General Data Protection Regulation (GDPR) Compliance Policy

Version 2.0 - March 24th 2025

1. Introduction

We, Top Insured Agency (“Top Insured”), are committed to protecting your personal data in compliance with the EU General Data Protection Regulation (GDPR). This policy outlines how we collect, use, and safeguard your information to ensure transparency and trust in our data practices.

2. Data Controller Information

The data controller is:

Top Insured Agency LLC
📍 Address: PO Box 1222, Manhasset, NY 11030
📧 Email: lis@topinsuredagency.com
📞 Tel: (516) 472-0826

For any data protection-related inquiries, you may contact our Data Protection Officer (DPO), Lissette del Valle Sissa, at (516) 472-0826.

3. Types of Data Collected

We collect and process the following categories of personal data:

Identifiers: Name, email, phone number, postal address, and other contact details.
Financial Data: Payment details (for policy transactions).
Technical Data: IP address, cookies, browser type, and device identifiers.
Insurance Information: Policy numbers, claims history, and coverage details.
Communication Data: Correspondence with our agency (e.g., emails, call recordings).

4. Purposes & Legal Basis for Processing

We process personal data under GDPR’s lawful bases, including contractual necessity, legal obligation, consent, and legitimate interests.

Your data is used to:

✔️ Process insurance requests, binders, and policies. (Contractual necessity)
✔️ Provide binders, paid receipts, policy documents, and endorsements. (Contractual necessity)
✔️ Communicate with underwriters, process claims, and fulfill contracts. (Contractual necessity)
✔️ Send marketing communications. (Consent)
✔️ Improve customer service, enhance security, and analyze usage trends. (Legitimate interests)

5. Data Sharing & Transfers

To operate efficiently, we may share personal data with trusted third-party service providers, including:

Insurance underwriters and carriers (for policy issuance and claim processing).
Payment processors (for secure transactions).
IT service providers (to maintain website security and data storage).

If personal data is transferred outside the European Economic Area (EEA), we ensure adequate safeguards, such as:

Standard Contractual Clauses (SCCs) approved by the EU Commission.
Privacy Shield Frameworks (where applicable).

6. Data Retention

We retain personal data based on regulatory requirements and business needs:

📌 Policy & Transaction Data: Retained for 6 years
📌 Marketing Data: Stored until consent is withdrawn.
📌 Claims & Legal Data: Retained for as long as required under applicable law.

All retained data will be stored in a secure and protected environment for the duration of its retention period.

7. Your Rights Under GDPR

As a data subject, you have the following rights under GDPR:

✅ Right to Access – Request a copy of your data.
✅ Right to Rectification – Correct inaccurate or incomplete data.
✅ Right to Erasure (“Right to be Forgotten”) – Request deletion of your data when no longer needed.
✅ Right to Restrict Processing – Limit how we process your data.
✅ Right to Data Portability – Receive a digital copy of your data for reuse.
✅ Right to Object – Object to data processing (e.g., marketing emails).
✅ Right to Withdraw Consent – Opt-out of marketing communications anytime.

🔹 To exercise these rights, contact support@topinsuredagency.com.

8. Cookies & Tracking Technologies

We use cookies to enhance user experience and collect analytics.

Types of cookies we use:

🍪 Essential Cookies – Required for website functionality.
📊 Analytical Cookies – Help us understand website traffic (requires consent).
📣 Marketing Cookies – Used for personalized ads (requires consent).
🔹 Manage your cookie preferences via [setting]settings[/setting].

9. Security Measures

We take strict security measures to protect your data, including:

🔒 SSL Encryption – Secures data transmission.
📁 Secure Servers – Stores data in encrypted databases.
🔑 Access Controls – Limits data access to authorized personnel.
🛡️ Regular Security Audits – Ensures compliance with industry standards.

10. Updates to This Policy

We periodically review and update this policy to reflect regulatory changes or service improvements.

🔹 Changes will be posted on our website. If significant changes occur, we will notify you via email or a website banner.

11. Communications

You may provide your information as part of an attempted or completed request for a quote or offer for goods and services of a third-party vendor. In doing so, you agree to allow us to use this information in any way consistent with the Terms of Service, our Privacy Policy, and our Cookie Policy.

When you submit contact information to us as part of an attempted or completed request for a quote or offer for goods or services, you consent to receive telephone calls, emails, text messages, mailers, or other similar communications concerning these goods and services. This is true even if your phone number is on any “do not call” list.

12. Contact Information

For questions or concerns regarding this policy, contact:

📧 Email: lis@topinsuredagency.com
📍 Mailing Address: PO Box 1222, Manhasset, NY 11030
📞 Phone: (516) 472-0826

Language

Get a Quote

Payments

Client portal

General Data Protection Regulation (GDPR) Compliance Policy

1. Introduction

2. Data Controller Information

3. Types of Data Collected

4. Purposes & Legal Basis for Processing

5. Data Sharing & Transfers

6. Data Retention

7. Your Rights Under GDPR

8. Cookies & Tracking Technologies

9. Security Measures

10. Updates to This Policy

11. Communications

12. Contact Information

Site

Services

Contact us

Follow us

Get a quote

Get a quote

Client Portal