Privacy policy

Drivetech (UK) Limited, trading as Drivetech and Drivetech International

Privacy Notice

This privacy notice lets you know what happens to any personal data that you give to us, or any that we may collect from or about you. It applies to all products and services, and case/examples where we collect your personal data.

When it comes to your privacy we never compromise. Drivetech is the Data Controller of your personal information and has been assessed by The British Standards Institution (BSI), Drivetech are certified to the following ISO Standards: Quality Management Systems - ISO 9001:2015 and for Information Security Management System - ISO/IEC 27001:2013 (for both our DriverAware and Licence Checking Divisions). Drivetech is registered with the

Information Commissioner’s Office (ICO) under registration number Z6619012.

We will always be clear about why we need the details we ask for, and ensure your personal information is kept as secure as possible. How we do this is explained below.

Jump links Introduction Background Changes to our privacy notice Drivetech and our Data Protection Officer What kinds of personal information about you do we process? What is the source of your personal information? What are the legal grounds for our processing of your personal information? What should you do if your personal information changes? For how long is your personal information retained by us? What are your rights under data protection laws? General provisions applicable to all Drivetech business divisionsk DriverAware FleetSafe Licence Checking (Intelligent Data Systems Ltd) Driver CPC Cookies Links to other sites Amendment and retention of information Subject access requests

Introduction

Drivetech (UK) Limited’s business is made up of several core areas, namely ‘DriverAware’, ‘FleetSafe’, ‘Licence Checking’ (Intelligent Data Systems Ltd) ‘Driver CPC’ and ‘Drivetech International’. We will refer to Drivetech (UK) Limited in our privacy notice as Drivetech.

Drivetech is part of the AA Group, we will refer to this in our privacy notice as ‘the Group’.

Drivetech is committed to protecting your privacy. We comply with data protection regulation and aim to maintain consistently high levels of best practice in our processing of personal and/ or sensitive personal data.

Drivetech will use your personal information as set out below. If you have provided personal information to more than one of Drivetech’s business divisions, the information you have provided to each division will be used as set out below.

Background

This privacy notice applies to personal information processed by or on behalf of Drivetech.

Use the links below to find out more about how we use your personal information: Who are we and how do you contact us and our Data Protection Officer? What kinds of personal information about you do we process? What is the source of your personal information? What are the legal grounds for our processing of your personal information? What should you do if your personal information changes? For how long is your personal information retained by us? What are your rights under data protection laws?

Changes to this privacy notice

We may change this privacy notice from time to time by updating this document/page in order to reflect changes in the law and/or our privacy practices. We encourage you to check this privacy notice for changes whenever you visit our website.

Drivetech and our Data Protection Officer

We have a dedicated data protection officer (“DPO”). You can contact the DPO by writing to us at Drivetech (UK) Limited, Fanum House, Basing View, Basingstoke, Hampshire, RG21 4EA, marking it for the attention of the DPO or by email at dataprotection@theaa.com alternatively by going to the Contact Us page.

What kinds of personal information about you do we process?

Personal information that we’ll process in connection with all products and services, if relevant, includes:

Personal and contact details, such as title, full name, contact details and contact details history
Your date of birth, gender and/or age;
Records of your contact with us such as via the phone and, if you get in touch with us online using our online services;
Details of products and services you hold with us, as well as have been interested in and have held;
Vehicle information, such as make and model;
Telematics and driving information about your vehicle, driving style (including recommending improvements and assessing risk associated with your driving style), location;
Information we obtained from third parties, including information about risk;
Information about your driving licence status, entitlements and endorsements;
Information about your health or if you are a vulnerable customer;
Information we buy or rent from third parties, including marketing lists, publicly available information, and information to help improve the relevance of our products and services;
Insights about you and our customers gained from analysis or profiling of customers

What is the source of your personal information?

We’ll collect personal information from the following general sources:

From you directly, and any information from family members, associates or beneficiaries of products and services;
Information generated about you when you use our products and services;
Business partners for example. and others who are a part of providing your products and services or operating our business ;
The Driver and Vehicle Licensing Agency (DVLA) and the Driver and Vehicle Agency in No rthern Ireland (DVA);
From other sources such as Fraud Prevention Agencies, Credit Reference Agencies, other lenders, HMRC, DWP, publicly available directories and information (for example telephone directory, social media, internet, news articles), debt recovery and/or tracing agents, other organisations to assist in prevention and detection of crime, police and law enforcement agencies;

What do we use your personal data for?

