Privacy Policy

Introduction

People’s Insurance PLC (“Company,” “we,” “our,” or “us”) is committed to protecting the privacy and security of our customers’ personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, use our services, or engage with us in any other way. Please read this policy carefully to understand our views and practices regarding your personal data and how we will treat it. 

Information We Collect

Personal Information

We may collect the following types of personal information:

• Identification Data: Name, date of birth, gender, national identification number, passport number, driver’s license number.
• Contact Information: Address, email address, phone number.
• Financial Information: Bank account details, credit card information, payment history.
• Insurance Information: Policy number, claims history, coverage details.
• Employment Information: Job title, employer, employment history.
• Health Information: Medical history, health conditions, prescription information (for health-related policies).
• Usage Data: IP address, browser type, operating system, access times, pages viewed, and referring website addresses.

Sensitive Personal Data

In certain circumstances, we may collect sensitive personal data, such as health information, when necessary to provide you with insurance coverage or process claims. We will only process this information with your explicit consent or as required by law.

How We Collect Information

We collect information through various means, including:

• Direct Interactions: When you apply for insurance, file a claim, or communicate with us.
• Automated Technologies: When you visit our website or use our online services.
• Third Parties: From other insurance companies, medical providers, or public databases.

How We Use Your Information

We may use your personal information for the following purposes:

• Provision of Services: To provide you with insurance products and services, manage your policies, and process claims.
• Customer Support: To respond to your inquiries, provide customer support, and resolve complaints.
• Communication: To send you important information regarding your policies, changes to our terms and conditions, or other administrative information.
• Marketing: To inform you about other products and services that may be of interest to you (with your consent where required by law).
• Legal Compliance: To comply with legal obligations, court orders, or government regulations.
• Fraud Prevention: To detect, prevent, and investigate fraud, security breaches, or other potentially prohibited or illegal activities.
• Improvement of Services: To improve our website, products, and services.

How You Can Object to the Processing of Your Personal Data

Where permitted by applicable law or regulation, you have the right to object to our processing of your personal data, including for direct marketing purposes. Once you inform us of your objection, we will cease processing your personal data unless we are permitted to do so under applicable laws and regulations. You may exercise this right in the same manner as you exercise your other rights, as indicated above.

Sharing Your Information

We may share your personal information with:

• Affiliates and Subsidiaries: Within our corporate group to ensure a consistent level of service.
• Service Providers: Third-party service providers who assist us in providing our services, such as payment processors, IT service providers, and marketing agencies.
• Business Partners: Insurance intermediaries, agents, and brokers who are involved in providing insurance services to you.
• Legal Authorities: Law enforcement agencies, regulatory bodies, and other third parties as required by law.
• Other Third Parties: With your consent or as otherwise disclosed at the time of data collection or sharing.

Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, disclosure, alteration, or destruction. These measures include encryption, firewalls, secure server facilities, and access control procedures.

Data Retention

We will retain your personal information for as long as necessary to fulfill the purposes for which it was collected, comply with legal and regulatory requirements, or resolve disputes. When we no longer need your personal information, we will securely delete or anonymize it.

Legal framework

We process your data in accordance with the Electronic Transactions Act No. 19 of 2006, Payment Devices Frauds Act No. 30 of 2006, the Intellectual Property Rights Act, Computer Crimes Act No. 24 of 2007, and all other applicable laws governing the processing of personal data.

Your Rights

You have certain rights regarding your personal information, including:

• Access: The right to access the personal information we hold about you.
• Correction: The right to request correction of inaccurate or incomplete personal information.
• Deletion: The right to request deletion of your personal information, subject to legal and contractual obligations.
• Objection: The right to object to the processing of your personal information in certain circumstances.
• Restriction: The right to request the restriction of processing of your personal information in certain circumstances.
• Data Portability: The right to receive your personal information in a structured, commonly used, and machine-readable format.

To exercise your rights, please contact us using the contact details provided below.

Cookies and Tracking Technologies

Our website uses cookies and similar tracking technologies to enhance your user experience, analyze website traffic, and deliver targeted advertising. You can manage your cookie preferences through your browser settings.

Links to Other Sites

Our Service may contain links to other sites that are not operated by us. If you click a third-party link, you will be directed to that third party’s site. We strongly advise you to review the Privacy Policy of every site you visit. We have no control over and assume no responsibility for the content, privacy policies or practices of any third-party sites or services.

Conflicts

Depending on the specific Service you are using or specific interactions you have with us, we may provide different or supplemental privacy statements that describe and govern how we use your personal information. When we do so, those different or supplemental privacy statements apply to that specific Service you are using or those specific interactions you have with us.

When we receive a complaint from you about a potential or actual breach of your privacy, we will handle the complaint in accordance with Our Complaints and Dispute Resolution Process.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes we make will be posted on this page with a revised effective date. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information. The Head of Risk & Compliance shall be designated as the Data Privacy Officer for the purposes of implementation and administration of this Privacy Policy.

Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:

People’s Insurance PLC

Data Protection Officer

Risk & Compliance Department

No 07, Havelock Road, Colombo 05.

Tel: 011-2126126 Fax: 011-2126322

E-mail: pilassist@peoplesinsurance.lk

By using our services or interacting with us, you acknowledge that you have read and understood this Privacy Policy and agree to the collection, use, and disclosure of your personal information as described herein.