Data Protection for the
Insurance companies and service providers
We support insurance companies regardless of their organizational form – i.e. whether they are mutual insurance companies, stock corporations, institutions or public corporations. Furthermore, we offer our consulting services to life, health and other property and casualty insurers across all lines of business. We focus on the individual company as well as on the group operating in the insurance industry.
In our consulting services, we take into account the changing focus of insurers’ activities. The starting point for systematic market cultivation are more and more methods of market segmentation as well as risk segmentation – a per se data protection sensitive area, which internal data protection officers often underestimate or even completely disregard in their activities.
Our data protection services for you:
Data Protection for the insurance industry
3 steps to legal consultation
Simply fill out this form and one of our team will contact you to organise a free of charge, no obligation call.
Online marketing and direct insurance
even comparatively established approaches such as online marketing or direct insurance can raise questions of a data protection nature that are in the sights of consumers and data protection supervisory authorities. Frequently in focus here are, for example, the collection of online SCHUFA information, which is dependent on consent, or online cost calculators, which require the disclosure of personal data and raise follow-up questions such as deletion periods or adequate data security mechanisms pursuant to Art. 32 of the GDPR.
In some cases, it is also compliance that brings data protection issues to the fore: for example, the German Federal Financial Supervisory Authority (BaFin) requires insurers to check their sales representatives for reliability. But how can such fraud prevention be both data-protection compliant and effective in filtering out “black sheep”?
Similar problems also arise in the relationship with the insured customer. In order to effectively counter the “popular sport” of insurance fraud, insurers resort to a wide range of fraud prevention measures in which data on the insured is collected, analyzed and exchanged with others. Maintaining the limits of what is permissible under data protection law poses considerable challenges for insurance companies.
The list of all these issues of interest to insurers in their day-to-day business is long. In the course of our many years of consulting work, we have raised and also answered many such questions. This can only be achieved with the necessary legal and industry knowledge as well as the necessary pragmatism.
Do you need an External Data Protection Officer?
Five steps to full service compliance:
Introduction of your company and KINAST as well as the relevant contact persons. Discussion of the current data protection setup and most important data protection topics.
We conduct data protection audit on-site or based on questionnaires to evaluate the current data protection status of your company.
Document the current data protection status and define further required actions if necessary.
We carry out all necessary measures identified during the data protection audit.
Designation as External data protection officer and on-going consultation starting from day 1.
Furthermore, insurance brokers, insurance intermediaries and insurance agencies, who search for the optimal solution on the market on behalf of the customer and carefully examine it according to objective standards, also come into contact with the personal data of their customers. Even if the client’s name is not passed on to third parties, there may still be a transfer of personal data within the meaning of the Federal Data Protection Act. In this case, data protection laws must also be observed. All requirements from the area of customer data protection apply.
Our service to you
How our legal experts help clients in the insurance industry
We are constantly working on the best solutions for your data protection needs. In doing so, the right partners are crucial. Among others, we cooperate with Versicherungsforen Leipzig.
Thanks to our years of experience and knowledge in the field of insurance data protection, we work very efficiently and with the clear goal of keeping your processes running smoothly and saving your resources as much as possible. Feel free to contact us with your questions at any time without obligation.
Attorney at Law (Germany)
Attorney at Law (Germany)
Dr. Karsten Kinast LL.M.
Managing Shareholder | Attorney at Law (Germany)
Whether an insurance company, stakeholder or broker, data protection and GDPR compliance is essential for you business
The insurance industry is one of the most data-intensive industries of our time. Our data protection experts advise the entire industry; from insurance companies to large insurance brokers, interest groups and networks, and insurers’ service providers.
Send this page to a colleague?
Find out more about our individual services
Our Lawyers act as External Data Protection Officers (DPO) for small and medium-sized companies, associations, institutions and international corporations.
Working alonside a DPO, our Data Protection Managers help to implement data protection guidelines and ensures orderly and up to date documentation of your GDPR compliance.
Regular data protection audits ensure that your business continues to process and store personal data in a manner that’s compliant with ever changing data protection laws.