We use your personal data, including any of the personal data listed above, for the following purposes:

Assessing an application, a product or service; including
To provide educational services which may be offered to you by the police;
To undertake and provide vehicle licensing checks with the DVLA and the DVA to your employer; Updating your records with the DVLA, DVA and the DVSA
Updating your records, tracing your whereabouts and recovering debt;
Managing any aspect of the product or service;
To perform and/or test the performance of, our products, services and internal processes;
To improve the operation of our business and that of our business partners;
To follow guidance and best practice under the change to rules of governmental and regulatory bodies;
For management and auditing of our business operations including accounting;
To monitor and to keep records of our communications with you and our staff (see below);
For market research and analysis and developing statistics;
For direct marketing communications and related profiling to help us to offer you relevant products and service, including deciding whether or not to offer you certain products and service. We’ll send marketing to you by SMS, email, phone, post, social media and digital channels (e.g. using Facebook, LinkedIn and Twitter). Offers may relate to any of our products and services as well as to any other offers and advice we think may be of interest;
To provide personalised content and services to you, such as tailoring our products and services, our digital customer experience and offerings, and deciding which offers or promotions to show you on our digital channels;
To develop new products and services and to review and improve current products and services;
To comply with legal and regulatory obligations, requirements and guidance;
To provide insight and analysis of our customers both for ourselves and for the benefit of business partners either as part of providing products or services, helping us improve products or services, or to assess or improve the operating of our businesses;
To share information, as needed, with business partners, service providers or as part of providing and administering our products and services or operating our business; and
To facilitate the sale of one or more parts of our business.

What are the legal grounds for our processing of your personal information (including when we share it with others)?

We rely on the following legal bases to use your personal data:

Where it is needed to provide you with our products or services, such as:

Assessing an application for a product or service you hold with us and managing the product or service; including

To provide educational services which may be offered to you by the police;
To undertake and provide vehicle licensing checks with the DVLA and the DVA to your employer; Updating your records with the DVLA, DVA and the DVSA
Updating your records, tracing your whereabouts to contact you about your account and doing this for recovering debt (where appropriate);
Sharing your personal information with business partners and services providers when you apply for a product to help manage your product;
All stages and activities relevant to managing the product or service including enquiry, application, administration and management of accounts; and
For some of our profiling and other automated decision making to decide whether to offer you a product and/or service, particular payment method and the price or terms of this.

Where it is in our legitimate interests to do so, such as:

Managing your products and services relating to that, updating your records, tracing your whereabouts to contact you about your account and doing this for recovering debt (where appropriate);
To perform and/or test the performance of, our products, services and internal processes;
To follow guidance and recommended best practice of government and regulatory bodies;
For management and audit of our business operations including accounting;
To carry out searches at Credit Reference Agencies pre-application, at the application stage, and periodically after that.;
To carry out monitoring and to keep records of our communications with you and our staff (see below);
To administer our good governance requirements, such as internal reporting and compliance obligations or administration required for AGM processes;
For market research and analysis and developing statistics;
For direct marketing communications and related profiling to help us to offer you relevant products and services, including deciding whether or not to offer you certain products and service. We will send marketing to you by SMS, email, phone, post and social media and digital channels (e.g. using Facebook, LinkedIn and Twitter);
Subject to the appropriate controls, helping us improve products or services, or to assess or to improve the operating of our businesses;
For some of our profiling and other automated decision making; and
Where we need to share your personal information with people or organisations in order to run our business or comply with any legal and/or regulatory obligations.

To comply with our legal obligations

With your consent or explicit consent:

For some direct marketing communications;
For some of our profiling and other automated decision making; and
For some of our processing of special categories of personal data such as about your health, if you are a vulnerable customer or some criminal records information.

For a public interest, such as:

Processing of your special categories of personal data such as about your health, criminal records information (including alleged offences), or if you are a vulnerable customer.

Is your personal information transferred outside the UK or the EEA?

We’re based in the UK but sometimes your personal information may be transferred outside the European Economic Area. If we do so we’ll make sure that suitable safeguards are in place, for example by using approved contractual agreements, unless certain exceptions apply, for example, if you are using one our services outside of the European Economic Area.

