braking, location, date and time. This will enable us to build a profile of driving conditions and behaviour.
We and those acting on our behalf will use the data from the devices to:
If the policy is terminated anonymised data will continue to be collected from the vehicle and the user of the vehicle until the device is disabled.. Data collected by the telematics device may be disclosed to third parties with your permission or in the following circumstances:
If you wish to learn more regarding telematics data, please contact us using the details set out in section 13.
9. What marketing activities do we carry out?
We may also use your personal information to provide you with information about our products or services of our partners which may be of interest to you where you have provided your consent.
We are committed to only sending you marketing communications that you have clearly expressed an interest in receiving. If you wish to unsubscribe from marketing emails sent by us, you may do so at any time by clicking on the “unsubscribe” link that appears in all emails. Otherwise you can always contact us using the details set out in section 13 to update your contact preferences. In such circumstances, we will continue to send you service related (non-marketing) communications where necessary.
10. How long do we keep personal information for?
We will only keep your personal information for as long as reasonably necessary to fulfill the relevant purposes set out in this Privacy Policy and in order to comply with our legal and regulatory obligations.
If you would like further information regarding the periods for which your personal information will be stored, please see section 13 below for our contact details.
In most cases your personal data will be retained for fifty years. However, it may sometimes be necessary to retain data for longer, for example where there are legal grounds for doing so, or in the event of a claim or a potential claim under a policy. Where a quote is provided but you decide not to proceed, this data will be retained for five years. Even if we delete your personal information it may persist on backup or archival media for legal, tax or regulatory purposes.
Under the Data Protection Act and GDPR you have certain rights in relation to the personal information that we hold about you. You may exercise these rights at any time by contacting us using the details set out in section 13.
Please note:
Your rights include:
You are entitled to a copy of the personal information we hold about you and certain details of how we use it. There will not usually be a charge for dealing with these requests, although we reserve the right to make a charge for requests which are manifestly unfounded or excessive or to charge a reasonable fee based on administrative costs for further copies requested. To exercise your right to access your personal information, please contact us.
Your information will usually be provided to you in writing, unless otherwise requested, or where you have made the request by electronic means, in which case the information will be provided to you by electronic means where possible.
We take reasonable steps to ensure that the information we hold about you is accurate and complete. However, if you do not believe this is the case, please contact us and you can ask us to update or amend it.
Email: DPO@sabre.co.uk
In certain circumstances, you have the right to ask us to erase your personal information, for example where the personal information we collected is no longer necessary for the original purpose. However this will need to be balanced against other factors, for example according to the type of information we hold about you and why we have collected it, there may be some legal and regulatory obligations which mean we cannot comply with your request.
In certain circumstances, you are entitled to ask us to stop using your personal information, for example where you think that the personal information we hold about you may be inaccurate or where you think that we no longer need to process your personal information.
In certain circumstances, you have the right to ask that we transfer any personal information that you have provided to us to another third party of your choice
You can ask us to stop sending you marketing messages at any time.
You have a right not to be subject to a decision that has been based solely on automated means i.e. when your personal information has been inputted into a system or computer and the decision has been calculated using certain automatic processes rather than our employees making those decisions. [Please note that we may use your sensitive, special category or criminal convictions data when processing auto-renewals and this may involve automated decision making to determine what the cost of renewing your policy will be. When you purchase your policy, we will ask you if you would like to opt in to auto-renewal. However, even if you opted in at this point, you have the right to opt out at any point].
For certain uses of your personal information, we will ask for your consent. Where we do this, you have the right to withdraw your consent to further use of your personal information.
You have a right to complain to the Information Commissioner’s Office (ICO) if you believe that any use of your personal information by us is in breach of applicable data protection laws and regulations.
More information can be found on the Information Commissioner’s Office website: www.ico.org.uk or you can call them on 0303 123 1113.
Making a complaint will not affect any other legal rights or remedies that you have.
12. How we protect your information
We use a range of organisational and technical security measures to protect your information.
Where we have given you (or where you have chosen) a password, you are responsible for keeping this password confidential. We ask you not to share a password with anyone.
We restrict access to your information as appropriate within Sabre to those who need to know that information for the purposes set out above.
Firewalls are used to block unauthorised traffic to the servers and the actual servers are located in a secure location which can only be accessed by authorised personnel. Our internal procedures cover the storage, access and disclosure of your information.
If you have any questions about how we collect, store or use your personal information, you may contact our data protection officer at:
Data Protection Officer
Sabre House,
150 South Street,
Dorking,
Surrey,
RH4 2YY
Email : DPO@sabre.co.uk
14. Updates to this Privacy Policy
From time to time we may need to make changes to this Privacy Policy, for example, as the result of government regulation, new technologies, or other developments in data protection laws or privacy generally. You should check our website here https://sabre.co.uk/privacy-policy periodically to view the most up-to-date Privacy Policy.
This Privacy Policy was last updated on: 01/04/2019.