top of page

Privacy Policy

Data Controller
PHEMIS Underwriters SAS
Address: 14 Avenue de l’Opéra, 75001 Paris, France
Email: contact@phemisunderwriters.com

Data Privacy Policy – PHEMIS Underwriters

1. Introduction

This Data Privacy Policy explains how Phemis Underwriters (“we”, “us”, “our”) processes personal data in our role as a Lloyd’s Europe coverholder. We are committed to protecting personal data in accordance with the EU General Data Protection Regulation (GDPR) and the standards set by Lloyd’s Insurance Company S.A. (LIC).

2. Data Controller

We act as a data controller for personal data processed in relation to insurance policies underwritten on behalf of Lloyd’s Europe (LIC), a regulated insurer based in Belgium.

3. Personal Data We Collect

We may collect:

  • Identity data: name, date of birth, identification numbers.

  • Contact data: address, email, phone number.

  • Financial data: bank details, premium payments.

  • Insurance data: risk details, claims history.

  • Special categories of data: health data (where necessary).

4. Purpose and Legal Basis for Processing

We process personal data for:

  • Underwriting and administering insurance policies.

  • Claims handling and complaint management.

  • Regulatory compliance with LIC and EU authorities.

  • Fraud prevention and detection.

Legal bases include:

  • Contract performance.

  • Legal obligations.

  • Legitimate interests.

  • Consent (especially for sensitive data).

5. Sharing of Personal Data

We may share data with:

  • LIC and its managing agents.

  • Reinsurers, brokers, loss adjusters.

  • Regulatory bodies (e.g., FSMA, NBB).

  • IT and service providers.

Transfers outside the EEA are safeguarded using:

  • Adequacy decisions.

  • Standard Contractual Clauses.

  • Binding Corporate Rules.

6. Data Retention

We retain personal data only as long as necessary for:

  • Insurance administration.

  • Legal and regulatory compliance.

  • Statutory limitation periods.

7. Data Subject Rights

Individuals have rights under GDPR:

  • Access, rectification, erasure.

  • Restriction and objection to processing.

  • Data portability.

  • Withdrawal of consent (where applicable).

To exercise your rights, contact: contact@phemisunderwriters.com
You may also lodge a complaint with your local supervisory authority.

8. Security Measures

We implement appropriate technical and organizational measures to ensure data confidentiality, integrity, and availability.

bottom of page