What should you do if your personal information changes?

You should tell us so that we can update our records either in writing at Drivetech (UK) Limited, Fanum House, Basing View, Basingstoke, Hampshire, RG21 4EA or by using the details in the Contact Us page of our website. We’ll then update your records if we can.

Do you have to provide your personal information to us?

We’re unable to provide you with our products or services if you do not provide certain information to us. In cases where providing some personal information is optional, we’ll make this clear.

Do we do any monitoring involving processing of your personal information?

In this section monitoring means any: listening to, recording of, viewing of, intercepting of, or taking and keeping records (as the case may be) of calls, email, text messages, social media messages, in person (face to face) meetings and other communications.

We may monitor where permitted by law and we’ll do this where the law requires it, or to comply with regulatory rules, to prevent or detect crime, in the interests of protecting the security of our communications systems and procedures and for quality control and staff training purposes. This information may be shared for the purposes described above.

What about other automated decision making?

We sometimes make decisions about you using only technology, where none of our employees or any other individuals have been involved. For instance, we may do this to decide: the risk associated with your driving (for example, if your employers or fleet management company asks us to do this). We may also do this using data from other parts of the Group, including product or services details.

We’ll do this where it is necessary for entering into or performing the relevant contract, is authorised by laws that apply to us, or is based on your explicit consent.

For how long is your personal information retained by us?

Unless we explain otherwise to you, we’ll hold your personal information based on the following criteria:

For as long as we have reasonable business needs, such as managing our relationship with you and managing our operations;
For as long as we provide goods and/or services to; and/or
Retention periods in line with legal, regulatory and contractual requirements or guidance.

What are your rights under data protection laws?

Here is a list of the rights that all individuals have under data protection laws. They don’t apply in all circumstances. If you wish to use any of them, we’ll explain at that time if they are engaged or not.

The right to be informed about the processing of your personal information;
The right to have your personal information corrected if it is inaccurate and to have incomplete personal information completed;
The right to object to processing of your personal information;
The right to restrict processing of your personal information;
The right to have your personal information erased (the “right to be forgotten”);
The right to request access to your personal information and to obtain information about how we process it;
The right to move, copy or transfer your personal information (“data portability”); and
Rights in relation to automated decision making which has a legal effect or otherwise significantly affects you.

You have the right to complain to the Information Commissioner’s Office which enforces data protection laws - https://ico.org.uk/. You can contact us in writing at Drivetech (UK) Limited, Fanum House, Basing View, Basingstoke, Hampshire, RG21 4EA or by using the Contact Us page on our Website.

Your right to object

You have the right to object to certain purposes for processing, in particular to data processed for direct marketing purposes and to data processed for certain reasons based on our legitimate interests. You can contact us in writing at Drivetech (UK) Limited, Fanum House, Basing View, Basingstoke, Hampshire, RG21 4EA to exercise these rights.

What are your marketing preferences and what do they mean?

We may use your home address, phone numbers, email address and social media or digital channels (e.g. Facebook, Google and message facilities in other platforms) to contact you according to your marketing preferences. You can stop our marketing at any time by contacting us in writing at Drivetech (UK) Limited, Fanum House, Basing View, Basingstoke, Hampshire, RG21 4EA or by following the instructions in the communication.

Cookies

From offers and promotions to sound and video, the aim of the Drivetech website is to be interesting, helpful and informative. We’re keen to find out what you like and dislike – your feedback plays a key role in helping us improve the site. We use many techniques to follow your use of the site and provide you with a customised experience. The main and best-known technique is by using what are known as 'cookies'.

Cookies are small data files that a website will put on your device, which in turn sends information back to the website. They cannot affect your device, but they do collect information that can be used to enhance the site.

We use cookies to ensure you get the most from your visit. They improve your experience of the site because certain features work best with cookies. Feedback and information from the cookies can also help make the site better. By visiting the site, you agree to our use of cookies and other technologies.

Rest assured that the cookies we use do not store personal details, such as payment card numbers.

Contact Us

If you have any questions about this privacy notice, or if you wish to exercise your rights or contact the DPO.

You can write to:

Drivetech (UK) Limited

Fanum House, Basing View, Basingstoke,

RG21 4EA

Mark for the attention of the DPO

01256 495700

enquiries@Drivetech.co.uk